1. Manuals
  2. Brands
  3. Asante Manuals
  4. Switch
  5. IntraCore 36000 Series
  6. User manual

Asante IntraCore 36000 Series User Manual

Managed gigabit ethernet switches
Hide thumbs Also See for IntraCore 36000 Series:
Table of Contents

Advertisement

Quick Links

Download this manual See also: Setup Manual
®
IntraCore
36000 Series
Managed Gigabit Ethernet Switches
User's Manual

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the IntraCore 36000 Series and is the answer not in the manual?

Questions and answers

Subscribe to Our Youtube Channel

Related Manuals for Asante IntraCore 36000 Series

Summary of Contents for Asante IntraCore 36000 Series

  • Page 1 ® IntraCore 36000 Series Managed Gigabit Ethernet Switches User’s Manual...
  • Page 2 IntraCore are registered trademarks and the Asanté logo, AsantéCare, Auto-Uplink, and IntraCare are trademarks of Asanté Technologies, Inc. All other brand names or product names are trademarks or registered trademarks of their respective holders. All features and specifications are subject to change without prior notice. Asanté IntraCore 36000 Series...

  • Page 3: Table Of Contents

    Table of Contents Table of Contents Chapter 1: Introduction 1.1 Description of Software Features........................16 1.2 System Defaults.............................. 19 Chapter 2: Initial Configuration 2.1 Connecting to the Switch ..........................22 2.2 Connections..............................23 2.3 Setting a Password ............................24 2.4 Setting an IP Address ............................. 25 2.5 Enabling SNMP Management Access ......................
  • Page 4 Chapter 11: Configuring Packet Priority 11.1 Setting the Default Priority for Interfaces ....................125 11.2 Mapping CoS Values to Egress Queues..................... 126 11.3 Selecting the Queue Mode ......................... 127 11.4 Setting the Service Weight for Traffic Classes .................... 128 Asanté IntraCore 36000 Series...
  • Page 5 11.5 Selecting IP Precedence/DSCP Priority...................... 130 11.6 Mapping CoS Values to ACLs ........................134 11.7 Changing Priorities Based on ACL Rules ....................135 Chapter 12: Layer 2 IGMP (Snooping and Query) 12.1 IGMP Multicast Filtering..........................138 Chapter 13: Configuring Domain Name Service 13.1 General DNS Server Parameters........................
  • Page 6 16.17 clear mac-address-table dynamic ......................188 16.18 clock timezone ............................188 16.19 combo-forced-mode..........................189 16.20 configure ..............................190 16.21 copy ................................190 16.22 databits ..............................192 16.23 delete ................................ 193 16.24 delete public-key ............................194 16.25 description ..............................194 Asanté IntraCore 36000 Series...
  • Page 7 16.26 dir................................195 16.27 disable ..............................196 16.28 disconnect..............................197 16.29 dot1x default ............................. 197 16.30 dot1x max-req ............................198 16.31 dot1x operation-mode ..........................198 16.32 dot1x port-control ............................199 16.33 dot1x re-authenticate ..........................199 16.34 dot1x re-authentication ..........................200 16.35 dot1x timeout quiet-period ........................
  • Page 8 16.77 jumbo frame .............................. 231 16.78 lacp ................................231 16.79 lacp admin-key (Ethernet Interface) ......................232 16.80 lacp admin-key (Port Channel) ......................... 233 16.81 lacp port-priority ............................234 16.82 lacp system-priority ........................... 235 16.83 line ................................236 Asanté IntraCore 36000 Series...
  • Page 9 16.84 logging facility ............................236 16.85 logging history............................237 16.86 logging host .............................. 238 16.87 logging on ..............................239 16.88 logging sendmail ............................239 16.89 logging sendmail destination-email ......................240 16.90 logging sendmail host ..........................240 16.91 logging sendmail level..........................241 16.92 logging sendmail source-email........................
  • Page 10 16.133 radius-server key ............................ 279 16.134 radius-server port............................ 280 16.135 radius-server retransmit .......................... 280 16.136 radius-server timeout ..........................281 16.137 rate-limit ..............................281 16.138 reload..............................282 16.139 revision ..............................282 16.140 show access-group ..........................283 16.141 show access-list............................283 Asanté IntraCore 36000 Series...
  • Page 11 16.142 show access-list ip mask-precedence..................... 284 16.143 show access-list mac mask-precedence....................285 16.144 show bridge-ext............................285 16.145 show calendar............................286 16.146 show dns..............................286 16.147 show dns cache ............................287 16.148 show dot1x.............................. 287 16.149 show garp timer ............................290 16.150 show gvrp configuration ..........................
  • Page 12 16.192 show spanning-tree mst configuration ....................325 16.193 show ssh..............................325 16.194 show startup-config..........................327 16.195 show system ............................329 16.196 show tacacs-server ..........................329 16.197 show users.............................. 330 16.198 show version ............................330 16.199 show vlan..............................331 Asanté IntraCore 36000 Series...
  • Page 13 16.200 shutdown ..............................332 16.201 silent-time ............................... 332 16.202 snmp-server community.......................... 333 16.203 snmp-server contact ..........................334 16.204 snmp-server enable traps ........................334 16.205 snmp-server host ............................ 335 16.206 snmp-server location..........................336 16.207 sntp broadcast client ..........................337 16.208 sntp client..............................337 16.209 sntp poll ..............................
  • Page 14 A.4 Accessing the CLI............................368 A.5 Console Connection ............................. 368 A.6 Telnet Connection ............................368 A.7 Entering Commands............................. 369 Appendix B: Upgrading Firmware Through the Serial Port B.1 Power Cycle the Switch..........................373 Appendix C: Software Specifications Asanté IntraCore 36000 Series...
  • Page 15 Appendix D: Troubleshooting and Pinouts D.1 Troubleshooting Chart..........................380 D.2 Console Port Pin Assignments ........................380 Appendix E: FCC Compliance and Warranty Statements E.1 FCC Compliance Statement......................... 381 E.2 Important Safety Instructions........................381 E.3 IntraCare Warranty Statement........................382 Appendix F. Online Warranty Registration User’s Manual...

  • Page 16: Chapter 1: Introduction

    The switch provides a wide range of advanced performance enhancing features. Some of the management features are briefly described below. Configuration Backup and Restore – Save the current configuration settings to a file on a TFTP server, and later download this file to restore the switch configuration settings. Asanté IntraCore 36000 Series...
  • Page 17 Authentication – Permit management access through the console port, Telnet or web browser. User names and passwords are configured locally or verified through a remote authentication server (RADIUS or TACACS+). Port-based authentication is supported using the IEEE 802.1x protocol. This protocol uses the Extensible Authentication Protocol over LANs (EAPOL) to request a user name and password from the 802.1x client, and then verifies the client’s right to access the network.
  • Page 18 Multicast Filtering – Assign specific multicast traffic to its own VLAN to ensure that it does not interfere with normal network traffic and to guarantee real-time delivery by setting the required priority level for the designated VLAN. The switch uses IGMP Snooping and Query to manage multicast group registration. Asanté IntraCore 36000 Series...

  • Page 19: System Defaults

    Data bits Stop bits Parity none Local Console Timeout 0 (disabled) Authentication Privileged Exec Level Username “root” Password “Asante” Normal Exec Level Username “root” Password “Asante” Enable Privileged Exec from Normal Exec Password “super” Level RADIUS Authentication Disabled S/TATACS/TATACS Authentication Disabled 802.1x Port Authentication...
  • Page 20 Fast Forwarding (edge port) Disabled Address Table Aging Time 300 seconds Virtual LANs Default VLAN PVID Acceptable Frame Type Ingress Filtering Disabled Switchport Mode (egress mode) Hybrid: tagged/untagged frames GVRP (global) Disabled GVRP (port interface) Disabled Asanté IntraCore 36000 Series...
  • Page 21 Traffic Prioritization Ingress Port Priority Weighted Round Robin Queue: 0 1 2 3 4 5 6 7 Weight: 2 0 1 3 4 5 6 7 IP Precedence Priority Disabled IP DSCP Priority Disabled IP Port Priority Disabled IP Settings IP Address 192.168.0.1 Subnet Mask...

  • Page 22: Chapter 2: Initial Configuration

    The switch’s web interface, CLI configuration program, and SNMP agent allow you to perform the following management functions: • Set user names and passwords for up to 16 users • Set an IP interface for a management VLAN • Configure SNMP parameters • Enable/disable any port Asanté IntraCore 36000 Series...

  • Page 23: Connections

    • Set the speed/duplex mode for any port • Configure the bandwidth of any port by limiting input or output rates • Control port access through IEEE 802.1x security or static address filtering • Filter packets using Access Control Lists (ACLs) •...

  • Page 24: Setting A Password

    Passwords can consist of up to eight alphanumeric characters and are case sensitive. To prevent unauthorized access to the switch, set the passwords as follows: 1. Open the console interface and type the default user name root and password Asante to access the Privileged Exec level.

  • Page 25: Setting An Ip Address

    2. Type configure and press Enter. 3. Type username guest password 0 [p asswo rd] where passw ord is your new password. Press Enter. Switch> enable Password: <no password by default; press Enter> Switch# configure Switch(config)#username admin password 0 [password ] Switch(config)# admin Password Switch(config)# exit 2.4 Setting an IP Address...
  • Page 26 IP Address Mode to “Static,” enter the IP address, subnet mask and gateway, then click Apply. Specify the management interface, IP address and default gateway. Console#config Console(config)#interface vlan 1 Console(config-if)#ip address 10.1.0.254 255.255.255.0 Console(config-if)#exit Console(config)#ip default-gateway 192.168.1.254 Console(config)# Asanté IntraCore 36000 Series...
  • Page 27 2.4.2 Dynamic Configuration You can set the switch for dynamic configuration when your network provides DHCP/BOOTP services. If you select the “bootp” or “dhcp” option, IP is active but does not function until a BOOTP or DHCP reply is received. You need to use the ip dhcp restart command to start broadcasting service requests.

  • Page 28: Enabling Snmp Management Access

    “string” is the community access string and “mode” is rw (read/write) or ro (read only). Press <Enter>. (Default: read only) 2. To remove an existing string, simply type “no snmp-server community string,” where “string” is the community access string to remove. Press <Enter>. Console(config)#snmp-server community admin rw Asanté IntraCore 36000 Series...

  • Page 29: Saving Configuration Settings

    Console(config)#snmp-server community private Console(config)# 2.5.2 Trap Receivers You can also specify SNMP stations that are to receive traps from the switch. To configure a trap receiver, complete the following steps: 1. From the Privileged Exec level global configuration mode prompt, type “snmp-server host host-address community-string,”...

  • Page 30: Managing Firmware

    Click System – File, Firmware. Enter the IP address of the TFTP server, enter the file name of the software to download, select a file on the switch to overwrite or specify a new file name, then click Transfer from Server. To start the new firmware, reboot the system via the System/Reset menu. Asanté IntraCore 36000 Series...

  • Page 31: Saving Or Restoring Configuration Settings

    If you download to a new destination file, then select the file from the drop-down box for the operation code used at startup, and click Apply Changes. To start the new firmware, reboot the system via the System/Reset menu. Enter the IP address of the TFTP server, select “config” or “opcode” file type, then enter the source and destination file names, set the new file to start up the system, and then restart the switch.
  • Page 32 If you download the startup configuration file under a new file name, you can set this file as the startup file later, and then restart the switch. Console#config Console(config)#boot system config: startup-new Console(config)#exit Console#reload 2.9.2 Resetting the System Click System – Reset. Click the Reset button to restart the switch. Asanté IntraCore 36000 Series...

  • Page 33: Basic Management

    Use the reload command to restart the switch. Console#reload System will be restarted, continue <y/n>? Note: When restarting the system, it will always run the Power-On Self-Test. 2.9.3 Renewing DCHP DHCP may lease addresses to clients indefinitely or for a specific period. If the address expires or the switch is moved to another network segment, you lose management access to the switch.
  • Page 34 CLI: Specify the hostname, location and contact information. Console(config)#hostname R&D 5 Console(config)#snmp-server location WC Console(config)#snmp-server contact james Console(config)#exit Console#show system System description: 44 10/100/1000 ports + 4 Gigabit Combo ports L2/L4 managed standalone switch System OID string: 1.3.6.1.4.1.259.6.10.51 Asanté IntraCore 36000 Series...
  • Page 35 System information System Up time: 0 days, 2 hours, 4 minutes, and 7.13 seconds System Name : R&D 5 System Location : WC 9 System Contact : James MAC address : 00-30-f1-47-58-3a Web server : enable Web server port : 80 Web secure server : enable Web secure server port : 443...
  • Page 36 Configurable PVID Tagging: This switch allows you to override the default Port VLAN ID (PVID used in frame tags) and egress status (VLAN-Tagged or Untagged) on each port. (Refer to Chapter 10 Configuring VLANs.) Asanté IntraCore 36000 Series...
  • Page 37 Local VLAN Capable: This switch supports multiple local bridges; For example, multiple spanning trees. (Refer to section 3.3 Configuring Multiple Spanning Trees.) GMRP: GARP Multicast Registration Protocol (GMRP) allows network devices to register end stations with multicast groups. This switch does not support GMRP; it uses the Internet Group Management Protocol (IGMP) to provide automatic multicast filtering.

  • Page 38: Chapter 3: Configuring Global Settings

    If you log in as “admin” (Privileged Exec level), you can change the settings on any page. When you manage the switch using the web interface the home page, as shown below, provides the main menu on the left side of the screen and the screen information on the right. Asanté IntraCore 36000 Series...

  • Page 39: Configuring Spanning Tree

    You can also use the Command Line Interface (CLI) to manage the switch over a serial connection to the console port or via Telnet. For more information on using the CLI, refer to Appendix A: Web and Command Line Interface Overview. 3.1 Configuring Spanning Tree The follow section describe using and configuring spanning tree protocols including rapid spanning tree (RSTP) and multiple spanning trees (MSTP).
  • Page 40 LAN. If it is a root port, a new root port is selected from among the device ports attached to the network. (References to “ports” in this section mean “interfaces,” which includes both ports and trunks.) Asanté IntraCore 36000 Series...
  • Page 41 • Default: 20 • Minimum: The higher of 6 or [2 x (Hello Time + 1)]. • Maximum: The lower of 40 or [2 x (Forward Delay - 1)] Forward Delay – The maximum time (in seconds) this device will wait before changing states (For example, discarding to learning to forwarding).
  • Page 42 ID forwards packets and the other is discarding. • All ports are discarding when the switch is booted, then some of them change state to learning, and then to forwarding. Asanté IntraCore 36000 Series...
  • Page 43 Forward Transitions – The number of times this port has transitioned from the Learning state to the Forwarding state. Designated Cost – The cost for a packet to travel from this port to the root in the current Spanning Tree configuration.

  • Page 44: Configuring Interface Settings

    You can configure RSTP and MSTP attributes for specific interfaces, including port priority, path cost, link type, and edge port. You may use a different priority or path cost for ports of the same media type to indicate Asanté IntraCore 36000 Series...
  • Page 45 the preferred path, link type to indicate a point-to-point connection or shared-media connection, and edge port to indicate if the attached device can support fast forwarding. 3.2.1 Attributes Read-Only Attributes STA State – Displays current state of this port within the Spanning Tree. (For more information, refer to section 3.1.5 Displaying Interface Settings.) •...

  • Page 46: Configuring Multiple Spanning Trees

    LANs within the MST region. This switch supports up to 65 instances. You should try to group VLANs that cover the same general area of your network. You must configure all bridges within the same MSTI Asanté IntraCore 36000 Series...
  • Page 47 Region (section 3.1.1) with the same set of instances, and the same instance (on each bridge) with the same set of VLANs. Also, note that RSTP treats each MSTI region as a single node, connecting all regions to the Common Spanning Tree. To use multiple spanning trees: 1.
  • Page 48 Path Cost Method :long --------------------------------------------------------------- 1/ 7 information --------------------------------------------------------------- Admin status : enable Role : disable State : discarding External path cost : 10000 Internal path cost : 10000 Priority : 128 Designated cost Designated port : 128.7 Asanté IntraCore 36000 Series...
  • Page 49 Designated root : 4096.2.0000E9313131 Designated bridge : 4096.2.0000E9313131 Fast forwarding : enable Forward transitions Admin edge port : enable Oper edge port : enable Admin Link type : auto Oper Link type : point-to-point Spanning Tree Status : enable This example sets the priority for MSTI 1, and adds VLANs 1-5 to this MSTI. Console(config)#spanning-tree mst configuration Console(config-mst)#mst 1 priority 4096 Console(config-mstp)#mst 1 vlan 1-5...
  • Page 50 Oper Link type : point-to-point Spanning Tree Status : enable 3.3.5 Configuring Interface Settings for MSTP You can configure the STA interface settings for an MST Instance using the MSTP Port Configuration and MSTP Trunk Configuration pages. Asanté IntraCore 36000 Series...
  • Page 51 Field Attributes Read Only Attributes STA State – Displays current state of this port within the Spanning Tree. (For more information, refer to section 3.1.5 Displaying Interface Settings.) • Discarding - Port receives STA configuration messages, but does not forward packets. •...
  • Page 52 This example sets the MSTP attributes for port 4. Console(config)#interface ethernet 1/4 Console(config-if)#spanning-tree mst port-priority 0 Console(config-if)#spanning-tree mst cost 50 Console(config-if) Asanté IntraCore 36000 Series...

  • Page 53: Chapter 4: Configuring Sntp

    Chapter 4: Configuring SNTP You can configure the switch to send time synchronization requests to specific time servers (For example, client mode), update its clock based on broadcasts from time servers, or use both methods. When both methods are enabled, the switch will update its clock using information broadcast from time servers, but will query the specified server(s) if a broadcast is not received within the polling interval.
  • Page 54 Select SNTP – Clock Time Zone. Set the offset for your time zone relative to the UTC, and click Apply. This example shows how to set the time zone for the system clock. Console(config)#clock timezone PDT hours 7 minute 0 after-UTC Console# Asanté IntraCore 36000 Series...

  • Page 55: Chapter 5: Simple Network Management Protocol

    Chapter 5: Simple Network Management Protocol Simple Network Management Protocol (SNMP) is a communication protocol designed specifically for managing devices on a network. Equipment commonly managed with SNMP includes switches, routers and host computers. SNMP is typically used to configure these devices for proper operation in a network environment, as well as to monitor them to evaluate performance or detect potential problems.

  • Page 56: Specifying Trap Managers And Trap Types

    SNMP version, mark the trap types required, and then click Add. This example adds a trap manager and enables both authentication and link-up, link-down traps. Console(config)#snmp-server host 192.168.1.19 private version 2c Console(config)#snmp-server enable traps Asanté IntraCore 36000 Series...

  • Page 57: Chapter 6: Configuring Security

    Chapter 6: Configuring Security You can restrict management access to this switch using the following options: User Accounts – Manually configure access rights on the switch for specified users. Authentication Settings – Use remote authentication to configure access rights. HTTPS Settings – Provide a secure web connection. SSH Settings –...
  • Page 58 Secret Text String – Encryption key used to authenticate logon access for client. Do not use blank spaces in the string. (Maximum length: 20 characters) Note: The local switch user database has to be set up by manually entering user names and passwords using the CLI. (See the username command in Chapter 16.) Asanté IntraCore 36000 Series...

  • Page 59: Configuring Https

    Configuring Switch Using the Web or CLI Click Security – Authentication Settings. To configure local or remote authentication preferences, specify the authentication sequence (For example, one to three methods), fill in the parameters for RADIUS or TACACS+ authentication if selected, and click Apply. Specify all the required parameters to enable logon authentication.
  • Page 60 Configuring Switch Using the Web or CLI Click Security – HTTPS Settings. Enable HTTPS and specify the port number, then click Apply. This example enables the HTTP secure server and modifies the port number. Console(config)#ip http secure-server Console(config)#ip http secure-port 441 Console(config)# Asanté IntraCore 36000 Series...

  • Page 61: Configuring The Secure Shell

    6.3.2 Replacing the Default Secure-site Certificate When you log onto the web interface using HTTPS (for secure access), a Secure Sockets Layer (SSL) certificate appears for the switch. By default, the certificate that Netscape and Internet Explorer display will be associated with a warning that the site is not recognized as a secure site. This is because the certificate has not been signed by an approved certification authority.
  • Page 62 You do not need to configure the client’s keys. Note: The SSH server supports up to four client sessions. The maximum number of client sessions includes both current Telnet sessions and SSH sessions. Asanté IntraCore 36000 Series...
  • Page 63 6.4.2 Generating the Host Key Pair A host public/private key pair is used to provide secure communications between an SSH client and the switch. After generating this key pair, you must provide the host public key to SSH clients and import the client’s public key to the switch as described in the proceeding section (Usage).
  • Page 64 SSH Server-Key Size – Specifies the SSH server key size. (Range: 512-896 bits) • The server key is a private key that is never shared outside the switch. • The host key is shared with the SSH client, and is fixed at 1024 bits. Asanté IntraCore 36000 Series...

  • Page 65: Configuring Port Security

    Configuring Switch Using the Web or CLI Click Security – SSH, Settings. Enable SSH and adjust the authentication parameters as required, then click Apply. Note that you must first generate the host key pair on the SSH Host-Key Settings page before you can enable the SSH server.
  • Page 66 Configuring Switch Using the Web or CLI Click Security – Port Security. Set the action to take when an invalid address is detected on a port, mark the checkbox in the Status column to enable security for a port and click Apply. Asanté IntraCore 36000 Series...

  • Page 67: Configuring 802.1X Port Authentication

    This example sets the command mode to Port 5, sets the port security action to send a trap and disable the port, and then enables port security for the switch. Console(config)#interface ethernet 1/5 Console(config-if)#port security action trap-and-shutdown Console(config-if)#port security Console(config-if)# 6.6 Configuring 802.1x Port Authentication Network switches can provide open and easy access to network resources by simply attaching a client PC.
  • Page 68 Re-authentication Max Count – The number of times the switch will attempt to re-authenticate a connected client before the port becomes unauthorized. Configuring Switch Using the Web or CLI Click Security – 802.1x, Information. Asanté IntraCore 36000 Series...
  • Page 69 This example shows the default protocol settings for 802.1x. For a description of the additional entries displayed in the CLI, See the show dot1x command. Console#show dot1x Global 802.1X Parameters reauth-enabled: yes reauth-period: 3600 quiet-period: tx-period: supp-timeout: server-timeout: 30 reauth-max: max-req: 802.1X Port Summary Port Name...
  • Page 70 (Options: radius). Configuring Switch Using the Web or CLI Select Security – 802.1x, Configuration. Enable dot1x globally for the switch, modify any of the parameters required, and then click Apply. Asanté IntraCore 36000 Series...
  • Page 71 This enables re-authentication and sets all of the global parameters for 802.1x. Console(config)#dot1x re-authentication Console(config)#dot1x max-req 5 Console(config)#dot1x timeout quiet-period 40 Console(config)#dot1x timeout re-authperiod 5 Console(config)#dot1x timeout tx-period 40 Console(config)#authentication dot1x default radius Console(config)# 6.6.3 Configuring Port Authorization Mode When dot1x is enabled, you need to specify the dot1x authentication mode configured for each port. Command Attributes Status –...
  • Page 72 Rx EAP Resp/Oth The number of valid EAP Response frames (other than Resp/Id frames) that have been received by this Authenticator. Rx EAP LenError The number of EAPOL frames that have been received by this Authenticator in Asanté IntraCore 36000 Series...
  • Page 73 which the Packet Body Length field is invalid. Rx Last EAPOLVer The protocol version number carried in the most recently received EAPOL frame. Rx Last EAPOLSrc The source MAC address carried in the most recently received EAPOL frame. Tx EAPOL Total The number of EAPOL frames of any type that have been transmitted by this Authenticator.

  • Page 74: Configuring Access Control Lists

    6. Explicit default rule (permit any any) in the ingress MAC ACL for ingress ports. 7. If no explicit rule is matched, the implicit default is permit all. 6.7.2 Setting the ACL Name and Type Use the ACL Configuration page to designate the name and type of an ACL. Asanté IntraCore 36000 Series...
  • Page 75 Click Security – ACL, Configuration. Enter an ACL name in the Name field, select the list type (IP Standard, IP Extended, or MAC), and click Add to open the configuration page for the new list. This example creates a standard IP ACL named asante. Console(config)#access-list ip standard asante Console(config-std-acl)# 6.7.3 Configuring a Standard IP ACL...
  • Page 76 The control bitmask is a decimal number (for an equivalent binary bit mask) that is applied to the control code. Enter a decimal number, where the equivalent binary bit “1” means to match a bit and “0” means to ignore a bit. The following bits may be specified: Asanté IntraCore 36000 Series...
  • Page 77 • 1 (fin) – Finish • 2 (syn) – Synchronize • 4 (rst) – Reset • 8 (psh) – Push • 16 (ack) – Acknowledgement • 32 (urg) – Urgent pointer For example, use the code value and mask below to catch packets with the following flags set: SYN flag valid, use control-code 2, control bitmask 2 Both SYN and ACK valid, use control-code 18, control bitmask 18 SYN valid and ACK invalid, use control-code 2, control bitmask 18...
  • Page 78 Jaci need pic here 3-30 Need breen to help This rule permits packets from any source MAC address to the destination address 00-e0-29-94-34-de where the Ethernet type is 0800. Console(config-mac-acl)#permit any host 00-e0-29-94-34-de ethertype 0800 Console(config-mac-acl)# Asanté IntraCore 36000 Series...
  • Page 79 6.7.6 Configuring ACL Masks You can specify optional masks that control the order in which ACL rules are checked. The switch includes two system default masks that pass/filter packets matching the permit/deny rules specified in an ingress ACL. You can also configure up to seven user-defined masks for an ingress or egress ACL. A mask must be bound exclusively to one of the basic ACL types (For example, Ingress IP ACL, Egress IP ACL, Ingress MAC ACL or Egress MAC ACL), but a mask can be bound to up to four ACLs of the same type.
  • Page 80 This shows that the entries in the mask override the precedence in which the rules are entered into the ACL. In the following example, packets with the source address 10.1.1.1 are dropped because the “deny 10.1.1.1 255.255.255.255” rule has the higher precedence according the “mask host any” entry. Console(config)#access-list ip standard A2 Console(config-std-acl)#permit 10.1.1.0 255.255.255.0 Asanté IntraCore 36000 Series...
  • Page 81 Console(config-std-acl)#deny 10.1.1.1 255.255.255.255 Console(config-std-acl)#exit Console(config)#access-list ip mask-precedence in Console(config-ip-mask-acl)#mask host any Console(config-ip-mask-acl)#mask 255.255.255.0 any Console(config-ip-mask-acl)# 6.7.8 Configuring a MAC ACL Mask This mask defines the fields to check in the packet header. Follow these guidelines. You must configure a mask for an ACL rule before you can bind it to a port. Command Attributes Source/Destination MAC –...
  • Page 82 Command Attributes Port – Fixed port or SFP module. (Range: 1-24, 1-48) IP – Specifies the IP ACL to bind to a port. MAC – Specifies the MAC ACL to bind to a port. Asanté IntraCore 36000 Series...

  • Page 83: Configuring Ip Filters

    IN – ACL for ingress packets. OUT – ACL for egress packets. ACL Name – Name of the ACL. Configuring Switch Using the Web or CLI Click Security – ACL, Port Binding. Mark the Enable field for the port you want to bind to an ACL for ingress or egress traffic, select the required ACL from the drop-down list, then click Apply.
  • Page 84 Console(config)#management snmp-client 10.1.2.3 Console(config)#end Console#show management all-client Management Ip Filter Http-Client: Start ip address End ip address ----------------------------------------------- Snmp-Client: Start ip address End ip address ----------------------------------------------- 1. 10.1.2.3 10.1.2.3 Telnet-Client: Start ip address End ip address ----------------------------------------------- Console# Asanté IntraCore 36000 Series...

  • Page 85: Chapter 7: Configuring Ports

    Chapter 7: Configuring Ports 7.1 Displaying Connection Status You can use the Port Information or Trunk Information pages to display the current connection status, including link state, speed/duplex mode, flow control, and auto-negotiation. Field Attributes (Web) Name – Interface label. Type –...
  • Page 86 Combo forced mode – Shows the forced/preferred port type to use for combination ports 21-24 or 45-48. (copper forced, copper preferred auto, SFP forced, SFP preferred auto) Current status Link Status – Indicates if the link is up or down. Asanté IntraCore 36000 Series...

  • Page 87: Configuring Interface Connections

    Operation speed-duplex – Shows the current speed and duplex mode. Flow control type – Indicates the type of flow control currently in use. (IEEE 802.3x, Back-Pressure or none) This example shows the connection status for Port 5. Console#show interfaces status ethernet 1/5 Information of Eth 1/13 Basic information: Port type: 1000T...
  • Page 88 Note: Auto-negotiation must be disabled before you can configure or force the interface to use the Speed/Duplex Mode or Flow Control options. Configuring Switch Using the Web or CLI Click Port – Port Configuration or Trunk Configuration. Modify the required interface settings, and click Apply. Asanté IntraCore 36000 Series...

  • Page 89: Configuring Trunk Groups

    Select the interface, and then enter the required settings. Console(config)#interface ethernet 1/13 Console(config-if)#description RD SW#13 Console(config-if)#shutdown Console(config-if)#no shutdown Console(config-if)#no negotiation Console(config-if)#speed-duplex 100half Console(config-if)#flowcontrol Console(config-if)#negotiation Console(config-if)#capabilities 100half Console(config-if)#capabilities 100full Console(config-if)#capabilities flowcontrol Console(config-if)#exit Console(config)#interface ethernet 1/21 Console(config-if)#combo-forced-mode copper-forced Console(config-if)# 7.3 Configuring Trunk Groups You can create multiple links between devices that work as one virtual, aggregate link.
  • Page 90 Console(config-if)#channel-group 1 Console(config-if)#end Console#show interfaces status port-channel 1 Information of Trunk 1 Basic information: Port type: 1000T Mac address: 00-00-E8-AA-AA-01 Configuration: Name: Port admin: Up Speed-duplex: Auto Capabilities: 10half, 10full, 100half, 100full, 1000full, Flow control: Disabled Asanté IntraCore 36000 Series...

  • Page 91: Enabling Lacp On Selected Ports

    Port security: Disabled Max MAC count: 0 Current status: Created by: User Link status: Down Operation speed-duplex: 1000full Flow control type: None Member Ports: Eth1/1, Eth1/2, Console# 7.4 Enabling LACP on Selected Ports To avoid creating a loop in the network, be sure you enable LACP before connecting the ports, and also disconnect the ports before disabling LACP.
  • Page 92 Ports must be configured with the same system priority to join the same LAG. • System priority is combined with the switch’s MAC address to form the LAG identifier. This identifier is used to indicate a specific LAG during LACP negotiations with other systems. Asanté IntraCore 36000 Series...
  • Page 93 Admin Key – The LACP administration key must be set to the same value for ports that belong to the same LAG. (Range: 0-65535; Default: 0) Port Priority – If a link goes down, LACP port priority is used to select a backup link. (Range: 0-65535; Default: 32768) Set Port Partner –...
  • Page 94 Number of frames that carry the Slow Protocols Ethernet Type value, but contain a badly formed PDU or an illegal value of Protocol Subtype. Configuring Switch Using the Web or CLI Click Port – LACP, Port Counters Information. Select a member port to display the corresponding information. Asanté IntraCore 36000 Series...
  • Page 95 The following example displays LACP counters for port channel 1. Console#show lacp 1 counters Channel group : 1 ------------------------------------------------------------ Eth 1/ 1 --------------------------------------------------------------------- LACPDUs Sent : 21 LACPDUs Received : 21 Marker Sent : 0 Marker Received : 0 LACPDUs Unknown Pkts : 0 LACPDUs Illegal Pkts : 0 Console# 7.4.3 Displaying LACP Settings and Status for the Local Side...
  • Page 96 LACP System Priority : 32768 LACP Port Priority : 32768 Admin Key : 4 Oper Key : 4 Admin State : defaulted, aggregation, long timeout, LACP-activity Oper State : distributing, collecting, synchronization, aggregation, long timeout, LACP-activity Console# Asanté IntraCore 36000 Series...
  • Page 97 7.4.4 Displaying LACP Settings and Status for the Remote Side You can display configuration settings and the operational state for the remote side of an link aggregation. The following table lists the display information from the LACP remote setting output. Field Description Partner Admin System...

  • Page 98: Setting Broadcast Storm Thresholds

    You can protect your network from broadcast storms by setting a threshold for broadcast traffic for each port. Any broadcast packets exceeding the specified threshold will then be dropped. Asanté IntraCore 36000 Series...
  • Page 99 7.5.1 Guidelines Broadcast Storm Control is enabled by default. The default threshold is 500 packets per second. Broadcast control does not effect IP multicast traffic. The specified threshold applies to all ports on the switch. Command Attributes Port – Port number. Type –...

  • Page 100: Configuring Port Mirroring

    Add. Use the interface command to select the monitor port, then use the port monitor command to specify the source port. Note that default mirroring under the CLI is for both received and transmitted packets. Asanté IntraCore 36000 Series...

  • Page 101: Configuring Rate Limits

    Console(config)#interface ethernet 1/10 Console(config-if)#port monitor ethernet 1/13 Console(config-if)# 7.7 Configuring Rate Limits This function allows the network manager to control the maximum rate for traffic transmitted or received on an interface. Rate limiting is configured on interfaces at the edge of a network to limit traffic coming out of the switch.
  • Page 102 One possible reason for discarding such a packet could be to free up buffer space. Transmit Errors The number of outbound packets that could not be transmitted because of Asanté IntraCore 36000 Series...
  • Page 103 errors. Etherlike Statistics Alignment Errors The number of alignment errors (missynchronized data packets). Late Collisions The number of times that a collision is detected later than 512 bit-times into the transmission of a packet. FCS Errors A count of frames received on a particular interface that are an integral number of octets in length but do not pass the FCS check.
  • Page 104 Configuring Switch Using the Web or CLI Click Port – Port Statistics. Select the required interface, and click Query. You can also use the Refresh button at the bottom of the page to update the screen. Asanté IntraCore 36000 Series...
  • Page 105 This example shows statistics for port 13. Console#show interfaces counters ethernet 1/13 Ethernet 1/13 Iftable stats: Octets input: 868453, Octets output: 3492122 Unicast input: 7315, Unitcast output: 6658 Discard input: 0, Discard output: 0 Error input: 0, Error output: 0 Unknown protos input: 0, QLen output: 0 Extended iftable stats: Multi-cast input: 0, Multi-cast output: 17027...

  • Page 106: Chapter 8: Configuring Address Table Settings

    Add Static Address. Then set this as a permanent address or to be deleted on reset. This example adds an address to the static address table, but sets it to be deleted when the switch is reset. Console(config)#mac-address-table static 00-e0-29-94-34-de interface ethernet 1/1 vlan 1 delete-on-reset Console(config)# Asanté IntraCore 36000 Series...

  • Page 107: Displaying The Dynamic Address Table

    8.2 Displaying the Dynamic Address Table The Dynamic Address Table contains the MAC addresses learned by monitoring the source address for traffic entering the switch. When the destination address for inbound traffic is found in the database, the packets intended for that address are forwarded directly to the associated port. Otherwise, the traffic is flooded to all ports.

  • Page 108: Changing The Aging Time

    Aging Time – The time after which a learned entry is discarded. (Range: 10-1000000 seconds; Default: 300 seconds) Configuring Switch Using the Web or CLI Click Address Table – Address Aging. Specify the new aging time, click Apply. This example sets the aging time to 400 seconds. Console(config)#mac-address-table aging-time 400 Console(config)# Asanté IntraCore 36000 Series...

  • Page 109: Chapter 9: Configuring Spanning Tree

    Chapter 9: Configuring Spanning Tree The Spanning Tree Algorithm (STA) can be used to detect and disable network loops, and to provide backup links between switches, bridges or routers. This allows the switch to interact with other bridging devices (that is, an STA-compliant switch, bridge or router) in your network to ensure that only one route exists between any two stations on the network, and provide backup links that automatically take over when a primary link goes down.
  • Page 110 In addition, each port needs time to listen for conflicting information that would make it return to a discarding state; otherwise, temporary data loops might result. Asanté IntraCore 36000 Series...
  • Page 111 Root Hold Time – The interval (in seconds) during which no more than two bridge configuration protocol data units shall be transmitted by this node. Max hops – The max number of hop counts for the MST region. Remaining hops – The remaining number of hop counts for the MST instance. Transmission limit –...

  • Page 112: Chapter 10: Configuring Vlan

    Untagged VLANs – Untagged (or static) VLANs are typically used to reduce broadcast traffic and to increase security. A group of network users assigned to a VLAN form a broadcast domain that is separate from other Asanté IntraCore 36000 Series...
  • Page 113 VLANs configured on the switch. Packets are forwarded only between ports that are designated for the same VLAN. Untagged VLANs can be used to manually isolate user groups or subnets. Use IEEE 802.3 tagged VLANs with GVRP to fully automate VLAN registration. Automatic VLAN Registration –...
  • Page 114 VLAN tagging. Ports assigned to a large VLAN group that crosses several switches should use VLAN tagging. If you want to create a small port-based VLAN for one or two switches, you can disable tagging. Asanté IntraCore 36000 Series...
  • Page 115 Command Attributes (Web) VLAN ID – ID of configured VLAN (1-4094). Up Time at Creation – Time this VLAN was created (For example, System Up Time). Status – Shows how this VLAN was added to the switch. • Dynamic GVRP: Automatically learned via GVRP. •...
  • Page 116 Add – Add a new VLAN group to the current list. Remove – Remove a VLAN group from the current list. If any port is assigned to this group as untagged, it is reassigned to VLAN group 1 as untagged. Asanté IntraCore 36000 Series...
  • Page 117 Configuring Switch Using the Web or CLI Click VLAN – 802.1Q VLAN, Static List. To create a new VLAN, enter the VLAN ID and VLAN name, mark the Enable checkbox to activate the VLAN, and then click Add. This example creates a new VLAN. Console(config)#vlan database Console(config-vlan)#vlan 2 name R&D media ethernet state active Console(config-vlan)#end...
  • Page 118 Select the membership type by marking the appropriate radio button in the list of ports or trunks. Click Apply. The following example adds tagged and untagged ports to VLAN 2. Console(config)#interface ethernet 1/1 Console(config-if)#switchport allowed vlan add 2 tagged Console(config-if)#exit Asanté IntraCore 36000 Series...
  • Page 119 Console(config)#interface ethernet 1/2 Console(config-if)#switchport allowed vlan add 2 untagged Console(config-if)#exit Console(config)#interface ethernet 1/13 Console(config-if)#switchport allowed vlan add 2 tagged 10.1.7 Adding Static Members to VLANs (Port Index) Use the VLAN Static Membership by Port menu to assign VLAN groups to the selected interface as a tagged member.
  • Page 120 1Q Trunk – Specifies a port as an end-point for a VLAN trunk. A trunk is a direct link between two switches, so the port transmits tagged frames that identify the source VLAN. Note that frames belonging Asanté IntraCore 36000 Series...

  • Page 121: Configuring Private Vlans

    to the port’s default VLAN (For example, associated with the PVID) are also transmitted as tagged frames. • Hybrid – Specifies a hybrid VLAN interface. The port may transmit tagged or untagged frames. Trunk Member – Indicates if a port is a member of a trunk. To add a trunk to the selected VLAN, use the last table on the VLAN Static Table page.

  • Page 122: Configuring Protocol-Based Vlans

    VLAN groups for each required protocol. When a frame is received at a port, its VLAN membership can then be determined based on the protocol type being used by the inbound packets. Usage Guidelines To configure protocol-based VLANs, follow these steps: Asanté IntraCore 36000 Series...
  • Page 123 Configure VLAN groups for the protocols you want to use (section 10.1.5). You should configure a separate VLAN for each major protocol running on your network. Do not add port members at this time. Create a protocol group for each of the protocols you want to assign to a VLAN using the Protocol VLAN Configuration page.
  • Page 124 Click VLAN – Protocol VLAN, Port Configuration. Select a port or trunk, enter a protocol group ID, the corresponding VLAN ID, and click Apply. The following maps the traffic entering Port 1, which matches the protocol type specified in protocol group 1 to VLAN 3. Console(config)#interface ethernet 1/1 Console(config-if)#protocol-vlan protocol-group 1 vlan Console(config-if)# Asanté IntraCore 36000 Series...

  • Page 125: Chapter 11: Configuring Packet Priority

    Chapter 11: Configuring Packet Priority Class of Service (CoS) allows you to specify which data packets have greater precedence when traffic is buffered in the switch due to congestion. This switch supports CoS with eight priority queues for each port. Data packets in a port’s high-priority queue will be transmitted before those in the lower-priority queues.

  • Page 126: Mapping Cos Values To Egress Queues

    Priority Level Traffic Type Background (Spare) 0 (default) Best Effort Excellent Effort Controlled Load Video, less than 100 milliseconds latency and jitter Voice, less than 10 milliseconds latency and jitter Network Control Asanté IntraCore 36000 Series...

  • Page 127: Selecting The Queue Mode

    Command Attributes Priority – CoS value. (Range: 0-7, where 7 is the highest priority) Traffic Class (CLI show queue)– Output queue buffer. (Range: 0-7, where 7 is the highest CoS priority queue) Configuring Switch Using the Web or CLI Click Priority – Traffic Classes. Mark an interface and click Select to display the current mapping of CoS values to output queues.

  • Page 128: Setting The Service Weight For Traffic Classes

    Weight Value – Set a new weight for the selected traffic class. (Range: 1-15) Configuring Switch Using the Web or CLI Click Priority – Queue Scheduling. Select the interface, highlight a traffic class (for example, output queue), enter a weight, then click Apply. Asanté IntraCore 36000 Series...
  • Page 129 The following example shows how to assign WRR weights to each of the priority queues. Console(config)#interface ethernet 1/1 Console(config-if)#queue bandwidth 1 3 5 7 9 11 13 15 4-189 Console(config-if)#end Console#show queue bandwidth Information of Eth 1/1 Queue ID Weight -------- ------ Information of Eth 1/2...

  • Page 130: Selecting Ip Precedence/Dscp Priority

    Precedence value 0 maps to CoS value 0, and so forth). Bits 6 and 7 are used for network control, and the other bits for various application types. ToS bits are defined in the following table. Priority Level Traffic Type Priority Level Traffic Type Network Control Flash Internetwork Control Immediate Critical Priority Flash Override Routine Asanté IntraCore 36000 Series...
  • Page 131 Command Attributes IP Precedence Priority Table – Shows the IP Precedence to CoS map. Class of Service Value – Maps a CoS value to the selected IP Precedence value. Note that “0” represents low priority and “7” represent high priority. Configuring Switch Using the Web or CLI Click Priority –...
  • Page 132 Note: IP DSCP settings apply to all interfaces. Configuring Switch Using the Web or CLI Click Priority – IP DSCP Priority. Select an entry from the DSCP table, enter a value in the Class of Service Value field, then click Apply. Asanté IntraCore 36000 Series...
  • Page 133 The following example globally enables DSCP Priority service on the switch, maps DSCP value 0 to CoS value 1 (on port 1), and then displays the DSCP Priority settings. Console(config)#map ip dscp Console(config)#interface ethernet 1/1 Console(config-if)#map ip dscp 1 cos 0 Console(config-if)#end Console#show map ip dscp ethernet 1/1 DSCP mapping status: enabled...

  • Page 134: Mapping Cos Values To Acls

    Note that the specified CoS value is only used to map the matching packet to an output queue; it is not written to the packet itself. For information on mapping the CoS values to output queues, see section 2.10 Mapping CoS Values to Egress Queues. Priority Queue Asanté IntraCore 36000 Series...

  • Page 135: Changing Priorities Based On Acl Rules

    11.6.1 Guidelines You must configure an ACL mask before you can map CoS values to the rule. Command Attributes Port – Port identifier. Name – Name of ACL. For information on configuring ACLs, see section 6.7 Configuring Access Control Lists. Type –...
  • Page 136 Console(config)#interface ethernet 1/1 Console(config-if)#match access-list ip bill set dscp 0 Console(config-if)#match access-list mac mike set priority 0 Console(config-if)#end Console#show marking Interface ethernet 1/1 match access-list IP bill set DSCP 0 match access-list MAC a set priority 0 Asanté IntraCore 36000 Series...
  • Page 137 Console# The purpose of IP multicast filtering is to optimize a switched network’s performance, so multicast packets will only be forwarded to those ports containing multicast group hosts or multicast routers/switches, instead of flooding traffic to all ports in the subnet (VLAN). User’s Manual...

  • Page 138: Chapter 12: Layer 2 Igmp (Snooping And Query)

    IP multicasting across the Internet. Command Attributes IGMP Status — When enabled, the switch monitors network traffic to determine which hosts want to receive multicast traffic. This is also referred to as IGMP Snooping. (Default: Enabled) Asanté IntraCore 36000 Series...
  • Page 139 Act as IGMP Querier — When enabled, the switch can serve as the Querier, which is responsible for asking hosts if they want to receive multicast traffic. (Default: Enabled) IGMP Query Count — Sets the maximum number of queries issued for which there has been no response before the switch takes action to drop a client from the multicast group.
  • Page 140 This can ensure that multicast traffic is passed to all the appropriate interfaces within the switch. Command Attributes Interface – Activates the Port or Trunk scroll down list. Asanté IntraCore 36000 Series...
  • Page 141 VLAN ID – Selects the VLAN to propagate all multicast traffic coming from the attached multicast router. Port or Trunk – Specifies the interface attached to a multicast router. Configuring Switch Using the Web or CLI Click IGMP Snooping–Static Multicast Router Port Configuration. Specify the interfaces attached to a multicast router, indicate the VLANs forwarded all the corresponding multicast traffic, and then click Add.
  • Page 142 (via an IGMP-enabled switch or multicast router), indicate the VLAN that will propagate the multicast service, specify the multicast IP address, and click Add. After you have completed adding ports to the member list, click Apply. Asanté IntraCore 36000 Series...
  • Page 143 This example assigns a multicast address to VLAN 1, and then displays all the known multicast services supported on VLAN 1. Console(config)#ip igmp snooping vlan 1 static 224.1.1.12 ethernet 1/12 Console(config)#exit Console#show mac-address-table multicast vlan 1 VLAN M'cast IP addr. Member ports Type ---- --------------- ------------ ------- 224.1.1.12 Eth1/12...

  • Page 144: Chapter 13: Configuring Domain Name Service

    Configuring the Switch Using the Web or CLI Select DNS – General Configuration. Set the default domain name or list of domain names, specify one or more name servers to use to use for address resolution, enable domain lookup status, and click Apply. Asanté IntraCore 36000 Series...

  • Page 145: Static Dns Host To Address Entries

    This example sets a default domain name and a domain list. If a domain list is specified, the default domain name is not used. Console(config)#ip domain-name sample.com Console(config)#ip domain-list sample.com.uk Console(config)#ip domain-list sample.com.jp Console(config)#ip name-server 192.168.1.55 10.1.0.55 Console(config)#ip domain-lookup Console(config)#end Console#show dns Domain Lookup Status: DNS enabled...
  • Page 146 This example maps two address to a host name, and then configures an alias host name for the same addresses. Console(config)#ip host rd5 192.168.1.55 10.1.0.55 Console(config)#ip host rd6 10.1.0.55 Console(config)#end Console#show hosts Hostname Inet address 10.1.0.55 192.168.1.55 Alias 1.rd6 Console# Asanté IntraCore 36000 Series...

  • Page 147: Displaying The Dns Cache

    13.3 Displaying the DNS Cache You can display entries in the DNS cache that have been learned via the designated name servers. Field Attributes No – The entry number for each resource record. Flag – The flag is always “4” indicating a cache entry and therefore unreliable. Type –...

  • Page 148: Chapter 14: Using The Command Line Interface

    Username: guest Password: [guest login password] CLI session with the 44 10/100/1000 ports 4 Gigabit Combo ports L2/L4 managed standalone switch is opened. To end the CLI session, enter [Exit]. Console#enable Password: [privileged level password] Console# Asanté IntraCore 36000 Series...

  • Page 149: Configuration Commands

    14.2 Configuration Commands Configuration commands are privileged level commands used to modify switch settings. These commands only modify the running configuration. When the switch is rebooted, the start-up configuration is used. To store the running configuration use the copy running-config startup-config command. The configuration commands are organized into different modes: Global Configuration - These commands modify the system level configuration, and include commands such as hostname and snmp-server community.

  • Page 150: Command Groups

    Controls the maximum rate for traffic transmitted or received on a port Link Aggregation Statically groups multiple ports into a single logical trunk; configures Link Aggregation Control Protocol for port trunks Address Table Configures the address table for filtering specified addresses, displays current entries, Asanté IntraCore 36000 Series...
  • Page 151 clears the table, or sets the aging time Spanning Tree Configures Spanning Tree settings for the switch VLANs Configures VLAN settings, and defines port membership for VLAN groups; also enables or configures private VLANs and protocol VLANs GVRP and Bridge Configures GVRP settings that permit automatic VLAN learning;...

  • Page 152: Chapter 15: Configuration Guide

    Displays a terminal line's parameters. NE, PE 15.2 General Commands The following table lists the general commands and describes the functions and command modes of each command. Command Function Mode enable Activates privileged mode Asanté IntraCore 36000 Series...

  • Page 153: System Management Commands

    disable Returns to normal mode from privileged mode configure Activates global configuration mode show history Shows the command history buffer NE, PE reload Restarts the system Returns to Privileged Exec mode any config. mode exit Returns to the previous configuration mode, or exits the CLI quit Exits a CLI session NE, PE...
  • Page 154 The following table lists the filter commands and describes the functions and command modes of each command. Command Function Mode management Configures IP addresses that are allowed management access show management Displays the switch to be monitored or configured from a browser Asanté IntraCore 36000 Series...
  • Page 155 15.3.4 Web Server Commands The following table lists the web server commands and describes the functions and command modes of each command. Command Function Mode ip http port Specifies the port to be used by the Web browser interface ip http server Allows the switch to be monitored or configured from a browser ip http secure-server Enables HTTPS/SSL for encrypted communications...
  • Page 156 Enable SSH Service – Use the ip ssh server command to enable the SSH server on the switch. Configure Challenge-Response Authentication – When an SSH client attempts to contact the switch, the SSH server uses the host key pair to negotiate a session key and encryption method. Only Asanté IntraCore 36000 Series...
  • Page 157 clients that have a private key corresponding to the public keys stored on the switch can gain access. The following exchanges take place during this process: • The client sends its public key to the switch. • The switch compares the client's public key to those stored in memory. •...
  • Page 158 Shows all active console and Telnet sessions, including user name, NE, PE idle time, and IP address of Telnet clients show version Displays version information for the system NE, PE 15.3.10 Frame Size Commands The following table lists the frame size commands. Command Function Mode Asanté IntraCore 36000 Series...

  • Page 159: Authentication Commands

    jumbo frame Enables support for jumbo frames 15.4 Authentication Commands You can configure this switch to authenticate users logging into the system for management access using local or RADIUS authentication methods. You can also enable port-based authentication for network client access using IEEE 802.1x.
  • Page 160 Resets all dot1x parameters to their default values dot1x max-req Sets the maximum number of times the switch retransmits an EAP request/identity packet to the client before it times dot1x port-control Sets dot1x mode for a port interface Asanté IntraCore 36000 Series...

  • Page 161: Access Control List Commands

    dot1x operation-mode Allows single or multiple hosts on an dot1x port dot1x re-authenticate Forces re-authentication on specific ports dot1x re-authentication Enables re-authentication for all ports dot1x timeout quiet-period Sets the time that a switch port waits after the Max Request Count has been exceeded before attempting to acquire a new client dot1x timeout re- Sets the time period after which a connected client must be re-...
  • Page 162 15.5.1 IP ACLs The following table lists the IP access control list commands. Command Function Mode access-list ip Creates an IP ACL and enters configuration mode permit, deny Filters packets matching a specified source IP address STD- Asanté IntraCore 36000 Series...
  • Page 163 permit, deny Filters packets meeting the specified criteria, including source and EXT- destination IP address, TCP/UDP port number, protocol type, and TCP control code show ip access-list Displays the rules for configured IP ACLs access-list ip mask- Changes to the mode for configuring access control masks precedence Mask Sets a precedence mask for the ACL rules...

  • Page 164: Snmp Commands

    These commands are used to configure Dynamic Host Configuration Protocol (DHCP) client. You can configure any VLAN interface to be automatically assigned an IP address via DHCP. DHCP Client Command Function Mode ip dhcp restart Submits a BOOTP or DHCP client request Asanté IntraCore 36000 Series...

  • Page 165: Interface Commands

    15.7.1 DNS Commands These commands are used to configure Domain Naming System (DNS) services. You can manually configure entries in the DNS domain name to IP address mapping table, configure default domain names, or specify one or more name servers to use for domain name to address translation. Domain name services is not be enabled until at least one name server is specified with the ip name-server command and domain lookup is enabled with the ip domain-lookup command.

  • Page 166: Mirror Port Commands

    LACP. This switch supports up to six trunks. For example, a trunk consisting of two 1000 Mbps ports can support an aggregate bandwidth of 4 Gbps when operating at full duplex. The following table lists the manual configuration commands. Asanté IntraCore 36000 Series...
  • Page 167 Command Function Mode interface port-channel Enters interface configuration mode and Configures a trunk Channel-group Adds a port to a trunk IC (Ethernet) Dynamic Configuration Command lacp Configures LACP for the current interface IC (Ethernet) lacp system-priority Configures a port's LACP system priority IC (Ethernet) lacp admin-key Configures a port's administration key...

  • Page 168: Address Table Commands

    Configures the spanning tree bridge maximum age spanning-tree priority Configures the spanning tree bridge priority spanning-tree path-cost Configures the path cost method for RSTP/MSTP method spanning-tree Configures the transmission limit for RSTP/MSTP transmission-limit spanning-tree mst- Changes to MSTP configuration mode configuration Asanté IntraCore 36000 Series...

  • Page 169: Vlan Commands

    mst vlan Adds VLANs to a spanning tree instance mst priority Configures the priority of a spanning tree instance Name Configures the name for the multiple spanning tree Revision Configures the revision number for the multiple spanning tree max-hops Configures the maximum number of hops allowed in the region before a BPDU is discarded spanning-tree spanning- Disables spanning tree for an interface...
  • Page 170 Displays the administrative and operational status of an interface NE, PE switchport 15.14.4 Configuring Private VLANs Private VLANs provide port-based security and isolation between ports within the assigned VLAN. This section describes commands used to configure private VLANs. Asanté IntraCore 36000 Series...

  • Page 171: Gvrp And Bridge Extension Commands

    Command Function Mode Pvlan Enables and configured private VLANS show pvlan Displays the configured private VLANS 15.14.5 Configuring Protocol-based VLANs Using the CLI The network devices required to support multiple protocols cannot be easily grouped into a common VLAN. This may require non-standard devices to pass traffic between different VLANs in order to encompass all the devices participating in a specific protocol.

  • Page 172: Priority Commands

    Shows the current queue mode show queue bandwidth Shows round-robin weights assigned to the priority queues show queue cos-map Shows the class-of-service map show interfaces Displays the administrative and operational status of an interface switchport Asanté IntraCore 36000 Series...

  • Page 173: Multicast Filtering Commands

    15.16.2 Priority Commands (Layer 3 and 4) The following table lists the layer 3 and 4 priority commands. Command Function Mode map ip port Enables TCP class of service mapping map ip port Maps TCP socket to a class of service map ip precedence Enables IP precedence class of service mapping map ip precedence...
  • Page 174 15.17.3 Static Multicast Routing Commands The following table lists the static multicast routing commands. Command Function Mode ip igmp snooping vlan Adds a multicast router port mrouter show ip igmp snooping Shows multicast router ports mrouter Asanté IntraCore 36000 Series...

  • Page 175: Ip Interface Commands

    15.18 IP Interface Commands There are no IP addresses assigned to this switch by default. You must manually configure a new address to manage the switch over your network. You may also need to a establish a default gateway between this device and management stations or other devices that exist on another network segment.

  • Page 176: Chapter 16: Command Reference

    To remove a rule, use the no permit or no deny command followed by the exact text of a previously configured rule. An ACL can contain up to 32 rules. Example The following is sample output from the access-list command with the ip argument. Console(config)#access-list ip standard james Console(config-std-acl)# Related Commands permit, deny Asanté IntraCore 36000 Series...

  • Page 177: Access-List Ip Mask-Precedence

    ip access-group show ip access-list 16.2 access-list ip mask-precedence This command changes to the IP Mask mode used to configure access control masks. Use the no form to delete the mask table. Syntax Description [no] access-list ip mask-precedence {in | out} Ingress mask for ingress ACLs.

  • Page 178: Access-List Mac Mask-Precedence

    This command changes to MAC Mask mode used to configure access control masks. Use the no form to delete the mask table. Syntax Description [no] access-list ip mask-precedence {in | out} Ingress mask for ingress ACLs. Egress mask for egress ACLs. Asanté IntraCore 36000 Series...

  • Page 179: Authentication Dot1X Default

    Default Default system mask: Filter inbound packets according to specified MAC ACLs. Command Mode Global Configuration Usage Guidelines You must configure a mask for an ACL rule before you can bind it to a port or set the queue or frame priorities associated with the rule.

  • Page 180: Authentication Enable

    TACACS+ server. If the TACACS+ server is not available, the local user name and password is checked. Example The following is sample output from the authentication enable command. Console(config)#authentication enable radius Console(config)# Related Commands enable password Asanté IntraCore 36000 Series...

  • Page 181: Authentication Login

    16.7 authentication login This command defines the login authentication method and precedence. Use the no form to restore the default. Syntax Description authentication login {[local] [radius] [tacacs]} no authentication login Local Use local password. radius Use RADIUS server password. tacacs Use TACACS server password.

  • Page 182: Bridge-Ext Gvrp

    The following is sample output from the boot command with the system argument. Console(config)#boot system config: startup Console(config)# Related Commands whichboot 16.9 bridge-ext gvrp This command enables GVRP globally for the switch. Use the no form to disable it. Syntax Description [no] bridge-ext gvrp Default Disabled Asanté IntraCore 36000 Series...

  • Page 183: Calendar Set

    Command Mode Global Configuration Usage Guidelines GVRP defines a way for switches to exchange VLAN information in order to register VLAN members on ports across the network. This function should be enabled to permit automatic VLAN registration, and to support VLANs that extend beyond the local switch. Example The following is sample output from the bridge-ext gvrp command.

  • Page 184: Capabilities

    When auto-negotiation is disabled, you must manually specify the link attributes with the speed-duplex and flowcontrol commands. Example The following example configures Ethernet port 5 capabilities to 100half, 100full and flow control. Console(config)#interface ethernet 1/5 Console(config-if)#capabilities 100half Console(config-if)#capabilities 100full Console(config-if)#capabilities flowcontrol Console(config-if)# Asanté IntraCore 36000 Series...

  • Page 185: Channel-Group

    Related Commands negotiation speed-duplex flowcontrol 16.12 channel-group This command adds a port to a trunk. Use the no form to remove a port from a trunk. Syntax Description channel-group channel-id no channel-group channel-id Trunk index (Range: 1-6) Default The current port will be added to this trunk. Command Mode Interface Configuration (Ethernet) Usage Guidelines...

  • Page 186: Clear Dns Cache

    The following is sample output from the clear dns cache command the viewing the results using the show dns cache command/ Console#clear dns cache Console#show dns cache FLAG TYPE DOMAIN Console# Related Commands show dns cache Asanté IntraCore 36000 Series...

  • Page 187: Clear Host

    16.15 clear host This command deletes entries from the DNS table. Syntax Description clear host {name | *} Name Name of the host. (Range: 1-64 characters) Removes all entries. Default None Command Mode Privileged Exec Example This example clears all static entries from the DNS table. Console#clear host * Console# 16.16 clear logging...

  • Page 188: Clear Mac-Address-Table Dynamic

    Number of hours before/after UTC. (Range: 0-12 hours) Minutes Number of minutes before/after UTC. (Range: 0-59 minutes) before-utc Sets the local time zone before (east) of UTC. after-utc Sets the local time zone after (west) of UTC. Default None Command Mode Global Configuration Asanté IntraCore 36000 Series...

  • Page 189: Combo-Forced-Mode

    Usage Guidelines This command sets the local time zone relative to the Coordinated Universal Time (UTC, formerly Greenwich Mean Time or GMT), based on the earth’s prime meridian, zero degrees longitude. To display a time corresponding to your local time, you must indicate the number of hours and minutes your time zone is east (before) or west (after) of UTC.

  • Page 190: Configure

    Keyword that allows you to copy to/from the current running configuration. Startup-config The configuration used for system initialization. tftp Keyword that allows you to copy to/from a TFTP server. https-certificate Copies an HTTPS certificate from an TFTP server to the switch. Asanté IntraCore 36000 Series...
  • Page 191 public-key Keyword that allows you to copy a SSH key from a TFTP server. Default None Command Mode Privileged Exec Usage Guidelines The system prompts for data required to complete the copy command. The destination file name should not contain slashes (\ or /), the leading letter of the file name should not be a period (.), and the maximum length for file names on the TFTP server is 127 characters or 31 characters for files on the switch.

  • Page 192: Databits

    Write to FLASH Programming. Success. Console# 16.22 databits This command sets the number of data bits per character that are interpreted and generated by the console port. Use the no form to restore the default value. Asanté IntraCore 36000 Series...

  • Page 193: Delete

    Syntax Description databits {7 | 8} no databits Seven data bits per character. Eight data bits per character. Default 8 data bits per character Command Mode Line Configuration Usage Guidelines The databits command can be used to mask the high bit on input from devices that generate 7 data bits with parity.

  • Page 194: Delete Public-Key

    Example The following example shows using the public-key command with the dsa argument. Console#delete public-key admin dsa Console# 16.25 description This command adds a description to an interface. Use the no form to remove the description. Asanté IntraCore 36000 Series...

  • Page 195: Dir

    Syntax Description description string no description String Comment or a description to help you remember what is attached to this interface. (Range: 1-64 characters) Default None Command Mode Interface Configuration (Ethernet, Port Channel) Example The following example adds a description to port 24. Console(config)#interface ethernet 1/24 Console(config-if)#description RD-SW#3 Console(config-if)#...

  • Page 196: Disable

    Command Mode Privileged Exec Usage Guidelines The “>” character is appended to the end of the prompt to indicate that the system is in normal access mode. Example The following example shows executing the disable command. Asanté IntraCore 36000 Series...

  • Page 197: Disconnect

    Console#disable Console> Related Commands enable 16.28 disconnect Use this command to terminate an SSH, Telnet, or console connection. Syntax Description disconnect session-id session-id The session identifier for an SSH, Telnet or console connection. (Range: 0-4) Command Mode Privileged Exec Usage Guidelines Specifying session identifier “0”...

  • Page 198: Dot1X Max-Req

    Allows only a single host to connect to this port. multi-host Allows multiple host to connect to this port. max-count Keyword for the maximum number of hosts. count The maximum number of hosts that can connect to a port. (Range: 1-20; Default: 5) Asanté IntraCore 36000 Series...

  • Page 199: Dot1X Port-Control

    Default Single-host Command Mode Interface Configuration Example The following example shows setting the system to allow a maximum of 10 hosts to connect to a port. Console(config)#interface eth 1/2 Console(config-if)#dot1x operation-mode multi-host max-count 10 Console(config-if)# 16.32 dot1x port-control This command sets the dot1x mode on a port interface. Use the no form to restore the default. Syntax Description dot1x port-control {auto | force-authorized | force-unauthorized} no dot1x port-control...

  • Page 200: Dot1X Re-Authentication

    This command sets the time that a switch port waits after the Max Request Count has been exceeded before attempting to acquire a new client. Use the no form to reset the default. Syntax Description dot1x timeout quiet-period seconds no dot1x timeout quiet-period seconds The number of seconds. (Range: 1-65535) Asanté IntraCore 36000 Series...

  • Page 201: Dot1X Timeout Re-Authperiod

    Default 60 seconds Command Mode Global Configuration Example Console(config)#dot1x timeout quiet-period 350 Console(config)# 16.36 dot1x timeout re-authperiod This command sets the period of time before a connected client must be re-authenticated. Syntax Description dot1x timeout re-authperiod seconds no dot1x timeout re-authperiod seconds The number of seconds.

  • Page 202: Enable

    (To set this password, refer to the enable password command. The “#” character is appended to the end of the prompt to indicate that the system is in privileged access mode. Example Console>enable Password: [privileged level password] Console# Related Commands disable enable password Asanté IntraCore 36000 Series...

  • Page 203: Enable Password

    16.39 enable password After initially logging onto the system, you should set the Privileged Exec password. Remember to record it in a safe place. This command controls access to the Privileged Exec level from the Normal Exec level. Use the no form to reset the default password. Syntax Description enable password [level level] {0 | 7} password no enable password [level level]...

  • Page 204: Exec-Timeout

    If user input is detected within the timeout interval, the session is kept open; otherwise, the session is terminated. This command applies to both the local console and Telnet connections. Telnet sessions cannot be disabled. Example To set the timeout to two minutes, enter this command: Console(config-line)#exec-timeout 120 Console(config-line)# Asanté IntraCore 36000 Series...

  • Page 205: Exit

    16.42 exit This command returns to the previous configuration mode or exit the configuration program. Default None Command Mode Example This example shows how to return to the Privileged Exec mode from the Global Configuration mode, and then quit the CLI session: Console(config)#exit Console#exit Press ENTER to start session...

  • Page 206: Garp Timer

    {join | leave | leaveall} Which timer to set. timer_value Value of timer. Ranges: join: 20-1000 centiseconds leave: 60-3000 centiseconds leaveall: 500-18000 centiseconds Default join: 20 centiseconds leave: 60 centiseconds leaveall: 1000 centiseconds Command Mode Interface Configuration (Ethernet, Port Channel) Asanté IntraCore 36000 Series...

  • Page 207: Hostname

    Usage Guidelines Group Address Registration Protocol is used by GVRP and GMRP to register or deregister client attributes for client services within a bridged LAN. The default values for the GARP timers are independent of the media access method or data rate. Unless you are experiencing, difficulties with GMRP or GVRP registration/deregistration do not change timer values.

  • Page 208: Interface

    This command enters interface configuration mode for VLANs, which is used to configure VLAN parameters for a physical interface. Syntax Description interface vlan vlan-id vlan-id ID of the configured VLAN. (Range: 1-4094, no leading zeroes) Default None Asanté IntraCore 36000 Series...

  • Page 209: Ip Access-Group

    Command Mode Global Configuration Example The following example shows how to set the interface configuration mode to VLAN 1, and then assign an IP address to the VLAN: Console(config)#interface vlan 1 Console(config-if)#ip address 192.168.1.254 255.255.255.0 Console(config-if)# Related Commands shutdown 16.48 ip access-group This command binds a port to an IP ACL.

  • Page 210: Ip Address

    Note: Before you change the IP address, you must first clear the current address with the no form of this command. Example In the following example, the device is assigned an address in VLAN 1. Asanté IntraCore 36000 Series...

  • Page 211: Ip Default-Gateway

    Console(config)#interface vlan 1 Console(config-if)#ip address 192.168.1.5 255.255.255.0 Console(config-if)# Related Commands ip dhcp restart 16.50 ip default-gateway This command establishes a static route between this switch and management stations that exist on another network segment. Use the no form to remove the static route. Syntax Description ip default-gateway gateway no ip default-gateway...

  • Page 212: Ip Domain-List

    Syntax Description [no] ip domain-list name name Name of the host. Do not include the initial dot that separates the host name from the domain name. (Range: 1-64 characters) Default None Command Mode Global Configuration Asanté IntraCore 36000 Series...

  • Page 213: Ip Domain-Lookup

    Usage Guidelines Domain names are added to the end of the list one at a time. When an incomplete host name is received by the DNS server on this switch, it will work through the domain list, appending each domain name in the list to the host name, and checking with the specified name servers for a match.

  • Page 214: Ip Domain-Name

    Name of the host. Do not include the initial dot that separates the host name from the domain name. (Range: 1-64 characters) Default None Command Mode Global Configuration Example Console(config)#ip domain-name sample.com Asanté IntraCore 36000 Series...

  • Page 215: Ip Host

    Console(config)#end Console#show dns Domain Lookup Status: DNS disabled Default Domain Name: sample.com Domain Name List: Name Server List: Console# Related Commands ip domain-list ip name-server ip domain-lookup show dns 16.55 ip host This command creates a static entry in the DNS table that maps a host name to an IP address. Use the no form to remove an entry.

  • Page 216: Ip Http Port

    Console(config)#ip http port 769 Console(config)# Related Commands ip http server 16.57 ip http secure-port This command specifies the UDP port number used for HTTPS/SSL connection to the switch’s Web interface. Use the no form to restore the default port. Asanté IntraCore 36000 Series...

  • Page 217: Ip Http Secure-Server

    Syntax Description ip http secure-port port_number no ip http secure-port port_number The UDP port used for HTTPS/SSL. (Range: 1-65535) Default Command Mode Global Configuration Usage Guidelines You cannot configure HTTP and HTTPS servers to use the same port. If you change the HTTPS port number, clients attempting to connect to the HTTPS server must specify the port number in the URL, in this format: https://device:port_number Example...

  • Page 218: Ip Http Server

    16.59 ip http server This command allows the device to be monitored or configured from a browser. Use the no form to disable this function. Syntax Description [no] ip http server Asanté IntraCore 36000 Series...

  • Page 219: Ip Igmp Snooping

    Default Enabled Command Mode Global Configuration Example The following example shows setting the device to be monitored from the server. Console(config)#ip http server Console(config)# Related Commands ip http port 16.60 ip igmp snooping This command enables IGMP snooping on this switch. Use the no form to disable it. Syntax Description [no] ip igmp snooping Default...

  • Page 220: Ip Igmp Snooping Query-Count

    Example The following shows how to configure the query count to 10: Console(config)#ip igmp snooping query-count 10 Console(config)# Related Commands ip igmp snooping query-max-response-time Asanté IntraCore 36000 Series...

  • Page 221: Ip Igmp Snooping Query-Interval

    16.63 ip igmp snooping query-interval This command configures the query interval. Use the no form to restore the default. Syntax Description ip igmp snooping query-interval seconds no ip igmp snooping query-interval seconds The frequency at which the switch sends IGMP host-query messages. (Range: 60-125) Default 125 seconds...

  • Page 222: Ip Igmp Snooping Router-Port-Expire-Time

    The switch must use IGMPv2 for this command to take effect. Example The following shows how to configure the default timeout to 300 seconds: Console(config)#ip igmp snooping router-port-expire-time 300 Console(config)# Related Commands ip igmp snooping version Asanté IntraCore 36000 Series...

  • Page 223: Ip Igmp Snooping Version

    16.66 ip igmp snooping version This command configures the IGMP snooping version. Use the no form to restore the default. Syntax Description ip igmp snooping version {1 | 2} no ip igmp snooping version IGMP Version 1 IGMP Version 2 Default IGMP Version 2 Command Mode...

  • Page 224: Ip Igmp Snooping Vlan Static

    [no] ip igmp snooping vlan vlan-id static ip-address interface vlan-id VLAN ID (Range: 1-4094) ip-address IP address for multicast group interface ethernet unit/port unit - This is device 1. port - Port number. port-channel channel-id (Range: 1-6) Default None Command Mode Global Configuration Asanté IntraCore 36000 Series...

  • Page 225: Ip Name-Server

    Example The following shows how to statically configure a multicast group on a port: Console(config)#ip igmp snooping vlan 1 static 224.0.0.12 ethernet 1/5 Console(config)# 16.69 ip name-server This command specifies the address of one or more domain name servers to use for name-to-address resolution.

  • Page 226: Ip Ssh Authentication-Retries

    16.71 ip ssh crypto host-key generate Use this command to generate the host key pair (For example, public and private). Syntax Description ip ssh crypto host-key generate [dsa | rsa] DSA (Version 2) key type. RSA (Version 1) key type. Asanté IntraCore 36000 Series...

  • Page 227: Ip Ssh Crypto Zeroize

    Default Generates both Command Mode Privileged Exec Usage Guidelines This command stores the host key pair in memory (For example, RAM). Use the ip ssh save host-key command to save the host key pair to flash memory. Some SSH client programs automatically add the public key to the known hosts file as part of the configuration process.

  • Page 228: Ip Ssh Save Host-Key

    Related Commands ip ssh crypto host-key generate 16.74 ip ssh server Use this command to enable the Secure Shell (SSH) server on this switch. Use the no form to disable this service. Syntax Description ip ssh server Asanté IntraCore 36000 Series...

  • Page 229: Ip Ssh Server-Key Size

    no ip ssh server Default Disabled Command Mode Global Configuration Usage Guidelines The SSH server supports up to four client sessions. The maximum number of client sessions includes both current Telnet sessions and SSH sessions. The SSH server uses DSA or RSA for key exchange when the client first establishes a connection with the switch, and then negotiates with the client to select either DES (56-bit) or 3DES (168-bit) for data encryption.

  • Page 230: Ip Ssh Timeout

    Once an SSH session has been established, the timeout for user input is controlled by the exec-timeout command for vty sessions. Example The following example show setting the session to time out after 1 minute. Console(config)#ip ssh timeout 60 Console(config)# Related Commands exec-timeout show ip ssh Asanté IntraCore 36000 Series...

  • Page 231: Jumbo Frame

    16.77 jumbo frame This command enables support for jumbo frames. Use the no form to disable it. Syntax Description [no] jumbo frame Default Disabled Command Mode Global Configuration Usage Guidelines This switch provides more efficient throughput for large sequential data transfers by supporting jumbo frames up to 9216 bytes.

  • Page 232: Lacp Admin-Key (Ethernet Interface)

    Flow control type: None Member Ports: Eth1/11, Eth1/12, Eth1/13, Console# Related Command show interfaces 16.79 lacp admin-key (Ethernet Interface) This command configures a port's LACP administration key. Use the no form to restore the default setting. Asanté IntraCore 36000 Series...

  • Page 233: Lacp Admin-Key (Port Channel)

    Syntax Description lacp {actor | partner} admin-key key [no] lacp {actor | partner} admin-key actor The local side an aggregate link. partner The remote side of an aggregate link. The port admin key must be set to the same value for ports that belong to the same link aggregation group (LAG).

  • Page 234: Lacp Port-Priority

    Use this to set the remote side of an aggregate link. priority Use this to set the LACP port priority to select a backup link. (Range: 0-65535) Default 32768 Command Mode Interface Configuration (Ethernet) Usage Guidelines Setting a lower value indicates a higher effective priority. Asanté IntraCore 36000 Series...

  • Page 235: Lacp System-Priority

    If an active port link goes down, the backup port with the highest priority replaces the downed link. If two or more ports have the same LACP port priority, the port with the lowest physical port number is used as the backup port.

  • Page 236: Line

    This command sets the facility type for remote logging of syslog messages. Use the no form to return the type to the default. Syntax Description [no] logging facility type type A number that indicates the facility used by the syslog server to dispatch log messages to an appropriate service. (Range: 16-23) Asanté IntraCore 36000 Series...

  • Page 237: Logging History

    Default Command Mode Global Configuration Usage Guidelines The command specifies the facility type tag sent in syslog messages. (See RFC 3164.) This type has no effect on the kind of messages reported by the switch. It may be used by the syslog server to sort messages or to store messages in the corresponding database.

  • Page 238: Logging Host

    Syntax Description [no] logging host host_ip_address host_ip_address The IP address of a syslog server. Default None Command Mode Global Configuration Usage Guidelines Use this command more than once to build a list of host IP addresses. Asanté IntraCore 36000 Series...

  • Page 239: Logging On

    The maximum number of host IP addresses allowed is five. Example Console(config)#logging host 10.1.0.3 Console(config)# 16.87 logging on This command controls logging of error messages, sending debug or error messages to switch memory. The no form disables the logging process. Syntax Description [no] logging on Default...

  • Page 240: Logging Sendmail Destination-Email

    This command specifies SMTP servers that will be sent alert messages. Use the no form to remove an SMTP server. Syntax Description [no] logging sendmail host ip_address ip_address IP address of an SMTP server that will be sent alert messages for event handling. Default None Asanté IntraCore 36000 Series...

  • Page 241: Logging Sendmail Level

    Command Mode Global Configuration Usage Guidelines You can specify up to three SMTP servers for event handing. You must enter a separate command to specify each server. To send email alerts, the switch first opens a connection, sends all the email alerts waiting in the queue one by one, and finally closes the connection.

  • Page 242: Logging Sendmail Source-Email

    One of the level arguments listed in the table under the logging history command. Messages sent include the selected level up through level 0. Default Level 3 - 0 Command Mode Global Configuration Asanté IntraCore 36000 Series...

  • Page 243: Login

    Example Console(config)#logging trap 4 Console(config)# 16.94 login This command enables password checking at login. Use the no form to disable password checking and allow connections without a password. Syntax Description login [local] no login Local Selects local password checking. Authentication is based on the user name specified with the username command.

  • Page 244: Mac Access-Group

    This command sets the aging time for entries in the address table. Use the no form to restore the default aging time. Syntax Description mac-address-table aging-time seconds no mac-address-table aging-time Seconds Aging time. (Range: 10-1000000 seconds; 0 to disable aging) Asanté IntraCore 36000 Series...

  • Page 245: Mac-Address-Table Static

    Default 300 seconds Command Mode Global Configuration Usage Guidelines Use this command to dynamically delete learned forwarding information after a specified period of time. Example Console(config)#mac-address-table aging-time 100 Console(config)# 16.97 mac-address-table static This command maps a static address to a destination port in a VLAN. Use the no form to remove an address.

  • Page 246: Management

    Adds IP address(es) to the SNMP group. telnet-client Adds IP address(es) to the Telnet group. Start-address A single IP address, or the starting address of a range. end-address The end address of a range. Default All addresses Command Mode Global Configuration Asanté IntraCore 36000 Series...

  • Page 247: Map Access-List Ip

    Usage Guidelines If anyone tries to access a management interface on the switch from an invalid address, the switch rejects the connection, enter an event message in the system log, and send a trap message to the trap manager. IP address can be configured for SNMP, Web and Telnet access respectively. Each of these groups can either include up to five different sets of addresses, individual addresses or address ranges.

  • Page 248: Mask (Ip Acl)

    The address must be for a host device, not a subnetwork. source-bitmask Source address of rule must match this bitmask. destination-bitmask Destination address of rule must match this bitmask. precedence Check the IP precedence field. Check the TOS field. dscp Check the DSCP field. Asanté IntraCore 36000 Series...
  • Page 249 source-port Check the protocol source port field. destination-port Check the protocol destination port field. port-bitmask Protocol port of rule must match this bitmask. (Range: 0-65535) control-flag Check the field for control flags. flag-bitmask Control flags of rule must match this bitmask. (Range: 0-63) Default None Command Mode...
  • Page 250 It then sets the ingress mask to check the deny rule first, and finally binds port 1 to this ACL. Note that once the ACL is bound to an interface (For example, the ACL is active), the order in which the rules are displayed is determined by the associated mask. Switch(config)#access-list ip extended A6 Asanté IntraCore 36000 Series...

  • Page 251: Map Access-List Mac

    Switch(config-ext-acl)#permit any any Switch(config-ext-acl)#deny tcp any any control-flag 2 2 Switch(config-ext-acl)#end Console#show access-list IP extended access-list A6: permit any any deny tcp any any control-flag 2 2 Console#configure Switch(config)#access-list ip mask-precedence in Switch(config-ip-mask-acl)#mask protocol any any control-flag 2 Switch(config-ip-mask-acl)#end Console#sh access-list IP extended access-list A6: permit any any deny tcp any any control-flag 2 2...

  • Page 252: Map Ip Dscp (Global Configuration)

    The following example shows how to enable IP DSCP mapping globally: Console(config)#map ip dscp Console(config)# 16.103 map ip dscp (Interface Configuration) This command sets IP DSCP priority (For example, Differentiated Services Code Point priority). Use the no form to restore the default table. Asanté IntraCore 36000 Series...
  • Page 253 Syntax Description map ip dscp dscp-value cos cos-value no map ip dscp dscp-value DSCP value. (Range: 0-63) cos-value Class-of-Service value (Range: 0-7) Default The DSCP default values are defined in the following table. Note that all the DSCP values that are not specified are mapped to CoS value 0.

  • Page 254: Map Ip Port (Global Configuration)

    The 16-bit TCP/UDP port number.(Range 1-65535) cos-value The Class-of-Service value. (Range: 0-7) Default None Command Mode Interface Configuration (Ethernet, Port Channel) Usage Guidelines The precedence for priority mapping is IP Port, IP Precedence or IP DSCP, and default switchport priority. Asanté IntraCore 36000 Series...

  • Page 255: Map Ip Precedence (Global Configuration)

    This command sets the IP port priority for all interfaces. Example The following example shows how to map HTTP traffic to CoS value 0: Console(config)#interface ethernet 1/5 Console(config-if)#map ip port 80 cos 0 Console(config-if)# 16.106 map ip precedence (Global Configuration) This command enables IP precedence mapping (for example, IP Type of Service).

  • Page 256: Mask (Mac Acl)

    Check the packet format field. (If this keyword is used in the mask, the packet format must be specified in ACL rule to match.) Match any address. host The address must be for a single node. Asanté IntraCore 36000 Series...
  • Page 257 source-bitmask Source address of rule must match this bitmask. destination-bitmask Destination address of rule must match this bitmask. Check the VLAN ID field. vid-bitmask VLAN ID of rule must match this bitmask. Ethertype Check the Ethernet type field. ethertype-bitmask Ethernet type of rule must match this bitmask. Default None Command Mode...

  • Page 258: Match Access-List Ip

    Name of the ACL. (Maximum length: 16 characters) priority Class of Service value in the IEEE 802.1p priority tag. (Range: 0-7; 7 is the highest) precedence_value IP Precedence value. (Range: 0-7) dscp_value Differentiated Services Code Point value. (Range: 0-63) Default None Asanté IntraCore 36000 Series...

  • Page 259: Match Access-List Mac

    Command Mode Interface Configuration (Ethernet) Usage Guidelines You must configure an ACL mask before you can change frame priorities based on an ACL rule. Traffic priorities may be included in the IEEE 802.1p priority tag. This tag is also incorporated as part of the overall IEEE 802.1Q VLAN tag.

  • Page 260: Max-Hops

    BPDU. When the hop count reaches zero, the message is dropped. Example Console(config-mstp)#max-hops 30 Console(config-mstp)# 16.112 mst priority This command configures the priority of a spanning tree instance. Use the no form to restore the default. Asanté IntraCore 36000 Series...

  • Page 261: Mst Vlan

    Syntax Description mst instance_id priority priority no mst instance_id priority instance_id Instance identifier of the spanning tree. (Range: 0-64) priority Priority of the a spanning tree instance. (Range: 0-61440 in steps of 4096; Options: 0, 4096, 8192, 12288, 16384, 20480, 24576, 28672, 32768, 36864, 40960, 45056, 49152, 53248, 57344, 61440) Default 32768...

  • Page 262: Name

    A bridge (for example, spanning-tree compliant device such as this switch) can only belong to one MST region and all bridges in the same region must be configured with the same MST instances. Example Console(config-mstp)#name R&D Console(config-mstp)# Asanté IntraCore 36000 Series...

  • Page 263: Negotiation

    Related Commands revision 16.115 negotiation This command enables auto-negotiation for a specified interface. Use the no form to disable a previously set auto-negotiation. Syntax Description [no] negotiation Default Enabled Command Mode Interface Configuration (Ethernet, Port Channel) Usage Guidelines When auto-negotiation is enabled, the switch negotiates the best settings for a link based on the capabilities command.

  • Page 264: Password

    Usage Guidelines When a connection is started on a line with password protection, the system prompts for the password. If you enter the correct password, the system shows a prompt. You can use the password-thresh command to Asanté IntraCore 36000 Series...

  • Page 265: Password-Thresh

    set the number of times a user can enter an incorrect password before the system terminates the line connection and returns the terminal to the idle state. The encrypted password is required for compatibility with legacy password settings (For example, plain text or encrypted) when reading the configuration file during system bootup or when downloading the configuration file from a TFTP server.

  • Page 266: Permit, Deny (Extended Acl)

    IP precedence level. (Range: 0-7) Type of Service level. (Range: 0-7) dscp DSCP priority level. (Range: 0-63) sport Protocol* source port number. (Range: 0-65535) dport Protocol (Includes TCP, UDP or other protocol types) destination port number. (Range: 0-65535) Asanté IntraCore 36000 Series...
  • Page 267 port-bitmask Decimal number representing the port bits to match. (Range: 0-65535) control-flags Decimal number (representing a bit string) that specifies flag bits in byte 14 of the TCP header. (Range: 0-63) flag-bitmask Decimal number representing the code bits to match. (Range: 0-63) Default None Command Mode...

  • Page 268: Permit, Deny (Mac Acl)

    [no] {permit | deny} tagged-eth2 [ethertype protocol [protocol-bitmask]] [no] {permit | deny} tagged-802.3 tagged-eth2 Tagged Ethernet II packets. untagged-eth2 Untagged Ethernet II packets. tagged-802.3 Tagged Ethernet 802.3 packets. untagged-802.3 Untagged Ethernet 802.3 packets. Any MAC source or destination address. Asanté IntraCore 36000 Series...
  • Page 269 host A specific MAC address. source Source MAC address. destination Destination MAC address range with bitmask. address-bitmask Bitmask for MAC address (in hexadecimal format) ) (1 means care and 0 means ignore). VLAN ID. (Range: 1-4095). vid-bitmask VLAN bitmask. (Range: 1-4095) (1 means care and 0 means ignore). protocol A specific Ethernet protocol number.

  • Page 270: Permit, Deny (Standard Acl)

    168.92.16.x – 168.92.31.x using a bitmask. Console(config-std-acl)#permit host 10.1.1.21 Console(config-std-acl)#permit 168.92.16.0 255.255.240.0 Console(config-std-acl)# Related Commands access-list ip 16.122 ping This command sends ICMP echo request packets to another node on the network. Syntax Description ping host [size size] [count count] Asanté IntraCore 36000 Series...
  • Page 271 host IP address or IP alias of the host. size Number of bytes in a packet. (Range: 32-512, default: 32) The actual packet size will be eight bytes larger than the size specified because the switch adds header information. count Number of packets to send.

  • Page 272: Port Security

    VLAN members to be registered. Learning may then be disabled again, if desired, for security. A secure port has the following restrictions: • Cannot use port monitoring. Asanté IntraCore 36000 Series...

  • Page 273: Prompt

    • Cannot be a multi-VLAN port. • Cannot be connected to a network interconnection device. • Cannot be a trunk port. If a port is disabled due to a security violation, it must be manually re-enabled using the no shutdown command.

  • Page 274: Protocol-Vlan Protocol-Group (Configuring Groups)

    Syntax Description protocol-vlan protocol-group group-id vlan vlan-id no protocol-vlan protocol-group group-id vlan group-id Group identifier of this protocol group. (Range: 1-2147483647) vlan-id VLAN to which matching protocol traffic is forwarded. (Range: 1-4094) Asanté IntraCore 36000 Series...

  • Page 275: Pvlan

    Default No protocol groups are mapped for any interface. Command Mode Interface Configuration (Ethernet, Port Channel) Usage Guidelines When creating a protocol-based VLAN, only assign interfaces via this command. If you assign interfaces using any of the other VLAN commands (see 15.14.2), these interfaces will admit traffic of any protocol type into the associated VLAN.

  • Page 276: Queue Bandwidth

    WRR controls bandwidth sharing at the egress port by defining scheduling weights. Example This example shows how to assign WRR weights to each of the priority queues: Console(config)#interface ethernet 1/8 Console(config-if)#queue bandwidth 1 3 5 7 9 11 13 15 Console(config-if)# Related Commands show queue bandwidth Asanté IntraCore 36000 Series...

  • Page 277: Queue Cos-Map

    16.129 queue cos-map This command assigns class of service (CoS) values to the priority queues (For example, hardware output queues 0 - 7). Use the no form set the CoS map to the default values. Syntax Description queue cos-map queue_id [cos1 ... cosn] no queue cos-map queue_id The ID of the priority queue.

  • Page 278: Queue Mode

    Example The following example sets the queue mode to strict priority service mode: Console(config)#queue mode strict Console(config)# 16.131 quit This command exits the configuration program. Default None Asanté IntraCore 36000 Series...

  • Page 279: Radius-Server Host

    Command Mode Normal Exec, Privileged Exec Usage Guidelines The quit and exit commands can both exit the configuration program. Example This example shows how to quit a CLI session: Console#quit Press ENTER to start session User Access Verification Username: 16.132 radius-server host This command specifies the RADIUS server.

  • Page 280: Radius-Server Port

    1812 Command Mode Global Configuration Example Console(config)#radius-server port 181 Console(config)# 16.135 radius-server retransmit This command sets the number of retries. Use the no form to restore the default. Syntax Description radius-server retransmit number_of_retries no radius-server retransmit Asanté IntraCore 36000 Series...

  • Page 281: Radius-Server Timeout

    number_of_retries Number of times the switch will try to authenticate logon access via the RADIUS server. (Range: 1 - 30) Default Command Mode Global Configuration Example Console(config)#radius-server retransmit 5 Console(config)# 16.136 radius-server timeout This command sets the interval between transmitting authentication requests to the RADIUS server. Use the no form to restore the default.

  • Page 282: Reload

    This example shows how to reset the switch: Console#reload System will be restarted, continue <y/n>? y 16.139 revision This command configures the revision number for this multiple spanning tree configuration of this switch. Use the no form to restore the default. Asanté IntraCore 36000 Series...

  • Page 283: Show Access-Group

    Syntax Description revision number number Revision number of the spanning tree. (Range: 0-65535) Default Command Mode MST Configuration Usage Guidelines The MST region name and revision number are used to designate a unique MST region. A bridge (for example, spanning-tree compliant device such as this switch) can only belong to one MST region. In addition, all bridges in the same region must be configured with the same MST instances.

  • Page 284: Show Access-List Ip Mask-Precedence

    Egress mask precedence for egress ACLs. Command Mode Privileged Exec Example The following is sample output from the show access-list ip mask precedence command. Console#show access-list ip mask-precedence IP ingress mask ACL: mask host any mask 255.255.255.0 any Console# Asanté IntraCore 36000 Series...

  • Page 285: Show Access-List Mac Mask-Precedence

    Related Commands mask (IP ACL) 16.143 show access-list mac mask-precedence This command shows the ingress or egress rule masks for MAC ACLs. Syntax Description show access-list mac mask-precedence [in | out] Ingress mask precedence for ingress ACLs. Egress mask precedence for egress ACLs. Command Mode Privileged Exec Example...

  • Page 286: Show Calendar

    This command displays the configuration of the DNS server. Command Mode Privileged Exec Example The following is sample output from the show dns command. Console#show dns Domain Lookup Status: DNS enabled Default Domain Name: sample.com Domain Name List: sample.com.jp sample.com.uk Name Server List: 192.168.1.55 Asanté IntraCore 36000 Series...

  • Page 287: Show Dns Cache

    10.1.0.55 Console# 16.147 show dns cache This command displays entries in the DNS cache. Default None Command Mode Privileged Exec Example The following is sample output from the show dns cache command. Console#show dns cache FLAG TYPE DOMAIN CNAME 10.2.44.96 pttch_pc.accton.com.tw CNAME 10.2.44.3...

  • Page 288: Syntax Description

    Authorization status (authorized or unauthorized). Supplicant MAC address of authorized client. Authenticator State Machine State Current state (including initialize, disconnected, connecting, authenticating, authenticated, aborting, held, force_authorized, force_unauthorized). Reauth Count Number of times connecting state is re-entered. Asanté IntraCore 36000 Series...
  • Page 289 Backend State Machine State Current state (including request, response, success, fail, timeout, idle, initialize). Request Count Number of EAP Request packets sent to the Supplicant without receiving a response. Identifier(Server) Identifier carried in the most recent EAP Success, Failure or Request packet received from the Authentication Server.

  • Page 290: Show Garp Timer

    The following is sample output from the show garp timer command. Console#show garp timer ethernet 1/1 Eth 1/ 1 GARP timer status: Join timer: 20 centiseconds Leave timer: 60 centiseconds Leaveall timer: 1000 centiseconds Console# Related Commands garp timer Asanté IntraCore 36000 Series...

  • Page 291: Show Gvrp Configuration

    16.150 show gvrp configuration This command shows if GVRP is enabled. Syntax Description show gvrp configuration [interface] interface ethernet unit/port • unit - This is device 1. • port - Port number. port-channel channel-id (Range: 1-6) Default Shows both global and interface-specific configuration. Command Mode Normal Exec, Privileged Exec Example...

  • Page 292: Show Hosts

    Note that a host name will be displayed as an alias if it is mapped to the same address(es) as a previously configured entry. Console#show hosts Hostname Inet address 10.1.0.55 192.168.1.55 Alias 1.rd6 Console# 16.153 show interfaces counters This command displays interface statistics. Syntax Description show interfaces counters [interface] Asanté IntraCore 36000 Series...
  • Page 293 interface ethernet unit/port (source port) unit - Switch (unit 1). port - port number port-channel channel-id (Range: 1-6) Default Shows the counters for all interfaces. Command Mode Normal Exec, Privileged Exec Usage Guidelines If no interface is specified, information on all interfaces is displayed. For a description of the items displayed by this command, see section 7.8 Showing Port Statistics.

  • Page 294: Show Interfaces Protocol-Vlan Protocol-Group

    ---------- ------------------ ----------- Eth 1/1 vlan2 Console# 16.155 show interfaces status This command displays the status for an interface. Syntax Description show interfaces status [interface] interface ethernet unit/port unit – This is device 1. port - Port number. Asanté IntraCore 36000 Series...

  • Page 295: Show Interfaces Switchport

    port-channel Channel-id (Range: 1-6) vlan Vlan-id (Range: 1-4094) Default Shows the status for all interfaces. Command Mode Normal Exec, Privileged Exec Usage Guidelines If no interface is specified, information on all interfaces is displayed. For a description of the items displayed by this command, see section 7.1 Displaying Connection Status.
  • Page 296 Shows if Link Aggregation Control Protocol has been enabled or disabled. Ingress/Egress rate limit Shows if rate limiting is enabled, and the current rate limit. VLAN membership mode Indicates membership mode as Trunk or Hybrid. Ingress rule Shows if ingress filtering is enabled or disabled. Asanté IntraCore 36000 Series...

  • Page 297: Show Ip Access-Group

    Acceptable frame type Shows if acceptable VLAN frames include all types or tagged frames only. Native VLAN Indicates the default Port VLAN ID. Priority for untagged traffic Indicates the default priority for untagged frames. Gvrp status Shows if GARP VLAN Registration Protocol is enabled or disabled. Allowed Vlan Shows the VLANs this interface has joined, where “(u)”...

  • Page 298: Show Ip Igmp Snooping

    Router port expire time: 300 sec IGMP snooping version: Version 2 Console# 16.160 show ip igmp snooping mrouter This command displays information on statically configured and dynamically learned multicast router ports. Syntax Description show ip igmp snooping mrouter [vlan vlan-id] Asanté IntraCore 36000 Series...

  • Page 299: Show Ip Interface

    vlan-id VLAN ID (Range: 1-4094) Default Displays multicast router ports for all configured VLANs. Command Mode Privileged Exec Usage Guidelines Multicast router port types displayed include Static or Dynamic. Example The following is sample output from the show ip igmp snooping mrouter command. The following shows that port 11 in VLAN 1 is attached to a multicast router: Console#show ip igmp snooping mrouter vlan 1 VLAN...

  • Page 300: Show Ip Redirects

    Server key size: 768 bits Console# 16.164 show lacp This command displays LACP information. Syntax Description show lacp [port-channel] {counters | internal | neighbors | sysid} port-channel Local identifier for a link aggregation group. (Range: 1-6) Asanté IntraCore 36000 Series...
  • Page 301 counters Statistics for LACP protocol messages. internal Configuration settings and operational state for local side. neighbors Configuration settings and operational state for remote side. sysid Summary of system priority and MAC address for all channel groups. Default Port Channel: all Command Mode Privileged Exec Example...
  • Page 302 Link Aggregation Group, the group has been associated with a compatible Aggregator, and the identity of the Link Aggregation Group is consistent with the System ID and operational Key information transmitted. Asanté IntraCore 36000 Series...
  • Page 303 Aggregation – The system considers this link to be aggregatable; For example, a potential candidate for aggregation. Long timeout – Periodic transmission of LACPDUs uses a slow transmission rate. LACP-Activity – Activity control value with regard to this link. (0: Passive; 1: Active) Console#show lacp 1 neighbors Channel group 1 neighbors...

  • Page 304: Show Line

    This command displays the terminal line’s parameters. Syntax Description show line [console | vty] Console Console terminal line. Virtual terminal for remote console access (for example, Telnet). Default Shows all lines Command Mode Normal Exec, Privileged Exec Asanté IntraCore 36000 Series...

  • Page 305: Show Logging

    Example The following is sample output from the show line command. Console#show line Console configuration: Password threshold: 3 times Interactive timeout: Disabled Silent time: Disabled Baudrate: 9600 Databits: 8 Parity: none Stopbits: 1 Vty configuration: Password threshold: 3 times Interactive timeout: 600 sec Console# 16.166 show logging This command displays the logging configuration, along with any system and event messages stored in...

  • Page 306: Show Logging Sendmail

    REMOTELOG server IP The address of syslog servers as specified in the logging host command. address Related Commands show logging sendmail 16.167 show logging sendmail This command displays the settings for the SMTP event handler. Asanté IntraCore 36000 Series...

  • Page 307: Show Mac Access-Group

    Command Mode Normal Exec, Privileged Exec Example The following is sample output from the show logging sendmail command . Console#show logging sendmail SMTP servers ----------------------------------------------- Active SMTP server: 192.168.1.19 SMTP minimum severity level: 7 SMTP destination email addresses ----------------------------------------------- 1. ted@this-company.com SMTP source email address: bill@this-company.com SMTP status: Enable Console#...

  • Page 308: Show Mac-Address-Table

    - This is device 1. port - Port number. port channel channel-id (Range: 1-6) vlan-id VLAN ID (Range: 1-4094) sort Sort by address, vlan or interface. Default None Command Mode Privileged Exec Asanté IntraCore 36000 Series...

  • Page 309: Show Mac-Address-Table Aging-Time

    Usage Guidelines The MAC Address Table contains the MAC addresses associated with each interface. Note that the Type field may include the following types: • Learned - Dynamic address entries • Permanent - Static entry • Delete-on-reset - Static entry to be deleted when system is reset The mask should be hexadecimal numbers (representing an equivalent bit mask) in the form xx-xx-xx-xx-xx- xx that is applied to the specified MAC address.

  • Page 310: Show Map Access-List Ip

    Syntax Description show map access-list ip [interface] interface ethernet unit/port unit - This is device 1. port - Port number. Command Mode Privileged Exec Example The following is sample output from the show map access-list ip command. Asanté IntraCore 36000 Series...

  • Page 311: Show Map Access-List Mac

    Console#show map access-list ip Eth 1/25 access-list ip david cos 0 Console# Related Commands map access-list ip 16.174 show map access-list mac This command shows the CoS value mapped to a MAC ACL for the current interface. (The CoS value determines the output queue for packets matching an ACL rule.) Syntax Description show map access-list mac [interface]...

  • Page 312: Show Map Ip Port

    This command shows the IP port priority map. Syntax Description show map ip port [interface] interface ethernet unit/port • unit - This is device 1. • port - Port number. port-channel channel-id (Range: 1-6) Default None Asanté IntraCore 36000 Series...

  • Page 313: Show Map Ip Precedence

    Command Mode Privileged Exec Example The following is sample output from the show map ip port command. The example shows that HTTP traffic has been mapped to CoS value 0: Console#show map ip port ethernet 1/5 TCP port mapping status: enabled Port Port no.

  • Page 314: Show Management

    The following is sample output from the show management command. Console#show management all-client Management Ip Filter Http-Client: Start ip address End ip address ----------------------------------------------- 1. 192.168.1.19 192.168.1.19 2. 192.168.1.25 192.168.1.30 Snmp-Client: Start ip address End ip address ----------------------------------------------- 1. 192.168.1.19 192.168.1.19 2. 192.168.1.25 192.168.1.30 Asanté IntraCore 36000 Series...

  • Page 315: Show Marking

    Telnet-Client: Start ip address End ip address ----------------------------------------------- 1. 192.168.1.19 192.168.1.19 2. 192.168.1.25 192.168.1.30 Console# Related Commands Management 16.179 show marking This command displays the current configuration for packet marking. Command Mode Privileged Exec Example The following is sample output from the show marking command. Console#show marking Interface ethernet 1/12 match access-list IP bill set DSCP 0...

  • Page 316: Show Protocol-Vlan Protocol-Group

    The following is sample output from the show protocol-vlan protocol-group command. This shows protocol group 1 configured for IP over Ethernet: Console#show protocol-vlan protocol-group ProtocolGroup ID Frame Type Protocol Type ------------------ ------------- --------------- ethernet 08 00 Asanté IntraCore 36000 Series...

  • Page 317: Show Public-Key

    Console# 16.182 show public-key Use this command to show the public key for the specified user or for the host. Syntax Description show public-key [user [username]| host] username Name of an SSH user. (Range: 1-8 characters) Default Shows all public keys. Command Mode Privileged Exec Usage Guidelines...

  • Page 318: Show Pvlan

    This command displays the weighted round-robin (WRR) bandwidth allocation for the eight priority queues. Default None Command Mode Privileged Exec Example The following is sample output from the show queue bandwidth command. Console#show queue bandwidth Information of Eth 1/1 Queue ID Weight -------- ------ Console# Asanté IntraCore 36000 Series...

  • Page 319: Show Queue Cos-Map

    16.185 show queue cos-map This command shows the class of service priority map. Syntax Description show queue cos-map [interface] interface ethernet unit/port unit - This is device 1. port - Port number. port-channel channel-id (Range: 1-6) Default None Command Mode Privileged Exec Example The following is sample output from the show queue cos-map command.

  • Page 320: Show Radius-Server

    Users (names, access levels, and encrypted passwords) • VLAN database (VLAN ID, name and state) • VLAN configuration settings for each interface • Multiple spanning tree instances (name and interfaces) • IP address configured for VLANs Asanté IntraCore 36000 Series...
  • Page 321 • Spanning tree settings • Any configured settings for the console port and Telnet Example The following is sample output from the show running-config command. Console#show running-config building running-config, please wait..phymap 00-00-a3-42-00-80 sntp server 0.0.0.0 0.0.0.0 0.0.0.0 sntp client sntp broadcast client sntp poll 60 snmp-server community private rw...

  • Page 322: Show Snmp

    0 SNMP packets input 0 Bad SNMP version errors 0 Unknown community name 0 Illegal operation for community name supplied 0 Encoding errors 0 Number of requested variables 0 Number of altered variables 0 Get-request PDUs 0 Get-next PDUs Asanté IntraCore 36000 Series...

  • Page 323: Show Sntp

    0 Set-request PDUs 0 SNMP packets output 0 Too big errors 0 No such name errors 0 Bad values errors 0 General errors 0 Response PDUs 0 Trap PDUs SNMP logging: enabled Logging to 10.1.19.23 batman version 1 Console# 16.190 show sntp This command displays the current time and configuration settings for the SNTP client, and indicates whether or not the local time has been properly updated.
  • Page 324 Remaining hops Designated Root :32768.0.0000ABCD0000 Current root port Current root cost :200000 Number of topology changes Last topology changes time (sec.):22 Transmission limit Path Cost Method :long --------------------------------------------------------------- 1/ 1 information --------------------------------------------------------------- Admin status : enable Asanté IntraCore 36000 Series...

  • Page 325: Show Spanning-Tree Mst Configuration

    Role : root State : forwarding External path cost : 100000 Internal path cost : 100000 Priority : 128 Designated cost : 200000 Designated port : 128.24 Designated root : 32768.0.0000ABCD0000 Designated bridge : 32768.0.0030F1552000 Fast forwarding : disable Forward transitions Admin edge port : enable Oper edge port...
  • Page 326 Options for SSHv1.5 include: DES, 3DES Options for SSHv2.0 can include different algorithms for the client-to-server (ctos) and server-to-client (stoc): aes128-cbc-hmac-sha1 aes192-cbc-hmac-sha1 aes256-cbc-hmac-sha1 3des-cbc-hmac-sha1 blowfish-cbc-hmac-sha1 aes128-cbc-hmac-md5 aes192-cbc-hmac-md5 aes256-cbc-hmac-md5 3des-cbc-hmac-md5 blowfish-cbc-hmac-md5 Terminology: Data Encryption Standard (56-bit key) Asanté IntraCore 36000 Series...

  • Page 327: Show Startup-Config

    3DES Triple DES (Uses three iterations of DES, 112- bit key) Advanced Encryption Standard (160 or 224-bit key) Blowfish Blowfish (32-448 bit key) Cipher-block chaining sha1 Secure Hash Algorithm 1 (160-bit hashes) Message Digest algorithm number 5 (128-bit hashes) 16.194 show startup-config This command displays the configuration file stored in non-volatile memory that is used to start up the system.
  • Page 328 1 untagged switchport native vlan 1 interface vlan 1 ip address 10.1.0.1 255.255.255.0 no spanning-tree no ip igmp snooping no map ip precedence no map ip dscp line console line vty Console# Related Commands show running-config Asanté IntraCore 36000 Series...

  • Page 329: Show System

    16.195 show system This command displays system information. Default None Command Mode Normal Exec, Privileged Exec Usage Guidelines For a description of the items shown by this command, refer to section 2.10.2 Displaying System Information. The POST results should all display “PASS.” If any POST test indicates “FAIL,” contact your distributor for assistance.

  • Page 330: Show Users

    Online users: Line Username Idle time (h:m:s) Remote IP addr. ----------- -------- ----------------- --------------- console admin 0:00:00 vty 0 admin 0:04:37 10.1.0.19 Console# 16.198 show version This command displays hardware and software version information for the system. Asanté IntraCore 36000 Series...

  • Page 331: Show Vlan

    Default None Command Mode Normal Exec, Privileged Exec Usage Guidelines See section 2.10.3 Displaying Switch Hardware/Software Versions for detailed information on the items displayed by this command. Example The following is sample output from the show version command. Console#show version Unit1 Serial number :A305051234...

  • Page 332: Shutdown

    Use the no form to remove the silent time value. Syntax Description silent-time [seconds] no silent-time seconds The number of seconds to disable console response. (Range: 0-65535; 0: no silent-time) Asanté IntraCore 36000 Series...

  • Page 333: Snmp-Server Community

    Default no silent-time. Command Mode Line Configuration Example The following is sample output from the silent-time command. To set the silent time to 60 seconds, enter this command: Console(config-line)#silent-time 60 Console(config-line)# Related Commands password-thresh 16.202 snmp-server community This command defines the community access string for the Simple Network Management Protocol. Use the no form to remove the specified community string.

  • Page 334: Snmp-Server Contact

    16.204 snmp-server enable traps This command enables this device to send Simple Network Management Protocol traps (SNMP notifications). Use the no form to disable SNMP notifications. Syntax Description [no] snmp-server enable traps [authentication | link-up-down] Asanté IntraCore 36000 Series...

  • Page 335: Snmp-Server Host

    authentication Keyword to issue authentication failure traps. link-up-down Keyword to issue link-up or link-down traps. The link-up-down trap can only be enabled/disabled via the CLI. Default Issue authentication and link-up-down traps. Command Mode Global Configuration Usage Guidelines If you do not enter an snmp-server enable traps command, no notifications controlled by this command are sent.

  • Page 336: Snmp-Server Location

    16.206 snmp-server location This command sets the system location string. Use the no form to remove the location string. Syntax Description snmp-server location text no snmp-server location text String that describes the system location. (Maximum length: 255 characters) Asanté IntraCore 36000 Series...

  • Page 337: Sntp Broadcast Client

    Default None Command Mode Global Configuration Example The following is sample output from the snmp-server location command . Console(config)#snmp-server location WC-19 Console(config)# Related Commands snmp-server contact 16.207 sntp broadcast client This command synchronizes the switch’s clock based on time broadcast from time servers (using the multicast address 224.0.1.1).

  • Page 338: Sntp Poll

    16.209 sntp poll This command sets the interval between sending time requests when the switch is set to SNTP client mode. Use the no form to restore to the default. Syntax Description sntp poll seconds no sntp poll Asanté IntraCore 36000 Series...

  • Page 339: Sntp Server

    seconds Interval between time requests. (Range: 16 - 16384 seconds) Default 16 seconds Command Mode Global Configuration Usage Guidelines This command is only applicable when the switch is set to SNTP client Command Mode. Example The following is sample output from the sntp poll command. Console(config)#sntp poll 60 Console# Related Commands...

  • Page 340: Spanning-Tree

    This example shows how to enable the Spanning Tree Algorithm for the switch: Console(config)#spanning-tree Console(config)# 16.212 spanning-tree cost This command configures the spanning tree path cost for the specified interface. Use the no form to restore the default. Syntax Description spanning-tree cost cost no spanning-tree cost Asanté IntraCore 36000 Series...

  • Page 341: Spanning-Tree Edge-Port

    cost The path cost for the port. (Range: 1-200,000,000)) The recommended range • Ethernet: 200,000-20,000,000 • Fast Ethernet: 20,000-2,000,000 • Gigabit Ethernet: 2,000-200,000 Default Ethernet – half duplex: 2,000,000; full duplex: 1,000,000; trunk: 500,000 Fast Ethernet – half duplex: 200,000; full duplex: 100,000; trunk: 50,000 Gigabit Ethernet –...

  • Page 342: Spanning-Tree Forward-Time

    In addition, each port needs time to listen for conflicting information that would make it return to the discarding state; otherwise, temporary data loops might result. Asanté IntraCore 36000 Series...

  • Page 343: Spanning-Tree Hello-Time

    Example The following is sample output from the spanning-tree forward-time command. Console(config)#spanning-tree forward-time 20 Console(config)# 16.215 spanning-tree hello-time This command configures the spanning tree bridge hello time globally for this switch. Use the no form to restore the default. Syntax Description spanning-tree hello-time time no spanning-tree hello-time time...

  • Page 344: Spanning-Tree Mst Cost

    Instance identifier of the spanning tree. (Range: 1-4094, no leading zeroes) cost Path cost for an interface. (Range: 1-200,000,000) The recommended range is: • Ethernet: 200,000-20,000,000 • Fast Ethernet: 20,000-2,000,000 • Gigabit Ethernet: 2,000-200,000 Asanté IntraCore 36000 Series...

  • Page 345: Spanning-Tree Mst Port-Priority

    Default Ethernet – half duplex: 2,000,000; full duplex: 1,000,000; trunk: 500,000 Fast Ethernet – half duplex: 200,000; full duplex: 100,000; trunk: 50,000 Gigabit Ethernet – full duplex: 10,000; trunk: 5,000 Command Mode Interface Configuration (Ethernet, Port Channel) Usage Guidelines Each spanning-tree instance is associated with a unique set of VLAN IDs. This command is used by the multiple spanning-tree algorithm to determine the best path between devices.

  • Page 346: Spanning-Tree Max-Age

    This command sets the maximum time (in seconds) a device can wait without receiving a configuration message before attempting to reconfigure. All device ports (except for designated ports) should receive configuration messages at regular intervals. Any port that ages out STA information (provided in the last Asanté IntraCore 36000 Series...

  • Page 347: Spanning-Tree Mode

    configuration message) becomes the designated port for the attached LAN. If it is a root port, a new root port is selected from among the device ports attached to the network. Example The following is sample output from the spanning-tree max-age command. Console(config)#spanning-tree max-age 40 Console(config)# 16.220 spanning-tree mode...

  • Page 348: Spanning-Tree Mst Configuration

    The region name is set the switch’s MAC address. Command Mode Global Configuration Example The following is sample output from the spanning-tree mst configuration command. Console(config)#spanning-tree mst configuration Console(config-mstp)# Related Commands mst vlan mst priority name revision max-hops Asanté IntraCore 36000 Series...

  • Page 349: Spanning-Tree Pathcost Method

    16.222 spanning-tree pathcost method This command configures the path cost method used for Rapid Spanning Tree and Multiple Spanning Tree. Use the no form to restore the default. Syntax Description spanning-tree pathcost method {long | short} no spanning-tree pathcost method long Specifies 32-200,000,000.

  • Page 350: Spanning-Tree Port-Priority

    (that is, lowest value) will be configured as an active link in the spanning tree. Where more than one port is assigned the highest priority, the port with lowest numeric identifier will be enabled. Asanté IntraCore 36000 Series...

  • Page 351: Spanning-Tree Priority

    Example The following is sample output from the spanning-tree port-priority command. Console(config)#interface ethernet 1/5 Console(config-if)#spanning-tree port-priority 0 Related Commands spanning-tree cost 16.225 spanning-tree priority This command configures the spanning tree priority globally for this switch. Use the no form to restore the default.

  • Page 352: Spanning-Tree Transmission-Limit

    The transmission limit in seconds. (Range: 1-10) Default Command Mode Global Configuration Usage Guidelines This command limits the maximum transmission rate for BPDUs. Example The following is sample output from the spanning-tree transmission-limit command . Console(config)#spanning-tree transmission-limit 4 Console(config)# Asanté IntraCore 36000 Series...

  • Page 353: Speed

    16.228 speed This command sets the terminal line’s baud rate. This command sets both the transmit (to terminal) and receive (from terminal) speeds. Use the no form to restore the default setting. Syntax Description speed bps no speed Baud rate in bits per second. (Options: 9600, 19200, 38400, 57600, 115200 bps, or auto) Default auto...

  • Page 354: Stopbits

    16.230 stopbits This command sets the number of the stop bits transmitted per byte. Use the no form to restore the default setting. Syntax Description stopbits {1 | 2} One stop bit Two stop bits Asanté IntraCore 36000 Series...

  • Page 355: Switchport Acceptable-Frame-Types

    Default 1 stop bit Command Mode Line Configuration Example To specify 2 stop bits, enter this command: Console(config-line)#stopbits 2 Console(config-line)# 16.231 switchport acceptable-frame-types This command configures the acceptable frame types for a port. Use the no form to restore the default. Syntax Description switchport acceptable-frame-types {all | tagged} no switchport acceptable-frame-types...

  • Page 356: Switchport Allowed Vlan

    Example The following is sample output from the switchport allowed vlan command. This example shows how to add VLANs 1, 2, 5 and 6 to the allowed list as tagged VLANs for port 1: Asanté IntraCore 36000 Series...

  • Page 357: Switchport Broadcast Packet-Rate

    Console(config)#interface ethernet 1/1 Console(config-if)#switchport allowed vlan add 1,2,5,6 tagged Console(config-if)# 16.233 switchport broadcast packet-rate This command configures broadcast storm control. Use the no form to disable broadcast storm control. Syntax Description switchport broadcast packet-rate rate no switchport broadcast rate Threshold level as a rate; For example, packets per second. (Range: 500 – 262143) Default Enabled for all ports...

  • Page 358: Switchport Gvrp

    This command enables GVRP for a port. Use the no form to disable it. Syntax Description [no] switchport gvrp Default Disabled Command Mode Interface Configuration (Ethernet, Port Channel) Example The following is sample output from the switchport gvrp command. Console(config)#interface ethernet 1/1 Console(config-if)#switchport gvrp Asanté IntraCore 36000 Series...

  • Page 359: Switchport Ingress-Filtering

    Console(config-if)# 16.236 switchport ingress-filtering This command enables ingress filtering for an interface. Use the no form to restore the default. Syntax Description [no] switchport ingress-filtering Default Disabled Command Mode Interface Configuration (Ethernet, Port Channel) Usage Guidelines Ingress filtering only affects tagged frames. If ingress filtering is disabled and a port receives frames tagged for VLANs for which it is not a member, these frames will be flooded to all other ports (except for those VLANs explicitly forbidden on this port).

  • Page 360: Switchport Native Vlan

    PVID to that group. If acceptable frame types is set to all or switchport mode is set to hybrid, the PVID will be inserted into all untagged frames entering the ingress port. Asanté IntraCore 36000 Series...

  • Page 361: Switchport Priority Default

    Example The following is sample output from the switchport native vlan command. This example shows how to set the PVID for port 1 to VLAN 3: Console(config)#interface ethernet 1/1 Console(config-if)#switchport native vlan 3 Console(config-if)# 16.239 switchport priority default This command sets a priority for incoming untagged frames. Use the no form to restore the default value. Syntax Description switchport priority default default-priority-id no switchport priority default...

  • Page 362: Tacacs-Server Host

    Encryption key used to authenticate logon access for the client. Do not use blank spaces in the string. (Maximum length: 20 characters) Default None Command Mode Global Configuration Example Console(config)#tacacs-server key green Console(config)# Asanté IntraCore 36000 Series...

  • Page 363: Tacacs-Server Port

    16.242 tacacs-server port This command specifies the TACACS+ server network port. Use the no form to restore the default. Syntax Description tacacs-server port port_number no tacacs-server port port_number TACACS+ server TCP port used for authentication messages. (Range: 1- 65535) Default Command Mode Global Configuration Example...

  • Page 364: Vlan Database

    Use the interface vlan command mode to define the port membership mode and add or remove ports from a VLAN. The results of these commands are written to the running-configuration file, and you can display this file by entering the show running-config command. Example Console(config)#vlan database Console(config-vlan)# Asanté IntraCore 36000 Series...

  • Page 365: Vlan

    Related Commands show vlan 16.245 vlan This command configures a VLAN. Use the no form to restore the default settings or delete a VLAN. Syntax Description vlan vlan-id [name vlan-name] media ethernet [state {active | suspend}] no vlan vlan-id [name | state] vlan-id ID of configured VLAN.

  • Page 366: Whichboot

    This example shows the information displayed by the whichboot command. See the dir command for a description of the file information displayed by this command. Console#whichboot file name file type startup size (byte) -------------------------------- -------------- ------- ----------- Unit1: Diag.bix Boot-Rom image 818812 ES4548C_ZZ(V0.1.0.2).bix Operation Code 2346020 startup Config File 7606 Console# Asanté IntraCore 36000 Series...

  • Page 367: Appendix A: Web Browser Interface And Command Line Interface Overview

    Appendix A: Web Browser Interface and Command Line Interface Overview A.1 Navigating the Web Browser Interface To access the web-browser interface you must first enter a user name and password. The administrator has Read/Write access to all configuration parameters and statistics. The default user name and password for the administrator is “admin.”...

  • Page 368: Accessing The Cli

    0 to 255, separated by periods. Each address consists of a network portion and host portion. For example, the IP address assigned to this switch, 10.1.0.1, consists of a network portion (10.1.0) and a host portion (1). Note: The IP address for this switch is unassigned by default. Asanté IntraCore 36000 Series...

  • Page 369: Entering Commands

    To access the switch through a Telnet session, you must first set the IP address for the switch, and set the default gateway if you are managing the switch from a different IP subnet. For example, Console(config)#interface vlan 1 Console(config-if)#ip address 10.1.0.254 255.255.255.0 Console(config-if)#exit Console(config)#ip default-gateway 10.1.0.254 If your corporate network is connected to another network outside your office or to the Internet, you need to...
  • Page 370 Show the contents of logging buffers MAC access lists mac-address-table Set configuration of the address table management Show management ip filter Map priority marking Specify marker port Characteristics of the port protocol-vlan Protocol-vlan information public-key Show information of public key Asanté IntraCore 36000 Series...
  • Page 371 pvlan Information of private VLAN queue Information of priority queue radius-server RADIUS server information running-config The system configuration of running snmp SNMP statistics sntp Sntp spanning-tree Specify spanning-tree Secure shell startup-config The system configuration of starting up system Information of system tacacs-server Login by tacacs server users...
  • Page 372 Deletes the last word typed. Esc-B Moves the cursor back one word. Esc-D Deletes from the cursor to the end of the word. Esc-F Moves the cursor forward one word. Delete or backspace Erases a mistake when entering a command. Asanté IntraCore 36000 Series...

  • Page 373: Appendix B: Upgrading Firmware Through The Serial Port

    Appendix B: Upgrading Firmware Through the Serial Port The switch contains three firmware components that can be upgraded; the loader code, diagnostics (or Boot-ROM) code, and runtime operation code. The runtime code can be upgraded via the switch’s RS232 serial console port, via a network connection to a TFTP server, or using SNMP management software. The loader code and diagnostics code can be upgraded only via the switch’s RS232 serial console port.
  • Page 374 9600 baud. Set your PC’s terminal emulation software baud rate back to 9600 baud. Press <Enter> to reset communications with the switch. Press <q> to quit the firmware-download mode and boot the switch. Asanté IntraCore 36000 Series...

  • Page 375: Appendix C: Software Specifications

    Appendix C: Software Specifications Authentication • Local, RADIUS, TACACS, Port (802.1x), HTTPS, SSH, Port Security Access Control Lists • IP, MAC (up to 32 lists) DHCP Client, Relay, Server DNS Server Port Configuration • 1000BASE-T: 10/100/1000 Mbps, half/full duplex • 1000BASE-SX/LX/LH: 1000 Mbps, full duplex Flow Control •...
  • Page 376 Management Features In-Band Management • Telnet, Web-based HTTP or HTTPS, SNMP manager, or Secure Shell Out-of-Band Management • RS-232 DB-9 console port Software Loading • TFTP in-band or XModem out-of-band SNMP • Management access via MIB database Asanté IntraCore 36000 Series...
  • Page 377 • Trap management to specified hosts RMON • Groups 1, 2, 3, 9 (Statistics, History, Alarm, Event) Standards • IEEE 802.3 Ethernet, • IEEE 802.3u Fast Ethernet • IEEE 802.3x Full-duplex flow control (ISO/IEC 8802-3) • IEEE 802.3z Gigabit Ethernet, •...
  • Page 378 Port Access Entity MIB (IEEE 802.1x) • Private MIB • Quality of Service MIB • RIP1 MIB (RFC 1058) • RIP2 MIB (RFC 2453) • OSPF MIB (RFC 1850) • RADIUS Authentication Client MIB (RFC 2618) • RMON MIB (RFC 2819) Asanté IntraCore 36000 Series...
  • Page 379 • RMON II Probe Configuration Group (RFC 2021, partial implementation) • TACACS+ Authentication Client MIB • TCP MIB (RFC 2013) • Trap (RFC 1215) • UDP MIB (RFC 2012) User’s Manual...

  • Page 380: Appendix D: Troubleshooting And Pinouts

    Check that the null-modem serial cable conforms to the pin-out connections provided in the Installation Guide. Forgot or lost the password Contact your local distributor. D.2 Console Port Pin Assignments Refer to the Setup Guide for complete pinout information. Asanté IntraCore 36000 Series...

  • Page 381: Appendix E: Fcc Compliance And Warranty Statements

    Appendix E: FCC Compliance and Warranty Statements E.1 FCC Compliance Statement This equipment has been tested and found to comply with the limits for a Class A digital device, pursuant to part 15 of the FCC Rules. These limits are designed to provide reasonable protection against harmful interference when the equipment is operated in a commercial environment.

  • Page 382: Intracare Warranty Statement

    This warranty gives you specific legal rights, and you may have other rights, which vary from jurisdiction to jurisdiction. Asanté IntraCore 36000 Series...

  • Page 383: Appendix F. Online Warranty Registration

    Appendix F. Online Warranty Registration Please register the switch online at www.asante.com/support/warranty/index.html. By doing so, you’ll be entitled to special offers, up-to-date information, and important product bulletins. You may also register the switch by returning the following warranty card by mail.
  • Page 384 Asanté IntraCore 36000 Series...
  • Page 385 User’s Manual...

Table of Contents