GarrettCom Magnum MNS-6K Cli User's Manual

For magnum 6k family of switches

page of 329

/ 329
Contents
Table of Contents
Bookmarks

Table of Contents

Quick Links

MAGNUM 6K FAMILY OF SWITCHES

Managed Network Software (MNS) for Magnum 6K family of Switches

– MNS-6K

Release 3.7.1

CLI User Guide

$25.00 USD

Table of Contents

Chapters

Table of Contents

Need help?

Do you have a question about the Magnum MNS-6K and is the answer not in the manual?

Questions and answers

Summary of Contents for GarrettCom Magnum MNS-6K

Page 1 MAGNUM 6K FAMILY OF SWITCHES Managed Network Software (MNS) for Magnum 6K family of Switches – MNS-6K Release 3.7.1 CLI User Guide $25.00 USD...
Page 2 If you need information on a specific feature in Web Management Interface, use the online help provided in the interface. If you need further information or data sheets on GarrettCom Magnum 6K family of switches, refer to the GarrettCom web links at: http://www.garrettcom.com/managed_switches.htm...
Page 3 UL is a registered trademark of Underwriters Laboratories. Ethernet is a trademark of Xerox Corporation. Copyright © 2007 GarrettCom, Inc. All rights reserved. No part of this publication may be reproduced without prior written permission from GarrettCom, Inc. Printed in the United States of America.
Page 4: Table Of Contents
T able of Contents 1 – Conventions Followed...18 Flow of the User Guide ...19 2 – Getting Started ...22 Before starting ...22 MNS-6K Software Updates ...23 Console connection ...23 Console setup...24 Console screen...24 Logging in for the first time ...25 Setting the IP parameters...25 Privilege levels...28 Operator Privileges...28...
Page 5 List of commands in this chapter ...33 3 – IP Address and System Information...35 IP Addressing...35 Importance of an IP address ...35 DHCP and bootp ...36 Bootp Database ...36 Configuring Auto/DHCP/Bootp/Manual ...37 Using Telnet ...38 Setting serial port parameters ...40 System parameters...41 Date and time...43 Network time...44...
Page 6 Network security...65 Configuring Port Security...65 Logs ...71 Authorized managers...73 List of commands in this chapter ...75 6 – Access Using RADIUS ...77 RADIUS ...77 802.1x ...77 Configuring 802.1x...80 List of commands in this chapter ...85 7 – Access Using TACACS+ ...87 TACACS –...
Page 7 Private VLANs ...106 Using Port VLANs ...107 Creating VLANs...107 Using Tag VLANs ...111 Tag VLANs and Management ...118 List of commands in this chapter ...121 10 – Spanning Tree Protocol (STP)... 123 STP features and operation...123 Using STP...124 List of commands in this chapter ...134 11 –...
Page 8 Dual-Homing concepts ...168 Dual-Homing Modes...171 Configuring Dual-Homing ...171 List of commands in this chapter ...173 14 – Link Aggregation Control Protocol (LACP) ... 174 LACP concepts ...174 LACP Configuration...175 List of commands in this chapter ...185 15 – Quality of Service ... 186 QoS concepts ...186 DiffServ and QoS...187 IP Precedence ...188...
Page 9 Configuring SNMP ...221 Configuring RMON ...230 List of commands in this chapter ...231 19 – Miscellaneous Commands ...235 Alarm Relays ...235 Email ...239 Serial Connectivity ...244 Miscellaneous commands ...245 Prompt ...246 Ping...247 FTP modes...248 System Events...248 MAC Address Table ...253 List of commands in this chapter ...254 APPENDIX 1 - Command listing by Chapter ...257 Chapter 2 –...
Page 10 APPENDIX 4 – Updating MNS-6K Software... 301 1. Getting Started ...302 Selecting the proper version ...303 Downloading the MNS-6K software...303 Next steps...307 2. Preparing to load the software...308 Accessing the switch ...308 Serial Connection...308 Network Access...309 Saving the Configuration ...309 Serial Connection...310 Network Access...312 Next steps...313...
Page 11 Updating boot code over the network...319 Index... 321...
Page 12: List Of Figures
1 - HyperTerminal screen showing the serial settings ... 24 IGURE 2 - Prompt indicating the switch model number as well as mode of operation – note the IGURE commands to switch between the levels is not shown here... 25 3 - Setting IP address on the switch ...
Page 13 32 - Saving the configuration on a tftp server ... 45 IGURE 33 – Based on the ftp or tftp or xmodem commands – the MNS-6K based switch can IGURE upload or download different types of files and images .Other files such as log files, hosts file can also be saved or loaded onto a switch ...
Page 14 49 – Viewing port security settings on a switch. On port 9, learning is enabled. This port IGURE has 6 stations connected to it with the MAC addresses as shown. Other ports have learning disabled and the MAC addresses are not configured on those ports ... 68 50 –...
Page 15 86 – More than one S-Ring pair can be selected and more than one S-Ring can be IGURE defined per switch. Note – the mP62 as well as the ESD42 switches support LLL and can participate in S-Ring as an access switch ...157 87 –...
Page 16 103 – LACP, along with RSTP/STP brings redundancy to the network core or IGURE backbone. Using this reliable core with a dual-homed edge switch brings reliability and redundancy to the edge of the network...179 104 – This architecture is not recommended...180 IGURE 105 –...
Page 17 Each switch has the IGMPL2 turned on. Each switch can exchange the IGMP query message and respond properly. R4 wants to view surveillance traffic from T1. As shown by (1), a join request is sent by R4. Once the join report information is exchanged, only R4 receives the video surveillance traffic, as shown by (2).
Page 18 144 – Use the copy command to copy the files to the proper location ...307 IGURE 145 - HyperTerminal screen showing the serial settings ...309 IGURE 146 – Using telnet command to connect to a Magnum 6K switch with IP address IGURE 192.168.10.11 ...309 147 – Example of saveconf command using serial interface...310 IGURE 148 –...
Page 19: Conventions Followed
Commands typed by a user will be shown in a different color and this font Switch prompt – shown in Bold font, with a “# or >” at the end. For the document we will use Magnum6K25#...
Page 20: Flow Of The User Guide
Windows-XP based machine when in doubt. Supported MNS-6K Version – The documentation reflects features of MNS-6K version 3.4 or later. If your switch is not at the current version, GarrettCom Inc. recommends upgrade to the latest version. Please refer to the GarrettCom Web site for information on upgrading the MNS-6K software on Magnum 6K family of switches.
Page 21 VLANs can be setup and managed. At this stage the network and the switch are secured. It is now critical to make the network more reliable. The User Guide switches gears and talks about STP, RSTP and S- Ring technologies which can be used for making the network reliable.
Page 22 Chapter 15 focuses on IGMP. Chapter 16 focuses on GVRP. Chapter 17 shows how the SNMP parameters can be setup for managing the switch with network management software such as Castle Rock SNMPc™ Chapter 18 includes miscellaneous commands to improve the overall ease of use and...
Page 23: Getting Started
2) Serial port – if your PC does not have a serial port, you may want to invest in a USB to serial converter. This is again available from LAN store or from GarrettCom Inc. Alternately a USB to serial cable can also be used. This cable is also available from LAN store or GarrettCom Inc.
Page 24: Mns-6K Software Updates
MNS-6K is included as an Appendix in this manual. The Login prompt is shown when the connection to the GarrettCom Magnum 6K Switch is successful and the switch is ready for the configuration commands. Should you get a boot prompt, please contact GarrettCom technical support.
Page 25: Console Setup
Console setup Connect the console port on the switch to the serial port on the computer using the serial cable listed above. The settings for the HyperTerminal software emulating a VT100 are shown in Figure 1 below. Make sure the serial parameters are set as shown (or bps = 38400, data bits=8, parity=none, stop bits=1, flow control=none).
Page 26: Logging In For The First Time
Magnum 6K25 switch, and for clarity, the prompt shown in the manual will be Magnum6K25 Logging in for the first time For the first time, use the default user name and passwords assigned by GarrettCom for the Magnum 6K family of switches. They are: Username – manager Username –...
Page 27 • Power off the switch (or a software reboot as discussed below) • Power on the switch – login with the new login name and password • From the PC (or from the switch) ping the IP address specified for the switch to ensure connectivity •...
Page 28 – simply type in the command “reboot”. (Note – even though the passwords are not changed, they can be changed later.) reboot Magnum6K25# Proceed on rebooting the switch? [ 'Y' or 'N' ] Do you wish to save current configuration? [ 'Y' or 'N' ] Magnum6K25# 4 - Rebooting the switch IGURE MNS-6K forces an answer the prompts with a “Y”...
Page 29: Privilege Levels
Manager prompt. User management A maximum of five users can be added per switch. Users can be added, deleted or changed from a manager level account. There can be more than one manager account, subject to the maximum number of users on the switch being restricted to...
Page 30: Add User
Add User To add a user, use the command “add” as shown below. The user name has to be a unique name and can be up to 24 characters long. The password is recommended to be at least 8 characters long with a mix of upper case, lower case, numbers and special characters.
Page 31: Modify Access Privileges For A User
11 – Creating user access privileges IGURE After this command, user Peter will not have telnet access to the switch. User Peter only has console access or SWM access. The user “peter” has to be added before this command can be...
Page 32: Help
M A G N U M S W I T C H E S , Help Typing the ‘help’ command lists the commands you can execute at the current privilege level. For example, typing ‘help’ at the Operator level shows help Magnum6K25>...
Page 33: Context Help
M A G N U M S W I T C H E S , Usage show active-stp show active-snmp show active-vlan show address-table show age show alarm show arp show auth <config|ports> show backpressure show bootmode --more-- 14 - Options for the ‘show’ command IGURE Context help Other ways to display help, specifically, with reference to a command or a set of...
Page 34: Exiting
[add|del] – to set IP address on the switch Syntax save – save changes made to the configuration Syntax reboot – restart the switch – same effect as physically turning off the power Syntax show setup – show setup parameters Syntax show config –...
Page 35 M A G N U M S W I T C H E S , M N S - 6 K U S E R G U I D E Syntax passwd user=<name> - changing a password for a user Syntax chlevel user=<name>...
Page 36: Ip Address And System Information
IP addresses and related netmask schemes (e.g. class A, Class B and Class C addressing). Importance of an IP address Without an IP address, the switch will operate as a standalone Layer 2 switch. Without an IP address, you cannot • Use the web interface to manage the switch •...
Page 37: Dhcp And Bootp
A sample entry by which the bootp software will look up the database and update the IP address and subnet mask of the switch would be as follows M6k25switch:\...
Page 38: Configuring Auto/Dhcp/Bootp/Manual
By default, the switch is configured for ‘auto’. As describer earlier in Chapter 2, in the auto mode, the switch will first look for a DHCP server. If a DHCP server is not found, it will then look for a BootP server. If that server is not found, the switch will first inspect to see if the IP address 192.168.1.2 with a netmask of 255.255.255.0 is free.
Page 39: Using Telnet
IGURE Using Telnet By default, the telnet client is enabled on the GarrettCom Magnum 6K family of switches. MNS-6K supports five simultaneous sessions on a switch – four telnet sessions and one console session. This allows many users to view, discuss or edit changes to the MNS-6K.
Page 40 While MNS-6K times out an idle telnet session, it may be useful to see who is currently connected to the switch. It may also be useful for a person to remotely terminate a telnet session. To facilitate this, MNS-6K supports two commands Syntax show session Syntax kill session id=<session>...
Page 41: Setting Serial Port Parameters
To be compliant with IT or other policies the console parameters can be changed from the CLI interface. This is best done by setting the IP address and then telnet over to the switch. Once connected using telnet, the serial parameters can be changed. If you are using the serial port, remember to set the VT-100 emulation software properties to match the new settings.
Page 42: System Parameters
: Magnum 6K25 build 3.7.1 Sep 27 2007 16:41:37 : 00:20:08:03:05:09 : 192.168.5.5 : 255.255.255.0 : 192.168.5.1 : Manager : Magnum 6K25 : 25 Port Modular Ethernet Switch : support@garrettcom.com : Fremont, CA : 1.3.6.1.4.1.553.12.6 : 43576812 : 6K25-8TP...
Page 43: Figure 28 - Setting The System Name, System Location And System Contact Information
27 - System parameters using the show sysconfig command. Most parameters here can be IGURE changed. System variables can be changed. Below is a list of system variables which GarrettCom recommends changing. System Name: Using a unique name helps you to identify individual devices in a network.
Page 44: Date And Time
Magnum6K25# 29 - Setting the system date, time and time zone IGURE Rebooting the switch resets the time to the default. Synchronizing with the time server resets the time. Other relevant date and time commands are: Syntax set timeformat format=<12|24>...
Page 45: Network Time
Simple Network Time Protocol (SNTP). To specify the SNTP server, one has to 1) Set the IP parameters on the switch 2) Define the SNTP parameters To set the SNTP parameter, enter the SNTP configuration mode from the manager. The ‘setsntp, sync, sntp’...
Page 46: Saving And Loading Configuration
M A G N U M S W I T C H E S , sntp Magnum6K25# setsntp server=204.65.129.201 timeout=3 retry=3 Magnum6K25(sntp)## SNTP server is added to SNTP server database sync hour=5 Magnum6K25(sntp)## sntp enable Magnum6K25(sntp)## SNTP is already enabled. exit Magnum6K25(sntp)## Magnum6K25(sntp)#...
Page 47 “passive ftp” in which the client initiating the connection initiates both the data and command connection request. Most companies prefer passive ftp and GarrettCom MNS-6K provides means to operate in those environments. M N S - 6 K...
Page 48 33 – Based on the ftp or tftp or xmodem commands – the MNS-6K based switch can upload IGURE or download different types of files and images .Other files such as log files, hosts file can also be saved or...
Page 49: Config Files
ASCII (readable) file. The new format is preferred by GarrettCom and GarrettCom recommends all configuration files be saved in the new format. GarrettCom recommends saving the configuration in the old format only if there are multiple Magnum 6K family of switches on the network and they all run different versions of MNS-6K.
Page 50: Figure 35 - Contents Of The Config File
# test environment prior to use in a "live" production network. # All modifications are made at the User's own risk and are # subject to the limitations of the GarrettCom software End User # License Agreement (EULA). Incorrect usage may result in # network shutdown.
Page 51: Displaying Configuration
Should you want to edit, edit the System portion of the file only. GarrettCom recommends editing the “script” file (see below) Note 2 – File names cannot have special characters such as *#!@$^&* space and control characters.
Page 52 M A G N U M S W I T C H E S , Where module-name can be Name Areas affected system IP Configuration, Boot mode, Users settings (e.g. login names, passwords) event Event Log and Alarm settings port Port settings, Broadcast Protection and QoS settings bridge...
Page 53: Figure 37 - ' Show Config' Command Output
M A G N U M S W I T C H E S , <additional lines deleted for succinct viewing> show config’ 37 – ‘ command output IGURE show config module=snmp Magnum6K25# [HARDWARE] type=Magnum6K25 slotB=8 Port TP Module ########################################################## # Network Management - This area configures the SNMPv3 agent.
Page 54: Erasing Configuration
‘kill config’. This command is a “hidden command” i.e. the on-line help and other help functions normally do not display this command. The ‘kill config’ command resets everything to the factory default. The reset does not take place till the switch reboots. It is recommended to save the configuration (using ‘saveconf’...
Page 55: Displaying Serial Number
40 – Erasing configuration without erasing the IP address IGURE Once the configuration is erased, please reboot the switch for the changes to take effect. Displaying Serial Number To display the serial number of the unit, use the command “show setup” as shown below. The command also displays other information related to the switch.
Page 56: List Of Commands In This Chapter
– do not set the IP address automatically auto - the switch will first look for a DHCP server. If a DHCP server is not found, it will then look for a BootP server. If that server is not found, the switch will check to see if the switch had a pre-configured IP address.
Page 57 The modules are system, event, port, bridge, stp, ps, mirror, sntp, vlan, gvrp and snmp Syntax show session – display telnet sessions active on the switch Syntax kill session id=<session> - kill a specific telnet session Syntax set ftp mode=<normal|passive>...
Page 58: Other Commands
This can also perform the task of exporting a configuration file or uploading a new image to the switch [host=<hostname>] [ip=<ipaddress>] [file=<filename>] – parameters associated with tftp server for proper communications with the server Syntax xmodem <get|put>...
Page 59 Syntax show timezone – shows the system timezone Syntax show date – shows the system date Syntax show uptime – shows the amount of time the switch has been operational Syntax show setup – display the setup, serial number, factory code information and more...
Page 60: Ipv6
4 – IPv6 Next generation IP addressing his section explains how the access to the GarrettCom Magnum MNS-6K can setup using IPv6 instead of IPv4 addressing described earlier. IPv6 provides a much larger address space and is required today by many.
Page 61: What's Changed In Ipv6
M A G N U M S W I T C H E S , and IPv6 hosts. The transition to a new version of the Internet Protocol is normally incremental, with few or no critical interdependencies. Most of today's internet uses IPv4, which is now nearly twenty years old.
Page 62: Ipv6 Addressing
M A G N U M S W I T C H E S , IPv6 Addressing IPv6 addresses are 128-bits long and are identifiers for individual interfaces and sets of interfaces. IPv6 addresses of all types are assigned to interfaces, not nodes. Since each interface belongs to a single node, any of that node's interfaces' unicast addresses may be used as an identifier for the node.
Page 63: List Of Commands In This Chapter
– Besides, if the end station supports IPv6 addressing (as most Linux and Windows systems do), one can access the switch using the IPv6 addressing as shown in the example below http://fe80::220:6ff:fe25:ed80 List of commands in this chapter Syntax ipconfig [ip=<ip-address>] [mask=<subnet-mask>] [dgw=<gateway>]...
Page 64 M A G N U M S W I T C H E S , M N S - 6 K U S E R G U I D E Syntax ping6 <IPv6 address> - pings an IPv6 station Syntax show ipv6 - displays the IPv6 information Syntax ftp <IPv6 address>...
Page 65: Access Considerations
S W I T C H E S , 5 – Access Considerations Securing the switch access…. his section explains how the access to the GarrettCom Magnum MNS-6K can be secured. Further security considerations are also covered such as securing access by IP address or MAC address.
Page 66: Port Security
M A G N U M S W I T C H E S , Port Security The port security feature can be used to block computers from accessing the network by requiring the port to validate the MAC address against a known list of MAC addresses. This port security feature is provided on an Ethernet, Fast Ethernet, or Gigabit Ethernet port.
Page 67: Figure 45 - Port Security Configuration Mode
Syntax remove mac=<all|address|list|range> port=<num|list|range> Syntax signal port=<num|list|range> <none|log|trap|logandtrap> Where allow mac – configures the switch to setup allowed MAC addresses on specific ports learn port – configures the switch to learn the MAC addresses associated with specific port or a group of ports show port-security –...
Page 68: Figure 48 - Enabling And Disabling Port Security
47 – Port security - the port learns the MAC addresses. Note – a maximum of 200 MAC IGURE addresses can be learnt per port and a maximum of 500 per switch. Also, the ‘action’ on the port must be set to none before the port ‘learns’ the MAC address information.
Page 69 ENABLE NONE Magnum6K25(port-security)## 49 – Viewing port security settings on a switch. On port 9, learning is enabled. This port has 6 IGURE stations connected to it with the MAC addresses as shown. Other ports have learning disabled and the...
Page 70 M A G N U M S W I T C H E S , ENABLE NONE ENABLE NONE 51 – Allowing specific MAC address on specific ports. After the MAC address is specified, the IGURE port or specific ports or a range of ports can be queried as shown Magnum6K25(port-security)## Specified MAC address(es) removed from selected port(s) Magnum6K25(port-security)##...
Page 71 M A G N U M S W I T C H E S , 8) Disable access to the network for unauthorized devices (Use ‘action port=11 <diable|drop>’ depending on whether the port should be disabled or the packed dropped. Follow that with a ‘show port-security’ command to verify the setting) 9) (Optional step) Set the notification to notify the management station on security breach attempts (Use command ‘signal port’...
Page 72: Logs
Magnum6K25# 54 – Steps for setting up port security on a specific port IGURE Once port security is setup, it is important to manage the log and review the log often. If the signals are sent to the trap receiver, the traps should also be reviewed for intrusion and other infractions.
Page 73 The ‘show log’ command displays the log information and the ‘clear log’ command clears the log entries. Syntax show log [fatal|alert|crit|error|warn|note|info|debug] – display the log Syntax clear log [fatal|alert|crit|error|warn|note|info|debug]– clear the log Syntax set logsize size=<1-1000> - set the number of line to be collected in the log before the oldest record is re-written show log Magnum6K25#...
Page 74: Authorized Managers
The logs for the intrusions are stored on the switch. When the switch detects an intrusion on a port, it sets an “alert flag” for that port and makes the intrusion information available.
Page 75 Syntax remove ip=<ipaddress> mask=<netmask> - remove specific IP address(s) or subnet Syntax removeall - remove all managers Syntax show ip-access – display list of authorized managers access – context are the access commands allow – allow specified services for specified IP addresses – IP addresses can be individual stations, a group of stations or subnets.
Page 76: List Of Commands In This Chapter
Syntax allow mac=<address|list|range> port=<num|list|range> - specify a specific MAC address or MAC address list Syntax learn port=<number-list> <enable|disable> - learn MAC addresses connected to the Magnum 6K switch Syntax show port-security – display port security settings Syntax action port=<num|list|range> <none|disable|drop> - action to perform in case of breach of port security Syntax signal port=<num|list|range>...
Page 77 M A G N U M S W I T C H E S , Syntax removeall – remove all IP addresses of trusted hosts Syntax show ip-access – display all trusted hosts Syntax clear <history|log [1..5 |informational |activity |critical |fatal |debug] |terminal |arp|portstats|addr] –...
Page 78: Access Using Radius
There are three major components of 802.1x: - Supplicant, Authenticator and Authentication Server (RADIUS Server). In the figure below, the PC acts as the supplicant. The supplicant is an entity being authenticated and desiring access to the services. The switch is the authenticator. The authenticator enforces authentication before Chapter...
Page 79 EAP over RADIUS encapsulates EAP packets onto RADIUS packets for relaying to RADIUS authentication servers. The details of the 802.1x authentication are shown below M N S - 6 K U S E R G U I D E 802.1x 802.1x Switch Switch Authentication Authentication Server (RADIUS) Server (RADIUS)
Page 80 3. The supplicant then sends back its own identification using an EAP-Response/Identity frame to the authenticator (Magnum 6K switch.) The authenticator then relays this to the authentication server by encapsulating the EAP frame on a RADIUS-Access-Request packet 4.
Page 81: Configuring 802.1X
M A G N U M S W I T C H E S , The Magnum MNS-6K software implements the 802.1x authenticator. It fully conforms to the standards as described in IEEE 802.1x, implementing all the state machines needed for port- based authentication.
Page 82 Default value is 30. Values can be from 1 to 65535 seconds Syntax reauth port=<num|list|range> [status=<enable|disable>] [period=<10-86400>] - set values on how the authenticator (Magnum 6K switch) does the re-authentication with the supplicant or port – [mandatory] – ports to be configured status –...
Page 83: Show Auth Config
M A G N U M S W I T C H E S , auth disable Magnum6K25(auth)## 802.1X Authenticator is disabled. authserver ip=192.168.1.239 secret=secret Magnum6K25(auth)## Successfully set RADIUS Authentication Server parameter(s) Magnum6K25(auth)##auth enable 802.1X Authenticator is enabled. show auth ports Magnum6K25(auth)## Port Status...
Page 84 M A G N U M S W I T C H E S , show-port backend Magnum6K25(auth)## Port Supp Timeout (sec) ================================================= portaccess port=2 quiet=120 maxreauth=7 transmit=120 Magnum6K25(auth)## Successfully set port access parameter(s) show-port access Magnum6K25(auth)## Port Quiet Period (sec) ================================================= reauth port=1 status=enable period=300...
Page 85 M A G N U M S W I T C H E S , show-port reauth Magnum6K25(auth)## Port Reauth Status ================================================= Enabled Enabled Enabled Enabled Enabled Enabled Enabled Enabled Enabled Enabled Enabled Enabled Enabled Enabled Enabled Enabled show-stats port=3 Magnum6K25(auth)## Port 3 Authentication Counters authEntersConnecting...
Page 86: List Of Commands In This Chapter
Syntax authserver [ip=<ip-addr>] [udp=<num>] [secret=<string>] - define the RADIUS server – use UDP socket number if the RADIUS authentication is on port other than 1812 Syntax auth <enable|disable> - enables or disables the 802.1x authenticator function on MNS-6K switch Syntax setport port=<num|list|range> [status=<enable|disable>] [control=<auto|forceauth|forceunauth>] [initialize=<assert|deassert>] - setting the...
Page 87 S W I T C H E S , Syntax reauth port=<num|list|range> [status=<enable|disable>] [period=<10-86400>] - set values on how the authenticator (Magnum 6K switch) does the re-authentication with the supplicant or port – [mandatory] – ports to be configured status – [optional] This enables/disables re-authentication period –...
Page 88: Access Using Tacacs
7 – Access Using TACACS+ Using a TACACS+ server to authenticate access…. ACACS+, short for Terminal Access Controller Access Control System, protocol provides access control for routers, network access servers and other networked computing devices via one or more centralized servers. TACACS+ provides separate authentication, authorization and accounting services.
Page 89: Tacacs+ Flow
M A G N U M S W I T C H E S , TACACS+ Flow TACACS works in conjunction with the local user list on the MNS-6K software (operating system.) Please refer to User Management process of authentication as well as authorization is shown in the flow chart below. Login as Operator Login as Operator Is User Manager?
Page 90: Tacacs+ Packet
TACACS+ Packet Packet encryption is a supported and is a configurable option for the Magnum MNS-6K software. When encrypted, all authentication and authorization TACACS+ packets are encrypted and are not readable by protocol capture and sniffing devices such as EtherReal or others.
Page 91 M A G N U M S W I T C H E S , Syntax show tacplus <status|servers> - show status of TACACS or servers configured as TACACS+ servers Syntax tacplus <enable|disable> [ order=<tac,local | local,tac>] - enable or disable TACACS authentication, specifying the order in which the server or local database is looked up where “tac,local”...
Page 92: List Of Commands In This Chapter
M A G N U M S W I T C H E S , TACACS+ Server ================================================ 10.21.1.170 10.21.1.123 tacserver delete id=2 Magnum6K25(user)## TACACS+ server is deleted. show tacplus servers Magnum6K25(user)## TACACS+ Server ================================================ 10.21.1.170 tacplus enable Magnum6K25(user)## TACACS+ is enabled. Magnum6K25(user)## 62 –...
Page 93 M A G N U M S W I T C H E S , M N S - 6 K U S E R G U I D E [port=<tcp-port>] – [optional for add] TCP port number on which the server is listening [encrypt=<enable|disable>] –...
Page 94: Port Mirroring And Setup
Setup the ports for network speeds, performance as well as for monitoring…. his section explains how individual characteristics of a port on the GarrettCom Magnum 6K family of switches are setup. For monitoring a specific port, the traffic on a port can be mirrored on another port and viewed by protocol analyzers.
Page 95: Port Setup
Port setup Each port on the GarrettCom Magnum 6K family of switches can be setup specific port characteristics. The command for setting the port characteristics are: Syntax device – enter the device configuration mode Syntax setport port=<port#|list|range>...
Page 96: Speed Settings
M A G N U M S W I T C H E S , speed – specifically sets the speed to be 10 or 100Mbps. Note – this works only with 10/100 ports – with 10Mbps ports, the option is ignored. No error is shown. See speed settings section below.
Page 97: Flow Control
M A G N U M S W I T C H E S , with the 802.3u standard, then the port configuration on the switch must be manually set to match the port configuration on the other device. Possible port setting combinations for copper ports are: •...
Page 98: Back Pressure
M A G N U M S W I T C H E S , where xonlimit can be from 3 to 30, default value is 4 xofflimit from 3 to 127, default value is 6 Syntax show flowcontrol Back Pressure Back Pressure is for half duplex operations and the controls provided indicates the number of buffers allowed for incoming traffic before a xon/xoff message is sent.
Page 99 M A G N U M S W I T C H E S , device Magnum6K25# Magnum6K25(device)## XOnLimit : 4 XOffLimit : 6 Magnum6K25(device)## XOn Limit set successfully XOff Limit set successfully Magnum6K25(device)## XOnLimit : 10 XOffLimit : 15 Magnum6K25(device)## Rx Buffer Threshold : 28 Magnum6K25(device)##...
Page 100: Broadcast Storms
M A G N U M S W I T C H E S , Port Flow Control Port Back Pressure Magnum6K25(device)## Magnum6K25(device)## Keys: E = Enable H = Half Duplex M = Multiple VLAN's LI = Listening F = Forwarding Port Name Control Dplx Media Link ------------------------------------------------------------------------------------------------------------- 11 JohnDoe E...
Page 101: Preventing Broadcast Storms
M A G N U M S W I T C H E S , Preventing broadcast storms The Magnum 6K family of switches is capable of detecting and limiting storms on each port. A network administrator can also set the maximum rate of broadcast packets (frames) that are permitted from a particular interface.
Page 102: Port Rate Limiting For Broadcast Traffic
M A G N U M S W I T C H E S , Enabled 19531 Magnum6K25(device)## Broadcast Rate Threshold set Magnum6K25(device)## ====================================================================== PORT | STATUS | THRESHOLD (frms/sec) | CURR RATE (frms/sec) | ACTIVE ====================================================================== Enabled 19531 Enabled 19531 Enabled 3500...
Page 103 Syntax show flowcontrol – display flow control buffers Syntax backpressure rxthreshold=<value> - configure backpressure buffers Syntax show backpressure – display backpressure buffers Syntax broadcast-protect <enable|disable> - protect switch from broadcast storms Syntax rate-threshold port=<port|list|range> rate=<frames/sec> - change the allowed broadcast rate threshold...
Page 104: Vlan
Magnum 6K family of switches. A VLAN is a group of ports designated by the switch as belonging to the same broadcast domain. The IEEE 802.1Q specification establishes a standard method for inserting VLAN membership information into Ethernet frames.
Page 105 L3-switch). The routing function can be done internally to a L3-switch. One advantage of an L3 switch is that the switch can also support multiple VLANs. The L3 switch can thus route traffic across multiple VLANs easily and provides a cost effective solution if there are mnay VLANs defined.
Page 106: Tag Vlan Or Port Vlan
What is the difference between tag and port VLAN? In a nutshell – the term port vlan is specific to a switch and port VLAN assigns a specific port or group of ports belonging to a VLAN. So when ports belong to multiple VLANs and they are specific to a switch, use the Port VLAN to configure that.
Page 107: Private Vlans
VLAN. Private VLANs Private VLANs are VLANs which are private to a given switch in a network. For Magnum 6K family of switches, the Private VLANs are usually restricted to a single switch. Private VLANs are implemented on Magnum 6K family of switches using Port based VLAN.
Page 108: Using Port Vlans
The reasons Private VLANs are constructed are for security. For example, if some confidential data were residing on VLAN 5, then only the people connected to that switch on VLAN 5 can have access to that information. No one else can access that VLAN. Similarly, if another switch had video surveillance equipment on VLAN 20 then only ports with access to VLAN 20 can have access to the video surveillance information.
Page 109 Magnum6K25(port-vlan)## Saving current configuration... Configuration saved 70 – configuring VLANs on Magnum 6K switch IGURE The example below shows how to add three different VLANs. Along with the VLANs, Port 14 is assigned to the four VLANs – the three new ones added plus the DEFAULT-VLAN 1. The following...
Page 110 VLANs 10, 20, 30 are added to port 14 and the VLANs activated. A typical use for such a port would be to connect a “dumb” switch to this port and allow traffic from three different VLANs to pass through transparently to the “dumb” switch, which will be connected to port 14. Note in this example, VLAN information is not propagated on to the “dumb”...
Page 111 M A G N U M S W I T C H E S , VLAN ID : 10 Name : engineering Status : Pending ======================== PORT | STATUS ======================== DOWN VLAN ID : 20 Name : sales Status : Pending ======================== PORT | STATUS...
Page 112: Using Tag Vlans
VLAN basis. For example the command status=tagged will instruct the switch to tag all packets going out of port 1 to belong to VLAN Syntax set-port port=<number|list|range> join id=<number> adds the specified port(s) to the specified VLAN id.
Page 113 2. There can be either TAG VLAN on MSN-6K or Port VLAN. Both VLANs cannot co-exit at the same time 3. There can only be one default VLAN for the switch. The default is set to VLAN 1 and can be changed to another VLAN. A word of caution on changing the default VLAN as well –...
Page 114 U S E R G U I D E To switch to TAG VLAN, the port VLAN has to be disabled or stopped. Only one type of VLAN can co-exist at the same time. Exit out of Port VLAN configuration mode and set the VLAN...
Page 115 UNTAGGED | DOWN UNTAGGED | DOWN UNTAGGED | UP UNTAGGED | DOWN UNTAGGED | DOWN UNTAGGED | DOWN vlan type=tag Magnum6K25# add id=10 name=mkt port=14-16 Magnum6K25(tag-vlan)## Tag based vlan Added Successfully. Vlan id Vlan name : mkt Ports :14-16 edit id=10 name=engineering port=14-16 Magnum6K25(tag-vlan)## Tag based vlan edited Successfully.
Page 116 M A G N U M S W I T C H E S , UNTAGGED | DOWN UNTAGGED | UP UNTAGGED | DOWN UNTAGGED | DOWN UNTAGGED | DOWN VLAN ID: 10 Name : engineering Status : Pending ---------------------------------------------------- PORT MODE STATUS...
Page 117 M A G N U M S W I T C H E S , Do you want to continue? [ 'Y' or 'N'] WARNING: PVID does not match the port(14)'s VLAN ID(s). If you are using telnet session on this port, setting ingress might stop the session.
Page 118 VLAN ID: 30 Name : marketing Status : Active ---------------------------------------------------- PORT MODE STATUS ---------------------------------------------------- UNTAGGED | DOWN UNTAGGED | DOWN UNTAGGED | DOWN set-port port=14-16 tagging id=10 status=tagged Magnum6K25(tag-vlan)## Port tagging enabled set-port port=14-16 tagging id=20 status=tagged Magnum6K25(tag-vlan)## Port tagging enabled set-port port=14-16 tagging id=30 status=tagged Magnum6K25(tag-vlan)## Port tagging enabled...
Page 119: Tag Vlans And Management
VLAN, please use the commands listed below: Syntax add id=<vlan Id> [name=<vlan name>] port=<number|list|range> [forbid=<number|list|range>] [<mgt|nomgt>] – add VLANs GarrettCom recommends to disable management function when the VLANs are added using the add command shown above. By default, management is allowed (enabled) on a VLAN.
Page 120 M A G N U M S W I T C H E S , add id=5 name=engineering port=10-14 Magnum 6K25(tag-vlan)## Tag based vlan Added Successfully. Vlan id Vlan name : engineering Ports :10-14 add id=10 name=marketing port=15,16 nomgt Magnum 6K25(tag-vlan)## Tag based vlan Added Successfully.
Page 121 M A G N U M S W I T C H E S , Name : marketing Status : Pending Management Port Excluded from this VLAN ----------------------------------------------- PORT | MODE STATUS ----------------------------------------------- 15 | UNTAGGED | DOWN 16 | UNTAGGED | DOWN edit id=5 port=14 nomgt...
Page 122: List Of Commands In This Chapter
UNTAGGED | UNTAGGED | DOWN UNTAGGED | DOWN UNTAGGED | DOWN UNTAGGED | DOWN UNTAGGED | DOWN UNTAGGED | DOWN UNTAGGED | DOWN UNTAGGED | DOWN 10 | UNTAGGED | DOWN 11 | UNTAGGED | DOWN 12 | UNTAGGED | DOWN 13 | UNTAGGED |...
Page 123 Syntax configure vlan type=port enter the VLAN configuration commands Syntax vlan type=port enter the VLAN configuration commands Syntax add id=<vlan Id> [name=<vlan name>] port=<number|list|range> [forbid=<number|list|range>] [<mgt|nomgt>] - adding VLAN Syntax edit id=<vlan id> [name=<vlan name>] port=<number|list|range> [<mgt|nomgt>] - edit existing VLAN name Syntax start vlan=<name|number|list|range>...
Page 124: Spanning Tree Protocol (Stp)
The MNS-6K software allows a manager to adjust the cost, priority, the mode for each port as well as the global STP parameter values for the switch. While allowing only one active path through a network at any time, STP retains any redundant physical path to serve as a backup (blocked) path in case the existing active path fails.
Page 125: Using Stp
The commands used for configuring STP are listed below. Syntax show stp <config|ports > - regardless of whether STP is enabled or disabled (default) this command lists the switch’s full STP configuration, including general settings and port settings show stp config...
Page 126: Figure 75 - Viewing Stp Configuration
Value ranges from 6 to 40 seconds with default value of 20 seconds Root Port: indicates the port number, which is elected as the root port of the switch. A root port of “0” indicates STP is disabled Root Path Cost: A path cost is assigned to individual ports for the switch to determine which ports are the forwarding points.
Page 127: Figure 76 - Stp Port Status Information
Root Bridge Forward Delay: indicates the designated root bridge’s forward delay. This is the time the switch waits before it switches from the listening to the forwarding state. The default is 15 seconds. This value can be set between 4-30 seconds Root Bridge Hello Time: indicates the designated root bridge’s hello time.
Page 128 Priority: STP uses this to determine which ports are used for forwarding. Lower the number means higher priority. Value ranges from 0 to 255. Default is 128 Path Cost: This is the assigned port cost value used for the switch to determine the forwarding points. Values range from 1 to 65535 State: indicates the STP state of individual ports.
Page 129: Figure 77 - Enabling Stp
Syntax priority [port=<number|list|range>] value=<0-255 | 0-65535> - specifies the port or switch level priority. When a port(s) are specified the priority is associated with ports and their value is 0-255. If no ports are specified, then the switch (bridge) priority is specified and its value is 0-65535 Syntax cost port=<number|list|range>...
Page 130 Value ranges from 0 to 65535. Default value is 32768 Cost: A path cost is assigned to individual ports for the switch to determine which ports are the forwarding points. A higher cost means the link is “more expensive” to use and falls in the passive mode compared to the link with a lower cost.
Page 131 M A G N U M S W I T C H E S , STP Port Configuration ------------------------------------------------------------------------------------------------------------------------ Port# Type Priority ------------------------------------------------------------------------------------------------------------------------ TP(10/100) 128 TP(10/100) 128 TP(10/100) 128 TP(10/100) 128 TP(10/100) 128 TP(10/100) 128 TP(10/100) 128 TP(10/100) 128 stp enable Magnum6K25(stp)## Successfully set the STP status show stp config...
Page 132 M A G N U M S W I T C H E S , TP(10/100) 128 TP(10/100) 128 TP(10/100) 128 priority value=15535 Magnum6K25(stp)## Successfully set the bridge priority show stp config Magnum6K25(stp)## STP CONFIGURATION ----------------- Spanning Tree Enabled(Global) Spanning Tree Enabled(Ports) Protocol Bridge ID Bridge Priority...
Page 133 M A G N U M S W I T C H E S , Setting cost for STP...Successfully set the path cost for port 13 show stp ports Magnum6K25(stp)## STP Port Configuration ------------------------------------------------------------------------------------------------------------------------ Port# Type Priority ------------------------------------------------------------------------------------------------------------------------ TP(10/100) 128 TP(10/100) 128 TP(10/100) 128 TP(10/100) 128...
Page 134 M A G N U M S W I T C H E S , show stp config Magnum6K25(stp)## STP CONFIGURATION ----------------- Spanning Tree Enabled(Global) Spanning Tree Enabled(Ports) Protocol Bridge ID Bridge Priority Bridge Forward Delay Bridge Hello Time Bridge Max Age Root Port Root Path Cost Designated Root...
Page 135: List Of Commands In This Chapter
Syntax priority [port=<number|list|range>] value=<0-255 | 0-65535> - specifies the port or switch level priority. When a port(s) are specified the priority is associated with ports and their value is 0- 255. If no ports are specified, then the switch (bridge) priority is specified and its value is 0-65535 Syntax cost port=<number|list|range>...
Page 136: Rapid Spanning Tree Protocol (Rstp)
• STP relays configuration messages received on the root port going out of its designated ports. If an STP switch (bridge) fails to receive a message from its neighbor it cannot be sure where along the path to the root a failure occurred.
Page 137: Transition From Stp To Rstp
Proper implementations of RSTP (by switch vendors) is designed to be compatible with IEEE 802.1d STP. GarrettCom recommends that you employ RSTP or STP in your network. Transition from STP to RSTP IEEE 802.1w RSTP is designed to be compatible with IEEE 802.1D STP.
Page 138: Configuring Rstp
Configuring RSTP The commands to setup and configure RSTP on MNS-6K are Syntax set stp type=<stp|rstp> - Set the switch to support RSTP or change it back to STP. Need to save and reboot the switch after this command Syntax rstp – enter the RSTP configuration mode Syntax rstp <enable|disable>...
Page 139 M A G N U M S W I T C H E S , Syntax port port=<number|list|range> [status=<enable|disable>] [migration=<enable>] [edge=<enable|disable>] [p2p=<on|off|auto>] Example port port=<number|list|range> p2p= off all ports that are connected to value is auto. P2P ports would typically be end stations or computers on the network Example port port=<number|list|range>...
Page 140: Figure 79 - Enabling Rstp And Reviewing The Rstp Variables
Value ranges from 6 to 40 seconds with default value of 20 seconds Root Port: indicates the port number, which is elected as the root port of the switch. A root port of “0” indicates STP is disabled Root Path Cost: a path cost is assigned to individual ports for the switch to determine which ports are the forwarding points.
Page 141: Figure 80 - Reviewing The Rstp Port Parameters
Root Bridge Forward Delay: indicates the designated root bridge’s forward delay. This is the time the switch waits before it switches from the listening to the forwarding state. The default is 15 seconds. This value can be set between 4-30 seconds Root Bridge Hello Time: indicates the designated root bridge’s hello time.
Page 142: Figure 81 - Path Cost As Defined In Ieee 802.1D (Stp) And 802.1W (Rstp)
Port Type STP Path cost 10 Mbps 100 Mbps 1 Gbps 10 Gbps Figure 81 – Path cost as defined in IEEE 802.1d (STP) and 802.1w (RSTP) State: indicates the STP state of individual ports. Values can be Listening, Learning, Forwarding, Blocking and Disabled.
Page 143 Syntax priority [port=<number|list|range>] value=<0-255 | 0-65535> - specifies the port or switch level priority. When a port(s) are specified the priority is associated with ports and their value is 0- 255. If no ports are specified, then the switch (bridge) priority is specified and its value is 0-65535 Syntax cost port=<number|list|range>...
Page 144 M A G N U M S W I T C H E S , Age: This is the maximum time a message with STP information is allowed by the switch before the switch discards the information and updates the address table again. Value...
Page 145 Disabled Forwarding 00:00:00:20:06:25:ed:89 00:0d Disabled Disabled Disabled “forceversion” can be used for compatibility with STP devices. In this example, the switch is forced to STP mode. : YES : 9,10,11,12,13,14,15,16 : Force to STP only : 00:00:00:20:06:25:ed:89 : 15 : 02...
Page 146 M A G N U M S W I T C H E S , ----------------- Rapid STP/STP Enabled(Global) RSTP/STP Enabled Ports Protocol Bridge ID Bridge Priority Bridge Forward Delay Bridge Hello Time Bridge Max Age Root Port Root Path Cost Designated Root Designated Root Priority Root Bridge Forward Delay...
Page 147 M A G N U M S W I T C H E S , TP(10/100) 128 2000000 TP(10/100) 100 200000 TP(10/100) 128 2000000 TP(10/100) 128 2000000 TP(10/100) 128 2000000 cost port=13 value=250000 Magnum6K25(rstp)## show stp ports Magnum6K25(rstp)## RSTP Port Configuration -------------------------------------------------------------------------------------------------------------- Port# Type...
Page 148: List Of Commands In This Chapter
IGURE List of commands in this chapter Syntax set stp type=<stp|rstp> - Set the switch to support RSTP or change it back to STP. Need to save and reboot the switch after this command Syntax rstp – enter the RSTP configuration mode Syntax rstp <enable|disable>...
Page 149 Syntax priority [port=<number|list|range>] value=<0-255 | 0-65535> - specifies the port or switch level priority. When a port(s) are specified the priority is associated with ports and their value is 0- 255. If no ports are specified, then the switch (bridge) priority is specified and its value is 0-65535 Syntax cost port=<number|list|range>...
Page 150: Rs-Ring™, S-Ring™ And Link-Loss-Learn™ (Lll)
STP where it does the necessary actions for fault recovery (such as re-learn addresses) in case of a link failure. S-Ring is a ring technology using the GarrettCom MNS-6K software. In a S-Ring, a switch is designated as a “Ring Manager”. Devices in a S-Ring can be managed...
Page 151: S-Ring And Lll Concepts
STP, S-Ring offers an additional topology option to network architects. The two ends of a ring must be connected to two ports in a Magnum 6K Switch that is enabled with the S-Ring software. The end points of the ring provide an alternate path to reach the switch that has failed.
Page 152: Rs-Ring Concepts
Each of the two ends of a ring must be connected to two ports in a Magnum 6K Switch that is enabled with the RS-Ring software. The end points of the ring provide an alternate path to reach the switch that has failed. Some items for using RS-Ring are as follows: 1.
Page 153: When To Use Rs-Ring Vs S-Ring
Magnum 6K family of switches. If there are non managed devices, RS-Ring cannot be used. It is technically possible to have S-Ring and RS-Ring on the same Magnum 6K Switch. GarrettCom Inc. does not recommend nor support such configurations. M N S - 6 K...
Page 154: Comparing Resiliency Methods
Devices 6K family of supported switches Distributed across Recovery all switches in the decision ring. Works with RSTP in each switch Single ring, multiple Topology rings, no overlapping rings or ring of rings Works with Interoperability managed Magnum 6K family of...
Page 155: Rstp/Stp Operation Without Rs-Ring Or S-Ring
S-Ring supports non managed switches as long as LLL capability is supported on that switch. A ring is a special form of mesh network topology. The two top-of-the-ring ports form an otherwise-illegal redundant path, and standard RSTP/STP causes one of these two ports to block incoming packets in order to enable normal Ethernet traffic flow.
Page 156 M A G N U M S W I T C H E S , Forwarding Forwarding Port Port 84 – Normal RSTP/STP operations in a series of switches. Note – this normal status is IGURE designated RING_CLOSED This normal status is designated as RING_CLOSED. Operations will continue this way indefinitely until a fault occurs.
Page 157: Rstp/Stp Operation With S-Ring
S-Ring when RSTP or STP is configured and in use. For the S-Ring, the user must select two ports of one 6K switch to operate as a pair in support of each Ethernet ring, and attach to the two “ends” of each ring as it comes together at the ring control switch.
Page 158 86 – More than one S-Ring pair can be selected and more than one S-Ring can be defined per IGURE switch. Note – the mP62 as well as the ESD42 switches support LLL and can participate in S-Ring as an access switch More than one S-Ring port-pair may be selected per ring control switch.
Page 159: Lll With S-Ring
S- Ring port-pair list for that 6K Switch. The user can enable or disable ports pairs that are on the S-Ring list by CLI commands in order to exercise final control if needed. This feature is...
Page 160: Configuring S-Ring
S W I T C H E S , Configuring S-Ring S-Ring is a licensed software feature from GarrettCom Inc. Before using the S-Ring capabilities; authorize the use of the software with the license key. To obtain the license key, please contact GarrettCom Inc.
Page 161 Syntax s-ring add port=<port1,port2> - define ports which make up the S-Ring ports. Note as discussed earlier, you can create multiple S-Rings on a switch Syntax s-ring del port=<port1,port2> - remove the switch from S-Ring topology by eliminating the end ports on the switch...
Page 162: Figure 88 - S-Ring Configuration Commands For Root Switch
For configuring LLL, use the commands listed below. Syntax lll <enable|disable> - enable or disable LLL on the switch If STP is enabled, Link Loss Learn will not work even though it was enabled.
Page 163: Rstp Operation With Rs-Ring
RSTP. Unlike S-Ring, the decision is made by each individual switch and not by the ring master. For RS-Ring, the user must select the two ports (port pairs) and enable RS-Ring on each of the switches in the ring.
Page 164 S W I T C H E S , Ring 1 Ring 1 90 – More than one RS-Ring cannot be defined per managed Magnum 6K switch. Note – IGURE unmanaged switches cannot participate in RS-Ring. The port-pairs may be of any media type, and the media type does not have to be the same for the pair.
Page 165: Configuring Rs-Ring
Configuring RS-Ring RS-Ring is a licensed software feature from GarrettCom Inc. Before using the RS-Ring capabilities; authorize the use of the software with the S-Ring license key. The same license key is used for either the S-Ring or RS-Ring. To obtain the license key, please contact GarrettCom Inc.
Page 166 Syntax rs-ring add port=<port1,port2> - define ports which make up the RS-Ring ports. Note as discussed earlier, you can create multiple RS-rings on a switch Syntax rs-ring del port=<port1,port2> - remove the switch from RS-Ring topology by eliminating the end ports on the switch...
Page 167: List Of Commands In This Chapter
Syntax s-ring learn – start the learning process to discover the ring and the ports which make up the S- Ring Syntax s-ring add port=<port1,port2> - define ports which make up the S-ring ports. Note as discussed earlier, you can create multiple S-Rings on a switch M N S - 6 K U S E R...
Page 168 M A G N U M S W I T C H E S , Syntax s-ring del port=<port1,port2> - remove the switch from S-Ring topology by eliminating the end ports on the switch Syntax lll <enable|disable> - enable or disable LLL on the switch Syntax lll add port=<port|list|range>...
Page 169: 13 - Dual-Homing
A dual- homing switch (such as EDS42) offers two attachments into the network or two independent media paths and two upstream switch connections. In the case of the Magnum 6K family of switches, any two ports can be defined as dual-home ports to provide this level of redundancy.
Page 170 M A G N U M S W I T C H E S , 93 – Dual-homing using ESD42 switch and Magnum 6K family of switches. In case of a IGURE connectivity break – the connection switches to the standby path or standby link...
Page 171 • Dual-homing ports can span different modules in a switch If dual homing is not configured there is a potential a loop can be created and either STP or RSTP will setup the port in the active stand-by mode.
Page 172: Dual-Homing Modes
There are two modes in which the dual-homing works. The first one is where the ports are “equivalent” i.e. if one port fails, the other one take over, however, if the first (failed) port recovers, the active port does not switch back. The second mode of operation is primary-secondary mode. In this mode of operation, the primary port is explicitly defined and the secondary port is explicitly defined.
Page 173 dualhome ? Magnum 6K25# dualhome : Configures Dual homing Usage dualhome <enter> show dualhome Magnum 6K25# Dual Homing Status : DISABLED dualhome Magnum 6K25# dualhome add port1=10 port2=11 Magnum 6K25(dualhome)## Dual Homing Ports configured dualhome enable Magnum 6K25(dualhome)## Dual Homing Enabled. show dualhome Magnum 6K25(dualhome)## Dual Homing Status...
Page 174: List Of Commands In This Chapter
M A G N U M S W I T C H E S , M N S - 6 K U S E R G U I D E List of commands in this chapter Syntax dualhome – enter the dual-homing configuration sub-system Syntax dualhome <enable|disable>...
Page 175: Link Aggregation Control Protocol (Lacp)
14 – Link Aggregation Control Protocol (LACP) Increase Network throughput and reliability ink aggregation Link Aggregation Control Protocol (LACP) is part of an IEEE specification (IEEE 802.3ad) that allows several physical ports to be grouped or bundled together to form a single logical channel. This increases the throughput across two devices and provides improved reliability.
Page 176: Lacp Configuration
M A G N U M S W I T C H E S , The performance is improved because the capacity of an aggregated link is higher than each individual link alone. 10Mbps or 10/100Mbps or 100Mbps ports can be grouped together to form one logical link.
Page 177 M A G N U M S W I T C H E S , Switch 1 Switch 2 97 – Some valid LACP configurations. IGURE Should trunks be created so as to span multiple ports, a “trunk mismatch” error message is printed on the console.
Page 178 (for LACP using 4 ports) as the trunk group belongs to two different VLANs. However – on each switch, the set of ports can belong to same VLANs as shown in the figure below. While the ports belong to the same VLANs, there is no common VLAN between the switches and hence the LACPDU cannot be transmitted.
Page 179 101 – This configuration is similar to the previous configuration, except there is a common IGURE VLAN (VLAN 1) between the two sets of LACP ports. This is a valid configuration. Switch 3 102 – In the architecture above, using RSTP and LACP allows multiple switches to be configured IGURE together in a meshed redundant link architecture.
Page 180 103 – LACP, along with RSTP/STP brings redundancy to the network core or backbone. IGURE Using this reliable core with a dual-homed edge switch brings reliability and redundancy to the edge of the network It is recommended not to use LACP with S-Ring at this time.
Page 181 M A G N U M S W I T C H E S , M N S - 6 K U S E R G U I D E S-Ring 1 S-Ring 2 104 – This architecture is not recommended IGURE LACP can be used for creating a reliable network between two facilities connected via a wireless bridge.
Page 182 Before enabling, please ensure that the correct ports are configured. If network connectivity is lost due to a port being configured as a LACP port, you will need to physically access the switch via the console to correct this error.
Page 183 M A G N U M S W I T C H E S , Some other definitions are worth noting are primary port. Primary port is the port over which specific traffic like Multicast (IGMP), unknown Unicast and broadcast traffic is transmitted. As shown by the add port command, the port with the lowest priority value has the highest priority and is designated as the primary port.
Page 184 M A G N U M S W I T C H E S , Port Priority Trunk ===================== 32768 Link Down 32768 Link Down 32768 Link Down add port=12 Magnum 6K25(lacp)## Port(s) added successfully. show lacp Magnum 6K25(lacp)## Orphan Ports: Port Priority Trunk ===================== 32768 Link Down...
Page 185 In the figure shown above, Switch 1 has ports 11 and 15 forming the first trunk, connecting to Switch 3. Switch 1 also has ports 17 and 23 forming the second trunk on Switch 2. The ‘show lacp’ command was executed on Switch 1.
Page 186: List Of Commands In This Chapter
M A G N U M S W I T C H E S , Trunk Partner : 00:20:06:25:72:90 Member Ports: Port Priority Trunk ===================== 32768 Primary Port 32768 Member Port 108 – LACP information over a network IGURE List of commands in this chapter Syntax lacp - enable the LACP configuration module within CLI Syntax lacp <enable | disable>...
Page 187: 15 - Quality Of Service
To make the preemptive queuing possible, most switches implement at least two queue buffers. The Magnum 6K family of switches has two priority queues, 1 (low) and 0 (high).When tagged packets enter a switch port, the switch responds by placing The Magnum 6K family of switches supports QoS as specified in the IEEE 802.1p and IEEE 802.1q standards.
Page 188: Diffserv And Qos
DiffServ is a layer-3 protocol and requires no specific layer-2 capability, allowing it to be used in the LAN, MAN, and WAN. DiffServ works by tagging each packet (at the originating device or an intermediate switch) for the requested level of service it requires across the network.
Page 189: Ip Precedence
M A G N U M S W I T C H E S , IP Precedence IP Precedence utilizes the three precedence bits in the IPv4 header's Type of Service (ToS) field to specify class of service for each packet. You can partition traffic in up to eight classes of service using IP precedence.
Page 190: Configuring Qos
Magnum 6K family of switches support three types of QoS - Port based, Tag based and ToS based. QoS is disabled by default on the switch. QoS needs to be enabled and configured. Syntax qos – enter the QoS configuration mode Syntax set qos type=<port|tag|tos|none>...
Page 191 Syntax set-weight weight=<0-7> - sets the port priority weight for All the ports. Once the weight is set, all the ports will be the same weight across the switch. The valid value for weight is 0-7. A weight is a number calculated from the IP precedence setting for a packet.
Page 192 Syntax show qos [type=<port|tag|tos>] [port=<port|list|range>] – displays the QoS settings Sometimes it is necessary to change the priority of the packets going out of a switch. For example, when a packet is received untagged and has to be transmitted with an addition of the 802.1p priority tag, the tag can be assigned depending on the untag value set.
Page 193 M A G N U M S W I T C H E S , ================================ PORT | PRIORITY | STATUS ================================ High DOWN DOWN DOWN DOWN DOWN DOWN setqos port=11 priority=high type=tag tag=6 Magnum6K25(qos)## Successfully set QOS. show qos Magnum6K25(qos)## ============================== PORT...
Page 194: List Of Commands In This Chapter
Syntax set-weight weight=<0-7> - sets the port priority weight for All the ports. Once the weight is set, all the ports will be the same weight across the switch. The valid value for weight is 0-7 Syntax show-portweight - display the weight settings on a port...
Page 195 M A G N U M S W I T C H E S , Syntax show qos [type=<port|tag|tos>] [port=<port|list|range>] – displays the QoS settings Syntax set-untag port=<port|list|range> priority=<high|low> tag=<0-7> - The 802.1p user priority assigned to untagged received packets to be transmitted as tagged from the priority queue M N S - 6 K U S E R...
Page 196: 16 - Igmp
16 – IGMP Multicast traffic on a network nternet Group Management Protocol (IGMP) is defined in RFC 1112 as the standard for IP multicasting in the Internet. It is used to establish host memberships in particular multicast groups on a single network. The mechanisms of the protocol allows a host to inform its local router, using Host Membership Reports that it wants to receive messages addressed to a specific multicast group.
Page 197 The multicast group running version 2 of IGMP uses three fundamental types of messages to communicate: • Query: A message sent from the querier (multicast router or switch) asking for a response from each host belonging to the multicast group. If a multicast router supporting IGMP is not present, then the switch must assume this function in order to elicit group membership information from the hosts on the network.
Page 198 113 – IGMP concepts – advantages of using IGMP IGURE • PCs 1 and 4, switch 2, and all of the routers are members of an IP multicast group. (The routers operate as queriers.) • Switch 1 ignores IGMP traffic and does not distinguish between IP multicast group members and non-members.
Page 199 The next figure (below) shows a network running IP multicasting using IGMP without a multicast router. In this case, the IGMP-configured switch runs as a querier. PCs 2, 5, and 6 are members of the same IP multicast group. IGMP is configured on switches 3 and 4. Either of these switches can operate as querier because a multicast router is not present on the network.
Page 200: Igmp-L2
The benefits of IGMP are clear. The traditional ways of building an IGMP network calls for the IGMP querier to reside on a Layer 3 network device - typically a router or a Layer 3 switch. The end devices (encoders or transmitters) reside on a Layer 2 device and the encoder sends a query/join request to join the specific multicast group.
Page 201 M A G N U M S W I T C H E S , For a Layer 2 IGMP environment, all Magnum 6K family of switches have to be enabled in the IGMP-L2. This is done using the CLI command 'set igmp mode=l2' which will be described later.
Page 202 116 - Using IGMP-L2 on Magnum 6K family of switches, a Layer 2 network can minimize multicast IGURE traffic as shown above. Each switch has the IGMPL2 turned on. Each switch can exchange the IGMP query message and respond properly. R4 wants to view surveillance traffic from T1. As shown by (1), a join request is sent by R4.
Page 203: Configuring Igmp
Configuring IGMP Syntax igmp – IGMP configuration mode Syntax igmp <enable| disable> - enable or disable IGMP on the switch Syntax show igmp – IGMP operation status Syntax mcast <enable | disable> - enable or disable unknown multicast streams. The default is enabled Syntax set igmp mode= <normal|l2>...
Page 204 It disables the port (where the leave message is received) ability to transmit multicast traffic. Querier shows where the switch is acting a querier or a non-querier. In the example above the switch is the querier. Querier Interval shows the time period in seconds on which the switch sends general host- query messages.
Page 205 Timer shows the amount of time left in seconds before the group port will be deleted (or will not be able to route multicast traffic) if the switch does not receive a membership report. Leave Pending column shows the number of leave messages received from this port Every port can be individually set to three different IGMP modes –...
Page 206 M A G N U M S W I T C H E S , Syntax set-qi interval=<value> - The IGMP querier router periodically sends general host-query messages. These messages are sent to ask for group membership information. This is sent to the all- system multicast group address, 224.0.0.1.
Page 207 M A G N U M S W I T C H E S , Querier Interval Querier Response Interval set-leave disable Magnum6K25(igmp)## IGMP immediate leave status is disabled show igmp Magnum6K25(igmp)## IGMP State ImmediateLeave Querier Querier Interval Querier Response Interval set-querier enable Magnum6K25(igmp)## IGMP querier status is enabled...
Page 208: List Of Commands In This Chapter
List of commands in this chapter Syntax igmp – IGMP configuration mode Syntax igmp <enable/disable> - enable or disable IGMP on the switch Syntax show igmp – IGMP operation status Syntax mcast <enable | disable> - enable or disable unknown multicast streams. The default is enabled...
Page 209 Syntax show-port – display the port characteristics for IGMP Syntax show-router – displays detected IGMP-enabled router ports Syntax set-leave <enable|disable> - enables or disables the switch to immediately process a host sending a leave message rather that wait for the timer to expire Syntax set-querier <enable|disable>...
Page 210: 17 - Gvrp
GVRP. GVRP is defined in the IEEE 802.1q and GARP in the IEEE 802.1p standards. In order to utilize the capabilities of GVRP, GarrettCom Inc. strongly recommends that the user is familiar with the concepts and capabilities of IEEE 802.1q.
Page 211: Gvrp Operations
121 – GVRP operation – see description below IGURE Switch 1 with static VLANs (VID= 1, 2, & 3). Port 2 is a member of VIDs 1, 2, & 3. 1. Port 2 advertises VIDs 1, 2, & 3 2. On Switch 2 - Port 1 receives advertisement of VIDs 1, 2, & 3 AND becomes a member of VIDs 1, 2, &...
Page 212 An “unknown VLAN” is a VLAN that the switch learns of by GVRP. For example, suppose that port 1 on switch “A” is connected to port 5 on switch “C”. Because switch “A” has VLAN 22 statically configured, while switch “C” does not have this VLAN statically configured, VLAN 22 is handled as an “Unknown VLAN”...
Page 213 VLAN with the same VID as in the advertisement, and allow that VLAN’s traffic • If the switch already has a static VLAN with the same VID as in the advertisement, and the port is configured to learn for that VLAN, then the port will dynamically join the VLAN and allow that VLAN’s traffic.
Page 214 M A G N U M S W I T C H E S , gvrp Magnum6K25# show-vlan Magnum6K25(gvrp)## ============================================ VLAN ID | NAME ============================================ | Default VLAN | | Blue | dyn10 Magnum6K25(gvrp)## 124 – Command to check for dynamically assigned VLANs IGURE Note that port 10 must be enabled and configured to learn for it to be assigned to the dynamic VLAN.
Page 215 VLAN context. Since dynamic VLANs operate as tagged VLANs, and it is possible that a tagged port on one device may not communicate with an untagged port on another device, GarrettCom Inc. recommends that you use Tagged VLANs for the static VLANs.
Page 216: Configuring Gvrp
VLANs and the current Primary VLAN Syntax gvrp <enable|disable> - enable or disable GVRP Syntax show-vlan – list all the VLANs (including dynamic VLANs) on the switch Syntax set-ports port=<port|list|range> state=<learn|block|disable> - set the state of the port to learn, block or disable for GVRP.
Page 217: Gvrp Operations Notes
– on a reboot the changes can be lost without the save command. Within the same broadcast domain, a dynamic VLAN can pass through a device that is not GVRP-aware. This is because a hub or a switch that is not GVRP-aware will flood the GVRP (multicast) advertisement packets out all ports.
Page 218: List Of Commands In This Chapter
VLANs and the current Primary VLAN Syntax gvrp <enable|disable> - enable or disable GVRP Syntax show-vlan – list all the VLANs (including dynamic VLANs) on the switch Syntax set-ports port=<port|list|range> state=<learn|block|disable> - set the state of the port to learn, block or disable for GVRP.
Page 219: 18 - Snmp
18 – SNMP Managing your network using SNMP imple Network Management Protocol (SNMP) enables management of the network. There are many software packages which provide a graphical interface and a graphical view of the network and its devices. The graphical interface and view would not be possible without SNMP.
Page 220 M A G N U M S W I T C H E S , M N S - 6 K U S E R G U I D E Simple Network Management Protocol Version 3 (SNMPv3) – The third version of SNMP, the enhancements made to secure access, different levels of access and security.
Page 221: Traps
SNMPv1 standards Security via configuration of SNMP communities • • Event reporting via SNMP • Managing the switch with an SNMP network management tool Supported Standard MIBs include: SNMP MIB-II (RFC 1213) • Bridge MIB (RFC 1493) (ifGeneralGroup, ifRcvAddressGroup, ifStackGroup) •...
Page 222: Configuring Snmp
M A G N U M S W I T C H E S , RMON MIB (RFC 1757) • RMON: groups 1, 2, 3, and 9 (Statistics, Events, Alarms, and History) • • Version 1 traps (Warm Start, Cold Start, Link Up, Link Down, Authentication Failure, Rising Alarm, Falling Alarm) RFC 1901-1908 –...
Page 223 Syntax mgrip <add|delete> ip=<IPaddress> - adds or deletes a management station, specified by the IP address, which can query SNMP variables from the switch. This is done to protect the switch from being polled by unauthorized managers. Valid for SNMP v1. Maximum of 5 stations allowed Syntax setvar [sysname|syscontact|syslocation]=<string>...
Page 224 M A G N U M S W I T C H E S , Syntax com2sec <add|delete> id=<id> [secname=<name>] [source=<source>] [community=<community>] - a part of the View based Access control model (VACM) as defined in RFC 2275. This specifies the mapping from a source/community pair to a security name. On MNS- 6K, up to 10 entries can be specified Syntax group <add|delete>...
Page 225 SNMP MANAGERS INFO ------------------ SNMP TRAP STATIONS INFO ----------------------- snmp Magnum6K25# community write=private read=public Magnum6K25(snmp)## SNMP Read community name successfully set SNMP Write community name successfully set show snmp Magnum6K25(snmp)## SNMP CONFIGURATION INFORMATION ------------------------------ SNMP Get Community Name : public SNMP Set Community Name : private SNMP Trap Community Name : public AuthenTrapsEnableFlag...
Page 226 M A G N U M S W I T C H E S , SNMP TRAP STATIONS INFO ----------------------- traps add type=Snmp,Rmon ip=192.168.1.2 Magnum6K25(snmp)## Successfully Added. show snmp Magnum6K25(snmp)## SNMP CONFIGURATION INFORMATION ------------------------------ SNMP Get Community Name : public SNMP Set Community Name : private SNMP Trap Community Name : public AuthenTrapsEnableFlag...
Page 227 M N S - 6 K U S E R G U I D E : Magnum6K25 : Fremont, CA : support@garrettcom.com : Disabled : public : 6K_v3Engine Switch over to SNMPv3 from this point forward Max limit of system variables is 15 characters...
Page 228 show-trap Magnum6K25(snmpv3)## Trap Type Host IP ================================================================ 10.21.1.100 -- show-trap id=1 Magnum6K25(snmpv3)## Trap ID Trap Type : v1 Host IP : 10.21.1.100 Community : -- Auth. Type : -- com2sec add id=1 secname=public source=default community=public Magnum6K25(snmpv3)## Entry is added successfully com2sec add id=2 Magnum6K25(snmpv3)## ERROR: "secname"...
Page 229 M A G N U M S W I T C H E S , group add id=1 groupname=v1 model=v1 com2secid=1 Magnum6K25(snmpv3)## Entry is added successfully show-group Magnum6K25(snmpv3)## Group Name Sec. Model ================================================== public public show-group id=1 Magnum6K25(snmpv3)## Group ID Group Name : v1 Model : v1...
Page 230 M A G N U M S W I T C H E S , access add id=1 accessname=v1 model=v1 level=noauth read=1 writ Magnum6K25(snmpv3)## e=none notify=none Entry is added successfully show-access Magnum6K25(snmpv3)## ID View Name Model Level ============================================================== noauth show-access id=1 Magnum6K25(snmpv3)## Access ID Access Name...
Page 231: Configuring Rmon
RMON MIB definition. The following RMON groups are supported: • Ethernet Statistics Group - maintains utilization and error statistics for the switch port being monitored. • History Group – gathers and stores periodic statistical samples from previous Statistics Group.
Page 232: List Of Commands In This Chapter
M A G N U M S W I T C H E S , The following RMON communities, when defined, enable the specific RMON group as show above. Syntax rmon – enter the RMON configuration mode to setup RMON groups and communities Syntax history def-owner=<string>...
Page 233 Syntax mgrip <add|delete> ip=<IPaddress> - adds or deletes a management station, specified by the IP address, which can query SNMP variables from the switch. This is done to protect the switch from being polled by unauthorized managers. Valid for SNMP v. Maximum of five stations allowed.
Page 234 M A G N U M S W I T C H E S , Syntax trap <add|delete> id=<id> [type=<v1|v2|inform>] [host=<host-ip>] [community=<string>] [port=<1-65534>] station can receive v1, v2 traps and/or inform notifications. An inform notification is an acknowledgments that a trap has been received. A user can add up to 5 stations. Syntax show-trap [id=<id#>]- shows the configured trap stations in tabular format - id is optional and is the number corresponding to the trap entry number in the table Syntax com2sec <add|delete>...
Page 235 M A G N U M S W I T C H E S , Syntax statistics def-owner=<string> def-comm=<string>- define the RMON statistics group and the community string associated with the group Syntax alarm def-owner=<string> def-comm=<string> - define the RMON alarm group and the community string associated with the group Syntax event def-owner=<string>...
Page 236: 19 - Miscellaneous Commands
19 – Miscellaneous Commands Improving productivity and manageability here are several features built into the Magnum 6K family of switches which help with the overall productivity and manageability of the switch. These items are examined individually in this chapter. Alarm Relays In a wiring closet, it would be helpful if there was a visual indication for faults on components on the network.
Page 237 M A G N U M S W I T C H E S , Event ID Event Description S-RING OPEN Cold Start Warm Start Link Up Link Down Authentication Failure RMON Rising Alarm RMON Falling Alarm Intruder Alarm Link Loss Learn Triggered Broadcast Storm Detected STP/RSTP Reconfigured 130 –...
Page 238 M A G N U M S W I T C H E S , Syntax period time=<1..10> - sets the duration of relay action for the momentary type signal. This may be needed to adjust to the behavior of the circuit or relay. Default is 3 seconds. Time is in seconds Syntax del event=<event-id|list|range|all>...
Page 239 M A G N U M S W I T C H E S , 5 Link Down 6 Authentication Failure 7 RMON Raising Alarm 8 RMON Falling Alarm 9 Intruder Alarm 10 Link Loss Learn Triggered 11 Broadcast Storm Detected 12 STP/RSTP Reconfigured add event=2 Magnum6K25(alarm)##...
Page 240: Email
M A G N U M S W I T C H E S , 8 RMON Falling Alarm 9 Intruder Alarm 10 Link Loss Learn Triggered 11 Broadcast Storm Detected 12 STP/RSTP Reconfigured alarm disable Magnum6K25(alarm)## Alarm system Disabled del event=1,3,5,7 Magnum6K25(alarm)## Alarm Event(s) Deleted: 1, 3, 5, 7...
Page 241 If this capability is used, please ensure that SPAM filters and other filters are not set to delete these emails. GarrettCom Inc. recommends that a rule be setup on the mail server so that all emails indicating SNMP faults are automatically stored in a folder or redirected to the necessary administrators.
Page 242 email – [mandatory] email address of the recipient traps – [optional] this is the trap filter. If value is “all”, all traps of any type will be sent to this recipient. If value is none, no traps are sent to this recipient. Value can also be a combination of ‘S’...
Page 243 SMTP Server IP : 67.109.247.195 SMTP Server Port : 25 Retry Count show smtp recipients Magnum6K25(smtp)## E-mail Address =========================================================== rk@gci,sys@gci.com 67.109.247.195 add id=2 email=jsmith@garrettcom.com traps=S events=CF Magnum6K25(smtp)## Recipient successfully added show smtp recipients Magnum6K25(smtp)## E-mail Address =========================================================== rk@gci,sys@gci.com 67.109.247.195 jsmith@gci.com delete id=2...
Page 244 M A G N U M S W I T C H E S , add id=2 email=jsmith@garrettcom.com traps=S events=CF Magnum6K25(smtp)## ip=192.168.10.13 Recipient successfully added show smtp recipients Magnum6K25(smtp)## E-mail Address =========================================================== rk@gci,sys@gci.com 67.109.247.195 jsmith@gci.com sendmail server=10.21.1.2 to=jack@garrettcom.com Magnum6K25(smtp)## from=support@garrettcom.com subject=test body=hello...
Page 245: Serial Connectivity
When using the serial connectivity with applications such as Hyper terminal etc. it may be necessary to optimize the character delays so that the FIFO buffer used in the GarrettCom Magnum 6K family of switches is not overrun. The important parameters to set for any serial connectivity software is to set the line delay to be 500 milliseconds and the character delay to be 50 milliseconds.
Page 246: Miscellaneous Commands
Syntax show history – show the last 25 commands executed – if less than 25 commands are executed, only those commands executed are shown If the user logs out or if the switch times out – the history is erased. The history count restarts when the user logs in again Syntax <Up-arrow>...
Page 247: Prompt
M A G N U M S W I T C H E S , Baud Rate : 38400 Data Parity : No Parity Stop Flow Control : None show history Magnum6K25# 1 : show version 2 : show setup 3 : show serial 4 : show history Magnum6K25#...
Page 248: Ping
M A G N U M S W I T C H E S , snmp Magnum6K25# Magnum6K25(snmp)## System variable(s) set successfully Magnum6K25(snmp)## set prompt $n Magnum6K25# set prompt $n$b$i Core# set prompt $n$b$i$b Core 192.168.5.5# snmp Core 192.168.5.5 # Core 192.168.5.5 (snmp)## System variable(s) set successfully Core 192.168.5.5 (snmp)##...
Page 249: Ftp Modes
To accommodate that, ftp added the capability called “passive ftp” in which the client initiating the connection initiates both the data and command connection request. Most companies prefer passive ftp and GarrettCom MNS-6K provides means to operate in those environments.
Page 250 M A G N U M S W I T C H E S , important to erase the log periodically or use syslog capability to download the logs to a syslog server. The event log window contains 22 log entry lines. show log Magnum6K25# DATE...
Page 251 M A G N U M S W I T C H E S , exportlog Magnum6K25# Usage exportlog mode=<serial|tftp|ftp> [<ipaddress>] [file=<name>] [doctype=<raw|html>] exportlog mode=tftp 192.168.5.2 file=eventlog doctype=html Magnum6K25# Do you wish to export the event logs? [ 'Y' or 'N'] Successfully uploaded the event log file.
Page 252 Network Stack not yet configured DEVICE IP address a.b.c.d configured DEVICE subnetmask a.b.c.d configured DEVICE Default gateway a.b.c.d configured DEVICE Switch rebooted by user DEVICE No saved system logs DEVICE Timezone set to x DEVICE Country set to x (no DST) DEVICE...
Page 253 M A G N U M S W I T C H E S , Subsystem RMON Alarm : internal error , unable to get memory RMON Alarm : internal error, unable to get memory for alarm entry RMON History : internal error, unable to get memory for history control entry RMON History : internal error, unable to get memory for history data...
Page 254: Mac Address Table
M A G N U M S W I T C H E S , Subsystem TCP/IP Duplicate IP a.b.c.d sent from MAC address XXXXXX TCP/IP Unable to allocate memory for an ICMP packet TCP/IP IP packet from a.b.c.d , with checksum error dropped TCP/IP Bad IP fragments from a.b.c.d dropped TCP/IP...
Page 255: List Of Commands In This Chapter
MAC address 00:0c:F1:B9:D1:DC (#2 above) appears with this MAC address in the DST field, the packet will be sent to port number 3. Also notice that there are other MAC addresses associated with port #3, indicating that the port has a hub or a switch connected to it.
Page 256 M A G N U M S W I T C H E S , Syntax show smtp <config|recipients> - recipients displays the currently configured recipients of email alerts Syntax add id=<1-5> email=<email-addr> [traps=<all|none|S|R|E>] [events=<all|none|I|A|C|F|D>] [ip=<ip-addr>] [port=<1-65535>] id – [mandatory] the recipient ID - range from 1 to 5. MNS-6K allows a maximum of 5 recipients email –...
Page 257 Syntax ping <ipaddress> [count=<1-999>] [timeout=<1-256>] – use the ping command to test connectivity Syntax set prompt <prompt string> - set the prompt for switch. The prompt has predefined variables. These are $n : System Name; $c : System Contact; $l : System Location; $i : System IP;...
Page 258: Appendix 1 - Command Listing By Chapter
Syntax save – save changes made to the configuration Syntax reboot – restart the switch – same effect as physically turning off the power Syntax show setup – show setup parameters Syntax show config – show setup parameters configured Syntax enable <user-name>...
Page 259: Chapter 3 - Ip Address And System Information
– do not set the IP address automatically auto - the switch will first look for a DHCP server. If a DHCP server is not found, it will then look for a BootP server. If that server is not found, the switch will check to see if the switch had a pre-configured IP address.
Page 260 The modules are system, event, port, bridge, stp, ps, mirror, sntp, vlan, gvrp and snmp Syntax show session – display telnet sessions active on the switch Syntax kill session id=<session> - kill a specific telnet session Syntax set ftp mode=<normal|passive>...
Page 261 This can also perform the task of exporting a configuration file or uploading a new image to the switch [host=<hostname>] [pass=<password>] – parameters associated with ftp server for proper communications with the server Syntax tftp <get|put>...
Page 262: Chapter 4 - Ipv6
Syntax show timezone – shows the system timezone Syntax show date – shows the system date Syntax show uptime – shows the amount of time the switch has been operational Syntax show config [module=<module-name>] – displays the configuration Syntax show setup – display the setup, serial number, factory code information and more Chapter 4 –...
Page 263: Chapter 5 - Access Considerations
Syntax allow mac=<address|list|range> port=<num|list|range> - specify a specific MAC address or MAC address list Syntax learn port=<number-list> <enable|disable> - learn MAC addresses connected to the Magnum 6K switch Syntax show port-security – display port security settings Syntax action port=<num|list|range> <none|disable|drop> - action to perform in case of breach of port security Syntax signal port=<num|list|range>...
Page 264: Chapter 6 - Access Using Radius
Syntax authserver [ip=<ip-addr>] [udp=<num>] [secret=<string>] define the RADIUS server – use UDP socket number if the RADIUS authentication is on port other than 1812 Syntax auth <enable|disable> enables or disables the 802.1x authenticator function on MNS-6K switch Syntax setport port=<num|list|range> [status=<enable|disable>] [control=<auto|forceauth|forceunauth>] [initialize=<assert|deassert>] setting the...
Page 265: Chapter 7 - Access Using Tacacs
Default value is 30. Values can be from 1 to 65535 seconds Syntax reauth port=<num|list|range> [status=<enable|disable>] [period=<10-86400>] set values on how the authenticator (Magnum 6K switch) does the re-authentication with the supplicant or port – [mandatory] – ports to be configured status –...
Page 266: Chapter 8 - Port Mirroring And Setup
M A G N U M S W I T C H E S , Syntax tacserver <add|delete> id=<num> [ip=<ip-addr>] [port=<tcp-port>] [encrypt=<enable|disable>] [key=<string>] [mgrlevel=<level>] [oprlevel=<level>] – adds a list of up to five TACACS+ servers where <add|delete> – [mandatory] adds or delete a TACACS+ server. id=<num>...
Page 267: Chapter 9 - Vlan
M A G N U M S W I T C H E S , Syntax broadcast-protect <enable|disable> - protect switch from broadcast storms Syntax rate-threshold port=<port|list|range> rate=<frames/sec> - change the allowed broadcast rate threshold Chapter 9 - VLAN Syntax set vlan type=<port|tag|none> defines the VLAN type...
Page 268: Chapter 10 - Spanning Tree Protocol (Stp)
Chapter 11 – Rapid Spanning Tree Protocol Syntax set stp type=<stp|rstp> - Set the switch to support RSTP or change it back to STP. Need to save and reboot the switch after this command Syntax rstp – enter the RSTP configuration mode Syntax rstp <enable|disable>...
Page 269: Chapter 12 - Rs-Ring, S-Ring And Link-Loss-Learn
Syntax priority [port=<number|list|range>] value=<0-255 | 0-65535> - specifies the port or switch level priority. When a port(s) are specified the priority is associated with ports and their value is 0- 255. If no ports are specified, then the switch (bridge) priority is specified and its value is 0-65535 Syntax cost port=<number|list|range>...
Page 270 Syntax s-ring add port=<port1,port2> - define ports which make up the S-ring ports. Note as discussed earlier, you can create multiple s-rings on a switch Syntax s-ring del port=<port1,port2> - remove the switch from S-ring topology by eliminating the end ports on the switch Syntax lll <enable|disable>...
Page 271: Chapter 13 - Dual-Homing
M A G N U M S W I T C H E S , Chapter 13 – Dual-Homing Syntax dualhome – enter the dual-homing configuration sub-system Syntax dualhome <enable|disable> – enable or disable dual-homing Syntax dualhome add port1=<port#> port2=<port#> – dual-homing setup similar to that of unmanaged switches such as ESD42 Syntax dualhome add primary=<port#>...
Page 272: Chapter 16 - Igmp
Syntax set-weight weight=<0-7> - sets the port priority weight for All the ports. Once the weight is set, all the ports will be the same weight across the switch. The valid value for weight is 0-7 Syntax show-portweight - display the weight settings on a port Syntax show qos [type=<port|tag|tos>] [port=<port|list|range>] –...
Page 273: Chapter 17 - Gvrp
VLANs and the current Primary VLAN Syntax gvrp <enable|disable> - enable or disable GVRP Syntax show-vlan – list all the VLANs (including dynamic VLANs) on the switch Syntax set-ports port=<port|list|range> state=<learn|block|disable> - set the state of the port to learn, block or disable for GVRP.
Page 274 Syntax mgrip <add|delete> ip=<IPaddress> - adds or deletes a management station, specified by the IP address, which can query SNMP variables from the switch. This is done to protect the switch from being polled by unauthorized managers. Maximum of five stations allowed.
Page 275 Syntax com2sec <add|delete> id=<id> [secname=<name>] [source=<source>] [community=<community>] - a part of the View based Access control model (VACM) as defined in RFC 2275. This specifies the mapping from a source/community pair to a security name. On MNS- 6K, up to 10 entries can be specified Syntax group <add|delete>...
Page 276: Chapter 19 - Miscellaneous Commands
M A G N U M S W I T C H E S , Syntax show rmon <stats|hist|event|alarm> - list the specific RMON data as defined by the group type Chapter 19 – Miscellaneous Commands Syntax alarm – enter the alarm configuration mode Syntax add event=<event-id|list|range|all>...
Page 277 M A G N U M S W I T C H E S , “event=ACF” implies that events of severity types activity, critical and fatal will be sent to recipients by email. If this option is not defined, a value of “all” is taken ip –...
Page 278 Syntax ping <ipaddress> [count=<1-999>] [timeout=<1-256>] – use the ping command to test connectivity Syntax set prompt <prompt string> - set the prompt for switch. The prompt has predefined variables. These are $n : System Name; $c : System Contact; $l : System Location; $i : System IP;...
Page 279: Appendix 2 - Commands Sorted Alphabetically
APPENDIX 2 - Commands sorted alphabetically Command !<n> <command string> <TAB> <Down-arrow> <first character of the command> <TAB> <TAB> <Up-arrow> access action port=<num|list|range> <none|disable|drop> add event=<event-id|list|range|all> id=<1-5> email=<email-addr> [traps=<all|none|S|R|E>] [events=<all|none|I|A|C|F|D>] [ip=<ip-addr>] [port=<1-65535>] add id=<vlan Id> [name=<vlan name>] port=<number|list|range> [forbid=<number|list|range>] [<mgt|nomgt>] add user=<name>...
Page 280 S-Ring capabilities. Don’t forget to use the “save” command to save the key define the RADIUS server enables or disables authentication traps generation configure parameters for EAP over RADIUS configure backpressure buffers protect switch from broadcast storms changing the user privilege level...
Page 281 M A G N U M S W I T C H E S , Command clear <history|log [1..5 |informational |activity |critical |fatal |debug] |terminal |arp|portstats|addr] clear log [fatal|alert|crit|error|warn|note|info|d ebug] climode <script|console|show> com2sec <add|delete> id=<id> [secname=<name>] [source=<source>] [community=<community>] <Enter> command community [write=<write community>] [read=<read community>] [trap=<trap community>]...
Page 282 M A G N U M S W I T C H E S , Command del event=<event-id|list|range|all> del port=<number|list|range> delete id=<1-5> delete user=<name> deny ip=<ipaddress> mask=<netmask> service=<name|list> device dualhome dualhome <enable|disable> dualhome add port1=<port#> port2=<port#> dualhome add primary=<port#> secondary=<port#> dualhome del edit id=<vlan id>...
Page 283 – optional type field. This is useful to specify whether a log file or host file is uploaded or downloaded. This can also perform the task of exporting a configuration file or uploading a new image to the switch [host=<hostname>] [ip=<ipaddress>] [file=<filename>] [user=<user>] [pass=<password>] –...
Page 284 RMON history group and the community string associated with the group IGMP configuration mode enable or disable IGMP on the switch to set IP address on the switch resets the system configuration. The module_name option does not reset the specific module parameters.
Page 285 The default is enabled adds or deletes a management station, specified by the IP address, which can query SNMP variables from the switch. This is done to protect the switch from being polled by unauthorized managers. Applicable for SNM v1 only.
Page 286 Description configure port mirror settings configure port security settings specifies the port or switch level priority. When a port(s) are specified the priority is associated with ports and their value is 0-255. If no ports are specified, then the switch (bridge) priority is specified and its value is 0-65535 specifies the port or switch level priority.
Page 287 RS-Ring ports. Note as discussed earlier, you can create multiple RS-rings on a switch remove the switch from RS-Ring topology by eliminating the end ports on the switch enter the RSTP configuration mode enable RSTP – by default, this is disabled and...
Page 288 SNMP to v1 only. By default – SNMP v1only is enabled Set the switch to support RSTP or change it back to STP. Need to save and reboot the switch after this command sets the time (as well as the timezone)
Page 289 VLAN type vlanid> sets the forbid GVRP capability on the ports specified enables or disables the switch to immediately process a host sending a leave message rather that wait for the timer to expire set port mirror settings set the port characteristics for IGMP.
Page 290 M A G N U M S W I T C H E S , Command setport port=<num|list|range> [status=<enable|disable>] [control=<auto|forceauth|forceunauth> ] [initialize=<assert|deassert>] setport port=<port#|list|range> [name=<name>] [speed=<10|100>] [duplex=<half|full>] [auto=<enable|disable>] [flow=<enable|disable>] [bp=<enable|disable>] [status=<enable|disable>] set-ports port=<port|list|range> state=<learn|block|disable> set prompt <prompt string> The length of the prompt is limited to 60 characters.
Page 291 Default value is 10 seconds. The Range can be from 2 to 270 seconds. Restrictions apply to the maximum value because of an internal calculation that is dependent on the value of the Query Interval. enables or disables a switch as IGMP querier setup the SNTP server...
Page 292: Show Address-Table
All the ports. Once the weight is set, all the ports will be the same weight across the switch. The valid value for weight is 0-7 displays which mac address is associated with...
Page 293: Show Port-Mirror
Description display the hosts table entries IGMP operation status display all trusted hosts shows the IP parameters set in the switch displays the status and other relevant LACP information display the status of LLL display logs and specific types of logs...
Page 294: Show Timezone
Description displays the SNMP configuration information show the status of S-Ring regardless of whether STP is enabled or disabled (default) this command lists the switch’s full STP configuration, including general settings and port settings display the RSTP or STP parameters...
Page 295 Note as discussed earlier, you can create multiple s-rings on a switch remove the switch from S-ring topology by eliminating the end ports on the switch start the learning process to discover the ring and the ports which make up the s-ring “set snmp”...
Page 296 [oprlevel=<level>] – [optional] specifies the manager and operator level as defined on the TACACS+ server for the respective level of login enable or disable telnet sessions telnet from the switch. The IP address can be an IPv4 address or an IPv6 address...
Page 297 This can also perform the task of exporting a configuration file or uploading a new image to the switch [host=<hostname>] [ip=<ipaddress>] [file=<filename>] – associated with tftp server for proper communications with the server traps <add|delete>...
Page 298 For assigning access capabilities to the user – for example to allow or not allow telnet access to the switch a part of the View based Access control model (VACM) as defined in RFC 2275. This command defines a manager or group or manager stations what it can access inside the MIB object tree.
Page 299 M A G N U M S W I T C H E S , M N S - 6 K U S E R G U I D E Intentionally left blank...
Page 300: Appendix 3 - Daylight Savings
APPENDIX 3 - Daylight Savings No time like the present... Daylight Savings Time Magnum6K Switches provide a way to automatically adjust the system clock for Daylight Savings Time (DST) changes. In addition to the value "none" (no time changes), there are fifteen pre- defined settings, a few examples are: Alaska •...
Page 301 M A G N U M S W I T C H E S , M N S - 6 K U S E R G U I D E Australia, Belgium, Canada, Chile, Cuba, Egypt, France, Finland, Germany, Greece, Iraq, Italy, London, Namibia, Portugal, Russia, Spain, Sweden, Switzerland, Syria, USA Note –...
Page 302: Appendix 4 - Updating Mns-6K Software
U P D A T I N G M N S - 6 K APPENDIX 4 – Updating MNS-6K Software Keep up to date... The steps required to update the MNS-6K software on your Magnum switch are listed. Intentionally left blank APPENDIX...
Page 303: Getting Started
8) Serial port – if your PC does not have a serial port, you may want to invest in a USB to serial converter. This is again available from LANstore or from GarrettCom. Alternately a USB to serial cable can also be used. This cable is available also available from LAN store or GarrettCom Inc.
Page 304: Selecting The Proper Version
The first step is to ensure that you have the proper version of the MNS-6K software. To access the proper software, you will require access to the GarrettCom web site (and ftp site) through a network which does not block ftp file transfers. If your site blocks ftp file transfer traffic, please contact your system administrator to figure out how to access the GarrettCom site to download the necessary software.
Page 305 2) Once the connection is established, use the user login as m6kuser and the password as m6kuser – see Figure 1. If you have previously established a different login/password for the GarrettCom site, that login name and password can be used as well. Intentionally left blank for image continuity – image shown on next page ftp://www.garrettcom.com...
Page 306 M N S - 6 K – S T E P 141 – Accessing the GarrettCom site for download. IGURE Note – if the browser does not support the login prompt, you can type in the user name and password on the URL as follows: ftp://m6kuser:m6kuser@ftp.garrettcom.com...
Page 307 U P D A T I N G M N S - 6 K – S T E P 142 – Select the proper version to use after successful login IGURE 4) Navigate to the folder MNS-6K. See Figure 3. (There are other folders with additional software, MIBs as well as additional useful information for the Magnum-6K switches which you may want to use later.) From the MNS-6K folder download the latest ‘Release Notes’...
Page 308: Next Steps
6) Make sure you remember where the files are stored as these files will be needed for the next step. Next steps 1) Access the GarrettCom Magnum 6K switch. The access can be over the console port using the null modem cable or through the network using telnet. This is described in step 2.
Page 309: Preparing To Load The Software
2. Preparing to load the software Backup your existing configuration….. nce the MNS-6K software is downloaded from the GarrettCom site, it is strongly recommended that the existing configuration of the switch is preserved before the MNS-6K software upgrade is performed. This section will show you how to save the existing configuration and prepare you for loading the configuration.
Page 310: Network Access
Magnum 6K switch (or DNS name associated with the switch) to be upgraded. Access the Magnum 6K switch by using the telnet command. For example, if the switch has the IP address 192.168.10.11 the command is as shown in Figure 6 below.
Page 311: Serial Connection
2) TFTP server 3) FTP server As a good practice, GarrettCom recommends that you should have all these capabilities available on your local computer if you plan to upgrade additional switches as well as switches in the future. The command used for saving the existing configuration of the Magnum 6K switch is ‘saveconf’...
Page 312 U P D A T I N G S O F T W A R E 148 – Invoke the “Receive File” to start the Xmodem transfer program. In the figure above IGURE the Windows XP based HyperTerminal screen is shown Once the “Receive File”...
Page 313: Network Access
To save using TFTP or FTP first ensure that you have the FTP or TFTP server set up and the switch can ‘ping’ the TFTP or the FTP server. For ftp services, make sure the server can support anonymous login or make sure the login password information is available.
Page 314: Next Steps
Next steps 1) Upload the updated MNS-6K software and reboot the switch. This is described in step 3. 2) (Optional step) Reload the saved configuration. This is described in step 4.
Page 315: Loading The Mns-6K Software
3. Loading the MNS-6K software Load the new version of the MNS-6K image….. T this stage, the Magnum MNS-6K software has been downloaded from the GarrettCom site, and the configuration saved. The Magnum-6K switch is now ready to upload the new MNS-6K software image.
Page 316: Serial Connection
U P D A T I N G S O F T W A R E Serial Connection Prerequisites - make sure the directory and the file name of the MNS-6K software image downloaded in steps 1 and 2 is known. To use the serial connection to update the MNS-6K image, the command dialog is shown below: show version Magnum6K25#...
Page 317: Network Access
1 and 2 is known. To upgrade using TFTP or FTP, ensure that the FTP or TFTP server is set up and the switch can ‘ping’ the TFTP or the FTP server and vice-versa. Ensure that the server has access to the MNS-6K software image downloaded in step 2.
Page 318: Next Steps
(The switch will now reboot. Reconnect and login. Verify the MNS-6K software was upgraded. Note – as discussed in step 1, the switch may need a boot code update. After a reboot, the switch awaits a “Y” or “N” on whether the boot code should be updated. If no answer is given, the default is not to update the boot code (or a “N”).
Page 319: Optional Step) Restoring The Configuration
Magnum 6K switch and finally, if required, the configuration can be restored using the instructions in this step. If the Magnum 6K switch is updated over the network, it maybe necessary to update the boot code.
Page 320: Updating Boot Code Over The Network
1 – selecting the proper Version 3.0), the boot code will be updated. At boot up time, the Magnum 6K switch identifies that there is a new version of the boot code and asks if the new boot code should be loaded...
Page 321 – S T E P Make sure there is no power failure during the boot loader update. If the boot code does not load properly, please contact GarrettCom Inc technical support at (510) 438-9071, email – support@garrettcom.com Intentionally left blank...
Page 322 I N D E X Index !!, 276 !<n>, 277 802.1d, 123, 127, 135, 136, 138, 141, 148, 268 802.1q, 209 802.1Q, 103, 106, 123 802.1w, 135, 136, 141, 150, 151 802.1x, 77, 78, 79, 80, 85, 263 access, 50, 73, 74, 75, 229, 262 action, 66, 67, 70, 75, 262 action port, 66 add, 29, 33, 69, 108, 109, 114,...
Page 323 I N D E X config, 46, 47, 260, 282, 297 configure, 57, 75, 107, 108, 122, 261, 262, 266 configure access, 38, 57, 261 configure vlan, 108, 122, 266 CoS, 188 cost, 126, 128, 131, 134, 142, 146, 148, 267, 268 default user name, 25 DEFAULT-VLAN, 104, 107 deftrap, 222, 226, 232, 273...
Page 324 I N D E X IEEE 802.1q, 186, 209 IEEE 802.3ad, 174 IETF, 187 igmp, 202, 203, 205, 207, 271 IGMP, 20, 189, 195, 196, 197, 198, 199, 202, 203, 204, 205, 206, 207, 208, 209, 218, 235, 257, 271, 272, 299, IGMP-L2, 199, 200, 201, 202, 207, 208, 271, 272, 284, 287 IMAP, 239...
Page 325 I N D E X portaccess, 83, 85, 264 port-mirror, 93, 101, 265 port-security, 65, 69, 70, 75, 262 priority, 126, 128, 131, 134, 142, 145, 148, 186, 267, 268 Private VLAN, 106 privilege level, 28 prtmr, 93, 101, 265 ps, 66, 67, 75, 262 put, 46, 47, 260, 282, 297 qos, 189, 193, 270...
Page 326 I N D E X saveconf, 45, 53, 56, 259 saveconf mode, 56, 259 script, 46, 47, 260, 282, 297 sendmail, 241, 243, 255, 276 serial number, 54 server, 241, 256, 276 service, 74 set, 24, 25, 28, 31, 32, 33, 35, 37, 40, 42, 43, 44, 46, 48, 55, 56, 57, 58, 64, 67, 69, 70, 72, 73, 75, 93, 94, 95, 96,...
Page 327 I N D E X 268, 269, 270, 271, 272, 273, 275, 277, 291 show ip-access, 74 show ipconfig, 62, 261 show active-snmp, 221, 223, 225, 232, 272 show active-stp, 127, 138, 143, 148, 160, 165, 166, 167, 268, 269 show active-vlan, 113 show address-table, 253, 254 show alarm, 237, 238, 239, 275...
Page 328 I N D E X show-forceversion, 142, 144, 148, show-group, 204, 208, 223, 228, 233, 271, 274 show-port, 83, 84, 112, 122, 204, 205, 208, 266, 271 show-portweight, 190, 193, 194, show-router, 204, 205, 208, 271 show-stats, 84, 86, 264 show-timers, 142, 145, 148, 268 show-trap, 222, 227, 233, 273 show-user, 223, 229, 230, 233, 274...
Page 329 I N D E X TACACS+, 87, 88, 89, 90, 91, 264, 265, 295 TACACSD, 87 tacplus, 90, 91, 264, 295 tacserver, 90, 91, 265, 295 tag VLAN, 106 TCP, 25, 87, 90, 92, 265, 295 telnet, 38, 39, 55, 62, 63, 258, 262 telnet enable, 38 tftp, 46, 48, 57, 250, 260, 296 timers, 126, 128, 133, 134, 142,...

GarrettCom Magnum MNS-6K Cli User's Manual

Table of Contents

F 25 - Querying the Serial Port Settings 41Igure

APPENDIX 1 - Command Listing by Chapter

Chapter 2 - Getting Started

Chapter 3 - IP Address and System Information

Chapter 4 - Ipv6

Chapter 5 - Access Considerations

Chapter 6 - Access Using Radius

Chapter 7 - Access Using TACACS

Chapter 8 - Port Mirroring and Setup

Chapter 9 - VLAN

Chapter 10 - Spanning Tree Protocol (STP)

Chapter 11 - Rapid Spanning Tree Protocol

Chapter 12 - RS-Ring, S-Ring and Link-Loss-Learn

Chapter 13 - Dual-Homing

Chapter 14 - Link Aggregation Control Protocol (LACP)270

Chapter 15 - Quality of Service

Chapter 16 - IGMP

Chapter 17 - GVRP

Chapter 18 - SNMP

Chapter 19 - Miscellaneous Commands

APPENDIX 2 - Commands Sorted Alphabetically

APPENDIX 3 - Daylight Savings

APPENDIX 4 - Updating MNS-6K Software

Quick Links

Chapters

Need help?

Questions and answers

Related Manuals for GarrettCom Magnum MNS-6K

Summary of Contents for GarrettCom Magnum MNS-6K