Download Print this page

H3C S3100 Series Command Manual

H3C S3100 Series Command Manual

Hide thumbs Also See for S3100 Series:

Command manual (1186 pages)

,

Operation manual (1057 pages)

,

Installation manual (94 pages)

page of 1089

/ 1089
Contents
Table of Contents
Bookmarks

Table of Contents

Advertisement

Quick Links

See also: Command Manual , Operating Manual

H3C S3100 Series Ethernet Switches

Command Manual (For Soliton)

Hangzhou H3C Technologies Co., Ltd.

http://www.h3c.com

Manual Version: 20080928-C-1.02

Table of Contents

Advertisement

Chapters

Table of Contents

Need help?

Need help?

Do you have a question about the S3100 Series and is the answer not in the manual?

Questions and answers

Summary of Contents for H3C S3100 Series

Page 1 H3C S3100 Series Ethernet Switches Command Manual (For Soliton) Hangzhou H3C Technologies Co., Ltd. http://www.h3c.com Manual Version: 20080928-C-1.02...
Page 2 Copyright © 2008, Hangzhou H3C Technologies Co., Ltd. and its licensors All Rights Reserved No part of this manual may be reproduced or transmitted in any form or by any means without prior written consent of Hangzhou H3C Technologies Co., Ltd.
Page 3: About This Manual
About This Manual Related Documentation In addition to this manual, each H3C S3100 Series Ethernet Switches documentation set includes the following: Manual Description It is used for assisting the users in switch H3C S3100 Series Ethernet Switches installation, booting up, hardware and Installation Manual (For Soliton) software maintenance.
Page 4 Part Contents Introduces the commands used for basic port 9 Port Basic Configuration configuration. Introduces commands used link 10 Link Aggregation aggregation. 11 Port Isolation Introduces the commands used for port isolation. Introduces the commands used for port security 12 Port Security-Port Binding configuration and port binding.
Page 5 Part Contents Introduces the commands used for information 31 Information Center center configuration. 32 System Maintenance and Introduces the commands used for system Debugging maintenance and debugging. Introduces the commands used for VLAN VPN 33 VLAN-VPN configuration. Introduces the commands used for HWPing 34 HWPing configuration.
Page 6 Convention Description The argument(s) before the ampersand (&) sign can be &<1-n> entered 1 to n times. A line starting with the # sign is comments. II. GUI conventions Convention Description Button names are inside angle brackets. For example, click <...
Page 7: Table Of Contents
Command Manual (For Soliton) – CLI H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 CLI Configuration Commands..................1-1 1.1 CLI Configuration Commands ................... 1-1 1.1.1 command-privilege level ..................1-1 1.1.2 display history-command ..................1-3 1.1.3 super ........................1-4 1.1.4 super authentication-mode..................
Page 8: Chapter 1 Cli Configuration Commands
Command level to be set, in the range of 0 to 3. view view: CLI view. It can be any CLI view that the Ethernet switch supports. The S3100 series (For Soliton) support only the CLI views listed in Table...
Page 9 Command Manual (For Soliton) – CLI H3C S3100 Series Ethernet Switches Chapter 1 CLI Configuration Commands CLI view Description mst-region MST region view mtlk-group Monitor link group view null NULL interface view peer-key-code Public key editing view peer-public-key Public key view...
Page 10: Display History-Command
Command Manual (For Soliton) – CLI H3C S3100 Series Ethernet Switches Chapter 1 CLI Configuration Commands Level Name Command Commands associated with the basic operation modules and support modules of the system, such as file system, Manage level FTP/TFTP/XMODEM downloading, user management, and level setting commands.
Page 11: Super
Command Manual (For Soliton) – CLI H3C S3100 Series Ethernet Switches Chapter 1 CLI Configuration Commands 1.1.3 super Syntax super [ level ] View User view Parameters level: User level, in the range of 0 to 3. Description Use the super command to switch from the current user level to a specified level.
Page 12: Super Authentication-Mode
Command Manual (For Soliton) – CLI H3C S3100 Series Ethernet Switches Chapter 1 CLI Configuration Commands User privilege level is 3, and only those commands can be used whose level is equal or less than this. Privilege note: 0-VISIT, 1-MONITOR, 2-SYSTEM, 3-MANAGE 1.1.4 super authentication-mode...
Page 13: Super Password
Command Manual (For Soliton) – CLI H3C S3100 Series Ethernet Switches Chapter 1 CLI Configuration Commands When both the super password authentication and the HWTACACS authentication are specified, the device adopts the preferred authentication mode first. If the preferred authentication mode cannot be implemented (for example, the super password is not configured or the HWTACACS authentication server is unreachable), the backup authentication mode is adopted.
Page 14 Command Manual (For Soliton) – CLI H3C S3100 Series Ethernet Switches Chapter 1 CLI Configuration Commands Use the undo super password command to restore the default configuration. By default, no such password is set. Note that, no matter whether a plain-text or cipher-text password is set, users must enter the plain-text password during authentication.
Page 15 Command Manual (For Soliton) – Login H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 Login Commands ......................1-1 1.1 Login Commands....................... 1-1 1.1.1 authentication-mode....................1-1 1.1.2 auto-execute command................... 1-3 1.1.3 copyright-info enable....................1-4 1.1.4 databits........................1-5 1.1.5 display user-interface ....................
Page 16: Chapter 1 Login Commands
Command Manual (For Soliton) – Login H3C S3100 Series Ethernet Switches Chapter 1 Login Commands Chapter 1 Login Commands 1.1 Login Commands 1.1.1 authentication-mode Syntax authentication-mode { password | scheme [ command-authorization ] | none } View User interface view Parameters none: Specifies not to authenticate users.
Page 17: Chapter 1 Login Commands
Command Manual (For Soliton) – Login H3C S3100 Series Ethernet Switches Chapter 1 Login Commands Caution: For a VTY user interface, to specify the none keyword or password keyword for login users, make sure that SSH is not enabled in the user interface. Otherwise, the configuration fails.
Page 18 Command Manual (For Soliton) – Login H3C S3100 Series Ethernet Switches Chapter 1 Login Commands [Sysname] user-interface vty 0 [Sysname-ui-vty0] authentication-mode scheme [Sysname-ui-vty0] quit # Specify domain system as the default domain, and set the scheme authentication mode to local for the domain.
Page 19: Auto-Execute Command
Command Manual (For Soliton) – Login H3C S3100 Series Ethernet Switches Chapter 1 Login Commands Caution: The auto-execute command command may cause you unable to perform common configuration in the user interface, so use it with caution. Before executing the auto-execute command command and save your configuration, make sure you can log in to the switch in other modes and cancel the configuration.
Page 20: Copyright-Info Enable
Telnet. Examples # Disable copyright information displaying. ************************************************************************** * Copyright (c) 2004-2008 Hangzhou H3C Tech. Co., Ltd. All rights reserved.* * Without the owner's prior written consent, * no decompiling or reverse-engineering shall be allowed. ************************************************************************** <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 21: Databits
Command Manual (For Soliton) – Login H3C S3100 Series Ethernet Switches Chapter 1 Login Commands [Sysname] user-interface aux 0 [Sysname-ui-aux0] databits 7 1.1.5 display user-interface Syntax display user-interface [ type number | number ] [ summary ] View Any view...
Page 22: Super Password
Command Manual (For Soliton) – Login H3C S3100 Series Ethernet Switches Chapter 1 Login Commands Auth : The authentication mode of user-interface. : The physical location of UIs. Super: The Super authentication mode of UIs. : Authentication use AAA. : Current UI need not authentication.
Page 23: Display Users
Command Manual (For Soliton) – Login H3C S3100 Series Ethernet Switches Chapter 1 Login Commands 8:UUUU X 5 character mode users. 8 UI never used. 5 total UI in use Table 1-2 Description on the fields of the display user-interface summary command...
Page 24: Display Users
Command Manual (For Soliton) – Login H3C S3100 Series Ethernet Switches Chapter 1 Login Commands Examples # Display the user information about the current user interface. <Sysname> display users Delay Type Ipaddress Username Userlevel VTY 0 00:00:00 192.168.0.208 : Current operation user.
Page 25: Display Web Users
Command Manual (For Soliton) – Login H3C S3100 Series Ethernet Switches Chapter 1 Login Commands Examples # Display the information about the current on-line Web users. <Sysname> display web users Name Language Level Login Time Last Req. Time 00800003 admin...
Page 26: Free User-Interface
Command Manual (For Soliton) – Login H3C S3100 Series Ethernet Switches Chapter 1 Login Commands Examples # Release user interface VTY 1. <Sysname> free user-interface vty 1 Are you sure you want to free user-interface vty1 [Y/N]? y [OK] After you perform the above operation, the user connection on user interface VTY1 is torn down.
Page 27: Header
Command Manual (For Soliton) – Login H3C S3100 Series Ethernet Switches Chapter 1 Login Commands Description Use the header command to set the banners that are displayed when a user logs into a switch. The login banner is displayed on the terminal when the connection is established.
Page 28 # Test the configuration remotely using Telnet. (only when login authentication is configured can the login banner be displayed). ************************************************************************** * Copyright (c) 2004-2008 Hangzhou H3C Tech. Co., Ltd. All rights reserved.* * Without the owner's prior written consent, * no decompiling or reverse-engineering shall be allowed.
Page 29: History-Command Max-Size
Command Manual (For Soliton) – Login H3C S3100 Series Ethernet Switches Chapter 1 Login Commands Use the undo history-command max-size command to revert to the default history command buffer size. By default, the history command buffer can contain up to ten commands.
Page 30: Ip Http Shutdown
Command Manual (For Soliton) – Login H3C S3100 Series Ethernet Switches Chapter 1 Login Commands 1.1.12 ip http shutdown Syntax ip http shutdown undo ip http shutdown View System view Parameters None Description Use the ip http shutdown command to shut down the WEB Server.
Page 31: Ip Http Shutdown
Command Manual (For Soliton) – Login H3C S3100 Series Ethernet Switches Chapter 1 Login Commands [Sysname] ip http shutdown # Launch the WEB Server. [Sysname] undo ip http shutdown 1.1.13 lock Syntax lock View User view Parameters None Description Use the lock command to lock the current user interface to prevent unauthorized operations in the user interface.
Page 32: Parity
Command Manual (For Soliton) – Login H3C S3100 Series Ethernet Switches Chapter 1 Login Commands 1.1.14 parity Syntax parity { even | none | odd | } undo parity View AUX user interface view Parameters even: Performs even checks. none: Does not check.
Page 33: Protocol Inbound
Command Manual (For Soliton) – Login H3C S3100 Series Ethernet Switches Chapter 1 Login Commands Description Use the protocol inbound command to specify the protocols supported by the user interface. Both Telnet protocol and SSH protocol are supported by default.
Page 34: Screen-Length
Command Manual (For Soliton) – Login H3C S3100 Series Ethernet Switches Chapter 1 Login Commands 1.1.16 screen-length Syntax screen-length screen-length undo screen-length View User interface view Parameters screen-length: Number of lines the screen can contain. This argument ranges from 0 to 512.
Page 35: Send
Command Manual (For Soliton) – Login H3C S3100 Series Ethernet Switches Chapter 1 Login Commands number: User interface index. A user interface index can be relative or absolute. In relative user interface index scheme, the type argument is required. In this case, AUX user interfaces are numbered from AUX0 through AUX7;...
Page 36: Service-Type
Command Manual (For Soliton) – Login H3C S3100 Series Ethernet Switches Chapter 1 Login Commands terminal: Makes terminal services available to users logging in through the console port. level level: Specifies the user level for Telnet users, Terminal users, or SSH users. The level argument ranges from 0 to 3 and defaults to 0.
Page 37: Set Authentication Password
Command Manual (For Soliton) – Login H3C S3100 Series Ethernet Switches Chapter 1 Login Commands display Display current system information nslookup Query Internet name servers ping Ping function quit Exit from current command view super Set the current user priority level...
Page 38: Set Authentication Password
Command Manual (For Soliton) – Login H3C S3100 Series Ethernet Switches Chapter 1 Login Commands Note: By default, password authentication is performed when a user logs in through a modem or Telnet. If no password is set, the user cannot establish a connection with the switch.
Page 39: Shell
Command Manual (For Soliton) – Login H3C S3100 Series Ethernet Switches Chapter 1 Login Commands [Sysname-ui-vty0-4] undo shell % Disable ui-vty0-4 , are you sure ? [Y/N]y 1.1.21 speed Syntax speed speed-value undo speed View AUX user interface view Parameters speed-value: Transmission speed (in bps).
Page 40: Stopbits
By default, the stopbits is 1. Note: The S3100 series do not support communication with a terminal emulation program with stopbits set to 1.5. Changing the stop bits value of the switch to a value different from that of the terminal emulation utility does not affect the communication between them.
Page 41: Telnet
Trying 129.102.0.1 ... Press CTRL+K to abort Connected to 129.102.0.1 ... ************************************************************************** * Copyright(c) 2004-2008 Hangzhou H3C Tech. Co., Ltd. All rights reserved. * * Without the owner's prior written consent, * no decompiling or reverse-engineering shall be allowed. ************************************************************************** <SwitchB>...
Page 42 Trying 3001::1 ... Press CTRL+K to abort Connected to 3001::1 ... ************************************************************************** * Copyright (c) 2004-2008 Hangzhou H3C Tech. Co., Ltd. All rights reserved.* * Without the owner's prior written consent, * no decompiling or reverse-engineering shall be allowed. ************************************************************************** <Sysname>...
Page 43: User-Interface
Command Manual (For Soliton) – Login H3C S3100 Series Ethernet Switches Chapter 1 Login Commands <Sysname> system-view System View: return to User View with Ctrl+Z. [Sysname] user-interface vty 0 [Sysname-ui-vty0] 1.1.26 user privilege level Syntax user privilege level level undo user privilege level...
Page 44: User Privilege Level
Command Manual (For Soliton) – Login H3C S3100 Series Ethernet Switches Chapter 1 Login Commands Examples # Configure that commands at level 1 are available to the users logging in to VTY 0. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 45: Chapter 2 Commands For User Control
Command Manual (For Soliton) – Login H3C S3100 Series Ethernet Switches Chapter 2 Commands for User Control Chapter 2 Commands for User Control 2.1 Commands for Controlling Logging in Users 2.1.1 acl Syntax acl acl-number { inbound | outbound }...
Page 46: Free Web-Users
Command Manual (For Soliton) – Login H3C S3100 Series Ethernet Switches Chapter 2 Commands for User Control 2.1.2 free web-users Syntax free web-users { all | user-id user-id | user-name user-name } View User view Parameters all: Specifies all Web users.
Page 47: Snmp-Agent Community
Command Manual (For Soliton) – Login H3C S3100 Series Ethernet Switches Chapter 2 Commands for User Control Examples # Apply ACL 2000 to filter Web users (assuming that ACL 2000 already exists.) <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 48: Snmp-Agent Group
Command Manual (For Soliton) – Login H3C S3100 Series Ethernet Switches Chapter 2 Commands for User Control 2.1.5 snmp-agent group Syntax In SNMPv1 and SNMPv2c: snmp-agent group { v1 | v2c } group-name [ read-view read-view ] [ write-view write-view ] [ notify-view notify-view ] [ acl acl-number ]...
Page 49: Snmp-Agent Usm-User
Command Manual (For Soliton) – Login H3C S3100 Series Ethernet Switches Chapter 2 Commands for User Control Examples # Create an SNMP group named h123 and apply ACL 2001 for network management users (assuming that basic ACL 2001 already exists).
Page 50 Command Manual (For Soliton) – Login H3C S3100 Series Ethernet Switches Chapter 2 Commands for User Control privacy: Encrypts packets. des56: Specifies data encryption standard (DES) for encrypting. aes128: Specifies advanced encryption standard (AES) for encrypting. priv-password: Encryption password, a string of 1 to 64 characters in plain text, a 32-bit hexadecimal number in cipher text if MD5 algorithm is used, and a 40-bit hexadecimal number in cipher text if SHA algorithm is used.
Page 51 Command Manual (For Soliton) – Configuration File Management H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 Configuration File Management Commands ............1-1 1.1 File Attribute Configuration Commands................1-1 1.1.1 display current-configuration ................... 1-1 1.1.2 display current-configuration vlan ................1-6 1.1.3 display saved-configuration..................
Page 52 Chapter 1 Configuration File Management Commands Note: S3100 series Ethernet switches allow you to input a file path and file name in one of the following ways: In universal resource locator (URL) format and starting with “unit1>flash:/”. or “flash:/” This method is used to specify a file in the current Flash memory. For example, the URL of a file named text.txt in the root directory of the switch is...
Page 53 Command Manual (For Soliton) – Configuration File Management Chapter 1 Configuration File H3C S3100 Series Ethernet Switches Management Commands radius-template: Indicates the radius template configuration. system: Indicates the system configuration. user-interface: Indicates the user interface configuration. interface: Displays port/interface configuration.
Page 54 Command Manual (For Soliton) – Configuration File Management Chapter 1 Configuration File H3C S3100 Series Ethernet Switches Management Commands Character Meaning Remarks Square brackets. Specifies a For example, [1-36A] can match range of characters, and matches a string containing any character any character in the specified among 1, 2, 3, 6, and A.
Page 55 Command Manual (For Soliton) – Configuration File Management Chapter 1 Configuration File H3C S3100 Series Ethernet Switches Management Commands interface Ethernet1/0/5 interface Ethernet1/0/6 interface Ethernet1/0/7 interface Ethernet1/0/8 interface Ethernet1/0/9 interface Ethernet1/0/10 interface Ethernet1/0/11 interface Ethernet1/0/12 interface Ethernet1/0/13 interface Ethernet1/0/14 interface Ethernet1/0/15...
Page 56 Command Manual (For Soliton) – Configuration File Management Chapter 1 Configuration File H3C S3100 Series Ethernet Switches Management Commands shutdown interface GigabitEthernet1/2/1 interface GigabitEthernet1/2/2 shutdown interface NULL0 interface LoopBack0 return # Display the lines that include the strings matching 10* in the configuration information.
Page 57: Display Current-Configuration Vlan
Command Manual (For Soliton) – Configuration File Management Chapter 1 Configuration File H3C S3100 Series Ethernet Switches Management Commands interface Ethernet1/0/22 interface Ethernet1/0/23 interface Ethernet1/0/24 interface GigabitEthernet1/1/1 interface GigabitEthernet1/1/2 interface GigabitEthernet1/2/1 interface GigabitEthernet1/2/2 # Display the configuration information starting with the string user.
Page 58: Display Saved-Configuration
Command Manual (For Soliton) – Configuration File Management Chapter 1 Configuration File H3C S3100 Series Ethernet Switches Management Commands vlan 5 to 69 vlan 70 description Vlan 70 vlan 71 to 100 return 1.1.3 display saved-configuration Syntax display saved-configuration [ unit unit-id ] [ by-linenum ]...
Page 59 Command Manual (For Soliton) – Configuration File Management Chapter 1 Configuration File H3C S3100 Series Ethernet Switches Management Commands vlan 1 interface Vlan-interface1 ip address 192.168.0.241 255.255.255.0 #LOCCFG. MUST NOT DELETE interface Aux1/0/0 interface Ethernet1/0/1 interface Ethernet1/0/2 interface Ethernet1/0/3 interface Ethernet1/0/4...
Page 60: Display Startup
Command Manual (For Soliton) – Configuration File Management Chapter 1 Configuration File H3C S3100 Series Ethernet Switches Management Commands interface Ethernet1/0/18 interface Ethernet1/0/19 interface Ethernet1/0/20 interface Ethernet1/0/21 interface Ethernet1/0/22 interface Ethernet1/0/23 interface Ethernet1/0/24 interface GigabitEthernet1/1/1 interface GigabitEthernet1/1/2 shutdown interface GigabitEthernet1/2/1...
Page 61: Display This
Command Manual (For Soliton) – Configuration File Management Chapter 1 Configuration File H3C S3100 Series Ethernet Switches Management Commands View Any view Parameters unit unit-id: Specifies the unit ID of a switch. It only can be 1. Description Use the display startup command to display the startup configuration of a switch.
Page 62: Reset Saved-Configuration
Command Manual (For Soliton) – Configuration File Management Chapter 1 Configuration File H3C S3100 Series Ethernet Switches Management Commands View Any view Parameters by-linenum: Displays configuration information with line numbers. Description Use the display this command to display the current configuration performed in the current view.
Page 63 Command Manual (For Soliton) – Configuration File Management Chapter 1 Configuration File H3C S3100 Series Ethernet Switches Management Commands Parameters backup: Erases the backup configuration file. main: Erases the main configuration file. Description Use the reset saved-configuration command to erase the configuration file saved in the Flash of a switch.
Page 64 Command Manual (For Soliton) – Configuration File Management Chapter 1 Configuration File H3C S3100 Series Ethernet Switches Management Commands 1.1.7 save Syntax save [ cfgfile | [ safely ] [ backup | main ] ] View Any view Parameters cfgfile: Path name or file name of a configuration file in the Flash, a string of 5 to 56 characters.
Page 65: Startup Saved-Configuration
Management Commands Caution: S3100 series Ethernet switches do not support the safe mode. When you are saving a configuration file using the save safely command, if the device reboots or the power fails during the saving process, the configuration file will be lost.
Page 66 Command Manual (For Soliton) – Configuration File Management Chapter 1 Configuration File H3C S3100 Series Ethernet Switches Management Commands unit unit-id: Specifies a switch by its unit ID. It only can be 1. Description Use the startup saved-configuration command to specify a configuration file to be the main configuration file or the backup configuration file to be used for the next startup of the switch.
Page 67 Command Manual (For Soliton) – VLAN H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 VLAN Configuration Commands................1-1 1.1 VLAN Configuration Commands..................1-1 1.1.1 description ....................... 1-1 1.1.2 display interface Vlan-interface ................1-2 1.1.3 display vlan......................1-3 1.1.4 interface Vlan-interface ...................
Page 68: Vlan Configuration Commands
Command Manual (For Soliton) – VLAN H3C S3100 Series Ethernet Switches Chapter 1 VLAN Configuration Commands Chapter 1 VLAN Configuration Commands 1.1 VLAN Configuration Commands 1.1.1 description Syntax description text undo description View VLAN view, VLAN interface view Parameters text: Case sensitive character string to describe the current VLAN or VLAN interface.
Page 69 Command Manual (For Soliton) – VLAN H3C S3100 Series Ethernet Switches Chapter 1 VLAN Configuration Commands [Sysname] interface Vlan-interface 10 [Sysname-Vlan-interface10] description gateway of LAB1 1.1.2 display interface Vlan-interface Syntax display interface Vlan-interface [ vlan-id ] View Any view Parameters vlan-id: Specifies a VLAN interface number.
Page 70: Display Vlan
Command Manual (For Soliton) – VLAN H3C S3100 Series Ethernet Switches Chapter 1 VLAN Configuration Commands Table 1-1 Description on the fields of the display interface Vlan-interface command Field Description The state of the VLAN interface, which can be one of...
Page 71 Command Manual (For Soliton) – VLAN H3C S3100 Series Ethernet Switches Chapter 1 VLAN Configuration Commands View Any view Parameters vlan-id1: Specifies the ID of a VLAN of which information is to be displayed, in the range of 1 to 4094.
Page 72 Command Manual (For Soliton) – VLAN H3C S3100 Series Ethernet Switches Chapter 1 VLAN Configuration Commands Table 1-2 Description on the fields of the display vlan command Field Description VLAN ID VLAN ID. VLAN Type VLAN type (dynamic or static).
Page 73 Related commands: display interface Vlan-interface. Note: An S3100 series switch can be configured with a single VLAN interface only, and the VLAN must be the management VLAN. For details about the management VLAN, refer to the “Management VLAN Configuration” part of this manual.
Page 74 Command Manual (For Soliton) – VLAN H3C S3100 Series Ethernet Switches Chapter 1 VLAN Configuration Commands Examples # Specify the name of VLAN 2 as test vlan. <Sysname> system-view System View: return to User View with Ctrl+Z. [Sysname] vlan 2 [Sysname-vlan2] name test vlan 1.1.6 shutdown...
Page 75 Command Manual (For Soliton) – VLAN H3C S3100 Series Ethernet Switches Chapter 1 VLAN Configuration Commands Examples # Disable the VLAN-interface1. <Sysname> system-view System View: return to User View with Ctrl+Z. [Sysname] interface Vlan-interface 1 [Sysname-Vlan-interface1] shutdown 1.1.7 vlan Syntax...
Page 76 Command Manual (For Soliton) – VLAN H3C S3100 Series Ethernet Switches Chapter 1 VLAN Configuration Commands Caution: VLAN 1 is the default VLAN and cannot be removed. You cannot use the undo vlan command to directly remove the VLANs reserved by the protocol, voice VLAN, control VLANs for Smart Link, probe VLANs for remote mirroring, or VLANs used for performing any other features.
Page 77: Display Port
Command Manual (For Soliton) – VLAN H3C S3100 Series Ethernet Switches Chapter 1 VLAN Configuration Commands 1.2 Port-Based VLAN Configuration Commands 1.2.1 display port Syntax display port { hybrid | trunk } View Any view Parameters hybrid: Displays hybrid ports.
Page 78: Port Access Vlan
Command Manual (For Soliton) – VLAN H3C S3100 Series Ethernet Switches Chapter 1 VLAN Configuration Commands interface-number2 taking a value no less than interface-number1. The total number of individual ports and port ranges defined in the list must not exceed 10.
Page 79: Port Hybrid Pvid Vlan
Command Manual (For Soliton) – VLAN H3C S3100 Series Ethernet Switches Chapter 1 VLAN Configuration Commands Caution: By default, all access ports belong to VLAN 1. You cannot assign an access port to or remove an access port from VLAN 1 with the port access vlan command or its undo form.
Page 80: Port Hybrid Vlan
Command Manual (For Soliton) – VLAN H3C S3100 Series Ethernet Switches Chapter 1 VLAN Configuration Commands If the specified default VLAN has been removed or is not carried on the hybrid port, the port will be unable to receive VLAN untagged packets. You can configure a hybrid port to permit the packets of its default VLAN to pass through with the port hybrid vlan command.
Page 81: Port Link-Type
Command Manual (For Soliton) – VLAN H3C S3100 Series Ethernet Switches Chapter 1 VLAN Configuration Commands untagged: Removes VLAN tags when the packets of the specified VLANs are forwarded on the port. Description Use the port hybrid vlan command to assign the hybrid port to one or multiple VLANs and configure the port to send packets tagged or untagged for the VLAN(s).
Page 82: Port Trunk Permit Vlan
Command Manual (For Soliton) – VLAN H3C S3100 Series Ethernet Switches Chapter 1 VLAN Configuration Commands Description Use the port link-type command to set the link type of the Ethernet port. Use the undo port link-type command to restore the default link type.
Page 83: Port Trunk Pvid Vlan
Command Manual (For Soliton) – VLAN H3C S3100 Series Ethernet Switches Chapter 1 VLAN Configuration Commands Description Use the port trunk permit vlan command to assign the trunk port to the specified VLAN(s), that is, to allow packets from these VLANs to pass through the port.
Page 84: Mac-Based Vlan Configuration Commands
Command Manual (For Soliton) – VLAN H3C S3100 Series Ethernet Switches Chapter 1 VLAN Configuration Commands After configuring the default VLAN of a trunk port, you need to use the port trunk permit vlan command to configure the trunk port to allow the packets of the default VLAN to pass through.
Page 85: Display Mac-Vlan
Command Manual (For Soliton) – VLAN H3C S3100 Series Ethernet Switches Chapter 1 VLAN Configuration Commands --------------------------------------- Ethernet1/0/1 Ethernet1/0/2 Ethernet1/0/3 1.3.2 display mac-vlan Syntax display mac-vlan { all | dynamic | static | vlan vlan-id } View Any view Parameters all: Displays all the MAC-to-VLAN mappings.
Page 86: Mac-Vlan Mac-Address
Command Manual (For Soliton) – VLAN H3C S3100 Series Ethernet Switches Chapter 1 VLAN Configuration Commands Field Description The state of the MAC-to-VLAN mapping, which can be: S, indicating that the MAC-to-VLAN mapping is configured statically. STATE D, indicating that the MAC-to-VLAN mapping is created automatically during authentication.
Page 87: Protocol-Based Vlan Configuration Commands
Command Manual (For Soliton) – VLAN H3C S3100 Series Ethernet Switches Chapter 1 VLAN Configuration Commands undo mac-vlan enable View Ethernet port view Parameters None Description Use the mac-vlan enable command to enable MAC-based VLAN on the port. Use the undo mac-vlan enable command to disable MAC-based VLAN on the port.
Page 88 Command Manual (For Soliton) – VLAN H3C S3100 Series Ethernet Switches Chapter 1 VLAN Configuration Commands Parameters interface-type interface-number: Specify a port by its type and number to display the protocol VLAN(s) bound with the port. You can use the interface-type interface-number...
Page 89: Display Protocol-Vlan Vlan
Command Manual (For Soliton) – VLAN H3C S3100 Series Ethernet Switches Chapter 1 VLAN Configuration Commands 1.4.2 display protocol-vlan vlan Syntax display protocol-vlan vlan { vlan-id1 [ to vlan-id2 ] | all } View Any view Parameters vlan-id1: Specifies a VLAN ID in the range of 1 to 4094, of which the protocol VLAN configuration information is to be displayed.
Page 90: Port Hybrid Protocol-Vlan Vlan
Command Manual (For Soliton) – VLAN H3C S3100 Series Ethernet Switches Chapter 1 VLAN Configuration Commands Field Description VLAN Type VLAN type. Here, it refers to Protocol-based VLAN Protocol-Index Protocol template index Protocol type specified in the protocol template. Refer to the Protocol-Type protocol-vlan command for detailed description.
Page 91 Command Manual (For Soliton) – VLAN H3C S3100 Series Ethernet Switches Chapter 1 VLAN Configuration Commands Note: The port hybrid protocol-vlan vlan command is available on hybrid ports only. Before you bind a port with a protocol VLAN, assign the port to the VLAN with the port hybrid vlan command.
Page 92 Deletes all the protocol templates. Note: At present, the S3100 series support only the standard templates of AppleTalk and IP, the standard template of IPX encapsulated in Ethernet II format, and the user-defined templates matching the Ethernet II encapsulation format. Protocol templates matching 802.2/802.3 encapsulation formats and their extended...
Page 93 Command Manual (For Soliton) – VLAN H3C S3100 Series Ethernet Switches Chapter 1 VLAN Configuration Commands Description Use the protocol-vlan command to configure the protocol template used for classifying protocol-based VLANs. Use the undo protocol-vlan command to disable the configuration.
Page 94 Command Manual ( For Soliton ) – Management VLAN H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 Management VLAN Configuration Commands............1-1 1.1 Management VLAN Configuration Commands ..............1-1 1.1.1 delete static-routes all ..................... 1-1 1.1.2 display interface Vlan-interface ................
Page 95 Command Manual ( For Soliton ) – Management VLAN Chapter 1 Management VLAN Configuration H3C S3100 Series Ethernet Switches Commands Chapter 1 Management VLAN Configuration Commands 1.1 Management VLAN Configuration Commands 1.1.1 delete static-routes all Syntax delete static-routes all View...
Page 96: Display Ip Interface
Command Manual ( For Soliton ) – Management VLAN Chapter 1 Management VLAN Configuration H3C S3100 Series Ethernet Switches Commands Parameter vlan-id: ID of the management VLAN interface the information about which is to be displayed. Description Use the display interface Vlan-interface command to display the information about the management VLAN interface.
Page 97 Command Manual ( For Soliton ) – Management VLAN Chapter 1 Management VLAN Configuration H3C S3100 Series Ethernet Switches Commands View Any view Parameter vlan-id: ID of the management VLAN interface. Description Use the display ip interface command to display the information about a specified VLAN interface.
Page 98: Display Ip Interface Brief
Command Manual ( For Soliton ) – Management VLAN Chapter 1 Management VLAN Configuration H3C S3100 Series Ethernet Switches Commands Table 1-2 Description on the fields of the display ip interface command Field Description Vlan-interface1 current state Current state of Vlan-interface1...
Page 99: Display Ip Routing-Table
Command Manual ( For Soliton ) – Management VLAN Chapter 1 Management VLAN Configuration H3C S3100 Series Ethernet Switches Commands View Any view Parameter vlan-id: ID of the management VLAN interface. Description Use the display ip interface brief command to display brief information about a specified VLAN interface.
Page 100 Command Manual ( For Soliton ) – Management VLAN Chapter 1 Management VLAN Configuration H3C S3100 Series Ethernet Switches Commands View Any view Parameter regular-expression: Regular expression, which specifies a match character string. |: Uses the regular expression to match the output routing information.
Page 101: Display Ip Routing-Table Acl
Command Manual ( For Soliton ) – Management VLAN Chapter 1 Management VLAN Configuration H3C S3100 Series Ethernet Switches Commands 1.1.6 display ip routing-table acl Syntax display ip routing-table acl acl-number [ verbose ] View Any view Parameter acl-number: Number of a basic access control list (ACL), in the range of 2000 to 2999.
Page 102 Command Manual ( For Soliton ) – Management VLAN Chapter 1 Management VLAN Configuration H3C S3100 Series Ethernet Switches Commands **Destination: 10.1.1.0 Mask: 255.255.255.0 Protocol: #STATIC Preference: 60 *NextHop: 192.168.0.31 Interface: 192.168.0.51(Vlan-interface1) State: <Int ActiveU Gateway Static Unicast> Age: 1:48:18...
Page 103 Command Manual ( For Soliton ) – Management VLAN Chapter 1 Management VLAN Configuration H3C S3100 Series Ethernet Switches Commands Field Description Descriptions on the route state are as follows: ActiveU Valid unicast route. “U” stands for unicast. Blackhole route is the same as reject route except that a...
Page 104: Display Ip Routing-Table Ip-Address
Command Manual ( For Soliton ) – Management VLAN Chapter 1 Management VLAN Configuration H3C S3100 Series Ethernet Switches Commands 1.1.7 display ip routing-table ip-address Syntax display ip routing-table ip-address [ mask ] [ longer-match ] [ verbose ] View...
Page 105: Display Ip Routing-Table Ip-Address1 Ip-Address
Command Manual ( For Soliton ) – Management VLAN Chapter 1 Management VLAN Configuration H3C S3100 Series Ethernet Switches Commands <Sysname> display ip routing-table 10.1.1.0 Destination/Mask Protocol Pre Cost Nexthop Interface 10.1.1.0/24 STATIC 192.168.0.31 Vlan-interface1 Refer to Table 1-4 for the description on the output fields.
Page 106: Display Ip Routing-Table Protocol
Command Manual ( For Soliton ) – Management VLAN Chapter 1 Management VLAN Configuration H3C S3100 Series Ethernet Switches Commands Description Use the display ip routing-table ip-address1 ip-address2 command to display the information about the routes with their destinations within the specified destination IP address range.
Page 107: Display Ip Routing-Table Radix
Command Manual ( For Soliton ) – Management VLAN Chapter 1 Management VLAN Configuration H3C S3100 Series Ethernet Switches Commands Summary count: 4 DIRECT Routing table status:<active>: Summary count: 4 Destination/Mask Protocol Pre Cost Nexthop Interface 127.0.0.0/8 DIRECT 127.0.0.1 InLoopBack0 127.0.0.1/32...
Page 108: Display Ip Routing-Table Statistics
Command Manual ( For Soliton ) – Management VLAN Chapter 1 Management VLAN Configuration H3C S3100 Series Ethernet Switches Commands Radix tree for INET (2) inodes 2 routes 2: +--8+--{127.0.0.0 +-32+--{127.0.0.1 Table 1-6 Description on the fields of the display ip routing-table radix command...
Page 109: Display Ip Routing-Table Verbose
Command Manual ( For Soliton ) – Management VLAN Chapter 1 Management VLAN Configuration H3C S3100 Series Ethernet Switches Commands Table 1-7 Description on the fields of the display ip routing-table statistics command Field Description Proto Routing protocol route Total number of routes...
Page 110 Command Manual ( For Soliton ) – Management VLAN Chapter 1 Management VLAN Configuration H3C S3100 Series Ethernet Switches Commands Protocol: #DIRECT Preference: 0 *NextHop: 127.0.0.1 Interface: 127.0.0.1(InLoopBack0) State: <NoAdvise Int ActiveU Retain Unicast> Age: 57:12 Cost: 0/0 **Destination: 127.0.0.1 Mask: 255.255.255.255...
Page 111 Command Manual ( For Soliton ) – Management VLAN Chapter 1 Management VLAN Configuration H3C S3100 Series Ethernet Switches Commands Note that: To create the VLAN interface for the management VLAN on a switch operating as the management device in a cluster, make sure the ID of the management VLAN is...
Page 112: Ip Route-Static
Command Manual ( For Soliton ) – Management VLAN Chapter 1 Management VLAN Configuration H3C S3100 Series Ethernet Switches Commands Example # Assign the IP address 192.168.0.51 (with the mask 255.255.255.0) to the management VLAN interface. (Assume that VLAN 1 is the management VLAN.) <Sysname>...
Page 113 Command Manual ( For Soliton ) – Management VLAN Chapter 1 Management VLAN Configuration H3C S3100 Series Ethernet Switches Commands Description Use the ip route-static command to configure a static route. Use the undo ip route-static command to remove a static route.
Page 114: Reset Ip Routing-Table Statistics Protocol
Command Manual ( For Soliton ) – Management VLAN Chapter 1 Management VLAN Configuration H3C S3100 Series Ethernet Switches Commands VLAN 1 is the default management VLAN. Example # Configure VLAN 2 as the management VLAN. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 115 Command Manual ( For Soliton ) – Management VLAN Chapter 1 Management VLAN Configuration H3C S3100 Series Ethernet Switches Commands DIRECT STATIC Total The above information shows that the routing statistics in the IP routing table is cleared. 1-21...
Page 116 Command Manual (For Soliton) – IP Address-IP Performance H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 IP Address Configuration Commands............... 1-1 1.1 IP Address Configuration Commands ................1-1 1.1.1 display ip interface ....................1-1 1.1.2 display ip interface brief ..................1-3 1.1.3 ip address........................
Page 117: Ip Address Configuration Commands
Command Manual (For Soliton) – IP Address-IP Performance Chapter 1 IP Address Configuration H3C S3100 Series Ethernet Switches Commands Chapter 1 IP Address Configuration Commands 1.1 IP Address Configuration Commands 1.1.1 display ip interface Syntax display ip interface [ interface-type interface-number ]...
Page 118 Command Manual (For Soliton) – IP Address-IP Performance Chapter 1 IP Address Configuration H3C S3100 Series Ethernet Switches Commands Time exceed: IP header bad: Timestamp request: Timestamp reply: Information request: Information reply: Netmask request: Netmask reply: Unknown type: Table 1-1 Description on the fields of the display ip interface command...
Page 119 Command Manual (For Soliton) – IP Address-IP Performance Chapter 1 IP Address Configuration H3C S3100 Series Ethernet Switches Commands 1.1.2 display ip interface brief Syntax display ip interface brief [ interface-type [ interface-number ] ] View Any view Parameters interface-type: Interface type.
Page 120 Command Manual (For Soliton) – IP Address-IP Performance Chapter 1 IP Address Configuration H3C S3100 Series Ethernet Switches Commands Field Description Physical Physical state of the interface Protocol Link layer protocol state of the interface Interface description information. If the description has no more than 12 characters, the whole Description description can be displayed.
Page 121 Command Manual (For Soliton) – IP Address-IP Performance Chapter 1 IP Address Configuration H3C S3100 Series Ethernet Switches Commands Examples # Assign the IP address 129.12.0.1 to VLAN interface 1 with subnet mask 255.255.255.0. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 122: Ip Performance Configuration Commands
Command Manual (For Soliton) – IP Address-IP Performance Chapter 2 IP Performance Configuration H3C S3100 Series Ethernet Switches Commands Chapter 2 IP Performance Configuration Commands 2.1 IP Performance Configuration Commands 2.1.1 display fib Syntax display fib View Any view Parameters...
Page 123: Display Fib Ip-Address
Command Manual (For Soliton) – IP Address-IP Performance Chapter 2 IP Performance Configuration H3C S3100 Series Ethernet Switches Commands Table 2-1 Description on the fields of the display fib command Field Description Flags: U: A route is up and available.
Page 124: Display Fib Acl
Command Manual (For Soliton) – IP Address-IP Performance Chapter 2 IP Performance Configuration H3C S3100 Series Ethernet Switches Commands Description Use the display fib ip-address command to view the FIB entries matching the specified destination IP address. If no mask or mask length is specified, the FIB entry that matches the destination IP address and has the longest mask will be displayed;...
Page 125: Display Fib
Command Manual (For Soliton) – IP Address-IP Performance Chapter 2 IP Performance Configuration H3C S3100 Series Ethernet Switches Commands Description Use the display fib acl command to display the FIB entries matching a specific ACL. For ACL, refer to the part discussing ACL in this manual.
Page 126: Display Fib Statistics
Command Manual (For Soliton) – IP Address-IP Performance Chapter 2 IP Performance Configuration H3C S3100 Series Ethernet Switches Commands regular-expression: A case-sensitive character string. Description Use the display fib | command to display the FIB entries filtered by the specified regular expression.
Page 127 Command Manual (For Soliton) – IP Address-IP Performance Chapter 2 IP Performance Configuration H3C S3100 Series Ethernet Switches Commands Parameters None Description Use the display icmp statistics command to display the statistics about ICMP packets. Related commands: display ip interface, reset ip statistics.
Page 128: Display Ip Socket
Command Manual (For Soliton) – IP Address-IP Performance Chapter 2 IP Performance Configuration H3C S3100 Series Ethernet Switches Commands Table 2-2 Description on the fields of the display icmp statistics command Field Description bad formats Number of received wrong format packets...
Page 129 Command Manual (For Soliton) – IP Address-IP Performance Chapter 2 IP Performance Configuration H3C S3100 Series Ethernet Switches Commands View Any view Parameters socktype sock-type: Displays the socket information of this type. The sock type is in the range 1 to 3, corresponding to TCP, UDP and raw IP respectively.
Page 130: Display Ip Statistics
Command Manual (For Soliton) – IP Address-IP Performance Chapter 2 IP Performance Configuration H3C S3100 Series Ethernet Switches Commands Field Description socketid Socket ID Proto Protocol number used by the socket sndbuf Sending buffer size of the socket rcvbuf Receiving buffer size of the socket Current data size in the sending buffer.
Page 131 Command Manual (For Soliton) – IP Address-IP Performance Chapter 2 IP Performance Configuration H3C S3100 Series Ethernet Switches Commands Reassembling:sum timeouts Table 2-4 Description on the fields of the display ip statistics command Field Description Total number of packets received...
Page 132: Display Tcp Statistics
Command Manual (For Soliton) – IP Address-IP Performance Chapter 2 IP Performance Configuration H3C S3100 Series Ethernet Switches Commands 2.1.9 display tcp statistics Syntax display tcp statistics View Any view Parameters None Description Use the display tcp statistics command to display the statistics about TCP packets.
Page 133 Command Manual (For Soliton) – IP Address-IP Performance Chapter 2 IP Performance Configuration H3C S3100 Series Ethernet Switches Commands Keepalive timeout: 0, keepalive probe: 0, Keepalive timeout, so connections disconnected : 0 Initiated connections: 0, accepted connections: 0, established connections:...
Page 134: Display Tcp Status
Command Manual (For Soliton) – IP Address-IP Performance Chapter 2 IP Performance Configuration H3C S3100 Series Ethernet Switches Commands Field Description Total Total number of packets sent urgent packets Number of urgent packets sent Number of control packets sent; in...
Page 135: Display Udp Statistics
Command Manual (For Soliton) – IP Address-IP Performance Chapter 2 IP Performance Configuration H3C S3100 Series Ethernet Switches Commands View Any view Parameters None Description Use the display tcp status command to display the state of all the TCP connections so that you can monitor TCP connections in real time.
Page 136 Command Manual (For Soliton) – IP Address-IP Performance Chapter 2 IP Performance Configuration H3C S3100 Series Ethernet Switches Commands Description Use the display udp statistics command to display the statistics about UDP packets. Related commands: reset udp statistics. Examples # Display the statistics about UDP packets.
Page 137: Icmp Redirect Send
Command Manual (For Soliton) – IP Address-IP Performance Chapter 2 IP Performance Configuration H3C S3100 Series Ethernet Switches Commands 2.1.12 icmp redirect send Syntax icmp redirect send undo icmp redirect send View System view Parameters None Description Use the icmp redirect send command to enable the device to send ICMP redirection packets.
Page 138: Reset Ip Statistics
Command Manual (For Soliton) – IP Address-IP Performance Chapter 2 IP Performance Configuration H3C S3100 Series Ethernet Switches Commands packet with an unreachable destination, discards the packet and then sends a destination unreachable packet to the source host. Use the undo icmp unreach send command to disable the device from sending ICMP destination unreachable packets.
Page 139: Reset Udp Statistics
Command Manual (For Soliton) – IP Address-IP Performance Chapter 2 IP Performance Configuration H3C S3100 Series Ethernet Switches Commands Parameters None Description Use the reset tcp statistics command to clear the statistics about TCP packets. You can use the display tcp statistics command to view the current TCP packet statistics.
Page 140: Tcp Timer Syn-Timeout
Command Manual (For Soliton) – IP Address-IP Performance Chapter 2 IP Performance Configuration H3C S3100 Series Ethernet Switches Commands Description Use the tcp timer fin-timeout command to configure the TCP finwait timer. Use the undo tcp timer fin-timeout command to restore the default value of the TCP finwait timer.
Page 141: Tcp Window
Command Manual (For Soliton) – IP Address-IP Performance Chapter 2 IP Performance Configuration H3C S3100 Series Ethernet Switches Commands <Sysname> system-view System View: return to User View with Ctrl+Z. [Sysname] tcp timer syn-timeout 80 2.1.19 tcp window Syntax tcp window window-size...
Page 142 Command Manual (For Soliton) – Voice VLAN H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 Voice VLAN Configuration Commands ..............1-1 1.1 Voice VLAN Configuration Commands ................1-1 1.1.1 display voice vlan error-info ..................1-1 1.1.2 display voice vlan oui ....................
Page 143: Voice Vlan Configuration Commands
Command Manual (For Soliton) – Voice VLAN Chapter 1 Voice VLAN Configuration H3C S3100 Series Ethernet Switches Commands Chapter 1 Voice VLAN Configuration Commands 1.1 Voice VLAN Configuration Commands 1.1.1 display voice vlan error-info Syntax display voice vlan error-info View...
Page 144: Display Voice Vlan Status
Command Manual (For Soliton) – Voice VLAN Chapter 1 Voice VLAN Configuration H3C S3100 Series Ethernet Switches Commands Parameters None Description Use the display voice vlan oui command to display the organizationally unique identifier (OUI) list used for identifying voice traffic.
Page 145 Command Manual (For Soliton) – Voice VLAN Chapter 1 Voice VLAN Configuration H3C S3100 Series Ethernet Switches Commands <Sysname> display voice vlan status Voice Vlan status: ENABLE Voice Vlan ID: 2 Voice Vlan security mode: Security Voice Vlan aging time: 100 minutes...
Page 146: Voice Vlan
Command Manual (For Soliton) – Voice VLAN Chapter 1 Voice VLAN Configuration H3C S3100 Series Ethernet Switches Commands Parameters vlan-id: Specifies the ID of the current voice VLAN in the range of 1 to 4094. Description Use the display vlan command to display information about the specified VLAN.
Page 147: Voice Vlan Aging
Command Manual (For Soliton) – Voice VLAN Chapter 1 Voice VLAN Configuration H3C S3100 Series Ethernet Switches Commands Use the undo voice vlan enable command to remove the voice VLAN configuration from the specified VLAN. By default, voice VLAN is disabled globally.
Page 148 Command Manual (For Soliton) – Voice VLAN Chapter 1 Voice VLAN Configuration H3C S3100 Series Ethernet Switches Commands Parameters minutes: Sets the voice VLAN aging timer in minutes, in the range of 5 to 43200. Description Use the voice vlan aging command to set the voice VLAN aging timer.
Page 149: Voice Vlan Enable
Command Manual (For Soliton) – Voice VLAN Chapter 1 Voice VLAN Configuration H3C S3100 Series Ethernet Switches Commands 1.1.7 voice vlan enable Syntax voice vlan enable undo voice vlan enable View Ethernet port view Parameters None Description Use the voice vlan enable command to enable the voice VLAN function on the port.
Page 150: Voice Vlan Mac-Address
Use the voice vlan legacy command to enable the voice VLAN legacy function. This function realizes the communication between H3C device and other vendors’ voice device by automatically adding the voice VLAN tag to the voice data coming from other vendors’...
Page 151: Voice Vlan Mode
Command Manual (For Soliton) – Voice VLAN Chapter 1 Voice VLAN Configuration H3C S3100 Series Ethernet Switches Commands Description Use the voice vlan mac-address command to add an OUI entry to the OUI list for the specified MAC address. The OUI list contains the MAC addresses of recognizable voice devices.
Page 152: Voice Vlan Security Enable
Command Manual (For Soliton) – Voice VLAN Chapter 1 Voice VLAN Configuration H3C S3100 Series Ethernet Switches Commands Parameters None Description Use the voice vlan mode auto command to configure the voice VLAN assignment mode of the Ethernet port to automatic.
Page 153 Command Manual (For Soliton) – Voice VLAN Chapter 1 Voice VLAN Configuration H3C S3100 Series Ethernet Switches Commands Description Use the voice vlan security enable command to enable the voice VLAN security mode. Use the undo voice vlan security enable command to disable the voice VLAN security mode.
Page 154 Command Manual (For Soliton) – GVRP H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 GVRP Configuration Commands ................1-1 1.1 GARP Configuration Commands..................1-1 1.1.1 display garp statistics ....................1-1 1.1.2 display garp timer ....................1-2 1.1.3 garp timer ........................
Page 155: Display Garp Statistics
Command Manual (For Soliton) – GVRP H3C S3100 Series Ethernet Switches Chapter 1 GVRP Configuration Commands Chapter 1 GVRP Configuration Commands 1.1 GARP Configuration Commands 1.1.1 display garp statistics Syntax display garp statistics [ interface interface-list ] View Any view...
Page 156: Display Garp Timer
Command Manual (For Soliton) – GVRP H3C S3100 Series Ethernet Switches Chapter 1 GVRP Configuration Commands <Sysname> display garp statistics interface Ethernet 1/0/1 GARP statistics on port Ethernet1/0/1 Number Of GVRP Frames Received Number Of GVRP Frames Transmitted Number Of Frames Discarded...
Page 157: Garp Timer
Command Manual (For Soliton) – GVRP H3C S3100 Series Ethernet Switches Chapter 1 GVRP Configuration Commands Leave timer LeaveAll timer Hold timer Related commands: garp timer, garp timer leaveall. Examples # Display the settings of the GARP timers on port Ethernet1/0/1.
Page 158 Command Manual (For Soliton) – GVRP H3C S3100 Series Ethernet Switches Chapter 1 GVRP Configuration Commands The timeout ranges of the timers vary depending on the timeout values you set for other timers. If you want to set the timeout time of a timer to a value out of the current range, you can set the timeout time of the associated timer to another value to change the timeout range of this timer.
Page 159: Garp Timer Leaveall
Command Manual (For Soliton) – GVRP H3C S3100 Series Ethernet Switches Chapter 1 GVRP Configuration Commands Examples # Set the GARP Join timer to 30 centiseconds for Ethernet1/0/1. <Sysname> system-view System View: return to User View with Ctrl+Z. [Sysname] interface Ethernet 1/0/1 [Sysname-Ethernet1/0/1] garp timer join 30 1.1.4 garp timer leaveall...
Page 160: Reset Garp Statistics
Command Manual (For Soliton) – GVRP H3C S3100 Series Ethernet Switches Chapter 1 GVRP Configuration Commands System View: return to User View with Ctrl+Z. [Sysname] garp timer leaveall 100 1.1.5 reset garp statistics Syntax reset garp statistics [ interface interface-list ]...
Page 161: Display Gvrp Status
Command Manual (For Soliton) – GVRP H3C S3100 Series Ethernet Switches Chapter 1 GVRP Configuration Commands Parameters interface interface-list: Specifies an Ethernet port list. By providing a value for this argument, you can display the GVRP statistics on the specified ports. You need to provide the interface-list argument in the format of { interface-type interface-number [ to interface-type interface-number ] } &<1-10>, where the interface-type argument...
Page 162 Command Manual (For Soliton) – GVRP H3C S3100 Series Ethernet Switches Chapter 1 GVRP Configuration Commands Description Use the display gvrp status command to display the global GVRP status (enabled or disabled). Examples # Display the global GVRP status. <Sysname> display gvrp status GVRP is enabled The above information indicates that GVRP is enabled globally.
Page 163: Gvrp Registration
Command Manual (For Soliton) – GVRP H3C S3100 Series Ethernet Switches Chapter 1 GVRP Configuration Commands # Enable GVRP on Ethernet 1/0/1. [Sysname] interface Ethernet 1/0/1 [Sysname-Ethernet1/0/1] gvrp GVRP is enabled on port Ethernet1/0/5. 1.2.4 gvrp registration Syntax gvrp registration { fixed | forbidden | normal }...
Page 164 Command Manual (For Soliton) – GVRP H3C S3100 Series Ethernet Switches Chapter 1 GVRP Configuration Commands [Sysname-Ethernet1/0/1] gvrp registration fixed 1-10...
Page 165 Command Manual (For Soliton) – Port Basic Configuration H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 Port Basic Configuration Commands................ 1-1 1.1 Port Basic Configuration Commands................. 1-1 1.1.1 broadcast-suppression.................... 1-1 1.1.2 copy configuration ....................1-2 1.1.3 description .......................
Page 166: Chapter 1 Port Basic Configuration Commands
Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands Chapter 1 Port Basic Configuration Commands Note: A new parameter kbps is added in the command storm-constrain in the software version Release 2301.
Page 167: Copy Configuration
Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands When incoming broadcast traffic exceeds the broadcast traffic threshold you set, the system drops the packets exceeding the threshold to reduce the broadcast traffic ratio to the specified range, so as to keep normal network service.
Page 168 Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands Parameter interface-type: Port type. interface-number: Port number. source-agg-id: Source aggregation group number, in the range of 1 to 28. The port with the smallest port number in the aggregation group is used as the source port.
Page 169 Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands QoS configuration: includes Traffic Policing, Packets Priority Marking, Port Priority, Traffic Statistics, Traffic Redirecting, Port Rate Limiting, Priority Trust Mode, QoS Profile ( excludes qos-profile port-based ), and so on;...
Page 170: Display Brief Interface
Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands 1.1.3 description Syntax description text undo description View Ethernet port view Parameter text: Port description, a string of 1 to 80 characters.
Page 171 Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands begin: Each entry must begin with a specified character string. include: Each entry must include a specified character string. exclude: Each entry must not include a specified character string.
Page 172: Display Interface
Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands Table 1-1 Description on the fields of the display brief interface command Field Description Interface Port type Current link state of the Ethernet port: UP, DOWN or...
Page 173 Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands For details about the arguments, refer to the parameter description of the interface command. Description Use the display interface command to display port configuration.
Page 174 Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands Output(total): 0 packets, 0 bytes 0 broadcasts, 0 multicasts, 0 pauses Output(normal): - packets, - bytes - broadcasts, - multicasts, - pauses...
Page 175 Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands Field Description Input(total): 0 packets, 0 bytes 0 broadcasts, 0 multicasts, - pauses Input(normal): - packets, - bytes - broadcasts, - multicasts, -...
Page 176 Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands Field Description The number of incoming giant frames (A giant frame is of more than 1518 giants bytes if untagged or more than 1522 bytes if tagged.)
Page 177 Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands Field Description Count in packets and in bytes of outgoing normal packets on the port, including outgoing normal packets and normal Pause frames.
Page 178: Display Link-Delay
Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands 1.1.6 display link-delay Syntax display link-delay View Any view Parameters None Description Use the display link-delay command to display the information about the ports with the link-delay command configured, including the port name and the configured delay.
Page 179: Display Port Combo
Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands <Sysname> display loopback-detection Port Ethernet1/0/1 loopback-detection is running system Loopback-detection is running Detection interval time is 30 seconds There is no port existing loopback link...
Page 180: Display Storm-Constrain
Note: For information about combo port, refer to H3C S3100 Series Ethernet Switch Installation Manual. 1.1.9 display storm-constrain Syntax display storm-constrain [ interface interface-type interface-number ] [ | { begin |...
Page 181: Display Unit
Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands PortName StormType LowerLimit UpperLimit Ctr-mode Status Trap Log Swi-num -------------------------------------------------------------------------- Eth1/0/1 broadcast 9 shutdown normal Table 1-5 Description on the fields of the display storm-constrain command...
Page 182 Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands Description Use the display unit command to display information about the ports on a specified unit. Example # Display information about the ports on unit 1.
Page 183 Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands 0 lost carrier, - no carrier (The following displayed information is omitted) Table 1-6 Description on the fields of the display unit command...
Page 184: Enable Log Updown
Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands 1.1.12 enable log updown Syntax enable log updown undo enable log updown View Ethernet port view Parameter None Description Use the enable log updown command to enable Up/Down log information output.
Page 185: Flow Interval
Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands 1.1.13 flow interval Syntax flow-interval interval undo flow-interval View Ethernet port view Parameter Interval: Interval (in seconds) to perform statistics on port information. This argument ranges from 5 to 300 (in step of 5) and is 300 by default.
Page 186 Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands View Ethernet port view Parameter None Description Use the flow-control command to enable flow control on the current Ethernet port. Use the undo flow-control command to disable flow control on the port.
Page 187: Jumboframe Enable
Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands The slot number is 0 if the port is an Ethernet port, the slot number is 1 if the port is a GigabitEthernet port.
Page 188 Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands Example # Set the maximum frame size allowed on Ethernet 1/0/1 to 2048 bytes. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 189: Loopback-Detection Control Enable
Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands [Sysname-Ethernet1/0/5] link-delay 8 1.1.18 loopback Syntax loopback { external | internal } View Ethernet port view Parameter external: Performs external loop test. In the external loop test, self-loop headers must...
Page 190: Loopback-Detection Enable
Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands Parameter None Description Use the loopback-detection control enable command to enable the loopback port control function on the current trunk or hybrid port.
Page 191 Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands Parameter None Description Use the loopback-detection enable command to enable the loopback detection function on the current port to detect whether an external loopback occurs on the port.
Page 192: Loopback-Detection Interface-List Enable
Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands By default, the loopback detection function is enabled globally and on ports if the device boots with the default configuration file (config.def); if the device boots with null configuration, this function is disabled.
Page 193: Loopback-Detection Interval-Time
Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands Example # Enable the loopback detection function on ports Ethernet 1/0/1 through Ethernet 1/0/4. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 194: Loopback-Detection Shutdown Enable
Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands View Ethernet port view Parameter None Description Use the loopback-detection per-vlan enable command to configure the system to run loopback detection on all VLANs of the current trunk or hybrid port.
Page 195 Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands Use the undo loopback-detection shutdown enable command to disable the function. The loopback port auto-shutdown function works in conjunction with the loopback...
Page 196 Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands Parameter across: Sets the MDI mode to medium dependent interface (MDI). normal: Sets the MDI mode to media dependent interface-X mode (MDI-X).
Page 197 Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands For a GigabitEthernet port, the max-bps argument is in the range 64 to 1,000,000. Description Use the multicast-suppression command to limit unknown multicast and unknown unicast traffic allowed to be received on the current port.
Page 198: Port-Group
Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands Parameter interface-list: Ethernet interface list, format interface-type interface-number [ to interface-type interface-number ] &<1-10>, where &<1-10> indicates that you can specify up to 10 port ranges.
Page 199: Reset Counters Interface
Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands By default, no port group is configured. Example # Create port group 1. <Sysname> system-view [Sysname] port-group 1 [Sysname-port-group-1] 1.1.29 reset counters interface...
Page 200 Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands undo shutdown View Ethernet port view Parameter None Description Use the shutdown command to shut down an Ethernet port. Use the undo shutdown command to bring up an Ethernet port.
Page 201 Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands Parameter 10: Specifies the port speed to 10 Mbps. 100: Specifies the port speed to 100 Mbps. 1000: Specifies the port speed to 1,000 Mbps (only available to GigabitEthernet ports).
Page 202: Storm-Constrain Control
Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands all: Cancels all the storm control threshold configurations on the port. Description Use the storm-constrain command to set the upper and lower thresholds of the broadcast/multicast/unicast traffic received on the port.
Page 203: Storm-Constrain Enable
Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands Note: You are not recommended to set the upper and lower traffic thresholds to the same value. The system can take one of the actions when the broadcast/multicast/unicast traffic received on a port exceeds the upper threshold: block and shutdown.
Page 204: Storm-Constrain Interval
Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands Use the undo storm-constrain enable command to disable log/trap information from being output when traffic received on the port exceeds the upper threshold or falls below the lower threshold.
Page 205 Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands 1.1.36 virtual-cable-test Syntax virtual-cable-test View Ethernet port view Parameter None Description Use the virtual-cable-test command to enable the system to test the cable connected to a specific port and to display the results.
Page 206 Command Manual (For Soliton) – Port Basic Configuration Chapter 1 Port Basic Configuration H3C S3100 Series Ethernet Switches Commands Note: Currently, the device is only capable of testing the cable status and cable length. For the testing items that are currently not supported, “-” is displayed in the corresponding output fields.
Page 207 Command Manual (For Soliton) – Link Aggregation H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 Link Aggregation Configuration Commands............1-1 1.1 Link Aggregation Configuration Commands..............1-1 1.1.1 display link-aggregation interface................1-1 1.1.2 display link-aggregation summary................1-2 1.1.3 display link-aggregation verbose................
Page 208: Link Aggregation Configuration Commands
Command Manual (For Soliton) – Link Aggregation Chapter 1 Link Aggregation Configuration H3C S3100 Series Ethernet Switches Commands Chapter 1 Link Aggregation Configuration Commands 1.1 Link Aggregation Configuration Commands 1.1.1 display link-aggregation interface Syntax display link-aggregation interface interface-type interface-number [ to interface-type...
Page 209: Display Link-Aggregation Summary
Command Manual (For Soliton) – Link Aggregation Chapter 1 Link Aggregation Configuration H3C S3100 Series Ethernet Switches Commands Received LACP Packets: 0 packet(s), Illegal: 0 packet(s) Sent LACP Packets: 0 packet(s) Table 1-1 Description on the fields of the display link-aggregation interface...
Page 210: Display Link-Aggregation Verbose
Command Manual (For Soliton) – Link Aggregation Chapter 1 Link Aggregation Configuration H3C S3100 Series Ethernet Switches Commands <Sysname> display link-aggregation summary Aggregation Group Type:D -- Dynamic, S -- Static , M -- Manual Loadsharing Type: Shar -- Loadsharing, NonS -- Non-Loadsharing...
Page 211 Command Manual (For Soliton) – Link Aggregation Chapter 1 Link Aggregation Configuration H3C S3100 Series Ethernet Switches Commands View Any view Parameter agg-id: Aggregation group ID to be displayed, which ranges from 1 to 28 and must be the ID of an existing aggregation group.
Page 212: Lacp Enable
Command Manual (For Soliton) – Link Aggregation Chapter 1 Link Aggregation Configuration H3C S3100 Series Ethernet Switches Commands Table 1-3 Description on the fields of the display link-aggregation verbose command Field Description Loadsharing type, including Loadsharing and Loadsharing Type Non-Loadsharing...
Page 213: Lacp Port-Priority
Command Manual (For Soliton) – Link Aggregation Chapter 1 Link Aggregation Configuration H3C S3100 Series Ethernet Switches Commands undo lacp enable View Ethernet port view Parameter None Description Use the lacp enable command to enable LACP on the current port.
Page 214: Lacp System-Priority
Command Manual (For Soliton) – Link Aggregation Chapter 1 Link Aggregation Configuration H3C S3100 Series Ethernet Switches Commands Example # Set the priority of Ethernet1/0/1 to 64. <Sysname> system-view System View: return to User View with Ctrl+Z. [Sysname] interface Ethernet1/0/1 [Sysname-Ethernet1/0/1] lacp port-priority 64 1.1.7 lacp system-priority...
Page 215: Link-Aggregation Group Mode
Command Manual (For Soliton) – Link Aggregation Chapter 1 Link Aggregation Configuration H3C S3100 Series Ethernet Switches Commands Parameter agg-id: Aggregation group ID, in the range of 1 to 28. agg-name: Aggregation group name, a string of 1 to 32 characters.
Page 216 Command Manual (For Soliton) – Link Aggregation Chapter 1 Link Aggregation Configuration H3C S3100 Series Ethernet Switches Commands Description Use the link-aggregation group mode command to create a manual or static aggregation group. Use the undo link-aggregation group command to remove the specified aggregation group.
Page 217: Reset Lacp Statistics
Command Manual (For Soliton) – Link Aggregation Chapter 1 Link Aggregation Configuration H3C S3100 Series Ethernet Switches Commands 1.1.11 reset lacp statistics Syntax reset lacp statistics [ interface interface-type interface-number [ to interface-type interface-number ] ] View User view Parameter...
Page 218 Command Manual (For Soliton) – Port Isolation H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 Port Isolation Configuration Commands ..............1-1 1.1 Port Isolation Configuration Commands................1-1 1.1.1 display isolate port ....................1-1 1.1.2 port isolate....................... 1-1...
Page 219: Chapter 1 Port Isolation Configuration Commands
Command Manual (For Soliton) – Port Isolation Chapter 1 Port Isolation Configuration H3C S3100 Series Ethernet Switches Commands Chapter 1 Port Isolation Configuration Commands 1.1 Port Isolation Configuration Commands 1.1.1 display isolate port Syntax display isolate port View Any view...
Page 220 Command Manual (For Soliton) – Port Isolation Chapter 1 Port Isolation Configuration H3C S3100 Series Ethernet Switches Commands Description Use the port isolate command to add an Ethernet port to the isolation group. Use the undo port isolate command to remove an Ethernet port from the isolation group.
Page 221 Command Manual ( For Soliton ) – Port Security-Port Binding H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 Port Security Commands.................... 1-1 1.1 Port Security Commands....................1-1 1.1.1 display mac-address security.................. 1-1 1.1.2 display port-security ....................1-3 1.1.3 mac-address security ....................
Page 222: Port Security Commands
Command Manual ( For Soliton ) – Port Security-Port Binding H3C S3100 Series Ethernet Switches Chapter 1 Port Security Commands Chapter 1 Port Security Commands 1.1 Port Security Commands 1.1.1 display mac-address security Syntax display mac-address security [ interface interface-type interface-number ] [ vlan...
Page 223 Command Manual ( For Soliton ) – Port Security-Port Binding H3C S3100 Series Ethernet Switches Chapter 1 Port Security Commands 0000-0000-0004 Security Ethernet1/0/20 NOAGED 0000-0000-0001 Security Ethernet1/0/22 NOAGED 0000-0000-0007 Security Ethernet1/0/22 NOAGED 6 mac address(es) found # Display the security MAC address entries for port Ethernet 1/0/20.
Page 224: Display Port-Security
Command Manual ( For Soliton ) – Port Security-Port Binding H3C S3100 Series Ethernet Switches Chapter 1 Port Security Commands Field Description AGING TIME(s) Remaining lifetime of the MAC address entry mac address(es) found Number of matching security MAC addresses 1.1.2 display port-security...
Page 225 Command Manual ( For Soliton ) – Port Security-Port Binding H3C S3100 Series Ethernet Switches Chapter 1 Port Security Commands Dot1x logfailure trap is Enabled RALM logon trap is Enabled RALM logoff trap is Enabled RALM logfailure trap is Enabled...
Page 226 Command Manual ( For Soliton ) – Port Security-Port Binding H3C S3100 Series Ethernet Switches Chapter 1 Port Security Commands Table 1-2 Description on the fields of the display port-security command Field Description Equipment port security is enabled Port security is enabled on the switch.
Page 227: Mac-Address Security
Command Manual ( For Soliton ) – Port Security-Port Binding H3C S3100 Series Ethernet Switches Chapter 1 Port Security Commands 1.1.3 mac-address security Syntax In system view: mac-address security mac-address interface interface-type interface-number vlan vlan-id undo mac-address security mac-address interface...
Page 228: Port-Security Enable
Command Manual ( For Soliton ) – Port Security-Port Binding H3C S3100 Series Ethernet Switches Chapter 1 Port Security Commands Examples # Enable port security; configure the port security mode of Ethernet 1/0/1 as autolearn and create a security MAC address entry for 0001-0001-0001, setting the associated port to Ethernet 1/0/1 and assigning the MAC address to VLAN 1.
Page 229: Port-Security Intrusion-Mode
Command Manual ( For Soliton ) – Port Security-Port Binding H3C S3100 Series Ethernet Switches Chapter 1 Port Security Commands Caution: Enabling port security resets the following configurations on the ports to the defaults (as shown in parentheses below): 802.1x (disabled), port access control method (macbased), and port access control...
Page 230 Command Manual ( For Soliton ) – Port Security-Port Binding H3C S3100 Series Ethernet Switches Chapter 1 Port Security Commands disableport-temporarily: Disables a port for a specified period of time after an illegal frame or event is detected on it. You can set the period with the port-security timer disableport command.
Page 231 Command Manual ( For Soliton ) – Port Security-Port Binding H3C S3100 Series Ethernet Switches Chapter 1 Port Security Commands Dot1x logon trap is Enabled Dot1x logoff trap is Enabled Dot1x logfailure trap is Enabled RALM logon trap is Enabled...
Page 232: Port-Security Authorization Ignore
Command Manual ( For Soliton ) – Port Security-Port Binding H3C S3100 Series Ethernet Switches Chapter 1 Port Security Commands Note: You can bring up a port that has been permanently disabled by running the undo shutdown command or disabling port security on the port.
Page 233: Port-Security Max-Mac-Count
Command Manual ( For Soliton ) – Port Security-Port Binding H3C S3100 Series Ethernet Switches Chapter 1 Port Security Commands System View: return to User View with Ctrl+Z. [Sysname] interface Ethernet 1/0/2 [Sysname-Ethernet1/0/2] port-security authorization ignore 1.1.7 port-security max-mac-count Syntax...
Page 234: Port-Security Ntk-Mode
Command Manual ( For Soliton ) – Port Security-Port Binding H3C S3100 Series Ethernet Switches Chapter 1 Port Security Commands Examples # Set the maximum number of MAC addresses allowed on the port to 100. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 235: Port-Security Oui
Command Manual ( For Soliton ) – Port Security-Port Binding H3C S3100 Series Ethernet Switches Chapter 1 Port Security Commands <Sysname> system-view System View: return to User View with Ctrl+Z. [Sysname] port-security enable [Sysname] interface Ethernet 1/0/1 [Sysname-Ethernet1/0/1] port-security ntk-mode ntk-withbroadcasts 1.1.9 port-security oui...
Page 236: Port-Security Port-Mode
Command Manual ( For Soliton ) – Port Security-Port Binding H3C S3100 Series Ethernet Switches Chapter 1 Port Security Commands Related commands: port-security port-mode. Examples # Configure an OUI value of 00ef-ec00-0000, setting the OUI index to 5. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 237 Command Manual ( For Soliton ) – Port Security-Port Binding H3C S3100 Series Ethernet Switches Chapter 1 Port Security Commands Keyword Security mode Description This mode is similar to the macAddressAndUserLoginSecure mode, mac-and-us macAddressAn erlogin-sec dUserLoginSec except that in this mode, more than one user can...
Page 238 Command Manual ( For Soliton ) – Port Security-Port Binding H3C S3100 Series Ethernet Switches Chapter 1 Port Security Commands Keyword Security mode Description MAC address authentication and 802.1x authentication can coexist on a port, with 802.1x authentication having higher priority.
Page 239: Port-Security Timer Disableport
Command Manual ( For Soliton ) – Port Security-Port Binding H3C S3100 Series Ethernet Switches Chapter 1 Port Security Commands Note: Before setting the security mode to autolearn, you need to use the port-security max-mac-count command to configure the maximum number of MAC addresses allowed on the port.
Page 240: Port-Security Trap
Command Manual ( For Soliton ) – Port Security-Port Binding H3C S3100 Series Ethernet Switches Chapter 1 Port Security Commands Description Use the port-security timer disableport command to set the time during which the system temporarily disables a port. Use undo port-security timer disableport command restore the default time.
Page 241 Command Manual ( For Soliton ) – Port Security-Port Binding H3C S3100 Series Ethernet Switches Chapter 1 Port Security Commands dot1xlogoff: Enables/disables sending traps for 802.1x-authenticated user logoff events. dot1xlogon: Enables/disables sending traps for 802.1x-authenticated user logon events. intrusion: Enables/disables sending traps for detections of intrusion packets.
Page 242 Command Manual ( For Soliton ) – Port Security-Port Binding H3C S3100 Series Ethernet Switches Chapter 1 Port Security Commands # Use the display port-security command to display the related configuration information. <Sysname> display port-security Equipment port-security is enabled Intrusion trap is Enabled...
Page 243: Chapter 2 Port Binding Commands
Command Manual ( For Soliton ) – Port Security-Port Binding H3C S3100 Series Ethernet Switches Chapter 2 Port Binding Commands Chapter 2 Port Binding Commands 2.1 Port Binding Commands 2.1.1 am user-bind Syntax In system view: am user-bind mac-addr mac-address ip-addr ip-address interface interface-type...
Page 244: Display Am User-Bind
Command Manual ( For Soliton ) – Port Security-Port Binding H3C S3100 Series Ethernet Switches Chapter 2 Port Binding Commands Note: An IP address can be bound with only one port at a time. A MAC address can be bound with only one port at a time.
Page 245 Command Manual ( For Soliton ) – Port Security-Port Binding H3C S3100 Series Ethernet Switches Chapter 2 Port Binding Commands If no keyword is specified, this command displays all port bindings. Related commands: am user-bind. Examples # Display all port bindings.
Page 246 Command Manual (For Soliton) – DLDP H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 DLDP Configuration Commands................1-1 1.1 DLDP Configuration Commands ..................1-1 1.1.1 display dldp ......................1-1 1.1.2 dldp.......................... 1-2 1.1.3 dldp authentication-mode..................1-3 1.1.4 dldp interval ......................
Page 247: Chapter 1 Dldp Configuration Commands
Command Manual (For Soliton) – DLDP H3C S3100 Series Ethernet Switches Chapter 1 DLDP Configuration Commands Chapter 1 DLDP Configuration Commands 1.1 DLDP Configuration Commands 1.1.1 display dldp Syntax display dldp { unit-id | interface-type interface-number } View Any view Parameter unit-id: Unit number of a device.
Page 248 Command Manual (For Soliton) – DLDP H3C S3100 Series Ethernet Switches Chapter 1 DLDP Configuration Commands Table 1-1 Description on the fields of the display dldp command Field Description Interval for sending DLDP advertisement dldp interval packets dldp work-mode DLDP work mode...
Page 249: Dldp Authentication-Mode
Command Manual (For Soliton) – DLDP H3C S3100 Series Ethernet Switches Chapter 1 DLDP Configuration Commands In Ethernet port view, Use the dldp enable command to enable DLDP for the current port. Use the dldp disable command to disable DLDP for the current port.
Page 250: Dldp Interval
Command Manual (For Soliton) – DLDP H3C S3100 Series Ethernet Switches Chapter 1 DLDP Configuration Commands Description Use the dldp authentication-mode command to set the DLDP authentication mode and password. Use the undo dldp authentication-mode to remove the DLDP authentication mode and password.
Page 251: Dldp Reset
Command Manual (For Soliton) – DLDP H3C S3100 Series Ethernet Switches Chapter 1 DLDP Configuration Commands Parameter timer-value: Interval for sending DLDP advertisement packets, in the range 1 to 100 (in seconds). Description Use the dldp interval command to set the interval for sending DLDP advertisement packets for all DLDP-enabled ports in the advertisement state.
Page 252: Dldp Unidirectional-Shutdown
Command Manual (For Soliton) – DLDP H3C S3100 Series Ethernet Switches Chapter 1 DLDP Configuration Commands Use the dldp reset command to reset the DLDP status of the current port disabled by DLDP. After the dldp reset command is executed, the DLDP status of a port changes from disable to active and DLDP restarts to detect the link status of the fiber cable or copper twisted pair.
Page 253: Dldp Work-Mode
Command Manual (For Soliton) – DLDP H3C S3100 Series Ethernet Switches Chapter 1 DLDP Configuration Commands Example # Configure DLDP to shut down the corresponding port on detecting a unidirectional link. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 254: Dldp Delaydown-Timer
Command Manual (For Soliton) – DLDP H3C S3100 Series Ethernet Switches Chapter 1 DLDP Configuration Commands <Sysname> system-view System View: return to User View with Ctrl+Z. [Sysname] dldp work-mode enhance 1.1.8 dldp delaydown-timer Syntax dldp delaydown-timer delaydown-time undo dldp delaydown-timer...
Page 255 Command Manual (For Soliton) – MAC Address Table Management H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 MAC Address Table Management Configuration Commands ........ 1-1 1.1 MAC Address Table Management Configuration Commands .......... 1-1 1.1.1 display mac-address aging-time ................1-1 1.1.2 display mac-address ....................
Page 256: Chapter 1 Mac Address Table Management
Command Manual (For Soliton) – MAC Address Table Management Chapter 1 MAC Address Table H3C S3100 Series Ethernet Switches Management Configuration Commands Chapter 1 MAC Address Table Management Configuration Commands Note: This chapter describes the management of static, dynamic, and blackhole MAC address entries.
Page 257 Command Manual (For Soliton) – MAC Address Table Management Chapter 1 MAC Address Table H3C S3100 Series Ethernet Switches Management Configuration Commands Mac address aging time: no-aging The output information indicates that dynamic MAC address entries do not age out.
Page 258 Command Manual (For Soliton) – MAC Address Table Management Chapter 1 MAC Address Table H3C S3100 Series Ethernet Switches Management Configuration Commands count: Displays only the total number of the MAC address entries. statistics: Displays statistics of the MAC address entries maintained by the switch.
Page 259 Command Manual (For Soliton) – MAC Address Table Management Chapter 1 MAC Address Table H3C S3100 Series Ethernet Switches Management Configuration Commands Field Description The state of the MAC address entry, which can be one of the following: Config static: Indicates a manually configured static address entry.
Page 260 Command Manual (For Soliton) – MAC Address Table Management Chapter 1 MAC Address Table H3C S3100 Series Ethernet Switches Management Configuration Commands mac-address { static | dynamic | blackhole } mac-address interface interface-type interface-number vlan vlan-id undo mac-address [ mac-address-attribute ]...
Page 261 Command Manual (For Soliton) – MAC Address Table Management Chapter 1 MAC Address Table H3C S3100 Series Ethernet Switches Management Configuration Commands Syntax Description mac-address [ interface interface-type Removes a specified MAC address interface-number ] vlan vlan-id entry. Description Use the mac-address command to add or modify a MAC address entry.
Page 262 Command Manual (For Soliton) – MAC Address Table Management Chapter 1 MAC Address Table H3C S3100 Series Ethernet Switches Management Configuration Commands Description Use the mac-address max-mac-count command to set the maximum number of MAC addresses an Ethernet port can learn.
Page 263 Command Manual (For Soliton) – MAC Address Table Management Chapter 1 MAC Address Table H3C S3100 Series Ethernet Switches Management Configuration Commands By default, a switch learns MAC addresses in any VLAN. Example # Disable the switch from learning MAC address in VLAN 3.
Page 264 Command Manual (For Soliton) – MAC Address Table Management Chapter 1 MAC Address Table H3C S3100 Series Ethernet Switches Management Configuration Commands Examples # Set the aging time of MAC address entries to 500 seconds. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 265 Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 MSTP Configuration Commands ................1-1 1.1 MSTP Configuration Commands ..................1-1 1.1.1 active region-configuration ..................1-1 1.1.2 bpdu-drop any ......................1-2 1.1.3 check region-configuration ..................
Page 266 Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Table of Contents 1.1.37 stp no-agreement-check ..................1-42 1.1.38 stp pathcost-standard..................1-43 1.1.39 stp point-to-point ....................1-45 1.1.40 stp port priority..................... 1-46 1.1.41 stp portlog......................1-47 1.1.42 stp portlog all ....................... 1-47 1.1.43 stp priority......................
Page 267: Chapter 1 Mstp Configuration Commands
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands Chapter 1 MSTP Configuration Commands 1.1 MSTP Configuration Commands 1.1.1 active region-configuration Syntax active region-configuration View MST region view Parameters None Description Use the active region-configuration command to activate the settings of a multiple spanning tree (MST) region.
Page 268: Bpdu-Drop Any
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands 1.1.2 bpdu-drop any Syntax bpdu-drop any undo bpdu-drop any View Ethernet port view Parameters None Description Use the bpdu-drop any command to enable BPDU dropping on the Ethernet port.
Page 269 MST region-related parameters mentioned above are not consistent with those of another switch in the region. The H3C series support only the MST region name, VLAN-to-MSTI mapping table, and revision level. Switches with the settings of these parameters being the same are assigned to the same MST region.
Page 270: Display Stp
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands Table 1-1 Description on the fields of the check region-configuration command Field Description Format selector The selector specified by MSTP Region name The name of the MST region...
Page 271 Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands If both an MSTI ID list and a port list are specified, the command displays spanning tree information about the specified MSTIs and the specified ports in the order of MSTI ID.
Page 272: Port Role
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands Field Description Role Port role STP state on the port, which can be forwarding, STP State discarding, and learning. Protection type of the port, which can be one of the...
Page 273 Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands TCN: 0, Config: 0, RST: 0, MST: 0 BPDU Received TCN: 0, Config: 0, RST: 0, MST: 0 Table 1-3 display stp command output description...
Page 274: Display Stp Abnormalport
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands Field Description Indicates whether the port is connected to a Point-to-point point-to-point link. Config indicates the configured value, and Active indicates the actual value.
Page 275: Display Stp Portdown
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands <Sysname> display stp abnormalport MSTID Port Block Reason --------- -------------------- ------------- Ethernet1/0/20 Root-Protection Ethernet1/0/21 Loop-Protection Table 1-4 Description on the fields of the display stp abnormalport command...
Page 276: Display Stp Region-Configuration
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands 1.1.7 display stp region-configuration Syntax display stp region-configuration View Any view Parameters None Description Use the display stp region-configuration command to display the activated MST region configuration, including the region name, region revision level, and VLAN-to-STI mappings configured for the switch.
Page 277: Display Stp Root
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands 1.1.8 display stp root Syntax display stp root View Any view Parameters None Description Use the display stp root command to display information about the root ports in the MSTP region where the switch resides.
Page 278 Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands View MST region view Parameters instance-id: ID of an MSTI ranging from 0 to 16. The value of 0 refers to the CIST. vlan-list: List of VLANs. You need to provide this argument in the form of vlan-list = { vlan-id [ to vlan-id ] }&<1-10>, where &<1-10>...
Page 279: Reset Stp
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands View MST region view Parameters name: MST region name to be set for the switch, a string of 1 to 32 characters. Description Use the region-name command to set an MST region name for a switch.
Page 280 Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands The spanning tree statistics includes the numbers of TCN BPDUs, configuration BPDUs, RST BPDUs, and MST BPDUs sent/received through one or more specified ports or all ports (note that BPDUs and TCN BPDUs are counted only for CISTs.)
Page 281 Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands System View: return to User View with Ctrl+Z. [Sysname] stp region-configuration [Sysname-mst-region] revision-level 5 1.1.13 stp Syntax stp { enable | disable } undo stp...
Page 282: Stp Bpdu-Protection
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands 1.1.14 stp bpdu-protection Syntax stp bpdu-protection undo stp bpdu-protection View System view Parameters None Description Use the stp bpdu-protection command to enable the BPDU guard function on the switch.
Page 283: Stp Compliance
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands undo stp bridge-diameter View System view Parameters bridgenum: Network diameter to be set for a switched network. This argument ranges from 2 to 7.
Page 284 Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands legacy: Specifies the port to recognize and send MSTP packets in the legacy mode. dot1s: Specifies the port to recognize and send MSTP packets in the 802.1s mode.
Page 285: Stp Config-Digest-Snooping
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands # Restore the default mode in which a port recognizes and send MSTP packets. [Sysname-Ethernet1/0/1] undo stp compliance 1.1.17 stp config-digest-snooping Syntax stp config-digest-snooping...
Page 286: Stp Cost
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands Note: When the digest snooping feature is enabled on a port, the port turns to the discarding state. That is, the port stops sending BPDU packets. The port is not involved in the STP calculation until it receives BPDU packets from the peer port.
Page 287: Stp Dot1D-Trap
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands Parameters instance-id: ID of an MSTI ranging from 0 to 16. The value of 0 refers to the CIST. cost: Path cost to be set for the port. The range of the cost argument varies with the standard used for calculating the default path cost of a port as follows: With the IEEE 802.1D-1998 standard selected, the path cost of an Ethernet port...
Page 288 Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands View System view Parameters instance-id: MSTI ID ranging from 0 to 16. The value of 0 refers to CIST. With this argument specified, the trap messages sent are only of the MSTI identified by this argument.
Page 289: Stp Edged-Port
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands 1.1.20 stp edged-port Syntax stp edged-port { enable | disable } undo stp edged-port View Ethernet port view Parameters enable: Configures the current Ethernet port as an edge port.
Page 290: Stp Interface
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands Caution: With the loop guard function enabled, the root guard function and the edge port configuration are mutually exclusive. Examples # Configure Ethernet 1/0/1 as a non-edge port.
Page 291: Stp Interface Compliance
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands Caution: Disabling MSTP on ports may result in loops. Related commands: stp mode, stp. Examples # Enable MSTP on Ethernet 1/0/1 in system view.
Page 292: Stp Interface Config-Digest-Snooping
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands Legacy mode. Ports in this mode recognize/send packets in legacy format. 802.1s mode. Ports in this mode recognize/send packets in dot1s format. A port acts as follows according to the format of MSTP packets forwarded by a peer switch or router.
Page 293 Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands Parameters interface-list: Ethernet port list. You can specify multiple Ethernet ports by providing this argument in the format of interface-list ={ interface-type interface-number [ to interface-type interface-number ] } &<1-10>, where &<1-10>...
Page 294: Stp Interface Cost
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands Note: When the digest snooping feature is enabled on a port, the port turns to the discarding state. That is, the port stops sending BPDU packets. The port is not involved in the STP calculation until it receives BPDU packets from the peer port.
Page 295: Stp Interface Edged-Port
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands interface-type interface-number ] } &<1-10>, where &<1-10> means that you can provide up to 10 port indexes/port index ranges for this argument. instance-id: MSTI ID ranging from 0 to 16. The value of 0 refers to the CIST.
Page 296 Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands View System view Parameters interface-list: Ethernet port list. You can specify multiple Ethernet ports by providing this argument in the form of interface-list = { interface-type interface-number [ to interface-type interface-number ] } &<1-10>, where &<1-10>...
Page 297: Stp Interface Loop-Protection
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands Examples # Configure Ethernet 1/0/3 as an edge port. <Sysname> system-view System View: return to User View with Ctrl+Z. [Sysname] stp interface Ethernet 1/0/3 edged-port enable 1.1.26 stp interface loop-protection...
Page 298: Stp Interface Mcheck
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands System View: return to User View with Ctrl+Z. [Sysname] stp interface Ethernet 1/0/1 loop-protection 1.1.27 stp interface mcheck Syntax stp [ interface interface-list ] mcheck...
Page 299 MSTP, the upstream designated port fails to change their states rapidly. The rapid transition feature is developed on the H3C series switches to avoid this case. When an H3C series switch running MSTP is connected in the upstream direction to a...
Page 300: Stp Interface Point-To-Point
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands 1.1.29 stp interface point-to-point Syntax stp interface interface-list point-to-point { force-true | force-false | auto } undo stp interface interface-list point-to-point View System view Parameters interface-list: Ethernet port list.
Page 301: Stp Interface Port Priority
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands If a port is configured to connect to a point-to-point link (or non-point-to-point link), the port adopts the same configuration in all spanning tree instances.
Page 302: Stp Interface Root-Protection
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands forwarded along different physical paths, so as to implement VLAN-based load balancing. Changing port priorities results in port role recalculation and may cause state transition.
Page 303: Stp Interface Transmit-Limit
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands non-designated port, it turns to the discarding state and stops forwarding packets (as if it is disconnected from the link). Related commands: stp root-protection.
Page 304: Stp Loop-Protection
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands The larger the packetnum argument is, the more packets a port can transmit in each hello time, while the more switch resources are occupied. Configure the packetnum...
Page 305: Stp Max-Hops
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands designated port and the port turns to the discarding state, that is, the port does not forward packets and thereby loops can be prevented.
Page 306: Stp Mcheck
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands The switches that are not root bridges in an MST region adopt the maximum hop settings of the root bridge. Examples # Set the maximum hop count of the current MST region to 35.
Page 307: Stp Mode
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands [Sysname-Ethernet1/0/1] stp mcheck 1.1.36 stp mode Syntax stp mode { stp | rstp | mstp } undo stp mode View System view Parameters stp: Specifies the STP-compatible mode.
Page 308: Stp No-Agreement-Check
RSTP in the way to implement rapid transition on designated ports. When a switch of this kind operates as the upstream switch of an H3C series switch running MSTP, the upstream designated port fails to change their states rapidly.
Page 309: Stp Pathcost-Standard
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands Examples # Enable the rapid transition feature on Ethernet 1/0/1. <Sysname> system-view System View: return to User View with Ctrl+Z. [Sysname] interface Ethernet 1/0/1 [Sysname-Ethernet1/0/1] stp no-agreement-check 1.1.38 stp pathcost-standard...
Page 310 Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands Table 1-8 Link speeds and the corresponding path costs Operating mode 802.1D- Proprietary Link speed IEEE 802.1t (half-/full-duplex) 1998 standard — 65,535 200,000,000 200,000...
Page 311: Stp Point-To-Point
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands System View: return to User View with Ctrl+Z. [Sysname] stp pathcost-standard dot1t 1.1.39 stp point-to-point Syntax stp point-to-point { force-true | force-false | auto }...
Page 312: Stp Port Priority
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands Related commands: stp interface point-to-point. Examples # Configure the link connected to Ethernet 1/0/3 as a point-to-point link. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 313: Stp Portlog
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands <Sysname> system-view System View: return to User View with Ctrl+Z. [Sysname] interface Ethernet 1/0/3 [Sysname-Ethernet1/0/3] stp instance 2 port priority 16 1.1.41 stp portlog...
Page 314: Stp Priority
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands Parameters None Description Use the stp portlog all command to enable log and trap message output for the ports of all instances. Use the undo stp portlog all command to disable this function.
Page 315: Stp Region-Configuration
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands If you do not specify the instance-id argument, the two commands apply to only the CIST. Examples # Set the bridge priority of the switch in MSTI 1 to 4,096.
Page 316: Stp Root Primary
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands Examples # Enter MST region view. <Sysname> system-view System View: return to User View with Ctrl+Z. [Sysname] stp region-configuration [Sysname-mst-region] 1.1.45 stp root primary...
Page 317: Stp Root Secondary
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands Caution: You can configure only one root bridge for an MSTI and can configure one or more secondary root bridges for an MSTI. Specifying multiple root bridges for an MSTI causes unpredictable spanning tree calculation results.
Page 318: Stp Root-Protection
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands If you do not specify the instance-id argument, the two commands apply to only the CIST. You can configure one or more secondary root bridges for an MSTI. If the switch operating as the root bridge fails or is turned off, the secondary root bridge with the least MAC address becomes the root bridge.
Page 319: Stp Tc-Protection
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands Because of configuration errors or malicious attacks, the valid root bridge in the network may receive configuration BPDUs with their priorities higher than that of the root bridge, which causes new root bridge to be elected and network topology jitter to occur.
Page 320: Stp Tc-Protection Threshold
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands entries frequently, which may affect spanning tree calculation, occupy large amount of bandwidth and increase switch CPU utilization. With the TC-BPDU attack guard function enabled, a switch performs a removing operation upon receiving a TC-BPDU and triggers a timer (set to 10 seconds by default) at the same time.
Page 321: Stp Timer Forward-Delay
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands operation for limited times (up to six times by default) regardless of the number of the TC-BPDUs it receives. Such a mechanism prevents a switch from being busy in removing the MAC address table and ARP entries.
Page 322: Stp Timer Hello
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands period to synchronize with the state transition of the remote switches. This state transition period is determined by the forward delay configured on the root bridge.
Page 323: Stp Timer Max-Age
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands switch becomes a root bridge, it regularly sends BPDUs at the interval specified by the hello time you have configured on it. The other none-root-bridge switches adopt the interval specified by the hello time.
Page 324: Stp Timer-Factor
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands The max age is meaningless to MSTIs. The max age configured for the root bridge of the CIST applies to all switches operating on the CIST, including the root bridge.
Page 325: Stp Transmit-Limit
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands a period three times of the hello time and then initiates the spanning tree recalculation process. Spanning trees may be recalculated even in a steady network if an upstream switch is always busy.
Page 326: Vlan-Mapping Modulo
Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands Examples # Set the maximum number of configuration BPDUs that can be transmitted through Ethernet 1/0/1 in each hello time to 15. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 327 Command Manual (For Soliton) – MSTP H3C S3100 Series Ethernet Switches Chapter 1 MSTP Configuration Commands Related commands: check region-configuration, revision-level, region-name, active region-configuration. Examples # Map VLANs to MSTIs, with the modulo being 16. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 328 Command Manual (For Soliton) – Multicast H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 IGMP Snooping Configuration Commands............... 1-1 1.1 IGMP Snooping Configuration Commands ............... 1-1 1.1.1 display igmp-snooping configuration............... 1-1 1.1.2 display igmp-snooping group .................. 1-2 1.1.3 display igmp-snooping statistics................
Page 329: Igmp Snooping Configuration Commands
Command Manual (For Soliton) – Multicast Chapter 1 IGMP Snooping Configuration H3C S3100 Series Ethernet Switches Commands Chapter 1 IGMP Snooping Configuration Commands Note: The feature Suppressing Flooding of Unknown Multicast Traffic in a VLAN is added in the software version Release 2301. The related command is igmp-snooping nonflooding-enable.
Page 330: Display Igmp-Snooping Group
Command Manual (For Soliton) – Multicast Chapter 1 IGMP Snooping Configuration H3C S3100 Series Ethernet Switches Commands Examples # Display IGMP Snooping configuration information on the switch. <Sysname> display igmp-snooping configuration Enable IGMP Snooping. The router port timeout is 105 second(s).
Page 331: Display Igmp-Snooping Statistics
Command Manual (For Soliton) – Multicast Chapter 1 IGMP Snooping Configuration H3C S3100 Series Ethernet Switches Commands Ethernet1/0/11 Dynamic Router port(s): Ethernet1/0/22 IP group(s):the following ip group(s) match to one mac group. IP group address:228.0.0.1 Static host port(s): Ethernet1/0/23 Dynamic host port(s):...
Page 332 Command Manual (For Soliton) – Multicast Chapter 1 IGMP Snooping Configuration H3C S3100 Series Ethernet Switches Commands Parameters None Description Use the display igmp-snooping statistics command to display IGMP Snooping statistics. This command displays the following information: the numbers of the IGMP general...
Page 333: Igmp-Snooping Fast-Leave
Command Manual (For Soliton) – Multicast Chapter 1 IGMP Snooping Configuration H3C S3100 Series Ethernet Switches Commands 1.1.4 igmp-snooping Syntax igmp-snooping { enable | disable } View System view, VLAN view Parameters enable: Enables the IGMP Snooping feature. disable: Disables the IGMP Snooping feature.
Page 334 Command Manual (For Soliton) – Multicast Chapter 1 IGMP Snooping Configuration H3C S3100 Series Ethernet Switches Commands View System view, Ethernet port view Parameters vlan vlan-list: Specifies a VLAN list. With the vlan-list argument, you can provide one or more individual VLAN IDs (in the form of vlan-id) and/or one or more VLAN ID ranges (in the form of vlan-id1 to vlan-id2, where vlan-id2 must be greater than vlan-id1).
Page 335: Igmp-Snooping General-Query Source-Ip
Command Manual (For Soliton) – Multicast Chapter 1 IGMP Snooping Configuration H3C S3100 Series Ethernet Switches Commands 1.1.6 igmp-snooping general-query source-ip Syntax igmp-snooping general-query source-ip { current-interface | ip-address } undo igmp-snooping general-query source-ip View VLAN view Parameters current-interface: Specifies the IP address of the current VLAN interface as the source address of IGMP general queries.
Page 336: Igmp-Snooping Group-Limit
Command Manual (For Soliton) – Multicast Chapter 1 IGMP Snooping Configuration H3C S3100 Series Ethernet Switches Commands 1.1.7 igmp-snooping group-limit Syntax igmp-snooping group-limit limit [ vlan vlan-list ] [ overflow-replace ] undo igmp-snooping group-limit [ vlan vlan-list ] View Ethernet port view Parameters limit: Maximum number of multicast groups the port can join, in the range of 1 to 512.
Page 337: Igmp-Snooping Group-Policy
Command Manual (For Soliton) – Multicast Chapter 1 IGMP Snooping Configuration H3C S3100 Series Ethernet Switches Commands Note: To prevent bursting traffic in the network or performance deterioration of the device caused by excessive multicast groups, you can set the maximum number of multicast groups that the switch should process.
Page 338 Command Manual (For Soliton) – Multicast Chapter 1 IGMP Snooping Configuration H3C S3100 Series Ethernet Switches Commands By default, no multicast group filter is configured. The ACL rule defines a multicast address or a multicast address range (for example 224.0.0.1 to 239.255.255.255) and is used to: Allow the port(s) to join only the multicast group(s) defined in the rule by a permit statement.
Page 339: Igmp-Snooping Host-Aging-Time
Command Manual (For Soliton) – Multicast Chapter 1 IGMP Snooping Configuration H3C S3100 Series Ethernet Switches Commands [Sysname] interface Ethernet 1/0/1 [Sysname-Ethernet1/0/1] igmp-snooping group-policy 2000 vlan 2 [Sysname-Ethernet1/0/1] quit # Configure a multicast group filter to allow receivers attached to Ethernet 1/0/2 to access the multicast streams for any groups except groups 225.0.0.0 to 225.0.0.255.
Page 340: Igmp-Snooping Nonflooding-Enable
Command Manual (For Soliton) – Multicast Chapter 1 IGMP Snooping Configuration H3C S3100 Series Ethernet Switches Commands Related commands: display igmp-snooping configuration. Examples # Set the aging time of multicast member ports to 300 seconds. <Sysname>system-view System View: return to User View with Ctrl+Z.
Page 341: Igmp-Snooping Querier
Command Manual (For Soliton) – Multicast Chapter 1 IGMP Snooping Configuration H3C S3100 Series Ethernet Switches Commands Note: IGMP Snooping must be enabled before you enable the function of unknown multicast flooding suppression. If the function of dropping unknown multicast packets is enabled, you cannot enable the IGMP Snooping non-flooding function.
Page 342: Igmp-Snooping Query-Interval
Command Manual (For Soliton) – Multicast Chapter 1 IGMP Snooping Configuration H3C S3100 Series Ethernet Switches Commands Related commands: igmp-snooping enable, igmp-snooping query-interval, igmp-snooping general-query source-ip Examples # Enable the IGMP Snooping querier in VLAN 3. <Sysname> system-view System view, return to user view with Ctrl+Z.
Page 343: Igmp-Snooping Router-Aging-Time
Command Manual (For Soliton) – Multicast Chapter 1 IGMP Snooping Configuration H3C S3100 Series Ethernet Switches Commands [Sysname-vlan3] igmp-snooping enable [Sysname-vlan3] igmp-snooping querier [Sysname-vlan3] igmp-snooping query-interval 100 1.1.13 igmp-snooping router-aging-time Syntax igmp-snooping router-aging-time seconds undo igmp-snooping router-aging-time View System view Parameters seconds: Aging time of router ports, in the range of 1 to 1,000, in seconds.
Page 344: Igmp-Snooping Vlan-Mapping
Command Manual (For Soliton) – Multicast Chapter 1 IGMP Snooping Configuration H3C S3100 Series Ethernet Switches Commands Parameters version-number: IGMP Snooping version, in the range of 2 to 3 and defaulting to 2. Description Use the igmp-snooping version command to configure the IGMP Snooping version in the current VLAN.
Page 345: Igmp Host-Join
Command Manual (For Soliton) – Multicast Chapter 1 IGMP Snooping Configuration H3C S3100 Series Ethernet Switches Commands Examples # Configure IGMP general and group-specific query messages to be transmitted in VLAN 2. <Sysname>system-view System View: return to User View with Ctrl+Z.
Page 346: Multicast Static-Group Interface
Command Manual (For Soliton) – Multicast Chapter 1 IGMP Snooping Configuration H3C S3100 Series Ethernet Switches Commands Caution: Before configuring a port as a simulated host, enable IGMP Snooping in VLAN view first. The current port must belong to the specified VLAN; otherwise this configuration does not take effect.
Page 347: Multicast Static-Group Vlan
Command Manual (For Soliton) – Multicast Chapter 1 IGMP Snooping Configuration H3C S3100 Series Ethernet Switches Commands exceed 10. For port types and port numbers, refer to the parameter description in the “Port Basic Configuration” part in this manual. Description...
Page 348: Multicast Static-Router-Port
Command Manual (For Soliton) – Multicast Chapter 1 IGMP Snooping Configuration H3C S3100 Series Ethernet Switches Commands By default, no port is configured as a static multicast group member port. Examples # Configure port Ethernet1/0/1 in VLAN 2 as a static member port for multicast group 225.0.0.1.
Page 349: Reset Igmp-Snooping Statistics
Command Manual (For Soliton) – Multicast Chapter 1 IGMP Snooping Configuration H3C S3100 Series Ethernet Switches Commands View Ethernet port view Parameters vlan-id: VLAN ID the port belongs to, in the range of 1 to 4094. Description Use the multicast static-router-port vlan command to configure the current port in the specified VLAN as a static router port.
Page 350: Service-Type Multicast
Command Manual (For Soliton) – Multicast Chapter 1 IGMP Snooping Configuration H3C S3100 Series Ethernet Switches Commands 1.1.22 service-type multicast Syntax service-type multicast undo service-type multicast View VLAN view Parameters None Description Use the service-type multicast command to configure the current VLAN as a multicast VLAN.
Page 351 Command Manual (For Soliton) – Multicast Chapter 1 IGMP Snooping Configuration H3C S3100 Series Ethernet Switches Commands Examples # Configure VLAN 2 as a multicast VLAN. <Sysname> system-view System View: return to User View with Ctrl+Z. [Sysname] vlan 2 [Sysname-vlan2] service-type multicast...
Page 352: Common Multicast Configuration Commands
Command Manual (For Soliton) – Multicast Chapter 2 Common Multicast Configuration H3C S3100 Series Ethernet Switches Commands Chapter 2 Common Multicast Configuration Commands 2.1 Common Multicast Configuration Commands 2.1.1 display mac-address multicast static Syntax display mac-address multicast static [ [ mac-address ] vlan vlan-id ] [ count ]...
Page 353: Display Multicast-Source-Deny
Command Manual (For Soliton) – Multicast Chapter 2 Common Multicast Configuration H3C S3100 Series Ethernet Switches Commands Table 2-1 display mac-address multicast static command output description Field Description MAC ADDR MAC address VLAN ID The VLAN in which the MAC address is manually added...
Page 354: Mac-Address Multicast Interface
Command Manual (For Soliton) – Multicast Chapter 2 Common Multicast Configuration H3C S3100 Series Ethernet Switches Commands The information above shows that multicast source port suppression is disabled on Ethernet 1/0/1. 2.1.3 mac-address multicast interface Syntax mac-address multicast mac-address interface interface-list vlan vlan-id...
Page 355: Mac-Address Multicast Vlan
Command Manual (For Soliton) – Multicast Chapter 2 Common Multicast Configuration H3C S3100 Series Ethernet Switches Commands 2.1.4 mac-address multicast vlan Syntax mac-address multicast mac-address vlan vlan-id undo mac-address multicast [ [ mac-address ] vlan vlan-id ] View Ethernet port view Parameters mac-address: Multicast MAC address in the form of H-H-H.
Page 356 Command Manual (For Soliton) – Multicast Chapter 2 Common Multicast Configuration H3C S3100 Series Ethernet Switches Commands Parameters interface interface-list: Enables the multicast source port suppression feature on the specified port or ports. With the interface-list argument, you can define one or more...
Page 357: Unknown-Multicast Drop Enable
Command Manual (For Soliton) – Multicast Chapter 2 Common Multicast Configuration H3C S3100 Series Ethernet Switches Commands 2.1.6 unknown-multicast drop enable Syntax unknown-multicast drop enable undo unknown-multicast drop enable View System view Parameters None Description Use the unknown-multicast drop enable command to enable the function of dropping unknown multicast packets.
Page 358 Command Manual (For Soliton) – 802.1x-System Guard H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 802.1x Configuration Commands ................1-1 1.1 802.1x Configuration Commands ..................1-1 1.1.1 display dot1x ......................1-1 1.1.2 dot1x........................1-5 1.1.3 dot1x authentication-method................... 1-6 1.1.4 dot1x dhcp-launch....................
Page 359 Command Manual (For Soliton) – 802.1x-System Guard H3C S3100 Series Ethernet Switches Table of Contents 4.1.2 display system-guard state ..................4-2 4.1.3 system-guard detect-threshold................4-3 4.1.4 system-guard enable....................4-3 4.1.5 system-guard permit ....................4-4 4.1.6 system-guard timer-interval..................4-5...
Page 360: X Configuration Commands
Command Manual (For Soliton) – 802.1x-System Guard H3C S3100 Series Ethernet Switches Chapter 1 802.1x Configuration Commands Chapter 1 802.1x Configuration Commands 1.1 802.1x Configuration Commands 1.1.1 display dot1x Syntax display dot1x [ sessions | statistics ] [ interface interface-list ]...
Page 361: Command Manual (For Soliton) – 802.1X-System Guard
Command Manual (For Soliton) – 802.1x-System Guard H3C S3100 Series Ethernet Switches Chapter 1 802.1x Configuration Commands Proxy logoff checker is disabled EAD Quick Deploy is enabled Configuration: Transmit Period 30 s, Handshake Period 15 s ReAuth Period 3600 s,...
Page 362 Command Manual (For Soliton) – 802.1x-System Guard H3C S3100 Series Ethernet Switches Chapter 1 802.1x Configuration Commands Ethernet1/0/2 …… Table 1-1 Description on the fields of the display dot1x command Field Description Equipment 802.1X protocol is 802.1x protocol (802.1x for short) is enabled on the enabled switch.
Page 363 Command Manual (For Soliton) – 802.1x-System Guard H3C S3100 Series Ethernet Switches Chapter 1 802.1x Configuration Commands Field Description The maximum number of times that a switch can The maximal retransmitting send authentication request packets to a supplicant times system...
Page 364 Command Manual (For Soliton) – 802.1x-System Guard H3C S3100 Series Ethernet Switches Chapter 1 802.1x Configuration Commands Field Description … Information omitted here 1.1.2 dot1x Syntax dot1x [ interface interface-list ] undo dot1x [ interface interface-list ] View System view, Ethernet port view...
Page 365: Dot1X Authentication-Method
Command Manual (For Soliton) – 802.1x-System Guard H3C S3100 Series Ethernet Switches Chapter 1 802.1x Configuration Commands Note: Configurations of 8021.x and the maximum number of MAX addresses that can be learnt are mutually exclusive. That is, when 802.1x is enabled for a port, it cannot also have the maximum number of MAX addresses to be learned configured at the same time.
Page 366: Dot1X Dhcp-Launch
Command Manual (For Soliton) – 802.1x-System Guard H3C S3100 Series Ethernet Switches Chapter 1 802.1x Configuration Commands Use the undo dot1x authentication-method command to revert to the default 802.1x authentication method. The default 802.1x authentication method is CHAP. PAP applies a two-way handshaking procedure. In this method, passwords are transmitted in plain text.
Page 367: Dot1X Guest-Vlan
Command Manual (For Soliton) – 802.1x-System Guard H3C S3100 Series Ethernet Switches Chapter 1 802.1x Configuration Commands Description Use the dot1x dhcp-launch command to specify an 802.1x-enabled switch to launch the process to authenticate a supplicant system when the supplicant system applies for a dynamic IP address through DHCP.
Page 368: Dot1X Handshake
Command Manual (For Soliton) – 802.1x-System Guard H3C S3100 Series Ethernet Switches Chapter 1 802.1x Configuration Commands switch receives response from port after sending EAP-Request/Identity packets to the port for the maximum number of times, the switch will add the port to the guest VLAN.
Page 369: Dot1X Handshake Secure
Handshaking packets need the support of the H3C-proprietary client. They are used to test whether or not a user is online. As clients that are not of H3C do not support the online user handshaking function, switches cannot receive handshaking acknowledgement packets from them in handshaking periods.
Page 370: Dot1X Max-User
Command Manual (For Soliton) – 802.1x-System Guard H3C S3100 Series Ethernet Switches Chapter 1 802.1x Configuration Commands Parameter None Description Use the dot1x handshake secure command to enable the handshaking packet secure function, preventing the device from attacks resulted from simulating clients.
Page 371: Dot1X Port-Control
Command Manual (For Soliton) – 802.1x-System Guard H3C S3100 Series Ethernet Switches Chapter 1 802.1x Configuration Commands interface-list: Ethernet port list, in the form of interface-list= { interface-type interface-number [ to interface-type interface-number ] } &<1-10>, in which interface-type specifies the type of an Ethernet port and interface-number is the number of the port.
Page 372 Command Manual (For Soliton) – 802.1x-System Guard H3C S3100 Series Ethernet Switches Chapter 1 802.1x Configuration Commands EAPoL packets can be exchanged between the switch and the hosts. And the hosts connected to the port are authorized to access the network resources after the hosts pass the authentication.
Page 373: Dot1X Port-Method
Command Manual (For Soliton) – 802.1x-System Guard H3C S3100 Series Ethernet Switches Chapter 1 802.1x Configuration Commands 1.1.10 dot1x port-method Syntax dot1x port-method { macbased | portbased } [ interface interface-list ] undo dot1x port-method [ interface interface-list ] View...
Page 374: Dot1X Quiet-Period
Use the undo dot1x quiet-period command to disable the quiet-period timer. When a user fails to pass the authentication, the authenticator system (such as a H3C series Ethernet switch) will stay quiet for a period (determined by the quiet-period timer) before it performs another authentication.
Page 375: Dot1X Retry
Command Manual (For Soliton) – 802.1x-System Guard H3C S3100 Series Ethernet Switches Chapter 1 802.1x Configuration Commands 1.1.12 dot1x retry Syntax dot1x retry max-retry-value undo dot1x retry View System view Parameter max-retry-value: Maximum number of times that a switch sends authentication request packets to a user.
Page 376: Dot1X Re-Authenticate
Command Manual (For Soliton) – 802.1x-System Guard H3C S3100 Series Ethernet Switches Chapter 1 802.1x Configuration Commands View System view Parameter max-retry-version-value: Maximum number of times that a switch sends version request packets to a user. This argument ranges from 1 to 10.
Page 377: Dot1X Supp-Proxy-Check
Command Manual (For Soliton) – 802.1x-System Guard H3C S3100 Series Ethernet Switches Chapter 1 802.1x Configuration Commands interface-type specifies the type of an Ethernet port and interface-number is the number of the port. The string “&<1-10>” means that up to 10 port lists can be provided.
Page 378 Command Manual (For Soliton) – 802.1x-System Guard H3C S3100 Series Ethernet Switches Chapter 1 802.1x Configuration Commands undo dot1x supp-proxy-check { logoff | trap } [ interface interface-list ] View System view, Ethernet port view Parameter logoff: Disconnects a user upon detecting it logging in through a proxy or through multiple network adapters.
Page 379: Dot1X Timer
802.1x client to ask the latter to disable the use of multiple network adapters, proxies, and IE proxy after the user passes the authentication. Note: The 802.1x proxy checking function needs the cooperation of H3C's 802.1x client program. The proxy checking function takes effect only after the client version checking function is enabled on the switch (using the dot1x version-check command).
Page 380 Command Manual (For Soliton) – 802.1x-System Guard H3C S3100 Series Ethernet Switches Chapter 1 802.1x Configuration Commands supp-timeout-value | tx-period tx-period-value | ver-period ver-period-value } undo dot1x timer { handshake-period | quiet-period | server-timeout | supp-timeout | tx-period | ver-period }...
Page 381: Dot1X Timer Reauth-Period
Command Manual (For Soliton) – 802.1x-System Guard H3C S3100 Series Ethernet Switches Chapter 1 802.1x Configuration Commands The switch sends a unicast request/identity packet to a supplicant system and then triggers the transmission timer. The switch sends another request/identity packet to the supplicant system if it does not receive the reply packet from the supplicant system when this timer times out.
Page 382: Dot1X Version-Check
Command Manual (For Soliton) – 802.1x-System Guard H3C S3100 Series Ethernet Switches Chapter 1 802.1x Configuration Commands View System view Parameter reauth-period reauth-period-value: Specifies re-authentication interval, in seconds. After this timer expires, the switch initiates 802.1x re-authentication. The value of the reauth-period-value argument ranges from 60 to 7,200.
Page 383: Reset Dot1X Statistics
Command Manual (For Soliton) – 802.1x-System Guard H3C S3100 Series Ethernet Switches Chapter 1 802.1x Configuration Commands checking for specified Ethernet ports. By default, 802.1x client version checking is disabled on all the Ethernet ports. In system view: If you do not provide the interface-list argument, these two commands apply to all the ports of the switch.
Page 384 Command Manual (For Soliton) – 802.1x-System Guard H3C S3100 Series Ethernet Switches Chapter 1 802.1x Configuration Commands If the interface-list argument is specified, this command clears the 802.1x statistics on the specified ports. Related command: display dot1x. Example # Clear 802.1x statistics on Ethernet 1/0/1 port.
Page 385: Quick Ead Deployment Configuration Commands
Command Manual (For Soliton) – 802.1x-System Guard Chapter 2 Quick EAD Deployment H3C S3100 Series Ethernet Switches Configuration Commands Chapter 2 Quick EAD Deployment Configuration Commands 2.1 Quick EAD Deployment Configuration Commands 2.1.1 dot1x free-ip Syntax dot1x free-ip ip-address { mask-address | mask-length }...
Page 386: Dot1X Timer Acl-Timeout
Command Manual (For Soliton) – 802.1x-System Guard Chapter 2 Quick EAD Deployment H3C S3100 Series Ethernet Switches Configuration Commands [Sysname] dot1x free-ip 192.168.19.23 24 2.1.2 dot1x timer acl-timeout Syntax dot1x timer acl-timeout acl-timeout-value undo dot1x timer acl-timeout View System view Parameters acl-timeout-value: ACL timeout period (in minutes), in the range of 1 to 1440.
Page 387 Command Manual (For Soliton) – 802.1x-System Guard Chapter 2 Quick EAD Deployment H3C S3100 Series Ethernet Switches Configuration Commands Use the undo dot1x url command to remove the configuration. By default, no URL is configured for HTTP redirection. Related commands: dot1x configuration commands.
Page 388: Chapter 3 Habp Configuration Commands
Command Manual (For Soliton) – 802.1x-System Guard Chapter 3 HABP Configuration H3C S3100 Series Ethernet Switches Commands Chapter 3 HABP Configuration Commands 3.1 HABP Configuration Commands 3.1.1 display habp Syntax display habp View Any view Parameter None Description Use the display habp command to display HABP configuration and status.
Page 389: Display Habp Table
Command Manual (For Soliton) – 802.1x-System Guard Chapter 3 HABP Configuration H3C S3100 Series Ethernet Switches Commands 3.1.2 display habp table Syntax display habp table View Any view Parameter None Description Use the display habp table command to display the MAC address table maintained by HABP.
Page 390: Habp Enable
Command Manual (For Soliton) – 802.1x-System Guard Chapter 3 HABP Configuration H3C S3100 Series Ethernet Switches Commands Description Use the display habp traffic command to display the statistics on HABP packets. Example # Display the statistics on HABP packets. <Sysname> display habp traffic...
Page 391: Habp Server Vlan
Command Manual (For Soliton) – 802.1x-System Guard Chapter 3 HABP Configuration H3C S3100 Series Ethernet Switches Commands If an 802.1x-enabled switch does not have HABP enabled, it cannot manage the switches attached to it. So, you need to enable HABP on specific switches in a network with 802.1x enabled.
Page 392: Habp Timer
Command Manual (For Soliton) – 802.1x-System Guard Chapter 3 HABP Configuration H3C S3100 Series Ethernet Switches Commands 3.1.6 habp timer Syntax habp timer interval undo habp timer View System view Parameter interval: Interval (in seconds) to send HABP request packets. This argument ranges from 5 to 600.
Page 393: System-Guard Configuration Commands
Command Manual (For Soliton) – 802.1x-System Guard Chapter 4 System-Guard Configuration H3C S3100 Series Ethernet Switches Commands Chapter 4 System-Guard Configuration Commands 4.1 System-Guard Configuration Commands 4.1.1 display system-guard attack-record Syntax display system-guard attack-record View Any view Parameter None Description Use the display system-guard attack-record command to display the record of detected attacks.
Page 394: Display System-Guard State
Command Manual (For Soliton) – 802.1x-System Guard Chapter 4 System-Guard Configuration H3C S3100 Series Ethernet Switches Commands Field Description Port Number of the port being attacked MAC address Source MAC address of the attack packet IP address Source IP address of the attack packet...
Page 395: System-Guard Detect-Threshold
Command Manual (For Soliton) – 802.1x-System Guard Chapter 4 System-Guard Configuration H3C S3100 Series Ethernet Switches Commands Field Description The threshold for the number of packets when an Detect Threshold attack is detected Isolated Time The length of the isolation after an attack is detected...
Page 396: System-Guard Permit
Command Manual (For Soliton) – 802.1x-System Guard Chapter 4 System-Guard Configuration H3C S3100 Series Ethernet Switches Commands View System view Parameter None Description Use the system-guard enable command to enable the system-guard feature. Use the undo system-guard enable command to disable the system-guard feature.
Page 397: System-Guard Timer-Interval
Command Manual (For Soliton) – 802.1x-System Guard Chapter 4 System-Guard Configuration H3C S3100 Series Ethernet Switches Commands system-guard function is to be applied to. A switch checks the ports with the system-guard function applied regularly for attacked ports. Use the undo system-guard permit command to disable the system-guard function for specified ports.
Page 398 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 AAA Configuration Commands.................. 1-1 1.1 AAA Configuration Commands..................1-1 1.1.1 access-limit......................1-1 1.1.2 accounting ....................... 1-2 1.1.3 accounting optional ....................1-3 1.1.4 attribute ........................
Page 399 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Table of Contents 1.2.9 key......................... 1-41 1.2.10 local-server......................1-43 1.2.11 local-server nas-ip....................1-43 1.2.12 nas-ip........................1-44 1.2.13 primary accounting....................1-45 1.2.14 primary authentication..................1-46 1.2.15 radius client ......................1-48 1.2.16 radius nas-ip......................
Page 400 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Table of Contents 1.3.17 timer quiet......................1-79 1.3.18 timer realtime-accounting..................1-80 1.3.19 timer response-timeout ..................1-81 1.3.20 user-name-format....................1-81 Chapter 2 EAD Configuration Commands .................. 2-1 2.1 EAD Configuration Commands..................2-1...
Page 401: Aaa Configuration Commands
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Chapter 1 AAA Configuration Commands 1.1 AAA Configuration Commands 1.1.1 access-limit Syntax access-limit { disable | enable max-user-number } undo access-limit View ISP domain view...
Page 402 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands 1.1.2 accounting Syntax accounting { none | radius-scheme radius-scheme-name | hwtacacs-scheme hwtacacs-scheme-name } undo accounting View ISP domain view Parameters none: Specifies not to perform user accounting.
Page 403: Accounting Optional
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands [Sysname] domain aabbcc.net New Domain added. [Sysname-isp-aabbcc.net] accounting radius-scheme radius 1.1.3 accounting optional Syntax accounting optional undo accounting optional View ISP domain view Parameters...
Page 404 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands 1.1.4 attribute Syntax attribute { ip ip-address | mac mac-address | idle-cut second | access-limit max-user-number | vlan vlan-id | location { nas-ip ip-address port port-number | port...
Page 405 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Examples # Create local user user1 and set the IP address attribute of user1 to 10.110.50.1, allowing only the user using the IP address of 10.110.50.1 to use the account user1 for authentication.
Page 406: Authentication Super
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands If you execute the authentication radius-scheme radius-scheme-name local command, the local scheme is used as the secondary authentication scheme in case no RADIUS server is available. That is, if the communication between the switch and a RADIUS server is normal, no local authentication will be performed;...
Page 407 HWTACACS scheme must exist. Note: The S3100 series switches adopt hierarchical protection for command lines so as to inhibit users at lower levels from using higher level commands to configure the switches. For details about configuring a HWTACACS authentication scheme for low-to-high user level switching, refer to Switching User Level in the Command Line Interface Operation.
Page 408: Authorization Vlan
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands 1.1.7 authorization Syntax authorization { none | hwtacacs-scheme hwtacacs-scheme-name } undo authorization View ISP domain view Parameters none: Specifies not to use any authorization scheme.
Page 409: Cut Connection
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Parameters string: Number or descriptor of the authorized VLAN for the current user, a string of 1 to 32 characters. If it is a numeral string and there is a VLAN with the number configured, it specifies the VLAN.
Page 410: Display Connection
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands access-type { dot1x | mac-authentication }: Cuts down user connections of a specified access type. dot1x is used to cut down all 802.1x user connections, and mac-authentication is used to cut down all MAC authentication user connections.
Page 411 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands radius-scheme radius-scheme-name | hwtacacs-scheme hwtacacs-scheme-name | vlan vlan-id | ucibindex ucib-index | user-name user-name ] View Any view Parameters access-type { dot1x | mac-authentication }: Displays user connections of a specified access type.
Page 412: Display Domain
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Examples # Display information about all user connections. <Sysname> display connection ------------------unit 1------------------------ Index=40 , Username=user1@domain1 MAC=000f-3d80-4ce5 , IP=0.0.0.0 On Unit 1: Total 1 connections matched, 1 listed.
Page 413 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Description Use the display domain command to display configuration information about one specific or all ISP domains. Related commands: access-limit, domain, scheme, state. Examples # Display configuration information about all ISP domains.
Page 414: Display Local-User
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands 1.1.12 display local-user Syntax display local-user [ domain isp-name | idle-cut { disable | enable } | vlan vlan-id | service-type { ftp | lan-access | ssh | telnet | terminal } | state { active | block } |...
Page 415 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Idle-cut: Enable Idle TimeOut: 3600 seconds Access-limit: Enable Current AccessNum: 1 Max AccessNum: 1024 Bind location: 127.0.0.1/1/0/2 (NAS/UNITID/SUBSLOT/PORT) Vlan ID: Authorization VLAN: IP address: 192.168.0.108...
Page 416 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands View System view Parameters isp-name: Name of an ISP domain, a string of up to 128 characters. This string cannot contain the following characters: /\:*?<>|. If the domain name includes one or more “~”...
Page 417: Domain Delimiter
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands [Sysname]domain 01234567891234567 New Domain added. [Sysname-isp-012345678912345~0001] 1.1.14 domain delimiter Syntax domain delimiter { at | dot } undo domain delimiter View System view Parameters at: Specifies “@”...
Page 418 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands 1.1.15 idle-cut Syntax idle-cut { disable | enable minute flow } View ISP domain view Parameters disable: Disables the idle-cut function for the domain.
Page 419 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands View Local user view Parameters level: Privilege level to be set for the user. It is an integer ranging from 0 to 3. Description Use the level command to set the privilege level of the user.
Page 420 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands View System view Parameters user-name: Local username, a string of up to 184 characters. This string cannot contain the following characters: /:*?<>. It can contain no more than one @ character. The pure username (user ID, that is, the part before @) cannot be longer than 55 characters, and the domain name (the part behind @) cannot be longer than 128 characters.
Page 421: Local-User Password-Display-Mode
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands 1.1.18 local-user password-display-mode Syntax local-user password-display-mode { cipher-force | auto } undo local-user password-display-mode View System view Parameters cipher-force: Adopts the forcible cipher mode so that all local users' the passwords will be displayed in cipher text.
Page 422 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Parameters limit: Time limit in minutes, ranging from 1 to 60. The switch will send prompt messages at regular intervals to users whose remaining online time is less than this limit.
Page 423 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands By default, a VLAN uses its VLAN ID (like VLAN 0001) as its assigned VLAN name. This command is used in conjunction with the dynamic VLAN assignment function. For details about dynamic VLAN assignment, refer to the vlan-assignment-mode command.
Page 424 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands With the local-user password-display-mode cipher-force command configured, the password is always displayed in cipher text, regardless of the configuration of the password command. With the cipher keyword specified, a password of up to 16 characters in plain text...
Page 425 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Examples # Configure the ISP domain "aabbcc.net" to use the RADIUS scheme "extended". <Sysname> system-view System View: return to User View with Ctrl+Z. [Sysname] domain aabbcc.net New Domain added.
Page 426 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands If you execute the scheme hwtacacs-scheme hwtacacs-scheme-name local command, the local scheme is used as the secondary scheme in case no TACACS server is available. That is, if the communication between the switch and a TACACS server is normal, no local authentication is performed;...
Page 427 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Use the self-service-url disable command to disable the self-service server location function Use the undo self-service-url command to restore the default state of this function.
Page 428 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands telnet: Authorizes the user to access the Telnet service. ssh: Authorizes the user to access the SSH service. terminal: Authorizes the user to access the terminal service (that is, allows the user to log into the switch through the Console port).
Page 429 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Description Use the state command to set the status of current ISP domain (in ISP domain view) or current local user (in local user view).
Page 430 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Description Use the vlan-assignment-mode command to set the VLAN assignment mode (integer or string) on the switch. By default, the VLAN assignment mode is integer, that is, the switch supports its RADIUS authentication server to assign integer VLAN IDs.
Page 431: Radius Configuration Commands
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Server Dynamic VLAN assignment mode You can determine the assignment FreeRADIUS mode by attribute value (for example, 100 is integer; “100” is string). Shiva Access Manager...
Page 432: Accounting-On Enable
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Description Use the accounting optional command to open the accounting-optional switch. Use the undo accounting optional command to close the accounting-optional switch so that the system performs accounting for users unconditionally.
Page 433 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands interval: Interval to send Accounting-On messages (in seconds), ranging from 1 to 30 and defaulting to 3. Description Use the accounting-on enable command to enable the user re-authentication at restart function.
Page 434: Calling-Station-Id Mode
Note: After configuring the accounting-on enable command, you need to execute the save command so that the command can take effect when the switch restarts. This function requires the cooperation of the H3C CAMS system. Related commands: nas-ip. Examples # Enable the user re-authentication at restart function for the RADIUS scheme named radius1.
Page 435 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Examples # Set the MAC address format of the Calling-Station-Id field to XX-XX-XX-XX-XX-XX, in uppercase. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 436: Display Local-Server Statistics
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands [Sysname] radius scheme radius1 New Radius scheme [Sysname-radius-radius1] data-flow-format data kilo-byte packet kilo-packet 1.2.5 display local-server statistics Syntax display local-server statistics View Any view...
Page 437 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Description Use the display radius scheme command to display configuration information about one specific or all RADIUS schemes Related commands: radius scheme. Examples # Display configuration information about all RADIUS schemes.
Page 438 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Field Description IP address/port number of the primary Primary Auth IP/Port authentication server IP address/port number of the primary Primary Acct IP/Port accounting server...
Page 439: Display Radius Statistics
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands 1.2.7 display radius statistics Syntax display radius statistics View Any view Parameters None Description Use the display radius statistics command to display the RADIUS message statistics.
Page 440 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Realtime Account timer , Num=0 , Err=0 , Succ=0 PKT response , Num=0 , Err=0 , Succ=0 EAP reauth_request , Num=0 , Err=0 , Succ=0...
Page 441 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands display all the buffered stop-accounting requests generated from start-time to stop-time. user-name user-name: Displays the buffered stop-accounting requests of a specified user. Here, user-name is a string of up to 184 characters.
Page 442 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Parameters accounting: Sets a shared key for RADIUS accounting messages. authentication: Sets a shared key for RADIUS authentication/authorization messages. string: Shared key to be set, a string of up to 16 characters.
Page 443: Local-Server Nas-Ip
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands 1.2.10 local-server Syntax local-server enable undo local-server View System view Parameters None Description Use the local-server enable command to enable the UDP ports for local RADIUS services.
Page 444 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Parameters nas-ip ip-address: Specifies the IP address of a network access server (NAS) that can use the local RADIUS services. Here, ip-address is in dotted decimal notation.
Page 445: Primary Accounting
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands undo nas-ip View RADIUS scheme view Parameters ip-address: Source IP address for RADIUS messages, an IP address of this device. This address can neither be the all 0's address nor be a Class-D address.
Page 446: Primary Authentication
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands undo primary accounting View RADIUS scheme view Parameters ip-address: IP address of the primary accounting server to be used, in dotted decimal notation. port-number: UDP port number of the primary accounting server, ranging from 1 to 65535.
Page 447 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Parameters ip-address: IP address of the primary authentication/authorization server to be used, in dotted decimal notation. port-number: UDP port number of the primary authentication/authorization server, ranging from 1 to 65535.
Page 448: Radius Client
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands 1.2.15 radius client Syntax radius client enable undo radius client View System view Parameters None Description Use the radius client enable command to enable RADIUS authentication and accounting ports.
Page 449: Radius Scheme
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands neither be the all 0's address nor be a Class-D address. Description Use the radius nas-ip command to set the source IP address of outgoing RADIUS messages.
Page 450: Radius Trap
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Parameters radius-scheme-name: Name of the RADIUS scheme to be created, a string of up to 32 characters. Description Use the radius scheme command to create a RADIUS scheme and enter its view.
Page 451: Reset Radius Statistics
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands View System view Parameters authentication-server-down: Enables/disables the switch to send trap messages when a RADIUS authentication server turns down. accounting-server-down: Enables/disables the switch to send trap messages when a RADIUS accounting server turns down.
Page 452 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Parameters None Description Use the reset radius statistics command to clear RADIUS message statistics. Related commands: display radius scheme. Examples # Clear RADIUS message statistics.
Page 453 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Examples # Delete the stop-accounting requests buffered for user user0001@aabbcc.net. <Sysname> reset stop-accounting-buffer user-name user0001@aabbcc.net # Delete the stop-accounting requests buffered from 0:0:0 08/31/2002 to 23:59:59 08/31/2002.
Page 454: Retry Realtime-Accounting
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Examples # Set the maximum number of RADIUS request transmission attempts for RADIUS scheme radius1 to five. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 455 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands A real-time account request may be transmitted multiple times in an accounting attempt (the maximum number of transmission attempts is set by the retry command in RADIUS scheme view).
Page 456: Secondary Accounting
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Description Use the retry stop-accounting command to set the maximum number of transmission attempts of a stop-accounting request buffered due to no response. Use the undo retry stop-accounting command to restore the default maximum number of transmission attempts of a buffered stop-accounting request.
Page 457: Secondary Authentication
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Description Use the secondary accounting command to set the IP address and port number of the secondary RADIUS accounting server to be used by the current scheme.
Page 458 Related commands: radius scheme. Examples # Configure the switch to support H3C's RADIUS server in RADIUS scheme radius1. <Sysname> system-view System View: return to User View with Ctrl+Z. [Sysname] radius scheme radius1...
Page 459 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands New Radius scheme [Sysname-radius-radius1] server-type extended 1.2.27 state Syntax state { primary | secondary } { accounting | authentication } { block | active }...
Page 460: Stop-Accounting-Buffer Enable
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Related commands: radius scheme, primary authentication, secondary authentication, primary accounting, secondary accounting. Examples # Set the status of the secondary authentication server in RADIUS scheme radius1 to active.
Page 461 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Examples # In RADIUS scheme radius1, enable the switch to buffer the stop-accounting requests that get no response from the servers. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 462: Timer Quiet
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Related commands: radius scheme, retry. Examples # Set the timeout time of the response timeout timer for RADIUS scheme radius1 to 5 seconds. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 463 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands 1.2.31 timer realtime-accounting Syntax timer realtime-accounting minutes undo timer realtime-accounting View RADIUS scheme view Parameters minutes: Real-time accounting interval, in minutes. It ranges from 3 to 60 and must be a multiple of 3.
Page 464 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Examples # Set the real-time accounting interval of RADIUS scheme radius1 to 51 minutes. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 465 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Examples # Set the response timeout time in RADIUS scheme radius1 to five seconds. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 466: Hwtacacs Configuration Commands
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands For an 802.1x user, if you have specified to use EAP authentication, the switch will encapsulate and send the contents from the client directly to the server. In this case, the configuration of the user-name-format command is not effective.
Page 467: Display Hwtacacs
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Related commands: display hwtacacs. Examples # Specify to measure data and packets in data flows to TACACS servers in kilo-bytes and kilo-packets respectively in HWTACACS scheme hwt1.
Page 468: Hwtacacs Nas-Ip
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Current-authentication-server : 172.31.1.11:49 Current-authorization-server : 172.31.1.11:49 Current-accounting-server : 172.31.1.11:49 Source-IP-address : 0.0.0.0 key authentication : 790131 key authorization : 790131 key accounting : 790131...
Page 469: Hwtacacs Scheme
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands undo hwtacacs nas-ip View System view Parameters ip-address: Source IP address to be set, an IP address of this device. This address can neither be the all 0's address nor be a Class D address.
Page 470 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Parameters hwtacacs-scheme-name: HWTACACS scheme name, a string of 1 to 32 characters. Description Use the hwtacacs scheme command to create an HWTACACS scheme and enter its view.
Page 471 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Examples # Use hello as the shared key for HWTACACS accounting messages in HWTACACS scheme hwt1. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 472 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands [Sysname] hwtacacs scheme hwt1 [Sysname-hwtacacs-hwt1] nas-ip 10.1.1.1 1.3.8 primary accounting Syntax primary accounting ip-address [ port ] undo primary accounting View HWTACACS scheme view...
Page 473: Primary Authorization
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands 1.3.9 primary authentication Syntax primary authentication ip-address [ port ] undo primary authentication View HWTACACS scheme view Parameters ip-address: IP address of the primary authentication server to be used, a valid unicast address in dotted decimal notation.
Page 474: Reset Hwtacacs Statistics
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands undo primary authorization View HWTACACS scheme view Parameters ip-address: IP address of the primary authorization server to be used, a valid unicast address in dotted decimal notation.
Page 475 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands authentication: Clears HWTACACS authentication statistics. authorization: Clears HWTACACS authorization statistics. all: Clears all HWTACACS statistics. Description Use the reset hwtacacs statistics command to clear HWTACACS statistics.
Page 476 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands View HWTACACS scheme view Parameters retry-times: Maximum number of transmission attempts of a stop-accounting request, ranging from 1 to 300. Description Use the retry stop-accounting command to enable the stop-accounting request retransmission function and set the maximum number of attempts to transmit a stop-accounting request.
Page 477 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands Description Use the secondary accounting command to set the IP address and port number of the secondary HWTACACS accounting server to be used by the current scheme.
Page 478: Secondary Authorization
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands and 49 respectively. Note that: You are not allowed to set the same IP address for both primary and secondary authentication servers. If you do this, your setting will fail.
Page 479 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands If you re-execute the command, the new setting will overwrite the old one. You can remove an authorization server setting only when there is no active TCP connection that is sending authorization messages to the server.
Page 480 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands 1.3.18 timer realtime-accounting Syntax timer realtime-accounting minutes undo timer realtime-accounting View HWTACACS scheme view Parameters minutes: Real-time accounting interval, in minutes. It ranges from 3 to 60 and must be a multiple of 3.
Page 481 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands <Sysname> system-view System View: return to User View with Ctrl+Z. [Sysname] hwtacacs scheme hwt1 [Sysname-hwtacacs-hwt1] timer realtime-accounting 51 1.3.19 timer response-timeout Syntax timer response-timeout seconds...
Page 482 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 1 AAA Configuration Commands View HWTACACS scheme view Parameters with-domain: Specifies to include ISP domain names in the usernames to be sent to TACACS server. without-domain: Specifies to exclude ISP domain names from the usernames to be sent to TACACS server.
Page 483: Chapter 2 Ead Configuration Commands
Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 2 EAD Configuration Commands Chapter 2 EAD Configuration Commands 2.1 EAD Configuration Commands 2.1.1 security-policy-server Syntax security-policy-server ip-address undo security-policy-server { ip-address | all } View RADIUS scheme view Parameters ip-address: IP address of a security policy server.
Page 484 Command Manual (For Soliton) – AAA H3C S3100 Series Ethernet Switches Chapter 2 EAD Configuration Commands security-policy-server 192.168.0.1 user-name-format without-domain …...
Page 485 Command Manual (For Soliton) – MAC Address Authentication H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 MAC Address Authentication Configuration Commands ........1-1 1.1 MAC Address Authentication Basic Function Configuration Commands ......1-1 1.1.1 display mac-authentication..................1-1 1.1.2 mac-authentication....................
Page 486: Mac Address Authentication Basic Function Configuration Commands
Command Manual (For Soliton) – MAC Address Authentication Chapter 1 MAC Address Authentication H3C S3100 Series Ethernet Switches Configuration Commands Chapter 1 MAC Address Authentication Configuration Commands 1.1 MAC Address Authentication Basic Function Configuration Commands 1.1.1 display mac-authentication Syntax display mac-authentication [ interface interface-list ]...
Page 487 Command Manual (For Soliton) – MAC Address Authentication Chapter 1 MAC Address Authentication H3C S3100 Series Ethernet Switches Configuration Commands Silent Mac User info: MAC ADDR From Port Port Index 0016-e0be-e201 Ethernet1/0/2 1(vlan:1) --- 1 silent mac address(es) found. ---...
Page 488 Command Manual (For Soliton) – MAC Address Authentication Chapter 1 MAC Address Authentication H3C S3100 Series Ethernet Switches Configuration Commands Field Description Server timeout timer, which sets the timeout time for the Server response timeout connection between a switch and the RADIUS server.
Page 489 Command Manual (For Soliton) – MAC Address Authentication Chapter 1 MAC Address Authentication H3C S3100 Series Ethernet Switches Configuration Commands 1.1.2 mac-authentication Syntax mac-authentication undo mac-authentication View System view, Ethernet port view Parameters None Description Use the mac-authentication command to enable MAC address authentication globally or on the current port.
Page 490: Mac-Authentication Interface
Command Manual (For Soliton) – MAC Address Authentication Chapter 1 MAC Address Authentication H3C S3100 Series Ethernet Switches Configuration Commands [Sysname] interface Ethernet 1/0/1 [Sysname-Ethernet1/0/1] mac-authentication 1.1.3 mac-authentication interface Syntax mac-authentication interface interface-list undo mac-authentication interface interface-list View System view Parameters interface-list: List of Ethernet ports.
Page 491: Mac-Authentication Authmode Usernameasmacaddress
Command Manual (For Soliton) – MAC Address Authentication Chapter 1 MAC Address Authentication H3C S3100 Series Ethernet Switches Configuration Commands <Sysname> system-view System View: return to User View with Ctrl+Z. [Sysname] mac-authentication interface Ethernet 1/0/1 1.1.4 mac-authentication authmode usernameasmacaddress Syntax...
Page 492: Mac-Authentication Authmode Usernamefixed
Command Manual (For Soliton) – MAC Address Authentication Chapter 1 MAC Address Authentication H3C S3100 Series Ethernet Switches Configuration Commands <Sysname> system-view System View: return to User View with Ctrl+Z. [Sysname] mac-authentication authmode usernameasmacaddress usernameformat with-hyphen lowercase 1.1.5 mac-authentication authmode usernamefixed...
Page 493: Mac-Authentication Authusername
Command Manual (For Soliton) – MAC Address Authentication Chapter 1 MAC Address Authentication H3C S3100 Series Ethernet Switches Configuration Commands Description Use the mac-authentication authpassword command to set a password for MAC address authentication when the user name in fixed mode is used.
Page 494: Mac-Authentication Domain
Command Manual (For Soliton) – MAC Address Authentication Chapter 1 MAC Address Authentication H3C S3100 Series Ethernet Switches Configuration Commands 1.1.8 mac-authentication domain Syntax mac-authentication domain isp-name undo mac-authentication domain View System view Parameters isp-name: ISP domain name, a string of 1 to 128 characters. Note that this argument cannot be null and cannot contain these characters: “/”, “:”, “*”, “?”, “<”, and “>”.
Page 495: Reset Mac-Authentication
Command Manual (For Soliton) – MAC Address Authentication Chapter 1 MAC Address Authentication H3C S3100 Series Ethernet Switches Configuration Commands Parameters offline-detect-value: Offline detect timer (in seconds) setting. This argument ranges from 1 to 65,535 and defaults to 300. The offline detect timer sets the time interval for a switch to test whether a user goes offline.
Page 496: Mac Address Authentication Enhanced Function Configuration Commands
Command Manual (For Soliton) – MAC Address Authentication Chapter 1 MAC Address Authentication H3C S3100 Series Ethernet Switches Configuration Commands Description Use the reset mac-authentication command to clear the MAC address authentication statistics. With the interface keyword specified, the command clears the MAC address authentication statistics of the specified port.
Page 497: Mac-Authenticiaon Intrusion-Mode Block-Mac
Command Manual (For Soliton) – MAC Address Authentication Chapter 1 MAC Address Authentication H3C S3100 Series Ethernet Switches Configuration Commands Caution: If more than one client are connected to a port, you cannot configure a Guest VLAN for this port.
Page 498: Mac-Authentication Max-Auth-Num
Command Manual (For Soliton) – MAC Address Authentication Chapter 1 MAC Address Authentication H3C S3100 Series Ethernet Switches Configuration Commands Description Use the mac-authenticiaon intrusion-mode block-mac enable command to enable the quiet MAC function on a port. When this function is enabled, the MAC address connected to this port will be set as a quiet MAC address if its authentication fails.
Page 499: Mac-Authentication Timer Guest-Vlan-Reauth
Command Manual (For Soliton) – MAC Address Authentication Chapter 1 MAC Address Authentication H3C S3100 Series Ethernet Switches Configuration Commands By default, the maximum number of MAC address authentication users allowed to access a port is 256. Caution: If both the limit on the number of MAC address authentication users and the limit on...
Page 500 Command Manual (For Soliton) – MAC Address Authentication Chapter 1 MAC Address Authentication H3C S3100 Series Ethernet Switches Configuration Commands passes the authentication, the port will leave the guest VLAN and return to the initial VLAN configured for it. Use the undo mac-authentication timer guest-vlan-reauth command to restore the re-authentication interval to the default value.
Page 501 Command Manual (For Soliton) – ARP H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 ARP Configuration Commands .................. 1-1 1.1 ARP Configuration Commands..................1-1 1.1.1 arp anti-attack valid-check enable................1-1 1.1.2 arp check enable ..................... 1-1 1.1.3 arp detection enable....................
Page 502: Arp Configuration Commands
Command Manual (For Soliton) – ARP H3C S3100 Series Ethernet Switches Chapter 1 ARP Configuration Commands Chapter 1 ARP Configuration Commands 1.1 ARP Configuration Commands 1.1.1 arp anti-attack valid-check enable Syntax arp anti-attack valid-check enable undo arp anti-attack valid-check enable...
Page 503: Arp Detection Enable
Command Manual (For Soliton) – ARP H3C S3100 Series Ethernet Switches Chapter 1 ARP Configuration Commands Description Use the arp check enable command to enable the ARP entry checking function on a switch. Use the undo arp check enable command to disable the ARP entry checking function.
Page 504: Arp Detection Trust
Command Manual (For Soliton) – ARP H3C S3100 Series Ethernet Switches Chapter 1 ARP Configuration Commands By default, ARP attack detection is disabled on the switch. Examples # Enable ARP attack detection on all ports in VLAN 1. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 505: Arp Protective-Down Recover Interval
Command Manual (For Soliton) – ARP H3C S3100 Series Ethernet Switches Chapter 1 ARP Configuration Commands View System view Parameters None Description Use the arp protective-down recover enable command to enable the port state auto-recovery function on the switch. Use the undo arp protective-down recover enable command to disable the port state auto-recovery function of a switch.
Page 506: Arp Rate-Limit
Command Manual (For Soliton) – ARP H3C S3100 Series Ethernet Switches Chapter 1 ARP Configuration Commands By default, when the port state auto-recovery function is enabled, the recovery interval is 300 seconds. Note that: You need to enable the port state auto-recovery feature before you can configure the auto-recovery interval.
Page 507: Arp Rate-Limit Enable
Command Manual (For Soliton) – ARP H3C S3100 Series Ethernet Switches Chapter 1 ARP Configuration Commands Examples # Set the maximum ARP packet receiving rate on Ethernet 1/0/11 to 100 pps. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 508: Arp Static
Command Manual (For Soliton) – ARP H3C S3100 Series Ethernet Switches Chapter 1 ARP Configuration Commands 1.1.9 arp restricted-forwarding enable Syntax arp restricted-forwarding enable undo arp restricted-forwarding enable View VLAN view Parameters None Description Use the arp restricted-forwarding enable command to enable ARP restricted...
Page 509: Arp Timer Aging
Command Manual (For Soliton) – ARP H3C S3100 Series Ethernet Switches Chapter 1 ARP Configuration Commands Parameters ip-address: IP address contained in the ARP mapping entry to be created/removed. mac-address: MAC address contained in the ARP mapping entry to be created, in the format of H-H-H.
Page 510: Display Arp
Command Manual (For Soliton) – ARP H3C S3100 Series Ethernet Switches Chapter 1 ARP Configuration Commands View System view Parameters aging-time: Aging time (in minutes) of the dynamic ARP entries. This argument ranges from 1 to 1,440. Description Use the arp timer aging command to configure the aging time for dynamic ARP entries.
Page 511 Command Manual (For Soliton) – ARP H3C S3100 Series Ethernet Switches Chapter 1 ARP Configuration Commands Examples # Display all the ARP entries. <Sysname> display arp Type: S-Static D-Dynamic IP Address MAC Address VLAN ID Port Name / AL ID Aging Type 10.2.72.162...
Page 512: Display Arp Count
Command Manual (For Soliton) – ARP H3C S3100 Series Ethernet Switches Chapter 1 ARP Configuration Commands Parameters dynamic: Displays dynamic ARP entries. static: Displays static ARP entries. |: Uses a regular expression to specify the ARP entries to be displayed. For detailed information about regular expressions, refer to Configuration File Management Command in this manual.
Page 513: Display Arp Detection Statistics Interface
Command Manual (For Soliton) – ARP H3C S3100 Series Ethernet Switches Chapter 1 ARP Configuration Commands View Any view Parameters dynamic: Counts the dynamic ARP entries. static: Counts the static ARP entries. |: Uses a regular expression as the match criterion. For detailed information about regular expressions, refer to Configuration File Management Command in this manual.
Page 514: Display Arp Timer Aging
Command Manual (For Soliton) – ARP H3C S3100 Series Ethernet Switches Chapter 1 ARP Configuration Commands Description Use the display arp detection statistics interface command to display the statistics of ARP attack detection state, ARP trusted port state, and discarded invalid ARP packets ( those failed to pass ARP attack detection) on the specified port.
Page 515: Reset Arp
Command Manual (For Soliton) – ARP H3C S3100 Series Ethernet Switches Chapter 1 ARP Configuration Commands Examples # Display the setting of the ARP aging time. <Sysname> display arp timer aging Current ARP aging time is 20 minute(s)(default) The displayed information shows that the ARP aging time is set to 20 minutes.
Page 516 Command Manual (For Soliton) – ARP H3C S3100 Series Ethernet Switches Chapter 1 ARP Configuration Commands Parameters dynamic: Clears dynamic ARP entries. static: Clears static ARP entries. interface interface-type interface-number: Clears ARP entries of the specified port. Description Use the reset arp command to clear specific ARP entries.
Page 517 Command Manual (For Soliton) – DHCP H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 DHCP Snooping Configuration Commands.............. 1-1 1.1 DHCP Snooping Configuration Commands ..............1-1 1.1.1 dhcp-snooping......................1-1 1.1.2 dhcp-snooping information enable ................1-2 1.1.3 dhcp-snooping information format................
Page 518: Dhcp Snooping Configuration Commands
Command Manual (For Soliton) – DHCP H3C S3100 Series Ethernet Switches Chapter 1 DHCP Snooping Configuration Commands Chapter 1 DHCP Snooping Configuration Commands 1.1 DHCP Snooping Configuration Commands 1.1.1 dhcp-snooping Syntax dhcp-snooping undo dhcp-snooping View System view Parameters None Description Use the dhcp-snooping command to enable the DHCP snooping function.
Page 519: Dhcp-Snooping Information Enable
Command Manual (For Soliton) – DHCP H3C S3100 Series Ethernet Switches Chapter 1 DHCP Snooping Configuration Commands 1.1.2 dhcp-snooping information enable Syntax dhcp-snooping information enable undo dhcp-snooping information enable View System view Parameters None Description Use the dhcp-snooping information enable command to enable DHCP snooping Option 82.
Page 520: Dhcp-Snooping Information Packet-Format
Command Manual (For Soliton) – DHCP H3C S3100 Series Ethernet Switches Chapter 1 DHCP Snooping Configuration Commands Description Use the dhcp-snooping information format command to configure the storage format of non-user-defined Option 82 as HEX or ASCII. By default, the Option 82 is in HEX format.
Page 521: Dhcp-Snooping Information Remote-Id
Command Manual (For Soliton) – DHCP H3C S3100 Series Ethernet Switches Chapter 1 DHCP Snooping Configuration Commands System View: return to User View with Ctrl+Z. [Sysname] dhcp-snooping information packet-format standard 1.1.5 dhcp-snooping information remote-id Syntax dhcp-snooping information remote-id { sysname | string string }...
Page 522 Command Manual (For Soliton) – DHCP H3C S3100 Series Ethernet Switches Chapter 1 DHCP Snooping Configuration Commands Parameters drop: If a packet contains Option 82, DHCP snooping drops this packet. keep: If a packet contains Option 82, DHCP snooping keeps and forwards this packet.
Page 523: Dhcp-Snooping Information Vlan Circuit-Id
Command Manual (For Soliton) – DHCP H3C S3100 Series Ethernet Switches Chapter 1 DHCP Snooping Configuration Commands 1.1.7 dhcp-snooping information vlan circuit-id Syntax dhcp-snooping information [ vlan vlan-id ] circuit-id string string undo dhcp-snooping information { [ vlan vlan-id ] circuit-id | circuit-id all }...
Page 524: Dhcp-Snooping Information Vlan Remote-Id
Command Manual (For Soliton) – DHCP H3C S3100 Series Ethernet Switches Chapter 1 DHCP Snooping Configuration Commands [Sysname-Ethernet1/0/1] dhcp-snooping information circuit-id string abc 1.1.8 dhcp-snooping information vlan remote-id Syntax dhcp-snooping information [ vlan vlan-id ] remote-id string string undo dhcp-snooping information { [ vlan vlan-id ] remote-id | remote-id all }...
Page 525: Dhcp-Snooping Trust
Command Manual (For Soliton) – DHCP H3C S3100 Series Ethernet Switches Chapter 1 DHCP Snooping Configuration Commands <Sysname> system-view System View: return to User View with Ctrl+Z. [Sysname] interface Ethernet1/0/1 [Sysname-Ethernet1/0/1] dhcp-snooping information remote-id string abc 1.1.9 dhcp-snooping trust Syntax...
Page 526: Display Dhcp-Snooping
Command Manual (For Soliton) – DHCP H3C S3100 Series Ethernet Switches Chapter 1 DHCP Snooping Configuration Commands 1.1.10 display dhcp-snooping Syntax display dhcp-snooping [ unit unit-id ] View Any view Parameters unit unit-id: Indicates the number of the device whose DHCP-snooping information needs to be viewed, the value is 1.
Page 527: Display Ip Source Static Binding
Command Manual (For Soliton) – DHCP H3C S3100 Series Ethernet Switches Chapter 1 DHCP Snooping Configuration Commands Parameters None Description Use the display dhcp-snooping trust command to display the (enabled/disabled) state of the DHCP snooping function and the trusted ports.
Page 528: Ip Check Source Ip-Address
Command Manual (For Soliton) – DHCP H3C S3100 Series Ethernet Switches Chapter 1 DHCP Snooping Configuration Commands <Sysname> display ip source static binding Type IP Address MAC Address Remaining VLAN Interface lease ==== =============== =============== ========= ==== ================= 192.168.0.25 0015-e20f-0101...
Page 529: Ip Source Static Binding
Command Manual (For Soliton) – DHCP H3C S3100 Series Ethernet Switches Chapter 1 DHCP Snooping Configuration Commands <Sysname> system-view System View: return to User View with Ctrl+Z. [Sysname] interface Ethernet 1/0/11 [Sysname-Ethernet1/0/11] ip check source ip-address 1.1.14 ip source static binding...
Page 530: Chapter 2 Rate Limit Configuration Commands
Command Manual (For Soliton) – DHCP H3C S3100 Series Ethernet Switches Chapter 2 Rate Limit Configuration Commands Chapter 2 Rate Limit Configuration Commands 2.1 Rate Limit Configuration Commands 2.1.1 dhcp protective-down recover enable Syntax dhcp protective-down recover enable undo dhcp protective-down recover enable...
Page 531: Dhcp Rate-Limit
Command Manual (For Soliton) – DHCP H3C S3100 Series Ethernet Switches Chapter 2 Rate Limit Configuration Commands View System view Parameters interval: Interval (in seconds) for a port disabled due to the DHCP traffic exceeding the set threshold to be brought up again. This argument ranges from 10 to 86,400.
Page 532: Dhcp Rate-Limit Enable
Command Manual (For Soliton) – DHCP H3C S3100 Series Ethernet Switches Chapter 2 Rate Limit Configuration Commands Description Use the dhcp rate-limit command to configure the maximum rate of DHCP traffic for the port. When the number of DHCP packets received on the port per second exceeds the specified threshold, the switch will discard the exceeding DHCP packets.
Page 533 Command Manual (For Soliton) – DHCP H3C S3100 Series Ethernet Switches Chapter 2 Rate Limit Configuration Commands By default, the function to limit DHCP traffic is disabled on an Ethernet port. That is, DHCP traffic passing through an Ethernet port is not limited.
Page 534: Dhcp Client Configuration Commands
Description Use the display dhcp client command to display the information about the address allocation of DHCP clients. Note that S3100 series Ethernet switches that operate as DHCP clients support a maximum lease duration of 24 days currently. Examples # Display the information about the address allocation of DHCP clients.
Page 535: Ip Address Dhcp-Alloc
Command Manual (For Soliton) – DHCP H3C S3100 Series Ethernet Switches Chapter 3 DHCP/BOOTP Client Configuration Table 3-1 Description on the fields of the display dhcp client command Field Description VLAN interface operating as a DHCP Vlan-interface1 client to obtain an IP address...
Page 536: Bootp Client Configuration Commands
Command Manual (For Soliton) – DHCP H3C S3100 Series Ethernet Switches Chapter 3 DHCP/BOOTP Client Configuration Note: To improve security and avoid malicious attacks to the unused sockets, S3100 Ethernet switches provide the following functions: UDP ports 67 and 68 used by DHCP are enabled/disabled only when DHCP is enabled/disabled.
Page 537: Ip Address Bootp-Alloc
Command Manual (For Soliton) – DHCP H3C S3100 Series Ethernet Switches Chapter 3 DHCP/BOOTP Client Configuration Allocated IP: 192.168.0.2 255.255.255.0 Transaction ID = 0x3d8a7431 Mac Address 000f-e20a-c3ef Default router: 192.168.0.1 Table 3-2 Description on the fields of the display bootp client command...
Page 538 Command Manual (For Soliton) – DHCP H3C S3100 Series Ethernet Switches Chapter 3 DHCP/BOOTP Client Configuration [Sysname-Vlan-interface1] ip address bootp-alloc...
Page 539 Command Manual (For Soliton) – ACL H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 ACL Configuration Commands .................. 1-1 1.1 ACL Configuration Commands ..................1-1 1.1.1 acl..........................1-1 1.1.2 description ....................... 1-2 1.1.3 display acl........................ 1-3 1.1.4 display acl remaining entry..................
Page 540: Acl Configuration Commands
Command Manual (For Soliton) – ACL H3C S3100 Series Ethernet Switches Chapter 1 ACL Configuration Commands Chapter 1 ACL Configuration Commands Note: S3100 Series Ethernet switches support basic ACLs, advanced ACLs, Layer 2 ACLs, and IPv6 ACLs. 1.1 ACL Configuration Commands 1.1.1 acl Syntax...
Page 541 Command Manual (For Soliton) – ACL H3C S3100 Series Ethernet Switches Chapter 1 ACL Configuration Commands Description Use the acl command to define an ACL and enter the corresponding ACL view. Use the undo acl command to remove all the rules of the specified ACL or all the ACLs.
Page 542: Display Acl
Command Manual (For Soliton) – ACL H3C S3100 Series Ethernet Switches Chapter 1 ACL Configuration Commands Parameters text: Description string to be assigned to an ACL, a string of 1 to 127 characters. Blank spaces and special characters are acceptable.
Page 543: Display Acl Remaining Entry
Command Manual (For Soliton) – ACL H3C S3100 Series Ethernet Switches Chapter 1 ACL Configuration Commands Description Use the display acl command to display the configuration information of a specified or all ACLs. Note that if you specify the match order of an ACL when configuring the ACL, this command will display the rules of the ACL in the specified match order.
Page 544: Display Ipv6-Acl-Template
Command Manual (For Soliton) – ACL H3C S3100 Series Ethernet Switches Chapter 1 ACL Configuration Commands <Sysname> display acl remaining entry Resource Total Reserved Configured Remaining Start Type Number Number Number Number Port Name Port Name -------------------------------------------------------------------------- Rule 1024 1010...
Page 545: Display Packet-Filter
Command Manual (For Soliton) – ACL H3C S3100 Series Ethernet Switches Chapter 1 ACL Configuration Commands 1.1.6 display packet-filter Syntax display packet-filter { global | interface interface-type interface-number | port-group [ group-id ] | unitid unit-id | vlan [ vlan-id ] }...
Page 546: Display Time-Range
Command Manual (For Soliton) – ACL H3C S3100 Series Ethernet Switches Chapter 1 ACL Configuration Commands 1.1.7 display time-range Syntax display time-range { all | time-name } View Any view Parameters all: Displays all time ranges. time-name: Name of a time range, a string of 1 to 32 characters that starts with a to z or A to Z.
Page 547 By default, no IPv6 ACL template is configured. Note that: Only one IPv6 ACL is supported on an H3C S3100 switch. To specify the src-port, dest-port, icmpv6-type or icmpv6-code keyword in the command, you need to specify the ip-protocol keyword at first.
Page 548 Command Manual (For Soliton) – ACL H3C S3100 Series Ethernet Switches Chapter 1 ACL Configuration Commands Example # Configure an IPv6 ACL template to match the source address and destination address fields in IPv6 packets. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 549: Packet-Filter Vlan
Command Manual (For Soliton) – ACL H3C S3100 Series Ethernet Switches Chapter 1 ACL Configuration Commands The link-group acl-number keyword specifies a Layer 2 ACL. The acl-number argument ranges from 4000 to 4999. The user-group acl-number keyword specifies an IPv6 ACL. The acl-number argument ranges from 5000 to 5999.
Page 550: Rule (For Basic Acls)
Command Manual (For Soliton) – ACL H3C S3100 Series Ethernet Switches Chapter 1 ACL Configuration Commands inbound: Specifies to filter packets received by the ports in the VLAN. acl-rule: ACL rules to be applied, which can be a combination of the rules of multiple...
Page 551 Removes the settings concerning source address in the ACL rule. time-range: Removes the settings concerning time range in the ACL rule. Note: When you assign basic ACLs to the hardware for packet filtering, the fragment keyword is not supported on a H3C S3100 Series Ethernet switch. 1-12...
Page 552 Command Manual (For Soliton) – ACL H3C S3100 Series Ethernet Switches Chapter 1 ACL Configuration Commands Description Use the rule command to define an ACL rule. Use the undo rule command to remove an ACL rule or specified settings of an ACL rule.
Page 553: Rule (For Advanced Acls)
Command Manual (For Soliton) – ACL H3C S3100 Series Ethernet Switches Chapter 1 ACL Configuration Commands After completing the above configuration, you can use the display acl command to view the configuration information of the ACLs. 1.1.12 rule (for Advanced ACLs)
Page 554 Command Manual (For Soliton) – ACL H3C S3100 Series Ethernet Switches Chapter 1 ACL Configuration Commands Arguments/Keyw Type Function Description ords The dest-addr dest-wildcard arguments specify the destination address of the packets, expressed in dotted Specifies the destination decimal notation. You can...
Page 555 Command Manual (For Soliton) – ACL H3C S3100 Series Ethernet Switches Chapter 1 ACL Configuration Commands Table 1-8 DSCP values and the corresponding keywords Keyword DSCP value in decimal DSCP value in binary af11 001010 af12 001100 af13 001110 af21...
Page 556 Command Manual (For Soliton) – ACL H3C S3100 Series Ethernet Switches Chapter 1 ACL Configuration Commands IP Precedence in Keyword IP Precedence in binary decimal flash-override critical internet network If you specify the tos keyword, you can directly input a value ranging from 0 to 15 or...
Page 557 Command Manual (For Soliton) – ACL H3C S3100 Series Ethernet Switches Chapter 1 ACL Configuration Commands Table 1-11 TCP/UDP-specific ACL rule information Parameters Type Function Description The value of operator can be lt (less than), gt (greater than), eq (equal to), neq (not equal to) or range (within the range of).
Page 558 Command Manual (For Soliton) – ACL H3C S3100 Series Ethernet Switches Chapter 1 ACL Configuration Commands Table 1-12 TCP or UDP port values Type Value CHARgen (19), bgp (179), cmd (514), daytime (13), discard (9), domain (53), echo (7), exec (512), finger (79), ftp (21), ftp-data (20),...
Page 559 Command Manual (For Soliton) – ACL H3C S3100 Series Ethernet Switches Chapter 1 ACL Configuration Commands Name ICMP type ICMP code net-unreachable Type=3 Code=0 parameter-problem Type=12 Code=0 port-unreachable Type=3 Code=3 protocol-unreachable Type=3 Code=2 reassembly-timeout Type=11 Code=1 source-quench Type=4 Code=0 source-route-failed...
Page 560 Command Manual (For Soliton) – ACL H3C S3100 Series Ethernet Switches Chapter 1 ACL Configuration Commands Note: Note the following when assigning an advanced ACL to the hardware: The fragment keywords are not supported. When you specify the ttl keyword, the ttl argument can only be set to 0, 1 or 255.
Page 561: Rule (For Layer 2 Acls)
Command Manual (For Soliton) – ACL H3C S3100 Series Ethernet Switches Chapter 1 ACL Configuration Commands [Sysname-acl-adv-3000] rule 1 deny ip source 192.168.0.1 0 dscp 46 [Sysname-acl-adv-3000] quit # Create advanced ACL 3001 and define rule 1 to permit TCP packets that are sourced from network 129.9.0.0/16, destined for network 202.38.160.0/24, and using the...
Page 562 Command Manual (For Soliton) – ACL H3C S3100 Series Ethernet Switches Chapter 1 ACL Configuration Commands Parameters Type Function Description source-mac-addr: Source MAC address, in the format of H-H-H. source-mac-mask: Mask of the source MAC address, in the format of H-H-H.
Page 563 Command Manual (For Soliton) – ACL H3C S3100 Series Ethernet Switches Chapter 1 ACL Configuration Commands Note: Note the following when assigning an Layer 2 ACL to the hardware: The 802.3/802.2 and 802.3 keywords are not supported. When you defining the source VLAN information, the operator argument cannot be neq.
Page 564: Rule (For Ipv6 Acls)
Command Manual (For Soliton) – ACL H3C S3100 Series Ethernet Switches Chapter 1 ACL Configuration Commands 1.1.14 rule (for IPv6 ACLs) Syntax rule [ rule-id ] { deny | permit } [ dscp rule-string rule-mask ] [ ip-protocol rule-string rule-mask ] [ src-ip ipv6-address prefix-length ] [ dest-ip ipv6-address prefix-length ]...
Page 565 ICMPv6, that is, 0x3a. Note: Note the following when assigning an IPv6 ACL to the hardware on H3C S3100 Series Ethernet switches: IPv6 ACLs do not match IPv6 packets with extension headers.
Page 566: Rule Comment
Command Manual (For Soliton) – ACL H3C S3100 Series Ethernet Switches Chapter 1 ACL Configuration Commands <Sysname> system-view [Sysname] acl number 5000 [Sysname-acl-user-5000] rule deny src-ip 3001::1 64 dest-ip 3002::1 64 1.1.15 rule comment Syntax rule rule-id comment text undo rule rule-id comment...
Page 567 Command Manual (For Soliton) – ACL H3C S3100 Series Ethernet Switches Chapter 1 ACL Configuration Commands Acl's step is 1 rule 0 deny IP source 1.1.1.1 0 destination 2.2.2.2 0 rule 0 comment This rule is to be applied to Ethernet 1/0/1 1.1.16 time-range...
Page 568 Command Manual (For Soliton) – ACL H3C S3100 Series Ethernet Switches Chapter 1 ACL Configuration Commands Description Use the time-range command to define a time range. Use the undo time-range command to remove the specified or all time ranges. Note that: The switch supports up to 256 time ranges, each of which can have up to 32 periodic time ranges and 12 absolute time ranges.
Page 569 Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 QoS Commands......................1-1 1.1 QoS Commands ........................ 1-1 1.1.1 burst-mode enable ....................1-1 1.1.2 display priority-trust ....................1-1 1.1.3 display qos cos-local-precedence-map..............1-2 1.1.4 display qos dscp-local-precedence-map..............
Page 570 Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Table of Contents 1.1.37 traffic-statistic ...................... 1-42 1.1.38 traffic-statistic vlan....................1-43 Chapter 2 QoS Profile Configuration Commands..............2-1 2.1 QoS Profile Configuration Commands................2-1 2.1.1 apply qos-profile ...................... 2-1 2.1.2 display qos-profile ....................
Page 571: Qos Commands
Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands Chapter 1 QoS Commands 1.1 QoS Commands 1.1.1 burst-mode enable Syntax burst-mode enable undo burst-mode enable View System view Parameter None Description Use the burst-mode enable command to enable the burst function.
Page 572: Display Qos Cos-Local-Precedence-Map
Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands Description Use the display priority-trust command to display the priority trust mode on the current switch. Related command: priority-trust. Examples # Display the priority trust mode on the current switch.
Page 573 Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands Parameter None Description Use the display qos dscp-local-precedence-map command to display the DSCP-precedence-to-local-precedence mapping table. Related command: qos dscp-local-precedence-map. Example # Display the DSCP-precedence-to-local-precedence mapping table.
Page 574 Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands 27 : 28 : 29 : 30 : 31 : 32 : 33 : 34 : 35 : 36 : 37 : 38 :...
Page 575: Display Qos-Global
Description Use the display qos-global command to display the QoS-related configuration performed for all the packets. Example # Display all the QoS configurations performed for all the packets on an S3100 series switch. <Sysname> display qos-global all global: traffic-limit inbound:...
Page 576: Display Qos-Interface All
Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands Field Description Action conducted to packets exceeding the traffic Exceed action specification The function of collecting traffic policing statistics meter-statistic running information is enabled (meter-statistic not running...
Page 577: Display Qos-Interface Line-Rate
Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands weight of queue 1: 8 weight of queue 2: 4 weight of queue 3: 1 Table 1-2 Description on the fields of the display qos-interface all command...
Page 578: Display Qos-Interface Mirrored-To
Use the display qos-interface mirrored-to command to display the traffic mirroring configuration of a port or all the ports on the device. Related command: mirrored-to. Example # Display the traffic mirroring configuration of Ethernet 1/0/1 on an S3100 series switch. <Sysname> display qos-interface Ethernet 1/0/1 mirrored-to Ethernet1/0/1: mirrored-to Inbound:...
Page 579: Display Qos-Interface Traffic-Limit
Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands 1.1.9 display qos-interface traffic-limit Syntax display qos-interface { interface-type interface-number | unit-id } traffic-limit View Any view Parameter interface-type interface-number: Specifies the type and number of a port, for which the traffic policing configuration information is to be displayed.
Page 580: Display Qos-Interface Traffic-Redirect
Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands View Any view Parameter interface-type interface-number: Specifies the type and number of a port, for which the priority marking configuration information is to be displayed.
Page 581: Display Qos-Interface Traffic-Shape
Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands View Any view Parameter interface-type interface-number: Specifies the type and number of a port, for which the traffic redirecting configuration information is to be displayed.
Page 582: Display Qos-Interface Traffic-Statistic
Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands Parameter interface-type interface-number: Specifies the type and number of a port, for which the traffic shaping configuration information is to be displayed. unit-id: Unit ID, which is fixed to 1. With this argument specified, the traffic shaping configuration of all the ports is displayed.
Page 583: Display Qos-Port-Group
Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands Parameter interface-type interface-number: Specifies the type and number of a port, for which the traffic accounting configuration information is to be displayed. unit-id: Unit ID, which is fixed to 1. With this argument specified, the traffic accounting configuration of all the ports on the device is displayed.
Page 584: Display Qos-Vlan
Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands Parameter group-id: Port group ID, in the range 1 to 100. If this argument is not specified, the QoS information of all the port groups is displayed.
Page 585: Display Queue-Scheduler
Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands traffic-priority: Displays the priority marking configuration performed for packets of a VLAN. traffic-redirect: Displays the traffic redirecting configuration performed for packets of a VLAN.
Page 586 Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands Queue scheduling mode: weighted round robin weight of queue 0: 1 weight of queue 1: 2 weight of queue 2: 3 weight of queue 3: 4 1.1.17 line-rate...
Page 587 Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands Example # Limit the outbound traffic rate to 128 kbps on Ethernet 1/0/1. <Sysname> system-view System View: return to User View with Ctrl+Z. [Sysname] interface Ethernet 1/0/1 [Sysname-Ethernet1/0/1] line-rate outbound 128 # Display the line rate configuration on Ethernet 1/0/1.
Page 588 Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands Table 1-9 Description on the parameters used in Table 1-8 Parameter Description Specifies the number of a basic or advanced ACL, in the ip-group acl-number range 2000 to 3999.
Page 589: Mirrored-To Vlan
Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands Inbound: Matches: Acl 2000 rule 1 running Mirrored to: monitor interface 1.1.19 mirrored-to vlan Syntax mirrored-to vlan vlan-id inbound acl-rule { cpu | monitor-interface }...
Page 590 Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands Example # Mirror packets that match ACL 2000 on VLAN 1 to Ethernet 1/0/2 through traffic mirroring. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 591: Priority Trust
Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands [Sysname] interface Ethernet 1/0/1 [Sysname-Ethernet1/0/1] priority 6 1.1.21 priority trust Syntax priority trust undo priority View System view Parameter None Description Use the priority trust command to configure the switch to trust the 802.1p priority of a packet.
Page 592 By default, a switch trusts the 802.1p priority of the received packets. A port of an S3100 series switch can accommodate four output queues. The output queue to which a received packet is to be added to is determined by its local precedence: DSCP precedence: Ranges from 0 to 63.
Page 593: Qos Cos-Local-Precedence-Map
Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands [Sysname] display priority-trust Priority trust mode: dscp 1.1.23 qos cos-local-precedence-map Syntax cos-local-precedence-map cos0-map-local-prec cos1-map-local-prec cos2-map-local-prec cos3-map-local-prec cos4-map-local-prec cos5-map-local-prec cos6-map-local-prec cos7-map-local-prec undo qos cos-local-precedence-map View...
Page 594: Qos Dscp-Local-Precedence-Map
Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands Table 1-10 The default CoS-precedence-to-local-precedence mapping table CoS value Local precedence Related command: display qos cos-local-precedence-map. Example # Configure the CoS-precedence-to-local-precedence mapping relationship as follows: 0 to 0, 1 to 0, 2 to 1, 3 to 1, 4 to 2, 5 to 2, 6 to 3, and 7 to 3.
Page 595 Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands local-precedence by the “:” after it to indicate the mapping relationship between them. The range of dscp-list is from 0 to 63. local-precedence: Local precedence. This argument is in the range of 0 to 3.
Page 596 Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands [Sysname] display qos dscp-local-precedence-map dscp-local-precedence-map: dscp : local-precedence(queue) ---------------------------------------------- 10 : 11 : 12 : 13 : 14 : 15 : 16 : 17 :...
Page 597 Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands 39 : 40 : 41 : 42 : 43 : 44 : 45 : 46 : 47 : 48 : 49 : 50 :...
Page 598 By default, the WRR queue scheduling algorithm is adopted, and the weight assigned to queue 0, queue 1, queue 2, and queue 3 is 1, 2, 3, and 4. The port of an S3100 series switch can accommodate four output queues. You can configure the queue scheduling algorithm as needed:...
Page 599: Reset Traffic-Limit
Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands 1.1.26 reset traffic-limit Syntax reset traffic-limit inbound acl-rule View System view, Ethernet port view, Port group view Parameter inbound: Specifies to clear the statistics on the inbound packets.
Page 600: Reset Traffic-Statistic
Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands Description Use the reset traffic-limit vlan command to clear the statistics on packets of a VLAN. Related command: traffic-limit vlan. Example # Clear the statistics on packets that match ACL 2000 and are of VLAN 1.
Page 601 Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands View System view Parameter vlan-id: VLAN ID, in the range 1 to 4094. inbound: Specifies to clear the statistics on the inbound packets. acl-rule: ACL rules to be applied. This argument can be the combination of multiple ACLs.
Page 602 Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands The granularity of port rate limit is 64 Kbps. Assume that the value you provide for the target-rate argument is in the range N*64 to (N+1)*64 (N is a natural number), it will be rounded off to (N+1)*64.
Page 603 Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands Keyword DSCP value (decimal) DSCP value (binary) 111000 101110 Table 1-14 802.1p precedence keywords and the corresponding decimal/binary values 802.1p precedence 802.1p precedence Keyword...
Page 604: Traffic-Limit Vlan
Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands By default, traffic policing is disabled globally, on all port groups, and all ports. Note: With broadcast suppression, multicast suppression, or line rate for the inbound direction enabled on a device, you cannot configure traffic policing on the device.
Page 605 Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands The granularity of port rate limit is 64 Kbps. Assume that the value you provide for the target-rate argument is in the range N*64 to (N+1)*64 (N is a natural number), it will be rounded off to (N+1)*64.
Page 606 Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands Note: Traffic policing configured on a VLAN is only applicable to packets tagged with 802.1Q header. With broadcast suppression, multicast suppression, or line rate for the inbound direction enabled on a device, you cannot configure traffic policing on the device.
Page 607: Traffic-Priority Vlan
Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands Description Use the traffic-priority command to use ACL rules in traffic identifying and specify a new priority for all the packets matching the specific ACL rules, or packets that match specific ACL rules and are of a port group, or pass a port.
Page 608 Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands cos cos-value: Sets the 802.1p precedence, in the range of 0 to 7. You can also enter a keyword listed in Table 1-14 for the cos-value argument.
Page 609 Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands acl-rule: ACL rules to be applied. This argument can be the combination of multiple ACLs. For more information about this argument, refer to Table 1-8 Table 1-9.
Page 610: Traffic-Redirect Vlan
Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands [Sysname-Ethernet1/0/1] traffic-redirect inbound ip-group 2000 interface Ethernet1/0/7 1.1.35 traffic-redirect vlan Syntax traffic-redirect vlan vlan-id inbound acl-rule { cpu | interface interface-type interface-number } undo traffic-redirect vlan vlan-id inbound acl-rule...
Page 611 Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands Note: The traffic redirecting function configured on a VLAN is only applicable to packets tagged with 802.1Q header. Packets redirected to the CPU are not forwarded.
Page 612 Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands Description Use the traffic-shape command to enable traffic shaping and send the packets out at an even rate. Use the undo traffic-shape command to disable traffic shaping.
Page 613 Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands Example # Generate statistics on the packets that match ACL 2000 and pass Ethernet 1/0/1. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 614 Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 1 QoS Commands Example # Generate statistics on packets that match ACL 2000 and are of VLAN 1. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 615: Qos Profile Configuration Commands
Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 2 QoS Profile Configuration Commands Chapter 2 QoS Profile Configuration Commands 2.1 QoS Profile Configuration Commands 2.1.1 apply qos-profile Syntax I. In system view apply qos-profile profile-name interface interface-list undo apply qos-profile profile-name interface interface-list II.
Page 616 Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 2 QoS Profile Configuration Commands # Apply the QoS profile named a123 to Ethernet 1/0/1 through Ethernet 1/0/4. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 617 Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 2 QoS Profile Configuration Commands traffic-priority inbound ip-group 4000 rule 0 cos controlled-load # Display the configuration of the QoS profile applied to Ethernet 1/0/1, assuming that the QoS profile has been applied to Ethernet 1/0/1 manually.
Page 618 Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 2 QoS Profile Configuration Commands Field Description “Default” indicates that the QoS profile Default applied qos-profile: test, 3 named test is applied to Ethernet 1/0/1 actions manually. The QoS profile contains three actions.
Page 619 Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 2 QoS Profile Configuration Commands 2.1.4 qos-profile Syntax qos-profile profile-name undo qos-profile profile-name View System view Parameter profile-name: QoS profile name, a case-insensitive string of 1 to 32 characters and starting with English letters [a-z, A-Z].
Page 620 Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 2 QoS Profile Configuration Commands View Ethernet port view Parameter None Description Use the qos-profile port-based command to configure the QoS profile application mode on a port to be port-based.
Page 621 Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 2 QoS Profile Configuration Commands target-rate: Target traffic rate of traffic policing. This argument is in the range 64 to 1000000. The granularity of port rate limit is 64 Kbps. Assume that the value you provide for the target-rate argument is in the range N*64 to (N+1)*64 (N is a natural number), it will be rounded off to (N+1)*64.
Page 622 Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 2 QoS Profile Configuration Commands System View: return to User View with Ctrl+Z. [Sysname] qos-profile a123 [Sysname-qos-profile-a123] traffic-limit inbound ip-group 2000 128 exceed drop 2.1.7 traffic-priority Syntax...
Page 623 Command Manual (For Soliton) – QoS-QoS Profile H3C S3100 Series Ethernet Switches Chapter 2 QoS Profile Configuration Commands [Sysname] qos-profile a123 [Sysname-qos-profile-a123] traffic-priority inbound link-group 4000 cos 1...
Page 624 Command Manual (For Soliton) – Mirroring H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 Mirroring Commands ....................1-1 1.1 Mirroring Commands ......................1-1 1.1.1 display mirroring-group ................... 1-1 1.1.2 mirroring-group......................1-3 1.1.3 mirroring-group mirroring-port ................. 1-4 1.1.4 mirroring-group monitor-port ...................
Page 625: Chapter 1 Mirroring Commands
Use the display mirroring-group command to display port mirroring configurations. Related commands: mirroring-group mirroring-port, mirroring-group monitor-port. Examples # Display the configurations of a local mirroring group on your S3100 series Ethernet switch. <Sysname> display mirroring-group 1 mirroring-group 1: type: local status: active mirroring port: Ethernet1/0/1...
Page 626 Command Manual (For Soliton) – Mirroring H3C S3100 Series Ethernet Switches Chapter 1 Mirroring Commands # Display the configurations of a remote source mirroring group on your S3100 series Ethernet switch. <Sysname> display mirroring-group 1 mirroring-group 1: type: remote-source status: active...
Page 627 The mirroring group you created can take effect only after you configure other parameters for it. Note that, an S3100 series Ethernet switch supports configuring only one destination port in local port mirroring or one reflector port in remote port mirroring. That is, on an S3100 switch, there can be only one effective local mirroring group or one effective remote source mirroring group.
Page 628: Mirroring-Group Mirroring-Port
Command Manual (For Soliton) – Mirroring H3C S3100 Series Ethernet Switches Chapter 1 Mirroring Commands 1.1.3 mirroring-group mirroring-port Syntax mirroring-group group-id mirroring-port mirroring-port-list { both | inbound | outbound } undo mirroring-group group-id mirroring-port mirroring-port-list View System view, Ethernet port view Parameters group-id: Number of a port mirroring group, the value of which can only be 1.
Page 629: Mirroring-Group Monitor-Port
Command Manual (For Soliton) – Mirroring H3C S3100 Series Ethernet Switches Chapter 1 Mirroring Commands <Sysname> system-view System View: return to User View with Ctrl+Z. [Sysname] mirroring-group 1 local [Sysname] mirroring-group 1 mirroring-port Ethernet 1/0/1 inbound 1.1.4 mirroring-group monitor-port Syntax...
Page 630: Mirroring-Group Reflector-Port
Command Manual (For Soliton) – Mirroring H3C S3100 Series Ethernet Switches Chapter 1 Mirroring Commands 1.1.5 mirroring-group reflector-port Syntax mirroring-group group-id reflector-port reflector-port undo mirroring-group group-id reflector-port reflector-port View System view, Ethernet port view Parameters group-id: Number of a port mirroring group, the value of which can only be 1.
Page 631 Command Manual (For Soliton) – Mirroring H3C S3100 Series Ethernet Switches Chapter 1 Mirroring Commands View System view Parameters group-id: Number of a port mirroring group, the value of which can only be 1. remote-probe vlan remote-probe-vlan-id: Specifies the remote-probe VLAN for the mirroring group.
Page 632 Related commands: display mirroring-group. Note: When you configure mirroring source port on an Ethernet port of an S3100 series Ethernet switch, if mirroring group 1 does not exist, the switch will automatically create local mirroring group 1 and add the source port to the group; if mirroring group 1 already exists, but is not a local mirroring group, your configuration of the source port will fail.
Page 633: Remote-Probe Vlan Enable
Command Manual (For Soliton) – Mirroring H3C S3100 Series Ethernet Switches Chapter 1 Mirroring Commands Note that: You cannot configure a member port of an aggregation group, or a port enabled with LACP and STP as the mirroring destination port.
Page 634 Command Manual (For Soliton) – Mirroring H3C S3100 Series Ethernet Switches Chapter 1 Mirroring Commands You cannot configure a default VLAN, a management VLAN, or a dynamic VLAN as the remote-probe VLAN. A remote-probe VLAN cannot be removed directly. To do that, you need to run the undo remote-probe vlan enable command in VLAN view first.
Page 635 Command Manual (For Soliton) – Stack-Cluster H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 Stack Function Configuration Commands..............1-1 1.1 Stack Function Configuration Commands ................. 1-1 1.1.1 display stacking ....................... 1-1 1.1.2 stack-port enable..................... 1-3 1.1.3 stacking ........................
Page 636 Command Manual (For Soliton) – Stack-Cluster H3C S3100 Series Ethernet Switches Table of Contents 2.3.14 ftp cluster......................2-33 2.3.15 ftp-server ......................2-34 2.3.16 holdtime....................... 2-35 2.3.17 ip-pool........................2-36 2.3.18 logging-host......................2-37 2.3.19 management-vlan ....................2-38 2.3.20 reboot member ....................2-38 2.3.21 snmp-host......................
Page 637: Stack Function Configuration Commands
Command Manual (For Soliton) – Stack-Cluster Chapter 1 Stack Function Configuration H3C S3100 Series Ethernet Switches Commands Chapter 1 Stack Function Configuration Commands 1.1 Stack Function Configuration Commands 1.1.1 display stacking Syntax display stacking [ members ] View Any view Parameter members: Displays the information about the members of a stack.
Page 638 Command Manual (For Soliton) – Stack-Cluster Chapter 1 Stack Function Configuration H3C S3100 Series Ethernet Switches Commands Management-vlan:1(default vlan) # Display the information about the stack members on the main switch. <stack_0.Sysname> display stacking members Member number: 0 Name:stack_0.Sysname Device: S3100...
Page 639: Stack-Port Enable
Command Manual (For Soliton) – Stack-Cluster Chapter 1 Stack Function Configuration H3C S3100 Series Ethernet Switches Commands 1.1.2 stack-port enable Syntax stack-port enable undo stack-port enable View Ethernet port view Parameters None Description Use the stack-port enable command to allow the stack port to send/forward stack join-in requests to/from its connected switch.
Page 640: Stacking Enable
Command Manual (For Soliton) – Stack-Cluster Chapter 1 Stack Function Configuration H3C S3100 Series Ethernet Switches Commands You can use this command to switch from user view of the main switch to user view of a slave switch. To switch from a slave switch back to the main switch, execute the quit command in user view.
Page 641: Stacking Ip-Pool
Command Manual (For Soliton) – Stack-Cluster Chapter 1 Stack Function Configuration H3C S3100 Series Ethernet Switches Commands <Sysname> system-view System View: return to User View with Ctrl+Z. [Sysname] stacking enable [stack_0.Sysname] quit <stack_0.Sysname> 1.1.5 stacking ip-pool Syntax stacking ip-pool from-ip-address ip-address-number [ ip-mask ]...
Page 642 Command Manual (For Soliton) – Stack-Cluster Chapter 1 Stack Function Configuration H3C S3100 Series Ethernet Switches Commands After a stack is created, the main switch automatically adds the switches connected to its stack ports to the stack. A slave switch quits the stack automatically when it is disconnected from the stack.
Page 643: Chapter 2 Hgmp V2 Configuration Commands
Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands Chapter 2 HGMP V2 Configuration Commands 2.1 NDP Configuration Commands 2.1.1 display ndp Syntax display ndp [ interface interface-list ] View Any view Parameters interface interface-list: Specifies a port list.
Page 644 Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands Interface: Ethernet1/0/2 Status: Enabled, Pkts Snd: 0, Pkts Rvd: 0, Pkts Err: 0 Interface: Ethernet1/0/3 Status: Enabled, Pkts Snd: 0, Pkts Rvd: 0, Pkts Err: 0 ……(Omitted)
Page 645: Ndp Enable
Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands Field Description Holdtime for this switch to keep the NDP Neighbor 1: Aging Time information of the neighbor connected to the port MAC Address...
Page 646: Ndp Timer Aging
Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands By default, NDP is enabled both globally and on ports. Note that NDP can take effect on a port only when NDP is enabled both globally and on the port.
Page 647: Ndp Timer Hello
Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands Examples # Set the holdtime of the NDP information sent by the switch to 60 seconds. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 648: Reset Ndp Statistics
Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands 2.1.5 reset ndp statistics Syntax reset ndp statistics [ interface interface-list ] View User view Parameters interface-list: Ethernet port list, in the format of { interface-type interface-number [ to interface-type interface-number ] } &<1-10>, where to is used to specify a port range,...
Page 649 Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands View Any view Parameters None Description Use the display ntdp command to display the global NTDP information. The displayed information includes topology collection range (hop count), topology collection interval (NTDP timer), device/port forwarding delay of topology collection requests, and time used by the last topology collection.
Page 650: Display Ntdp Device-List
Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands 2.2.2 display ntdp device-list Syntax display ntdp device-list [ verbose ] View Any view Parameters verbose: Displays the detailed information of devices in a cluster.
Page 651 Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands Copyright(c) 2004-2007 Hangzhou H3C Technologies Co.,Ltd.All rights reserved. S3100 3100-0002 Cluster Administrator switch of cluster 1234 Stack Candidate switch Peer MAC Peer Port ID...
Page 652: Ntdp Enable
Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands Table 2-4 Description on the fields of display ntdp device-list verbose Field Description Hostname System name of a device collected by NTDP MAC address of the collected device...
Page 653: Ntdp Explore
Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands Examples # Enable NTDP globally, and then enable NTDP on port Ethernet 1/0/1. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 654: Ntdp Timer
Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands Parameters hop-value: Maximum hops to collect topology information, namely, the topology collection range, in the range of 1 to 16. Description Use the ntdp hop command to set the topology collection range.
Page 655: Ntdp Timer Hop-Delay
Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands Description Use the ntdp timer command to configure the interval to collect topology information periodically. Use the undo ntdp timer command to restore the default interval.
Page 656: Ntdp Timer Port-Delay
Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands Use the undo ntdp timer hop-delay command to restore the default device forwarding delay. By default, the device forwarding delay is 200 ms.
Page 657: Cluster Configuration Commands
Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands forwards the request through the next port. You can use the ntdp timer port-delay command to set the delay. You can use the command on a collecting switch. The delay value you set by the ntdp...
Page 658 Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands you want to specify the member manually, you need to specify a number that is never used by a member device of the cluster.
Page 659 Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands A cluster has one and only one management device. Setting the management device MAC address on a device can add the device to the cluster and enable the device to identify the management device even if it restarts.
Page 660 Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands Note that, the collection of candidate/member devices are based on NTDP. Therefore, you must first enable NTDP. In addition, you can use the ntdp hop command in system view to change the collection range.
Page 661 Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands 000f-e200-5600 H3C S5600-26F 000f-e200-5104 H3C S3100-26TP-EI-W 000f-e200-2420 H3C S3100-26TP-EI-W Processing...please wait %Apr 3 08:12:37:813 2000 aaa_0.Sysname CLST/5/LOG:- 1 - Member 000f-e200-2200 is joined in cluster aaa.
Page 662 Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands Parameters name: Name to be set for the cluster, a string of up to 8 characters, which can only be alphanumeric characters, minus signs (-), and underscores (_).
Page 663 Note: To reduce the risk of being attacked by malicious users against opened socket and enhance switch security, the S3100 series Ethernet switches provide the following functions, so that a cluster socket is opened only when it is needed: Opening UDP port 40000 (used for cluster) only when the cluster function is implemented, Closing UDP port 40000 at the same time when the cluster function is closed.
Page 664: Cluster Enable
Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands #Apr 3 08:15:03:166 2000 aaa_0. H3C CLST/5/Cluster_Trap:- 1 - OID:1.3.6.1.4.1.2011.6.7.1.0.3(hgmpMemberStatusChange):member 00.00.00.00.00.12. a9.90.22.40 role change, NTDPIndex:0.00.00.00.00.00.12.a9.90.22.40, Role:1 [aaa_0.Sysname-cluster] 2.3.5 cluster Syntax cluster View System view...
Page 665: Cluster Switch-To
Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands Use the undo cluster enable command to disable the cluster function. By default, the cluster function is enabled. Note that: To create a cluster on a management device through the build command or the auto-build command, you must first enable the cluster function by executing the cluster enable command.
Page 666 Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands Both switching directions (from the management device to a member device, and from a member device to the management device) will use Telnet connection. Switching is performed based on the following rules: Both switching directions will perform authentication.
Page 667: Cluster-Mac Syn-Interval
Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands Parameters H-H-H: Multicast MAC address to be set for the cluster, in hexadecimal format. This argument can be one of the following addresses: 0180-C200-0000, 0180-C200-000A, 0180-C200-0020 to 0180-C200-002F.
Page 668 Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands Parameters time-interval: Interval to send multicast MAC synchronization packets, ranging from 0 to 30 minutes. Description Use the cluster-mac syn-interval command to set the interval for the management device to send HGMP V2 multicast MAC synchronization packets periodically.
Page 669: Display Cluster
Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands Description Use the delete-member command to remove a member device from the cluster. Note that a cluster will collect the topology information at the topology collection interval.
Page 670 Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands Description Use the display cluster command to display the status and statistics information of the cluster to which the current switch belongs. Executing this command on a member device will display the following information: cluster name, member number of the current switch, MAC address and status of the management device, holdtime, and interval to send handshake packets.
Page 671: Display Cluster Candidates
Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands Administrator device mac address:000f-e20f-3901 Administrator status:Up Table 2-5 Description on the fields of the display cluster command Field Description Name of the cluster, which can be configured...
Page 672 Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands automatically add the candidate devices it discovers into the cluster. As a result, if the topology collection interval is too short (the default interval is 1 minute), the switches acting as candidate devices will not keep in candidate state for a long time –...
Page 673: Display Cluster Members
Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands Platform : S3100 : 16.1.1.1/24 Table 2-7 Description on the fields of display cluster candidates verbose Field Description Hostname Name of the candidate device...
Page 674 MAC Address:000f-e20f-3901 Member status:Admin Hops to administrator device:0 IP: 100.100.1.1/24 Version: H3C Comware Platform Software. Comware Software, Version 3.10 Copyright(c) 2004-2007 Hangzhou H3C Tech. Co., Ltd. All rights reserved. S3100 3100-0002 Member number:1 Name:aaa_1.Sysname Device:S3100 MAC Address:3900-0000-3334 Member status:Up Hops to administrator device:2 IP: 16.1.1.11/24...
Page 675: Ftp Cluster
Hops to administrator device:1 IP: 16.1.1.1/24 Version: H3C Comware Platform Software. Comware Software, Version 3.10 Copyright(c) 2004-2007 Hangzhou H3C Tech. Co., Ltd. All rights reserved. S3100 3100-0002 Table 2-9 Description on the fields of display cluster members verbose Field Description...
Page 676 Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands Related commands: ftp-server. Note: For how to access other FTP servers using the ftp command, refer to the FTP-SFTP-TFTP part of the manual.
Page 677 Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands of the shared FTP server configured on the management device takes effect on the management device only and will not be applied to the member devices through the cluster management packets.
Page 678 Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands If the management device receives NDP information form a member device within the holdtime, the member device stays in the normal state and does not need to be added to the cluster again.
Page 679 Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands Examples # Configure a private IP address pool for a cluster. <Sysname> system-view System View: return to User View with Ctrl+Z. [Sysname] cluster [Sysname-cluster] ip-pool 10.200.0.1 20...
Page 680: Reboot Member
Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands 2.3.19 management-vlan Syntax management-vlan vlan-id undo management-vlan View System view Parameters vlan-id: ID of the VLAN to be specified as the management VLAN.
Page 681 Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands View Cluster view Parameters member-number: Member number of a member device, ranging from 1 to 255. mac-address H-H-H: Specifies the MAC address of the member device to be rebooted.
Page 682: Tftp Get
Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands Description Use the snmp-host command to configure a shared SNMP NMS for the cluster on the management device. Use the undo snmp-host command to remove the shared SNMP NMS setting.
Page 683: Tftp Put
Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands configuration file backup of the cluster members. For TFTP server rights and directory configuration, refer to the user guide of the TFTP server software.
Page 684 Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands Related commands: tftp get,tftp-server. Note: You need to specify the cluster keyword completely in the command. For description of other parameters of the tftp command, refer to the FTP-SFTP-TFTP part of the manual.
Page 685 Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands Examples # Configure shared TFTP server 1.0.0.9 on the management device for the cluster. <aaa_0.Sysname> system-view System View: return to User View with Ctrl+Z.
Page 686 Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands 2.3.26 tracemac Syntax tracemac { by-mac mac-address vlan vlan-id | by-ip ip-address } [ nondp ] View Any view Parameters by-mac: Specifies to trace a device through the specified destination MAC address.
Page 687: Enhanced Cluster Feature Configuration Commands
Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands <aaa_0.Sysname> tracemac by-mac 000f-e232-0005 vlan 1 Tracing MAC address 000f-e232-0005 in vlan 1 1 000f-e232-0001 H3C01 Ethernet1/0/2 2 000f-e232-0002 H3C02 Ethernet1/0/7 3 000f-e232-0003...
Page 688: Display Cluster Base-Members
Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands Note: You can only use this command on the cluster administrative device. If the device to be added to the blacklist is a member of the cluster, the execution of the black-list add-mac command will remove the device from the cluster and then add it to the cluster blacklist.
Page 689: Display Cluster Base-Topology
Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands Table 2-10 Description on the fields of display cluster base-members Field Description Device number in the cluster Device Device name MAC Address Device MAC address...
Page 690: Display Cluster Black-List
Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands ├-(P_0/40)<-->(P_0/6)[Sysname:000f-e200-2200] ├-(P_0/28)<-->(P_3/0/1)[Sysname:000f-e200-1774] ├-(P_0/22)<-->(P_1/0/2)[aaa_5.Sysname:000f-e200-5111] ├-(P_0/18)<-->(P_3/0/2)[Sysname S3100:000f-e218-d0d0] ├-(P_0/14)<-->(P_1/0/2)[Sysname:000f-e200-5601] └-(P_0/4)<-->(P_0/2)[S3100:000f-e200-00cc] The output information of the display cluster base-topology command is in the following format: (peer port number)<-->(local port number)[peer device name:peer device MAC address] For example, (P_0/40)<-->(P_0/6)[Sysname:000f-e200-2200] means that the peer...
Page 691: Display Cluster Current-Topology
Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands 00e0-fd34-bc66 000f-e202-2180 Ethernet1/0/1 Table 2-11 Description on the fields of the display cluster black-list command Field Description ID of the device in the blacklist, expressed by the MAC address...
Page 692 Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands If to-mac-address or to-member-id is specified, the system displays the topology structure of the route between the two specified MAC addresses or two member IDs.
Page 693: Display Ntdp Single-Device Mac-Address
: H3C : 000f-e200-3956 Platform : H3C S3100-26TP-EI-W Version: H3C Comware Platform Software. Comware Software, Version 3.10 Copyright(c) 2004-2007 Hangzhou H3C Tech. Co., Ltd. All rights reserved. S3100-26TP-EI-W S3100-26TP-EI-W-1545 Cluster Candidate switch Peer MAC Peer Port ID Native Port ID...
Page 694: Topology Accept
Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands Table 2-12 Description on the fields of the display ntdp single-device command Field Description Hostname System name of a device MAC address of the device...
Page 695: Topology Restore-From
Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands Description Use the topology accept command to accept the topology of the current cluster as the standard topology, and save the standard topology to the Flash memory of the administrative device so that the standard topology can be restored when errors occur to the topology.
Page 696: Topology Save-To
Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands Description Use the topology restore-from command to restore the standard topology of the cluster from the Flash memory of the administrative device when errors occur to the topology, and advertise the topology to the member devices of the cluster to ensure normal operation of the cluster.
Page 697 Command Manual (For Soliton) – Stack-Cluster Chapter 2 HGMP V2 Configuration H3C S3100 Series Ethernet Switches Commands Note: This command is applicable to only the management device of a cluster. Related commands: topology restore-from. Examples # Enter Cluster view. <aaa_0.Sysname>system-view System View: return to User View with Ctrl+Z.
Page 698 Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 SNMP Configuration Commands ................1-1 1.1 SNMP Configuration Commands..................1-1 1.1.1 display snmp-agent ....................1-1 1.1.2 display snmp-agent community................1-2 1.1.3 display snmp-agent group..................1-3 1.1.4 display snmp-agent mib-view..................
Page 699 Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Table of Contents 2.1.8 rmon event ......................2-12 2.1.9 rmon history......................2-13 2.1.10 rmon prialarm ...................... 2-14 2.1.11 rmon statistics ..................... 2-16...
Page 700: Snmp Configuration Commands
Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 1 SNMP Configuration Commands Chapter 1 SNMP Configuration Commands Note: The configuration of creating a MIB view with the mask of a MIB subtree is added. See section snmp-agent mib-view for details.
Page 701: Display Snmp-Agent Community
Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 1 SNMP Configuration Commands You can use the snmp-agent local-engineid command to configure an engine ID for the device. Examples # Display the local SNMP entity engine ID.
Page 702: Display Snmp-Agent Group
Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 1 SNMP Configuration Commands <Sysname> display snmp-agent community Community name:public Group name:public Storage-type: nonVolatile Community name:private Group name:private Storage-type: nonVolatile Table 1-1 display snmp-agent community command output description...
Page 703 Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 1 SNMP Configuration Commands Description Use the display snmp-agent group command to display the information about an SNMP group, including group name, security mode, related views, and storage mode.
Page 704: Display Snmp-Agent Mib-View
Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 1 SNMP Configuration Commands 1.1.4 display snmp-agent mib-view Syntax display snmp-agent mib-view [ exclude | include | viewname view-name ] View Any view Parameters exclude: Specifies the SNMP MIB views that are of the excluded type.
Page 705: Display Snmp-Agent Statistics
Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 1 SNMP Configuration Commands View status:active View name:ViewDefault MIB Subtree:snmpModules.18 Subtree mask: Storage-type: nonVolatile View Type:excluded View status:active The above output information indicates that MIB view ViewDefault includes all MIB objects under the ISO MIB subtree except snmpUsmMIB, snmpVacmMIB and snmpModules.18.
Page 706 Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 1 SNMP Configuration Commands 0 SNMP PDUs which had genErr error-status 7 SNMP PDUs which had noSuchName error-status 0 SNMP PDUs which had tooBig error-status (Maximum packet size 1500)
Page 707 Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 1 SNMP Configuration Commands Field Description SNMP PDUs which had The total number of SNMP PDUs which were delivered tooBig error-status to the SNMP protocol entity and for which the value of (Maximum packet size the error-status field is `tooBig'.
Page 708: Display Snmp-Agent Sys-Info
For the detailed configuration, refer to the snmp-agent sys-info command. By default, the contact information of an S3100 Ethernet switch is "Hangzhou H3C Technologies Co., Ltd.", the geographical location is "Hangzhou China", and the SNMP version employed is SNMPv3.
Page 709: Display Snmp-Agent Trap-List
Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 1 SNMP Configuration Commands 1.1.7 display snmp-agent trap-list Syntax display snmp-agent trap-list View Any view Parameters None Description Use the display snmp-agent trap-list command to display the modules that can generate traps and whether the sending of traps is enabled on the modules.
Page 710 Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 1 SNMP Configuration Commands View Any view Parameters engineid: Engine ID, a string of 10 to 64 hexadecimal digits. user-name: SNMPv3 username, a string of 1 to 32 characters.
Page 711: Enable Snmp Trap Updown
Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 1 SNMP Configuration Commands Field Description Storage type, which can be: volatile: Information will be lost if the system is rebooted nonVolatile: Information will not be lost if the system is...
Page 712 Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 1 SNMP Configuration Commands System View: return to User View with Ctrl+Z. [Sysname] snmp-agent trap enable [Sysname] snmp-agent target-host trap address udp-domain 10.1.1.1 params securityname public [Sysname] interface Ethernet1/0/1 [Sysname-Ethernet1/0/1] enable snmp trap updown 1.1.10 snmp-agent...
Page 713: Snmp-Agent Calculate-Password
Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 1 SNMP Configuration Commands Note: An S3100 Ethernet switch provides the following functions to prevent attacks through unused UDP ports. Starting the SNMP agent opens UDP port used by SNMP agents and the UDP port used by SNMP trap respectively.
Page 714 Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 1 SNMP Configuration Commands Related commands: snmp-agent usm-user v3. Note: SNMP agent must be enabled for you to encrypt a plain-text password. Examples # Use the local engine ID and the md5 algorithm to encrypt plain-text password aaaa.
Page 715 Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 1 SNMP Configuration Commands command to configure a community name and configure read or write access right and ACL. Use the undo snmp-agent community command to remove an SNMP community.
Page 716 Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 1 SNMP Configuration Commands group-name: Name of the SNMP group to be created, a string of 1 to 32 characters. authentication: Configures to authenticate but do not encrypt the packets.
Page 717: Snmp-Agent Local-Engineid
Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 1 SNMP Configuration Commands # Create an SNMPv3 group v3group, set the security mode to authentication and privacy, and permit only access from the NMS whose IP address is 192.168.0.108 to the agent using ACL.
Page 718: Snmp-Agent Log
Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 1 SNMP Configuration Commands By default, the engine ID of an SNMP entity is formed by appending the device information to the enterprise number. The device information can be determined according to the device, which can be an IP address, a MAC address, or a user-defined string comprising of hexadecimal digits.
Page 719: Snmp-Agent Mib-View
Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 1 SNMP Configuration Commands Note: When SNMP logging is enabled on a device, SNMP logs are output to the information center of the device. With the output destinations of the information center set, the output destinations of SNMP logs will be decided.
Page 720 Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 1 SNMP Configuration Commands Use the undo snmp-agent mib-view command to cancel the current setting. Management Information Base (MIB) is a collection of all the managed objects. MIB view is a sub-set of MIB.
Page 721: Snmp-Agent Packet Max-Size
Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 1 SNMP Configuration Commands System View: return to User View with Ctrl+Z. [Sysname]snmp-agent community read rip2read mib-view rip2 [Sysname]snmp-agent community write rip2write mib-view rip2 # Create an SNMP MIB view with the name of view-a, MIB subtree of 1.3.6.1.5.4.3.4 and subtree mask of FE.
Page 722: Snmp-Agent Sys-Info
Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 1 SNMP Configuration Commands 1.1.18 snmp-agent sys-info Syntax snmp-agent sys-info { contact sys-contact | location sys-location | version { { v1 | v2c | v3 }* | all } }...
Page 723: Snmp-Agent Target-Host
Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 1 SNMP Configuration Commands By default, the contact information of an S3100 Ethernet switch is "Hangzhou H3C Technologies Co., Ltd.", the geographical location is "Hangzhou China", and the SNMP version employed is SNMPv3.
Page 724: Snmp-Agent Trap Enable
Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 1 SNMP Configuration Commands privacy: Configures to authenticate and encrypt the packets. Description Use snmp-agent target-host command to set a destination host to receive the SNMP traps generated by the local device.
Page 725: Snmp-Agent Trap Ifmib
Specifies to send SNMP linkUp traps when a port becomes up. warmstart: Specifies to send SNMP warm start traps when SNMP is newly launched. system: Specifies to send H3C-SYS-MAN-MIB (proprietary MIB) traps. Description Use the snmp-agent trap enable command to enable a device to send SNMP traps that are of specified types.
Page 726 # Before the configuration of the extended trap function, the trap information is as follows when a link is down: #Apr 2 05:53:15:883 2000 H3C L2INF/2/PORT LINK STATUS CHANGE:- 1 - Trap 1.3.6.1.6.3.1.1.5.3(linkDown): portIndex is 4227634, ifAdminStatus is 2, ifOperStatus is 2 #Apr 2 05:53:16:094 2000 H3C IFNET/5/TRAP:- 1 -1.3.6.1.6.3.1.1.5.3(linkDown)
Page 727: Snmp-Agent Trap Life
Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 1 SNMP Configuration Commands 1.1.22 snmp-agent trap life Syntax snmp-agent trap life seconds undo snmp-agent trap life View System view Parameters seconds: SNMP trap aging time (in seconds) to be set, ranging from 1 to 2,592,000.
Page 728: Snmp-Agent Trap Source
Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 1 SNMP Configuration Commands Description Use the snmp-agent trap queue-size command to set the length of the queue of the SNMP traps to be sent to the destination.
Page 729: Snmp-Agent Usm-User { V1 | V2C
Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 1 SNMP Configuration Commands After the command is executed, the system uses the primary IP address of the specified interface as the source IP address of the traps sent. Thus on the NMS you can use the IP address to uniquely identify the agent.
Page 730 Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 1 SNMP Configuration Commands messages with specific source addresses, thus restricting access between the NMS and the agent. Description Use the snmp-agent usm-user { v1 | v2c } command to add a user to an SNMP group.
Page 731: Snmp-Agent Usm-User V
Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 1 SNMP Configuration Commands 1.1.26 snmp-agent usm-user v3 Syntax snmp-agent usm-user v3 user-name group-name [ [ cipher ] authentication-mode { md5 | sha } auth-password [ privacy-mode { des56 | aes128 } priv-password ] ] [ acl...
Page 732 Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 1 SNMP Configuration Commands engineid-string: Engine ID associated with the user, an even number of hexadecimal characters, in the range 10 to 64. Description Use the snmp-agent usm-user command to add a user to an SNMP group.
Page 733 Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 1 SNMP Configuration Commands On the NMS, set the version to SNMPv3, the username to testUser, the authentication algorithm to MD5, and the authentication password to authkey, and establish a connection with the device.
Page 734: Rmon Configuration Commands
Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 2 RMON Configuration Commands Chapter 2 RMON Configuration Commands 2.1 RMON Configuration Commands 2.1.1 display rmon alarm Syntax display rmon alarm [ entry-number ] View Any view Parameters entry-number: Alarm entry index, in the range 1 to 65535.
Page 735: Display Rmon Event
Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 2 RMON Configuration Commands Field Description Valid The alarm entry identified by the index is valid. Samples type Sampling type, which can be absolute or delta Variable formula The sampled node Sampling interval, in seconds.
Page 736: Display Rmon Eventlog
Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 2 RMON Configuration Commands The action triggered by the event (log or alarm messages) The time (in seconds) when the latest event is triggered (in terms of the time elapsed since the system is started/initialized).
Page 737: Display Rmon History
Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 2 RMON Configuration Commands Current RMON event entry status The time (in seconds) when an event log is generated (in terms of the time elapsed since the system is started or initialized) RMON event description.
Page 738 Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 2 RMON Configuration Commands Parameters interface-type: Interface type. interface-number: Interface number. unit unit-number: Specifies a unit number. Description Use the display rmon history command to display the RMON history information about a specified port.
Page 739: Display Rmon Prialarm
Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 2 RMON Configuration Commands Field Description Latest sampled values Latest sampled values dropevents Number of the packet-dropping events Number of the received/transmitted bytes during octets sampling duration Number of the received/transmitted packets during...
Page 740 Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 2 RMON Configuration Commands Examples # Display the configuration of all the extended RMON alarm entries. <Sysname> display rmon prialarm Prialarm table 1 owned by user1 is VALID.
Page 741: Display Rmon Statistics
Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 2 RMON Configuration Commands 2.1.6 display rmon statistics Syntax display rmon statistics [ interface-type interface-number | unit unit-number ] View Any view Parameters interface-type: Interface type. interface-number: Interface number.
Page 742: Rmon Alarm
Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 2 RMON Configuration Commands Table 2-6 display rmon statistics command output description Field Description Statistics entry Index of the statistics information entry VALID The statistics table is valid.
Page 743 Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 2 RMON Configuration Commands ASN.1 INTEGER data type (that is, INTEGER, Counter, Gauge, or TimeTicks) can be used as alarm variables. sampling-time: Sampling interval (in seconds), in the range 5 to 65,535.
Page 744 Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 2 RMON Configuration Commands Table 2-7 Sample value and the corresponding operation Comparison Operation The sample value is larger than or equal Triggering the event identified by the...
Page 745: Rmon Event
Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 2 RMON Configuration Commands 2.1.8 rmon event Syntax rmon event event-entry [ description string ] { log | trap trap-community | log-trap log-trapcommunity | none } [ owner text ]...
Page 746: Rmon History
Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 2 RMON Configuration Commands 2.1.9 rmon history Syntax rmon history entry-number buckets number interval sampling-interval [ owner text ] undo rmon history entry-number View Ethernet port view Parameters entry-number: History entry index, in the range of 1 to 65535.
Page 747: Rmon Prialarm
Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 2 RMON Configuration Commands 2.1.10 rmon prialarm Syntax rmon prialarm entry-number prialarm-formula prialarm-des sampling-timer { delta | absolute changeratio rising_threshold threshold-value1 event-entry1 falling_threshold threshold-value2 event-entry2 entrytype { forever | cycle...
Page 748 Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 2 RMON Configuration Commands Use the undo rmon prialarm command to remove an extended alarm entry. Note: Before adding an extended alarm entry, you need to use the rmon event command to define the events to be referenced by the entry.
Page 749: Rmon Statistics
Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 2 RMON Configuration Commands System View: return to User View with Ctrl+Z. [Sysname] interface Ethernet 1/0/1 [Sysname-Ethernet1/0/1] rmon statistics 1 [Sysname-Ethernet1/0/1] quit [Sysname] rmon prialarm ((.1.3.6.1.2.1.16.1.1.1.4.1)*100) test changeratio rising_threshold 50 1 falling_threshold 5 2 entrytype forever owner user1 # Remove the extended alarm entry numbered 2 from the extended alarm table.
Page 750 Command Manual (For Soliton) – SNMP-RMON H3C S3100 Series Ethernet Switches Chapter 2 RMON Configuration Commands Note: For each port, only one RMON statistics entry can be created. That is, if an RMON statistics entry was already created for a given port, you will fail to create a statistics entry with a different index for the port.
Page 751 Command Manual (For Soliton) – NTP H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 NTP Configuration Commands .................. 1-1 1.1 NTP Configuration Commands..................1-1 1.1.1 display ntp-service sessions ................... 1-1 1.1.2 display ntp-service status..................1-3 1.1.3 display ntp-service trace ..................
Page 752: Ntp Configuration Commands
Note: To protect unused sockets against attacks by malicious users and improve security, H3C S3100 series Ethernet switches provide the following functions: UDP port 123 is opened only when the NTP feature is enabled. UDP port 123 is closed as the NTP feature is disabled.
Page 753 Command Manual (For Soliton) – NTP H3C S3100 Series Ethernet Switches Chapter 1 NTP Configuration Commands Example # View the brief information of all sessions maintained by NTP services. <Sysname> display ntp-service sessions source reference stra reach poll now offset...
Page 754: Display Ntp-Service Status
Total number of associations associations Caution: An S3100 series switch does not establish a session with its client when it works in the NTP server mode, but does so when it works in other NTP implementation modes. 1.1.2 display ntp-service status...
Page 755: Display Ntp-Service Trace
Command Manual (For Soliton) – NTP H3C S3100 Series Ethernet Switches Chapter 1 NTP Configuration Commands Table 1-2 Description on the fields of the display ntp-service status command Field Description Status of the local clock: Clock status Synchronized Unsynchronized Clock stratum...
Page 756: Ntp-Service Access
Command Manual (For Soliton) – NTP H3C S3100 Series Ethernet Switches Chapter 1 NTP Configuration Commands Example # View the brief information of each NTP time server along the time synchronization chain from the local switch to the reference clock source.
Page 757 Command Manual (For Soliton) – NTP H3C S3100 Series Ethernet Switches Chapter 1 NTP Configuration Commands synchronization: Synchronization right. This level of right permits the peer device to synchronize its clock to the local switch but does not permit the peer device to perform control query.
Page 758: Ntp-Service Authentication Enable
Command Manual (For Soliton) – NTP H3C S3100 Series Ethernet Switches Chapter 1 NTP Configuration Commands 1.1.5 ntp-service authentication enable Syntax ntp-service authentication enable undo ntp-service authentication enable View System view Parameter None Description Use the ntp-service authentication enable command to enable the NTP authentication.
Page 759: Ntp-Service Broadcast-Client
Command Manual (For Soliton) – NTP H3C S3100 Series Ethernet Switches Chapter 1 NTP Configuration Commands Description Use the ntp-service authentication-keyid command to configure an NTP authentication key. Use the undo ntp-service authentication-keyid command to remove an NTP authentication key.
Page 760: Ntp-Service Broadcast-Server
Command Manual (For Soliton) – NTP H3C S3100 Series Ethernet Switches Chapter 1 NTP Configuration Commands Example # Configure the switch to operate in the broadcast client mode and receive NTP broadcast messages through Vlan-interface1. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 761: Ntp-Service In-Interface Disable
Command Manual (For Soliton) – NTP H3C S3100 Series Ethernet Switches Chapter 1 NTP Configuration Commands 1.1.9 ntp-service in-interface disable Syntax ntp-service in-interface disable undo ntp-service in-interface disable View VLAN interface view Parameter None Description Use the ntp-service in-interface disable command to disable the interface from receiving NTP messages.
Page 762: Ntp-Service Multicast-Client
Command Manual (For Soliton) – NTP H3C S3100 Series Ethernet Switches Chapter 1 NTP Configuration Commands Use the undo ntp-service max-dynamic-sessions command to restore the default. By default, up to 100 dynamic NTP sessions can be established locally. Example # Set the maximum number of dynamic NTP sessions that can be established locally to <Sysname>...
Page 763: Ntp-Service Multicast-Server
Command Manual (For Soliton) – NTP H3C S3100 Series Ethernet Switches Chapter 1 NTP Configuration Commands 1.1.12 ntp-service multicast-server Syntax ntp-service multicast-server [ ip-address ] [ authentication-keyid key-id | ttl ttl-number | version number ]* undo ntp-service multicast-server [ ip-address ]...
Page 764: Ntp-Service Reliable Authentication-Keyid
Command Manual (For Soliton) – NTP H3C S3100 Series Ethernet Switches Chapter 1 NTP Configuration Commands 1.1.13 ntp-service reliable authentication-keyid Syntax ntp-service reliable authentication-keyid key-id undo ntp-service reliable authentication-keyid key-id View System view Parameter key-id: Authentication key ID, in the range of 1 to 4294967295.
Page 765: Ntp-Service Unicast-Peer
Command Manual (For Soliton) – NTP H3C S3100 Series Ethernet Switches Chapter 1 NTP Configuration Commands View System view Parameter vlan-interface vlan-id: Specifies an interface. The IP address of the interface serves as the source IP address of sent NTP messages. The vlan-id argument indicates the ID of the specified VLAN interface, ranging from 1 to 4094.
Page 766: Ntp-Service Unicast-Server
Command Manual (For Soliton) – NTP H3C S3100 Series Ethernet Switches Chapter 1 NTP Configuration Commands authentication-keyid key-id: Specifies the key ID used for sending messages to the peer. The key-id argument ranges from 1 to 4294967295. By default, authentication is not enabled.
Page 767 Command Manual (For Soliton) – NTP H3C S3100 Series Ethernet Switches Chapter 1 NTP Configuration Commands undo ntp-service unicast-server { remote-ip | server-name } View System view Parameter remote-ip: IP address of an NTP server. This argument can be a unicast address only, and cannot be a broadcast address, multicast group address, or IP address of the local clock.
Page 768 Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 SSH Commands......................1-1 1.1 SSH Commands ........................ 1-1 1.1.1 display public-key local ................... 1-1 1.1.2 display public-key peer.................... 1-2 1.1.3 display rsa local-key-pair public ................
Page 769: Ssh Commands
Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands Chapter 1 SSH Commands 1.1 SSH Commands 1.1.1 display public-key local Syntax display public-key local { dsa | rsa } public View Any view Parameters dsa: Displays the public key of the current switch’s DSA key pair.
Page 770: Display Public-Key Peer
Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands Key name: Sysname_Server Key type: RSA encryption Key ===================================================== Key code: 307C300D06092A864886F70D0101010500036B003068026100BC86D8F08E101461C1231B12 2777DBE777645C81C569C004EC2FEC03C205CC7E3B5DAA38DD865C6D1FB61C91B85ED63C6F 35BAFBF9A6D2D2989C20051FF8FA31A14FCF73EC1485422E5B800B55920FC121329020E82F 2945FFAD81BE72663BF70203010001 # Display the public key of the current switch’s DSA key pair.
Page 771 Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands Description Use the display public-key peer command to display information about locally saved public keys of SSH peers. If no key name is specified, the command displays detailed information about the locally saved public keys of all SSH peers.
Page 772: Display Rsa Local-Key-Pair Public
Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands B58BE6F035FAA2C596B27D1231D159846B7CB9A7757C5800FADA9FD72F65672F4A549EE99F 63095E11BD37789955020123 1.1.3 display rsa local-key-pair public Syntax display rsa local-key-pair public View Any view Parameters None Description Use the display rsa local-key-pair public command to display the public key part of the current switch’s RSA key pair(s).
Page 773: Display Rsa Peer-Public-Key
Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands Key type: RSA encryption Key ===================================================== Key code: 3067 0260 D6D70AE4 D2A900BE AC21B4E7 617CBEFA 2BAED61F B637070C 093F43AF 9DB9D644 BCD921EF D056EF36 26825C2A 1FC0EFC3 E27B5110 3F20F790 6C83274B...
Page 774: Display Ssh Server
Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands Caution: Sometimes the public key modulo displayed with the display rsa peer-public-key command is one bit smaller than the actual modulo. This is because the actually generated key pair is one bit smaller than specified.
Page 775 Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands status: Displays SSH status information. Description Use the display ssh server command on an SSH server to display SSH status or session information.
Page 776: Display Ssh Server-Info
Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands Field Description State Session status Retry Number of connection retries SerType Service type Username User name 1.1.6 display ssh server-info Syntax display ssh server-info...
Page 777: Display Ssh User-Information
Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands 1.1.7 display ssh user-information Syntax display ssh user-information [ username ] View Any view Parameters username: SSH user name, a string of 1 to 184 characters. It cannot contain any of these characters: slash (/), backslash (\), colon (:), asterisk (*), question mark (?), less than sign (<), greater than sign (>), and the vertical bar sign (|).
Page 778 Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands Description Use the peer-public-key end command to return from public key view to system view. Related commands: rsa peer-public-key, public-key-code begin, public-key peer.
Page 779: Public-Key Local Create
Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands Caution: If you have configured a user interface to support SSH protocol, to ensure a successful login to the user interface, you must configure AAA authentication for the user interface by using the authentication-mode scheme command.
Page 780 Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands After entering this command, you will be prompted to provide the length of the key pair. The length of a server/host key must be in the range 512 to 2048 bits and defaults to 1024.
Page 781: Command Manual ( For Soliton ) – Ssh
Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands Key code: 307C300D06092A864886F70D0101010500036B003068026100A3B63F5B0E5470D9FE200545 0342011FEDE2A924C71EB19E28D257E43EF7E531D7C37FBB157712A2F2AF0F5BAF3E605954 96C5B3EAFF25BFB56F1E1CC7A7004D0FF048654BFEADB21C5AF3E24FB0516393BFEEF65A83 B7416F170886904C8BE30203010001 # Create a DSA key pair of 512 bits. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 782: Public-Key Local Destroy
Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands 8722585CDF4F3BFB31DD739865D1EA0312EDF2BAF4841C0A963E400640E467206817292CDF E5D91D86FDB9C3A16141E675E6FFC6C2577E660FF1 1.1.11 public-key local destroy Syntax public-key local destroy { dsa | rsa } View System view Parameters dsa: Specifies the DSA key pair.
Page 783 Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands Parameters rsa: Specifies the host public key of the current switch’s RSA key pair. openssh: Specifies the format of the exported file as OpenSSH.
Page 784: Public-Key Local Export Dsa
Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands # Display the host public key in the OpenSSH format. [Sysname]public-key local export rsa openssh ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAAAgMSPi+xIkHkAo6E9LwLKWN+eN9EqW/6FIYEIlVKcpIa0 6IT4eSyq4OldeiZ9WorOiDqX3ROo4FmaTR/QCSK3C9whE1qz/4soVL1eHDdgzQCumKKsJCVaM5 OdZ2sdNbEnhLucs8ZrfTgEkDB1hmbgzuDpWPokPfkQDD+8dC+hkFVV rsa-key # Export the host public key of the RSA key pair in the format of OpenSSH and save the public key file as pub_ssh_file2.
Page 785 Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands Caution: SSH1, SSH2, and OpenSSH are three public key file formats. You can choose one as required. The host public key displayed on the screen is in a format that is not transformed and cannot be used as the public key data for public key configuration.
Page 786: Public-Key Peer
Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands # Export the public key in OpenSSH format. <Sysname> system-view [Sysname] public-key local export dsa openssh key.pub 1.1.14 public-key peer Syntax public-key peer keyname...
Page 787: Public-Key Peer Import Sshkey
Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands 1.1.15 public-key peer import sshkey Syntax public-key peer keyname import sshkey filename undo public-key peer keyname View System view Parameters keyname: Name of the public key , a string of 1 to 64 characters.
Page 788: Public-Key-Code Begin
Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands 1.1.16 public-key-code begin Syntax public-key-code begin View Public key view Parameters None Description Use the public-key-code begin command to enter public key edit view.
Page 789: Rsa Local-Key-Pair Create
Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands Parameters None Description Use the public-key-code end command to return from public key edit view to public key view and save the public key you input.
Page 790 Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands Description Use the rsa local-key-pair create command to generate an RSA key pair for the current switch. Note that: After entering this command, you will be prompted to provide the length of the key pair.
Page 791: Rsa Local-Key-Pair Destroy
Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands Key code: 308188 028180 F0C0EDA9 FA2E2FAC 4B16CA34 677F1861 A13E89BE 6AAAC326 4E17268D EFADED1A FCA39047 52F18422 B8C875DF 3626150D 4057EE12 371D5E62 57D34A16 5045A403 FA805F72 B2780C9A 041ED99E 2841F600...
Page 792: Rsa Peer-Public-Key
Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands Description Use the rsa local-key-pair destroy command to destroy the current switch’s RSA key pair. Related commands: rsa local-key-pair create. Examples # Destroy the current switch’s RSA key pair.
Page 793: Rsa Peer-Public-Key Import Sshkey
Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands Examples # Enter Switch002 public key view. <Sysname> system-view System View: return to User View with Ctrl+Z. [Sysname] rsa peer-public-key Switch002 RSA public key view: return to System View with "peer-public-key end".
Page 794: Ssh Authentication-Type Default
Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands Caution: The rsa peer-public-key import sshkey command can transform only RSA public keys. If you want DSA public keys to be transformed and configured automatically, use the public-key peer import sshkey command.
Page 795: Ssh Client Assign
Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands Description Use the ssh authentication-type default command to specify a default authentication mode for SSH users. After this command is configured, when an SSH user is added by...
Page 796 Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands Note: Both publickey and rsa-key indicate specifying the publickey key. They are implemented with the same method. Description Use the ssh client assign command to specify the name of the public key of the server on the client so that the client can authenticate whether the server to be accessed is reliable.
Page 797: Ssh Client First-Time Enable
Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands 1.1.24 ssh client first-time enable Syntax ssh client first-time enable undo ssh client first-time View System view Parameters None Description Use the ssh client first-time enable command to enable the client to run first-time authentication for the SSH server it accesses for the first time.
Page 798: Ssh Server Authentication-Retries
Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands 1.1.25 ssh server authentication-retries Syntax ssh server authentication-retries times undo ssh server authentication-retries View System view Parameters times: Authentication retry times, in the range of 1 to 5.
Page 799: Ssh Server Rekey-Interval
Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands undo ssh server compatible-ssh1x View System view Parameters None Description Use the ssh server compatible-ssh1x enable command to make the server compatible with SSH1.x clients.
Page 800: Ssh Server Timeout
Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands By default, the update interval is zero, which indicates the system does not update the server keys. Caution: This command only takes effect on users whose client version is SSH1.
Page 801: Ssh User
Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands System View: return to User View with Ctrl+Z. [Sysname] ssh server timeout 80 1.1.29 ssh user Syntax ssh user username undo ssh user username...
Page 802: Ssh User Assign
Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands Related commands: authentication-type default, user authentication-type. Examples # Specify the default authentication type as password authentication. Create an SSH user with the name “abc”.
Page 803: Ssh User Authentication-Type
Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands Note: On an SSH server, you need to assign a public key to each SSH user using publickey authentication. Both publickey and rsa-key indicate specifying the publickey key. They are implemented with the same method.
Page 804 Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands password-publickey: Specifies the authentication mode for the SSH user as password and publickey. publickey: Specifies the authentication mode for the SSH user as publickey (RSA key or DSA key ) authentication.
Page 805: Ssh User Service-Type
Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands publickey null stelnet 1.1.32 ssh user service-type Syntax ssh user username service-type { stelnet | sftp | all } undo ssh user username service-type...
Page 806 Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands 1.1.33 ssh2 Syntax ssh2 { host-ip | host-name } [ port-num ] [ identity-key { dsa | rsa } | prefer_kex { dh_group1 | dh_exchange_group } | prefer_ctos_cipher { des | aes128 } |...
Page 807 Command Manual ( For Soliton ) – SSH H3C S3100 Series Ethernet Switches Chapter 1 SSH Commands Note: DES (data encryption standard) is a standard data encryption algorithm. AES (advanced encryption standard) is an advanced encryption standard algorithm. Description Use the ssh2 command to start the SSH client to establish a connection with an SSH server, and at the same time specify the preferred key exchange algorithm, encryption algorithms and HMAC algorithms between the server and client.
Page 808 Command Manual (For Soliton) – File System Management H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 File System Management Configuration Commands ..........1-1 1.1 File System Configuration Commands ................1-1 1.1.1 cd..........................1-1 1.1.2 copy......................... 1-2 1.1.3 delete........................
Page 809: File System Configuration Commands
Chapter 1 File System Management Configuration Commands Note: S3100 series Ethernet switches allow you to input a file path and file name in one of the following ways: In universal resource locator (URL) format and starting with “unit1>flash:/”. or “flash:/” This method is used to specify a file in the current Flash memory. For example, the URL of a file named text.txt in the root directory of the switch is...
Page 810 Command Manual (For Soliton) – File System Management Chapter 1 File System Management H3C S3100 Series Ethernet Switches Configuration Commands Parameter directory: Target directory. Description Use the cd command to enter a specified directory on the Ethernet switch. The default directory when a user logs onto the switch is the root directory of Flash memory.
Page 811 Command Manual (For Soliton) – File System Management Chapter 1 File System Management H3C S3100 Series Ethernet Switches Configuration Commands Copy unit1>flash:/config.cfg to unit1>flash:/test/1.cfg?[Y/N]:y %Copy file unit1>flash:/config.cfg to unit1>flash:/test/1.cfg...Done. # Copy file config.cfg from the root directory to directory test, and save the file using the original file name.
Page 812 Command Manual (For Soliton) – File System Management Chapter 1 File System Management H3C S3100 Series Ethernet Switches Configuration Commands The delete running-files command only deletes its main attribute instead of the file itself. The delete standby-files command only deletes its backup attribute instead of the file itself.
Page 813 Command Manual (For Soliton) – File System Management Chapter 1 File System Management H3C S3100 Series Ethernet Switches Configuration Commands Delete the backup web file? [Y/N]:n Start deleting ... Deleting ... done 1.1.4 dir Syntax dir [ /all ] [ file-url ]...
Page 814 Command Manual (For Soliton) – File System Management Chapter 1 File System Management H3C S3100 Series Ethernet Switches Configuration Commands Note: In the output information of the dir /all command, deleted files (that is, those in the recycle bin) are embraced in brackets. The displayed directory of a deleted file is the directory to which the file belongs before it is deleted.
Page 815: File Prompt
Command Manual (For Soliton) – File System Management Chapter 1 File System Management H3C S3100 Series Ethernet Switches Configuration Commands View System view Parameter filename: Batch file, with the extension .bat. Description Use the execute command to execute the specified batch file. Executing a batch file is to execute a set of commands in the batch file one by one.
Page 816 Command Manual (For Soliton) – File System Management Chapter 1 File System Management H3C S3100 Series Ethernet Switches Configuration Commands Parameter alert: Specifies to prompt for confirmation before performing file-related operations that have potential risks. quiet: Specifies to disable prompts for file-related operations.
Page 817 Configuration Commands View User view Parameter device: Name of a device which must be “unit1>flash:” or “flash:” for S3100 series Ethernet switches. Description Use the fixdisk command to restore space on the Flash memory. In case that space on the Flash memory may become unavailable for reasons such as abnormal operations, you can run this command to restore the space.
Page 818 Command Manual (For Soliton) – File System Management Chapter 1 File System Management H3C S3100 Series Ethernet Switches Configuration Commands Example # Format the Flash memory. <Sysname>format unit1>flash: All data on unit1>flash: will be lost , proceed with format ? [Y/N]:y ......
Page 819 Command Manual (For Soliton) – File System Management Chapter 1 File System Management H3C S3100 Series Ethernet Switches Configuration Commands 1.1.10 more Syntax more file-url View User view Parameter file-url: Path name or file name of a file in the Flash memory.
Page 820 Command Manual (For Soliton) – File System Management Chapter 1 File System Management H3C S3100 Series Ethernet Switches Configuration Commands 1.1.11 move Syntax move fileurl-source fileurl-dest View User view Parameter fileurl-source: Name of the source file. fileurl-dest: Name of the target file.
Page 821 Command Manual (For Soliton) – File System Management Chapter 1 File System Management H3C S3100 Series Ethernet Switches Configuration Commands View User view Parameter None Description Use the pwd command to display the current working path of the login user.
Page 822: Reset Recycle-Bin
Command Manual (For Soliton) – File System Management Chapter 1 File System Management H3C S3100 Series Ethernet Switches Configuration Commands 1.1.14 reset recycle-bin Syntax reset recycle-bin [ file-url ] [ /force ] View User view Parameter file-url: Path name or file name of a file in the Flash memory. This argument supports the wildcard “*”.
Page 823 Command Manual (For Soliton) – File System Management Chapter 1 File System Management H3C S3100 Series Ethernet Switches Configuration Commands -rw- 3608 Dec 03 2007 17:29:30 [b.cfg] 7239 KB total (1930 KB free) //The above information indicates that in directory flash:, there are two files a.cfg and b.cfg in the recycle bin.
Page 824 Command Manual (For Soliton) – File System Management Chapter 1 File System Management H3C S3100 Series Ethernet Switches Configuration Commands 1.1.15 rmdir Syntax rmdir directory View User view Parameter directory: Name of a directory. Description Use the rmdir command to delete a directory.
Page 825: Boot Attribute-Switch
Command Manual (For Soliton) – File System Management Chapter 1 File System Management H3C S3100 Series Ethernet Switches Configuration Commands <Sysname> undelete sample.bak Undelete unit1>flash:/sample.bak ?[Y/N]:y % Undeleted file unit1>flash:/sample.bak. 1.2 File Attribute Configuration Commands 1.2.1 boot attribute-switch Syntax boot attribute-switch { all | app | configuration | web }...
Page 826: Boot Boot-Loader Backup-Attribute
Command Manual (For Soliton) – File System Management Chapter 1 File System Management H3C S3100 Series Ethernet Switches Configuration Commands Parameter file-url: Path or the name of the app file in the Flash memory, a string comprising 1 to 64 characters.
Page 827 <Sysname> boot web-package boot.web main 1.2.5 display boot-loader Syntax display boot-loader [ unit unit-id ] View Any view Parameter unit unit-id: Specifies the unit ID of a switch. You cannot choose any other number except 1 for S3100 series Ethernet switches. 1-19...
Page 828: Display Web Package
Web files with the main and backup attributes used for next startup. Example # Display information about the Web file used by the device. <Sysname>display web package The current using web package is: flash:/h3c-http3.1.5-0040.web The main web package is: unit1>flash:/h3c-http3.1.5-0040.web The backup web package is: unit1>flash:/ 1.2.7 startup bootrom-access enable...
Page 829 Command Manual (For Soliton) – File System Management Chapter 1 File System Management H3C S3100 Series Ethernet Switches Configuration Commands undo startup bootrom-access enable View User view Parameter None Description Use the startup bootrom-access enable command to specify a switch to prompt users to use customized password to enter the BOOT menu.
Page 830 Command Manual (For Soliton) – FTP-SFTP-TFTP H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 FTP and SFTP Configuration Commands ..............1-1 1.1 FTP Server Configuration Commands................1-1 1.1.1 display ftp-server ..................... 1-1 1.1.2 display ftp-user ......................1-2 1.1.3 ftp disconnect ......................
Page 831 Command Manual (For Soliton) – FTP-SFTP-TFTP H3C S3100 Series Ethernet Switches Table of Contents 1.4.3 cdup........................1-25 1.4.4 delete........................1-26 1.4.5 dir .......................... 1-27 1.4.6 exit......................... 1-27 1.4.7 get ......................... 1-28 1.4.8 help........................1-29 1.4.9 ls..........................1-29 1.4.10 mkdir........................1-30 1.4.11 put ........................
Page 832: Ftp Server Configuration Commands
Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands Chapter 1 FTP and SFTP Configuration Commands 1.1 FTP Server Configuration Commands 1.1.1 display ftp-server Syntax display ftp-server View Any view Parameters...
Page 833 The current login user number is 0. Timeout value (in minute) The connection idle time is 30 minutes. Note: The H3C S3100 series Ethernet switch supports one user access at one time when it serves as the FTP server. 1.1.2 display ftp-user Syntax...
Page 834: Ftp Disconnect
Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands Examples # Display the information of the FTP users that have logged in to the switch. <Sysname> display ftp-user UserName HostIP Port...
Page 835: Ftp Server Enable
Commands Note: With an H3C S3100 series Ethernet switch acting as the FTP server, if you attempt to disconnect a user that is uploading/downloading data to/from the FTP server, the S3100 Ethernet switch will disconnect the user after the data transmission is completed.
Page 836: Ftp Timeout
Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands By default, the FTP server function is disabled on the H3C S3100 series switch to avoid potential security risks. Note: To protect unused sockets from being attacked by malicious users, the H3C S3100 series Ethernet switch provides the following functions: TCP 21 is enabled only when you start the FTP server.
Page 837: Ftp Client Configuration Commands
Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands can set an idle timeout time so that the FTP server considers an FTP connection invalid and terminates it if no data exchange occurs on it in idle timeout time.
Page 838 Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands Examples # Specify to transfer text files in ASCII mode. [ftp] ascii 200 Type set to A. 1.2.2 binary Syntax binary View...
Page 839 Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands This command has the same effect as that of the quit command. Examples # Terminate the connections with the remote FTP server and return to user view.
Page 840 Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands Description Use the cdup command to exit the current working directory and enter the parent directory. The parent directory must be a directory that a user is authorized to access;...
Page 841 Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands 1.2.7 delete Syntax delete remotefile View FTP client view Parameters remotefile: Name of the file to be deleted. Description Use the delete command to delete a specified remote file.
Page 842 Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands Caution: You can use the dir command to display the file-related information such as file size, creation date, and so on. To display only the names of all the files under the current directory, use the ls command.
Page 843 Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands 1.2.9 disconnect Syntax disconnect View FTP client view Parameters None Description Use the disconnect command to terminate an FTP connection without quitting FTP client view.
Page 844 Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands Examples # Connect to the FTP server whose IP address is 2.2.2.2. <Sysname> ftp 2.2.2.2 Trying ... Press CTRL+K to abort Connected.
Page 845 Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands Examples # Download file temp.c. [ftp] get temp.c 227 Entering Passive Mode (2,2,2,2,4,12). 125 ASCII mode data connection already open, transfer starting for temp.c.
Page 846 Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands localfile: Name of the local file where the querying result is to be saved. Description Use the ls command to display the information about a specified file on an FTP server.
Page 847 Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands View FTP client view Parameters pathname: Name of the directory to be created. Description Use the mkdir command to create a directory on an FTP server.
Page 848 Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands Examples # Establish a control connection with the FTP server whose IP address is 1.1.1.1 in FTP client view. [ftp]open 1.1.1.1 Trying ...
Page 849 Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands Therefore, you are recommended to set the data transmission mode of the FTP client to passive when accessing the FTP server through a firewall.
Page 850 Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands Parameters None Description Use the pwd command to display the working directory on an FTP server. Related commands: cd, cdup, dir, ls.
Page 851 This command works only when the FTP server provides the help information about FTP protocol commands. Caution: This command is always valid when an H3C series Ethernet switch operates as the FTP server. If you use other FTP server software, refer to related instructions to know whether the FTP server provides help information about FTP protocol commands.
Page 852 Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands If the destination file name conflicts with the name of an existing file or directory, you will fail to rename the file.
Page 853 Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands Description Use the user command to log in to an FTP server with the specified username and password. Examples # Log in to the FTP server using the user account with the username tom and the password 111.
Page 854: Sftp Server Enable
Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands [ftp] get test.cfg ..FTP: 1740 byte(s) received in 9.367 second(s) 185.00 byte(s)/sec. The above output indicates that if the verbose function is disabled, only execution information of users’...
Page 855: Sftp Client Configuration Commands
Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands View System view Parameters time-out-value: Timeout time, in the range 1 to 35,791, in minutes. The default value is Description Use the sftp timeout command to set the idle timeout time on an SFTP server.
Page 856 Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands [Sysname] 1.4.2 cd Syntax cd [ remote-path ] View SFTP client view Parameters remote-path: Path of the target directory on the remote server.
Page 857 Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands Parameters None Description Use the cdup command to change the working path on the remote SFTP server and return to the parent directory.
Page 858 Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands 1.4.5 dir Syntax dir [ -a | -l ] [ remote-path ] View SFTP client view Parameters -a: Displays the file and folder names in a specified directory.
Page 859 Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands View SFTP client view Parameters None Description Use the exit command to terminate a connection with the remote SFTP server and return to system view.
Page 860 Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands Received status: Success Downloading file successfully ended 1.4.8 help Syntax help [ all |command ] View SFTP client view Parameters all: Displays all the command names.
Page 861 Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands If -a or -l is not specified, the command displays details about the files and folders in the specified directory in a list.
Page 862 Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands 1.4.11 put Syntax put local-file [ remote-file ] View SFTP client view Parameters local-file: Name of a local file. remote-file: Name of a file on the remote SFTP server.
Page 863 Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands sftp-client> pwd 1.4.13 quit Syntax quit View SFTP client view Parameters None Description Use the quit command to terminate a connection with the remote SFTP server and return to system view.
Page 864 Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands Examples # Delete the file named temp.c from the server. sftp-client> remove temp.c The followed File will be deleted: /temp.c Are you sure to delete it?(Y/N):y This operation may take a long time.Please wait...
Page 865 Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands Parameters remote-path&<1-10>: Name of a directory on the remote SFTP server. &<1-10> indicates that up to ten file names can be input. These file names should be separated by spaces.
Page 866 Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands dh_group1: Key exchange algorithm diffie-hellman-group1-sha1. It is the default key exchange algorithm. dh_exchange_group: exchange algorithm diffie-hellman-group-exchange-sha1. prefer_ctos_cipher: Preferred client-to-server encryption algorithm. The default algorithm is aes128.
Page 867 Command Manual (For Soliton) – FTP-SFTP-TFTP Chapter 1 FTP and SFTP Configuration H3C S3100 Series Ethernet Switches Commands Do you want to save the server's public key?(Y/N):y Enter password: sftp-client> 1-36...
Page 868: Tftp Configuration Commands
Command Manual (For Soliton) – FTP-SFTP-TFTP H3C S3100 Series Ethernet Switches Chapter 2 TFTP Configuration Commands Chapter 2 TFTP Configuration Commands 2.1 TFTP Configuration Commands Note: When accessing a TFTP server configured with an IPv6 address, use the tftp ipv6 command.
Page 869 TFTP server and relog in. The H3C S3100 series switch supports the TFTP file size negotiation function, namely, before downloading a file, the switch requests the size of the file to be downloaded to the TFTP server, thus to ensure whether there is enough space on the Flash for file downloading.
Page 870 Command Manual (For Soliton) – FTP-SFTP-TFTP H3C S3100 Series Ethernet Switches Chapter 2 TFTP Configuration Commands Downloading file from remote tftp server, please wait..Not enough space; Writing to device failed; Downloaded data will be deleted..... Deleting file successful. # Download file temp.txt from the TFTP server (1.1.1.1) and save it as test2.txt (suppose that free space of the Flash is insufficient and the TFTP server supports file size negotiation).
Page 871 Command Manual (For Soliton) – FTP-SFTP-TFTP H3C S3100 Series Ethernet Switches Chapter 2 TFTP Configuration Commands Examples # Upload file config.cfg to the TFTP server whose IP address is 1.1.1.1 and save it as temp.cfg. <Sysname> tftp 1.1.1.1 put config.cfg temp.cfg File will be transferred in binary mode.
Page 872 Command Manual (For Soliton) – Information Center H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 Information Center Configuration Commands ............1-1 1.1 Information Center Configuration Commands ..............1-1 1.1.1 display channel......................1-1 1.1.2 display info-center ....................1-1 1.1.3 display logbuffer ......................
Page 873: Display Channel
Command Manual (For Soliton) – Information Center Chapter 1 Information Center Configuration H3C S3100 Series Ethernet Switches Commands Chapter 1 Information Center Configuration Commands 1.1 Information Center Configuration Commands 1.1.1 display channel Syntax display channel [ channel-number | channel-name ]...
Page 874 Command Manual (For Soliton) – Information Center Chapter 1 Information Center Configuration H3C S3100 Series Ethernet Switches Commands Parameter unit-id: Unit ID of the device, the value can only be 1. Description Use the display info-center command to display the operation status of information center, the configuration of information channels, the format of time stamp.
Page 875: Display Logbuffer
Command Manual (For Soliton) – Information Center Chapter 1 Information Center Configuration H3C S3100 Series Ethernet Switches Commands Table 1-1 Description on the fields of the display info-center command Field Description Information Center Status of the information center: enabled/disabled Information about the log host, including its IP address,...
Page 876 Command Manual (For Soliton) – Information Center Chapter 1 Information Center Configuration H3C S3100 Series Ethernet Switches Commands Table 1-2 Severity level defined in the information center Severity Severity value Description emergencies The system is unavailable. alerts Information that demands prompt reaction...
Page 877: Display Logbuffer Summary
Command Manual (For Soliton) – Information Center Chapter 1 Information Center Configuration H3C S3100 Series Ethernet Switches Commands The rest is omitted here. Table 1-3 display logbuffer command output description Field Description Logging buffer configuration Indicates the current state of the log buffer and its and contents contents, which could be enabled or disabled.
Page 878: Display Trapbuffer
Command Manual (For Soliton) – Information Center Chapter 1 Information Center Configuration H3C S3100 Series Ethernet Switches Commands The above information indicates that there are 94 warnings and one informational information in the log buffer. 1.1.5 display trapbuffer Syntax display trapbuffer [ unit unit-id ] [ size buffersize ]...
Page 879: Info-Center Channel Name
Command Manual (For Soliton) – Information Center Chapter 1 Information Center Configuration H3C S3100 Series Ethernet Switches Commands 1.1.6 info-center channel name Syntax info-center channel channel-number name channel-name undo info-center channel channel-number View System view Parameter channel-number: Channel number, ranging from 0 to 9, corresponding to the 10 channels of the system.
Page 880: Info-Center Enable
Command Manual (For Soliton) – Information Center Chapter 1 Information Center Configuration H3C S3100 Series Ethernet Switches Commands Parameter channel-number: Channel number, ranging from 0 to 9, corresponding to the 10 channels of the system. channel-name: Channel name, by default, the name of channel 0 to channel 9 is (in turn) console, monitor, loghost, trapbuffer, logbuffer, snmpagent, channel6, channel7, channel8, channel9.
Page 881: Info-Center Logbuffer
Command Manual (For Soliton) – Information Center Chapter 1 Information Center Configuration H3C S3100 Series Ethernet Switches Commands The switch can output system information to the log host, the console, and other destinations only when the information center is enabled.
Page 882: Info-Center Loghost
Command Manual (For Soliton) – Information Center Chapter 1 Information Center Configuration H3C S3100 Series Ethernet Switches Commands This command works only when the information center is enabled. Related command: info-center enable, display info-center. Example # Configure the system to output information to the log buffer with the size of 50.
Page 883: Info-Center Loghost Source
Command Manual (For Soliton) – Information Center Chapter 1 Information Center Configuration H3C S3100 Series Ethernet Switches Commands This command works only when the information center is enabled. Note: Be sure to set the correct IP address in the info-center loghost command. A loopback IP address will cause an error message, prompting that the address is invalid.
Page 884: Info-Center Monitor Channel
Command Manual (For Soliton) – Information Center Chapter 1 Information Center Configuration H3C S3100 Series Ethernet Switches Commands <Sysname> system-view System View: return to User View with Ctrl+Z. [Sysname] info-center loghost source Vlan-interface 1 1.1.12 info-center monitor channel Syntax info-center monitor channel { channel-number | channel-name }...
Page 885: Info-Center Source
Command Manual (For Soliton) – Information Center Chapter 1 Information Center Configuration H3C S3100 Series Ethernet Switches Commands undo info-center snmp channel View System view Parameter channel-number: Channel number, ranging from 0 to 9, corresponding to the 10 channels of the system.
Page 886 Command Manual (For Soliton) – Information Center Chapter 1 Information Center Configuration H3C S3100 Series Ethernet Switches Commands channel-name: Channel name, by default, the name of channel 0 to channel 9 is (in turn) console, monitor, loghost, trapbuffer, logbuffer, snmpagent, channel6, channel7, channel8, channel9.
Page 887 Command Manual (For Soliton) – Information Center Chapter 1 Information Center Configuration H3C S3100 Series Ethernet Switches Commands You can configure to output the log, trap and debugging information to the log buffer, but the log buffer only receives the log and debugging information and discards the trap information.
Page 888: Info-Center Synchronous
Command Manual (For Soliton) – Information Center Chapter 1 Information Center Configuration H3C S3100 Series Ethernet Switches Commands Examples # Set the output channel for the log information of VLAN module to snmpagent and to output information with severity being emergencies. Log information of other modules cannot be output to this channel.
Page 889: Info-Center Timestamp
Command Manual (For Soliton) – Information Center Chapter 1 Information Center Configuration H3C S3100 Series Ethernet Switches Commands Note: The synchronous information output function is used in the case that your input is interrupted by a large amount of system output. With this function enabled, the system echoes your previous input and you can continue your operations from where you were stopped.
Page 890: Info-Center Timestamp Loghost
Command Manual (For Soliton) – Information Center Chapter 1 Information Center Configuration H3C S3100 Series Ethernet Switches Commands hh:mm:ss:sss: The local time, with hh ranging from 00 to 23, mm and ss ranging from 00 to 59, and sss ranging from 0 to 999.
Page 891: Info-Center Timestamp Utc
Command Manual (For Soliton) – Information Center Chapter 1 Information Center Configuration H3C S3100 Series Ethernet Switches Commands By default, the date time stamp is adopted. Example # Set the no-year-date time stamp for the output information sent to the log host.
Page 892: Info-Center Trapbuffer
Command Manual (For Soliton) – Information Center Chapter 1 Information Center Configuration H3C S3100 Series Ethernet Switches Commands with utc log - date, trap - date, debug - boot # If you configure to add the UTC time zone in the time stamp, the system information is...
Page 893: Reset Logbuffer
Command Manual (For Soliton) – Information Center Chapter 1 Information Center Configuration H3C S3100 Series Ethernet Switches Commands Example # Enable the system to output trap information to the trap buffer, whose size is set to 30. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 894: Terminal Debugging
Command Manual (For Soliton) – Information Center Chapter 1 Information Center Configuration H3C S3100 Series Ethernet Switches Commands <Sysname> reset trapbuffer 1.1.22 terminal debugging Syntax terminal debugging undo terminal debugging View User view Parameter None Description Use the terminal debugging command to enable debugging terminal display.
Page 895: Terminal Monitor
Command Manual (For Soliton) – Information Center Chapter 1 Information Center Configuration H3C S3100 Series Ethernet Switches Commands Description Use the terminal logging command to enable log terminal display. Use the undo terminal logging command to disable log terminal display.
Page 896: Terminal Trapping
Command Manual (For Soliton) – Information Center Chapter 1 Information Center Configuration H3C S3100 Series Ethernet Switches Commands 1.1.25 terminal trapping Syntax terminal trapping undo terminal trapping View User view Parameter None Description Use the terminal trapping command to enable trap terminal display.
Page 897 Command Manual (For Soliton) – System Maintenance and Debugging H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 Basic System Configuration and Debugging Commands........1-1 1.1 Basic System Configuration Commands ................1-1 1.1.1 clock datetime ......................1-1 1.1.2 clock summer-time ....................
Page 898 Command Manual (For Soliton) – System Maintenance and Debugging H3C S3100 Series Ethernet Switches Table of Contents 3.1.15 schedule reboot delay ..................3-16 3.1.16 schedule reboot regularity................... 3-17 3.1.17 system-monitor enable..................3-18 3.1.18 xmodem get......................3-19...
Page 899: Debugging Commands
Chapter 1 Basic System Command Manual (For Soliton) – System Maintenance and Debugging Configuration and Debugging H3C S3100 Series Ethernet Switches Commands Chapter 1 Basic System Configuration and Debugging Commands 1.1 Basic System Configuration Commands 1.1.1 clock datetime Syntax clock datetime HH:MM:SS { YYYY/MM/DD | MM/DD/YYYY }...
Page 900: Clock Summer-Time
Chapter 1 Basic System Command Manual (For Soliton) – System Maintenance and Debugging Configuration and Debugging H3C S3100 Series Ethernet Switches Commands 1.1.2 clock summer-time Syntax clock summer-time zone-name { one-off | repeating } start-time start-date end-time end-date offset-time undo clock summer-time...
Page 901: Clock Timezone
Chapter 1 Basic System Command Manual (For Soliton) – System Maintenance and Debugging Configuration and Debugging H3C S3100 Series Ethernet Switches Commands <Sysname> clock summer-time abc2 repeating 06:00:00 08/01/2005 06:00:00 09/01/2005 01:00:00 <Sysname> display clock 00:01:25 UTC Mon 01/01/2001 Time Zone : add 00:00:00 Summer-Time : abc2 repeating 06:00:00 08/01/2005 06:00:00 09/01/2005 01:00:00 1.1.3 clock timezone...
Page 902 Chapter 1 Basic System Command Manual (For Soliton) – System Maintenance and Debugging Configuration and Debugging H3C S3100 Series Ethernet Switches Commands Summer-Time : abc1 one-off 06:00:00 08/01/2005 06:00:00 09/01/2005 01:00:00 1.1.4 quit Syntax quit View Any view Parameter None Description Use the quit command to return from current view to a lower level view.
Page 903 Ethernet switch. Changing the system name will affect the CLI prompt. For example, if the system name of the switch is H3C, the prompt for user view is <H3C>. Example...
Page 904: Display Clock
Chapter 1 Basic System Command Manual (For Soliton) – System Maintenance and Debugging Configuration and Debugging H3C S3100 Series Ethernet Switches Commands <Sysname> system-view System View: return to User View with Ctrl+Z. [Sysname] sysname LANSwitch [LANSwitch] 1.1.7 system-view Syntax system-view...
Page 905: Display Debugging
Chapter 1 Basic System Command Manual (For Soliton) – System Maintenance and Debugging Configuration and Debugging H3C S3100 Series Ethernet Switches Commands Description Use the display clock command to display the current date, time, timezone and summertime of the system, so that you can adjust them if they are wrong.
Page 906: Display Version
H3C Comware Platform Software. Comware Software, Version 3.10, Alpha 2101 Copyright (c) 2004-2007 Hangzhou H3C Technologies Co., Ltd. All rights reserved. H3C S3100-26TP-EI-W uptime is 0 week, 0 day, 19 hours, 40 minutes H3C S3100-26TP-EI-W with 1 Processor bytes SDRAM...
Page 907: System Debugging Commands
Chapter 1 Basic System Command Manual (For Soliton) – System Maintenance and Debugging Configuration and Debugging H3C S3100 Series Ethernet Switches Commands bytes Flash Memory Config Register points to FLASH Hardware Version is REV.A Bootrom Version is 506 CPLD Version is 001 [Subslot 0] 24FE Hardware Version is REV.A...
Page 908: Display Diagnostic-Information
Chapter 1 Basic System Command Manual (For Soliton) – System Maintenance and Debugging Configuration and Debugging H3C S3100 Series Ethernet Switches Commands For information about the terminal monitor command, refer to Information Center Command. Example # Enable IP packet debugging of the IP module.
Page 909 Chapter 1 Basic System Command Manual (For Soliton) – System Maintenance and Debugging Configuration and Debugging H3C S3100 Series Ethernet Switches Commands Diagnostic-information saved Flash displayed(Y=save N=display)?[Y/N]n -------------------- display version -------------------- …… <Omitted> 1.3.3 terminal debugging Syntax terminal debugging undo terminal debugging...
Page 910: Network Connectivity Test Commands
Command Manual (For Soliton) – System Maintenance and Debugging Chapter 2 Network Connectivity Test H3C S3100 Series Ethernet Switches Commands Chapter 2 Network Connectivity Test Commands 2.1 Network Connectivity Test Commands 2.1.1 ping Syntax ping [ -a ip-address ] [ -c count ] [ -d ] [ -f ] [ -h ttl ] [ -i interface-type interface-number ]...
Page 911 Command Manual (For Soliton) – System Maintenance and Debugging Chapter 2 Network Connectivity Test H3C S3100 Series Ethernet Switches Commands -q: Specifies to display only the statistics without the details. By default, all the information including the details and statistics will be displayed.
Page 912 Command Manual (For Soliton) – System Maintenance and Debugging Chapter 2 Network Connectivity Test H3C S3100 Series Ethernet Switches Commands Reply from 202.38.160.244 : bytes=56 sequence=2 ttl=255 time = 2ms Reply from 202.38.160.244 : bytes=56 sequence=3 ttl=255 time = 1ms Reply from 202.38.160.244 : bytes=56 sequence=4 ttl=255 time = 3ms...
Page 913 Command Manual (For Soliton) – System Maintenance and Debugging Chapter 2 Network Connectivity Test H3C S3100 Series Ethernet Switches Commands -w timeout: Specifies the timeout time to wait for ICMP error packets. The timeout argument ranges from 0 to 65,535 and defaults to 5,000 (in milliseconds).
Page 914 Command Manual (For Soliton) – System Maintenance and Debugging Chapter 2 Network Connectivity Test H3C S3100 Series Ethernet Switches Commands 14 * * * 15 * * * 16 * * * 17 * * * 18 18.26.0.115 (18.26.0.115) 339 ms 279 ms 279 ms...
Page 915: Device Management Commands
Command Manual (For Soliton) – System Maintenance and Debugging Chapter 3 Device Management H3C S3100 Series Ethernet Switches Commands Chapter 3 Device Management Commands 3.1 Device Management Commands 3.1.1 boot boot-loader Syntax boot boot-loader [ backup-attribute ] { file-url | device-name }...
Page 916 Command Manual (For Soliton) – System Maintenance and Debugging Chapter 3 Device Management H3C S3100 Series Ethernet Switches Commands Parameter file-ulr: Path plus name of a Boot ROM file (that is, a .btm file) in the Flash, a string of 1 to 64 characters.
Page 917: Display Cpu
Command Manual (For Soliton) – System Maintenance and Debugging Chapter 3 Device Management H3C S3100 Series Ethernet Switches Commands Table 3-1 Description for the fields of the display boot-loader command Field Description The current boot app is Current boot file of the system...
Page 918: Display Device
Command Manual (For Soliton) – System Maintenance and Debugging Chapter 3 Device Management H3C S3100 Series Ethernet Switches Commands 3.1.5 display device Syntax display device [ manuinfo | unit unit-id ] View Any view Parameter manuinfo: Specifies to display the manufacture information of the specified switch.
Page 919: Display Memory
Command Manual (For Soliton) – System Maintenance and Debugging Chapter 3 Device Management H3C S3100 Series Ethernet Switches Commands Field Description AddrLM MAC address learning mode Type Card type State Running state 3.1.6 display memory Syntax display memory [ unit unit-id ]...
Page 920: Display Power
Command Manual (For Soliton) – System Maintenance and Debugging Chapter 3 Device Management H3C S3100 Series Ethernet Switches Commands 3.1.7 display power Syntax display power [ unit unit-id [ power-id ] ] View Any view Parameter unit-id: Unit ID of a switch, the value can only be 1.
Page 921: Display Transceiver Alarm Interface
Command Manual (For Soliton) – System Maintenance and Debugging Chapter 3 Device Management H3C S3100 Series Ethernet Switches Commands <Sysname> display schedule reboot System will reboot at 16:00:00 2002/11/1 (in 2 hours and 5 minutes). 3.1.9 display transceiver alarm interface...
Page 922 Command Manual (For Soliton) – System Maintenance and Debugging Chapter 3 Device Management H3C S3100 Series Ethernet Switches Commands Field Remarks Transceiver type and port Transceiver type does not match port configuration mismatch configuration. Transceiver type not supported by Transceiver type is not supported on the port.
Page 923 Transceiver type does not match port configuration mismatch configuration. Transceiver type not supported by Transceiver type is not supported on the port. port hardware Note: For pluggable transceivers supported by S3100 series Ethernet switches, refer to H3C S3100 Series Ethernet Switches Installation Manual(For Soliton).
Page 924: Display Transceiver Diagnosis Interface
H3C. Examples # Display the currently measured value of digital diagnosis parameters of the anti-spoofing pluggable optical transceiver customized by H3C on interface GigabitEthernet 1/2/2. <Sysname> display transceiver diagnosis interface gigabitethernet 1/2/2 GigabitEthernet1/2/2 transceiver diagnostic information: Current diagnostic parameters: Temp(°C)
Page 925: Display Transceiver Interface
Command Manual (For Soliton) – System Maintenance and Debugging Chapter 3 Device Management H3C S3100 Series Ethernet Switches Commands Table 3-7 Description on the fields of display transceiver diagnosis interface Field Description Digital diagnosis information of the transceiver diagnostic information...
Page 926 Command Manual (For Soliton) – System Maintenance and Debugging Chapter 3 Device Management H3C S3100 Series Ethernet Switches Commands Digital Diagnostic Monitoring : YES Vendor Name : H3C Ordering Name : SFP-GE-LX10-SM1310 Table 3-8 Description on the fields of the display transceiver interface command...
Page 927: Display Transceiver Manuinfo Interface
H3C. Examples # Display part of the electrical label information of the anti-spoofing pluggable transceiver customized by H3C on interface GigabitEthernet 1/2/2. <Sysname> display transceiver manuinfo interface gigabitethernet 1/2/2 GigabitEthernet1/2/2 transceiver manufacture information: Manu. Serial Number...
Page 928: Schedule Reboot At
Command Manual (For Soliton) – System Maintenance and Debugging Chapter 3 Device Management H3C S3100 Series Ethernet Switches Commands Parameter unit-id: Unit ID of a switch, the value can only be 1. Description Use the reboot command to restart a specified Ethernet switch.
Page 929 Command Manual (For Soliton) – System Maintenance and Debugging Chapter 3 Device Management H3C S3100 Series Ethernet Switches Commands mm/dd/yyyy or yyyy/mm/dd: Reboot date, where yyyy (year) ranges from 2,000 to 2,099, mm (month) ranges from 1 to 12, and the range of dd (day) depends on the specific month.
Page 930: Schedule Reboot Delay
Command Manual (For Soliton) – System Maintenance and Debugging Chapter 3 Device Management H3C S3100 Series Ethernet Switches Commands 3.1.15 schedule reboot delay Syntax schedule reboot delay { hh:mm | mm } undo schedule reboot View User view Parameter hh:mm: Reboot waiting delay, where hh ranges from 0 to 720, and mm ranges from 0 to 59.
Page 931: Schedule Reboot Regularity
Command Manual (For Soliton) – System Maintenance and Debugging Chapter 3 Device Management H3C S3100 Series Ethernet Switches Commands <Sysname> schedule reboot delay 70 Reboot system at 06:12 2000/04/02(in 1 hours and 10 minutes) confirm?[Y/N]:y <Sysname> 3.1.16 schedule reboot regularity...
Page 932: System-Monitor Enable
Command Manual (For Soliton) – System Maintenance and Debugging Chapter 3 Device Management H3C S3100 Series Ethernet Switches Commands Related command: reboot, schedule reboot at, undo schedule reboot, display schedule reboot. Example # Schedule a reboot so that the switch reboots at 10:00 every Thursday.
Page 933: Xmodem Get
Command Manual (For Soliton) – System Maintenance and Debugging Chapter 3 Device Management H3C S3100 Series Ethernet Switches Commands Example # Disable real-time monitoring of the running status of the system. <Sysname> system-view System View: return to User View with Ctrl+Z.
Page 934 Command Manual (For Soliton) – VLAN-VPN H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 VLAN-VPN Configuration Commands ............... 1-1 1.1 VLAN-VPN Configuration Commands ................1-1 1.1.1 display port vlan-vpn ....................1-1 1.1.2 vlan-vpn enable ....................... 1-2 1.1.3 vlan-vpn tpid ......................
Page 935: Chapter 1 Vlan-Vpn Configuration Commands
Command Manual (For Soliton) – VLAN-VPN H3C S3100 Series Ethernet Switches Chapter 1 VLAN-VPN Configuration Commands Chapter 1 VLAN-VPN Configuration Commands 1.1 VLAN-VPN Configuration Commands 1.1.1 display port vlan-vpn Syntax display port vlan-vpn View Any view Parameters None Description Use the display port vlan-vpn command to display the information about VLAN-VPN configuration of the current system.
Page 936: Vlan-Vpn Enable
Command Manual (For Soliton) – VLAN-VPN H3C S3100 Series Ethernet Switches Chapter 1 VLAN-VPN Configuration Commands Field Description The VLAN corresponding to the tag that the port tags VLAN-VPN VLAN packets with, that is, the default VLAN of the port 1.1.2 vlan-vpn enable...
Page 937: Vlan-Vpn Tpid
Command Manual (For Soliton) – VLAN-VPN H3C S3100 Series Ethernet Switches Chapter 1 VLAN-VPN Configuration Commands 1.1.3 vlan-vpn tpid Syntax vlan-vpn tpid value undo vlan-vpn tpid View System view Parameters value: User-defined TPID value (in hexadecimal format), in the range 0x0001 to 0xFFFF.
Page 938 Command Manual (For Soliton) – VLAN-VPN H3C S3100 Series Ethernet Switches Chapter 1 VLAN-VPN Configuration Commands Examples # Set the global TPID value to 0x9100. <Sysname> system-view System View: return to User View with Ctrl+Z. [Sysname] vlan-vpn tpid 9100...
Page 939: Chapter 2 Selective Qinq Configuration Commands
Command Manual (For Soliton) – VLAN-VPN H3C S3100 Series Ethernet Switches Chapter 2 Selective QinQ Configuration Commands Chapter 2 Selective QinQ Configuration Commands 2.1 Selective QinQ Configuration Commands 2.1.1 raw-vlan-id inbound Syntax raw-vlan-id inbound vlan-id-list undo raw-vlan-id inbound { all | vlan-id-list }...
Page 940: Vlan-Vpn Vid
Command Manual (For Soliton) – VLAN-VPN H3C S3100 Series Ethernet Switches Chapter 2 Selective QinQ Configuration Commands Before configuring this command in QinQ view, you need to use the vlan-vpn vid command to configure the outer VLAN tag to be used in the selective QinQ policy.
Page 941: Vlan-Vpn Selective Enable
Command Manual (For Soliton) – VLAN-VPN H3C S3100 Series Ethernet Switches Chapter 2 Selective QinQ Configuration Commands Examples # Specify to add VLAN 20 tag as the outer tags to the packets with their inner VLAN IDs being 2 through 14.
Page 942: Chapter 3 Vlan Mapping Configuration Commands
Command Manual (For Soliton) – VLAN-VPN H3C S3100 Series Ethernet Switches Chapter 3 VLAN Mapping Configuration Commands Chapter 3 VLAN Mapping Configuration Commands 3.1 VLAN Mapping Configuration Commands 3.1.1 vlan-mapping Syntax vlan-mapping vlan old-vlan-id remark new-vlan-id undo vlan-mapping vlan old-vlan-id...
Page 943: Vlan-Mapping Enable
Command Manual (For Soliton) – VLAN-VPN H3C S3100 Series Ethernet Switches Chapter 3 VLAN Mapping Configuration Commands By default, no global VLAN mapping rule or port-level VLAN mapping rule is defined. Note: A port that is in a link aggregation port group cannot have the VLAN Mapping feature enabled.
Page 944 Command Manual (For Soliton) – VLAN-VPN H3C S3100 Series Ethernet Switches Chapter 3 VLAN Mapping Configuration Commands By default, the VLAN mapping function is disabled. Note: A port that is in a link aggregation port group cannot have the VLAN Mapping feature enabled.
Page 945: Chapter 4 Bpdu Tunnel Configuration Commands
Command Manual (For Soliton) – VLAN-VPN H3C S3100 Series Ethernet Switches Chapter 4 BPDU Tunnel Configuration Commands Chapter 4 BPDU Tunnel Configuration Commands 4.1 BPDU Tunnel Configuration Commands 4.1.1 bpdu-tunnel Syntax bpdu-tunnel protocol-type undo bpdu-tunnel { protocol-type | all }...
Page 946: Bpdu-Tunnel Tunnel-Dmac
Command Manual (For Soliton) – VLAN-VPN H3C S3100 Series Ethernet Switches Chapter 4 BPDU Tunnel Configuration Commands Use the undo bpdu-tunnel command to disable BPDU tunnel on a port. By default, BPDU tunnel is disabled on a port. After you enable a port to transmit packets of a specified protocol type through the...
Page 947: Display Bpdu-Tunnel
Command Manual (For Soliton) – VLAN-VPN H3C S3100 Series Ethernet Switches Chapter 4 BPDU Tunnel Configuration Commands Parameters mac-address: Destination MAC address to be assigned to the protocol packets transmitted along a BPDU tunnel. This argument must be a multicast MAC address.
Page 948 Command Manual (For Soliton) – VLAN-VPN H3C S3100 Series Ethernet Switches Chapter 4 BPDU Tunnel Configuration Commands Parameters None Description Use the display bpdu-tunnel command to display the private multicast MAC address configured for protocol packets transmitted along the BPDU tunnel(s).
Page 949 Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 HWPing Commands ....................1-1 1.1 HWPing Client Commands ....................1-1 1.1.1 count........................1-1 1.1.2 datasize ........................1-1 1.1.3 destination-ip ......................1-2 1.1.4 destination-port......................
Page 950: Chapter 1 Hwping Commands
Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands Chapter 1 HWPing Commands 1.1 HWPing Client Commands 1.1.1 count Syntax count times undo count View HWPing test group view Parameters times: Number of probes in each test. The times argument ranges from 1 to 15.
Page 951: Destination-Ip
Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands View HWPing test group view Parameters size: Size of a test packet in bytes. The value range varies with the test types. Table 1-1 Value range of the HWPing test packets...
Page 952: Destination-Port
Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands Description Use the destination-ip command to configure a destination IP address of a HWPing test. Use the undo destination-ip command to remove the configured destination IP address.
Page 953: Display Hwping
Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands By default, no destination port number is configured for a test. Related commands: destination-ip. Note: The destination-port command has effect on jitter, TCP-Private, and UDP-Private tests only.
Page 954 Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands Without administrator-name test-operation-tag specified, the command displays the results of all test groups; without administrator-name test-operation-tag specified, the command displays the results of the specified test group.
Page 955 Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands Field Description Number of times the test failed because the System busy operation number system was busy Operation sequence errors Number of out-of-sequence packets received...
Page 956 Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands Table 1-3 Description on the fields of the display hwping history command Field Description Roundtrip time in the case of a successful test, Response timeout time in the case of test timeout, or 0 in the...
Page 957 Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands Other operation errors: 0 Http result: DNS Resolve Time: 0 HTTP Operation Time: 675 DNS Resolve Min Time: 0 HTTP Test Total Time: 748 DNS Resolve Max Time: 0...
Page 958 Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands # Display the result of the test group with the administrator name being administrator, and the operation tag being Jitter. [Sysname-hwping-administrator-Jitter] display hwping results administrator...
Page 959 Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands Field Description Maximum positive jitter delay from the source to the Max Positive SD destination Maximum positive jitter delay from the destination to the Max Positive DS...
Page 960 Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands Field Description Negative SD Square Sum of the square of negative jitter delays from the source to the destination Negative DS Square Sum of the square of negative jitter delays from the...
Page 961: Dns-Server
Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands Field Description DNS Resolve Timeout Times DNS resolution timeout times DNS Resolve Failed Times Number of failed DNS resolutions Note: The description on a specific field is available for the test results of all types of tests, so that not the description on the output information of all types of tests is provided here.
Page 962: Dns Resolve-Target
Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands System View: return to User View with Ctrl+Z [Sysname] hwping administrator dns [Sysname-hwping-administrator-dns] test-type dns [Sysname-hwping-administrator-dns] dns-server 192.168.1.1 1.1.7 dns resolve-target Syntax dns resolve-target domain-name...
Page 963: Frequency
Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands View HWPing test group view Parameters file-name: Name of the file to be downloaded/uploaded in FTP tests, a string of 1 to 255 characters. Description Use the filename command to specify a file to be downloaded/uploaded in FTP tests.
Page 964: Ftp-Operation
Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands Description Use the frequency command to configure the time interval of performing automatic tests. Use the undo frequency command to restore the default. If interval is configured greater than 0, the system performs automatic tests at this interval.
Page 965: History-Records
Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands Related commands: username, password. Note: The ftp-operation command applies to FTP tests only. Examples # Set the FTP operation mode to put in an FTP test.
Page 966: Http-Operation
Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands [Sysname-hwping-administrator-icmp] history-records 10 1.1.12 http-operation Syntax http-operation { get | post } View HWPing test group view Parameters get: Specifies the test operation to be download from the HTTP server.
Page 967: Hwping
Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands Parameters string: HTTP operation string used to specify the webpage to be accessed, in the range 1 to 255 characters. version: HTTP version, in the range 1 to 255 characters. At present, this argument can only be HTTP/1.0, where HTTP must be capitalized.
Page 968: Hwping-Agent Enable
Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands HWPing test group view directly. Use the undo hwping command to delete the test group. Examples # Create a HWPing test group of which the administrator name is “administrator” and operation tag is “ICMP”.
Page 969: Jitter-Packetnum
Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands undo jitter-interval View HWPing test group view Parameters interval: Interval in milliseconds between jitter test packets. The value is in the range of 10 to 1000.
Page 970: Password
Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands Parameters number: Number of packets to be transmitted in one probe for a jitter test, in the range of 10 to 100. Description Use the jitter-packetnum command to configure the number of packets to be sent in one probe for a jitter test.
Page 971: Probe-Failtimes
Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands By default, the password for logging in to the FTP server is not configured. Related commands: username and ftp-operation. Note: To perform an FTP test successfully, the configured password must be consistent with the FTP user password configured on the server.
Page 972: Send-Trap
Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands System View: return to User View with Ctrl+Z [Sysname] hwping administrator icmp [Sysname-hwping-administrator-icmp] test-type icmp [Sysname-hwping-administrator-icmp] probe-failtimes 3 1.1.20 send-trap Syntax send-trap { all | { probefailure | testcomplete | testfailure }* }...
Page 973 Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands View HWPing test group view Parameters interface-type interface-number: Interface type and interface number. Description For ICMP tests, use the source-interface command to specify a source interface for sending ICMP requests.
Page 974: Source-Ip
Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands 1.1.22 source-ip Syntax source-ip ip-address undo source-ip View HWPing test group view Parameters ip-address: Source IP address for a test. Description Use the source-ip command to configure the source IP address for the test.
Page 975: Test-Type
Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands View HWPing test group view Parameters port-number: Source port number, in the range of 1 to 65,535. Description Use the source-port command to configure the source port number for this test.
Page 976: Test-Enable
Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands tcpprivate: Indicates a TCP test on a specified (unknown) port. tcppublic: Indicates a TCP test on port 7. udpprivate: Indicates a UDP test on a specified (unknown) port.
Page 977: Test-Failtimes
Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands Examples # Perform a HWPing test on an ICMP test group with the administrator name and operation tag being administrator and icmp respectively. <Sysname> system-view...
Page 978: Timeout
Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands 1.1.27 timeout Syntax timeout time undo timeout View HWPing test group view Parameters time: Timeout time for one probe, in the range of 1 to 60, in seconds.
Page 979: Username
Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands Use the undo tos command to remove the ToS value in a HWPing test packet header. By default, no ToS value is configured. Note: This command does not apply to DHCP tests.
Page 980: Hwping Server Commands
Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands Note: To perform an FTP test successfully, the configured username must be consistent with the username configured on the FTP server. This command applies to FTP tests only.
Page 981: Hwping-Server Tcpconnect
When performing a TCP connection test on a specified port of a HWPing client, you must create a TCP listening on the HWPing server if the server is an H3C S3100 series Ethernet switch; otherwise, the TCP test may fail.
Page 982: Hwping-Server Udpecho
Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands Caution: The port number used by HWPing server for TCP listening cannot be set to a number greater than 50000 or to some special port numbers that are for fixed functions, such as 1701.
Page 983 Command Manual (For Soliton) – HWPing H3C S3100 Series Ethernet Switches Chapter 1 HWPing Commands Examples # Enable UDP listening, using 169.254.10.2 as the IP address and 9000 as the port number. <Sysname> system-view System View: return to User View with Ctrl+Z [Sysname] hwping-server udpecho 169.254.10.2 9000...
Page 984 Command Manual (For Soliton) – IPv6 Management H3C S3100 Series Ethernet Switches Table of Contents Table of Contents Chapter 1 IPv6 Configuration Commands .................. 1-1 1.1 Basic IPv6 Configuration Commands ................1-1 1.1.1 display dns ipv6 dynamic-host ................1-1 1.1.2 display ipv6 fib......................1-2 1.1.3 display ipv6 host......................
Page 985 Command Manual (For Soliton) – IPv6 Management H3C S3100 Series Ethernet Switches Table of Contents Chapter 2 IPv6 Application Configuration Commands ............. 2-1 2.1 IPv6 Application Configuration Commands ............... 2-1 2.1.1 ping ipv6 ........................2-1 2.1.2 telnet ipv6 ........................ 2-3 2.1.3 tftp ipv6........................
Page 986: Chapter 1 Ipv6 Configuration Commands
Command Manual (For Soliton) – IPv6 Management H3C S3100 Series Ethernet Switches Chapter 1 IPv6 Configuration Commands Chapter 1 IPv6 Configuration Commands 1.1 Basic IPv6 Configuration Commands 1.1.1 display dns ipv6 dynamic-host Syntax display dns ipv6 dynamic-host View Any view...
Page 987: Display Ipv6 Fib
Command Manual (For Soliton) – IPv6 Management H3C S3100 Series Ethernet Switches Chapter 1 IPv6 Configuration Commands Note: When you use the display dns ipv6 dynamic-host command to check the IPv6 dynamic domain names in the cache, the system will display the first 21 characters of the domain names if they contain more than 21 characters.
Page 988: Display Ipv6 Host
Command Manual (For Soliton) – IPv6 Management H3C S3100 Series Ethernet Switches Chapter 1 IPv6 Configuration Commands Interface Vlan-interface1 Destination: 2008::5600 PrefixLength : 128 NextHop Flag : HU TimeStamp Date- 5/7/2006, Time- 14:35:32 Interface InLoopBack0 Destination: 2001:: PrefixLength : 64...
Page 989: Display Ipv6 Interface
Command Manual (For Soliton) – IPv6 Management H3C S3100 Series Ethernet Switches Chapter 1 IPv6 Configuration Commands Description Use the display ipv6 host command to display the mapping between host name and IPv6 address. Related commands: ipv6 host. Examples # Display the mapping between host name and IPv6 address.
Page 990 Command Manual (For Soliton) – IPv6 Management H3C S3100 Series Ethernet Switches Chapter 1 IPv6 Configuration Commands configured is displayed; if interface-type interface-number is specified, the IPv6 information of the specified interface is displayed. If the brief keyword is specified, the brief IPv6 information of the interface is displayed.
Page 991 Command Manual (For Soliton) – IPv6 Management H3C S3100 Series Ethernet Switches Chapter 1 IPv6 Configuration Commands Field Description link-local address Link-local address configured on an interface Global unicast Aggregatable global unicast address configured on an address(es) interface Joined group...
Page 992: Display Ipv6 Neighbors
Command Manual (For Soliton) – IPv6 Management H3C S3100 Series Ethernet Switches Chapter 1 IPv6 Configuration Commands Field Description Interface link state: *down: Indicates the VLAN interface is administratively down; that is, the interface is shut down using the shutdown command.
Page 993 Command Manual (For Soliton) – IPv6 Management H3C S3100 Series Ethernet Switches Chapter 1 IPv6 Configuration Commands begin: Displays the first matching neighbor entry and all the neighbor entries following it. exclude: Displays the neighbor entries not matching the specified regular expression.
Page 994: Display Ipv6 Neighbors Count
Command Manual (For Soliton) – IPv6 Management H3C S3100 Series Ethernet Switches Chapter 1 IPv6 Configuration Commands Field Description State of a neighbor, which can be: INCMP: Address resolution is in progress, so the link layer address of the neighbor is unknown yet.
Page 995: Display Ipv6 Route-Table
Command Manual (For Soliton) – IPv6 Management H3C S3100 Series Ethernet Switches Chapter 1 IPv6 Configuration Commands Description Use the display ipv6 neighbors count command to display the total number of neighbor entries satisfying the specified condition. Examples # Display the total number of neighbor entries acquired dynamically.
Page 996 Command Manual (For Soliton) – IPv6 Management H3C S3100 Series Ethernet Switches Chapter 1 IPv6 Configuration Commands Interface : Vlan-interface1 Destination: 2008::32/128 Protocol: Direct NextHop : ::1 Interface : InLoopBack0 Destination: FE80::/10 Protocol: Direct NextHop : :: Interface : NULL0...
Page 997: Display Ipv6 Socket
Command Manual (For Soliton) – IPv6 Management H3C S3100 Series Ethernet Switches Chapter 1 IPv6 Configuration Commands Field Description PrefixLength Prefix length of the destination IPv6 address NextHop Next hop address Protocol Routing protocol discovering the route Interface Egress interface State Routing entry state: Active (valid route) or Inactive (invalid route).
Page 998: Display Ipv6 Statistics
Command Manual (For Soliton) – IPv6 Management H3C S3100 Series Ethernet Switches Chapter 1 IPv6 Configuration Commands socket state = SS_PRIV SS_ASYNC SOCK_DGRAM: SOCK_RAW: Table 1-9 Description on the fields of the display ipv6 socket command Field Description Socket type, which can be: SOCK_STREAM: Refers to TCP.
Page 999 Command Manual (For Soliton) – IPv6 Management H3C S3100 Series Ethernet Switches Chapter 1 IPv6 Configuration Commands Description Use the display ipv6 statistics command to display statistics of IPv6 packets and ICMPv6 packets. You can use the reset ipv6 statistics command to clear all IPv6 and ICMPv6 packet statistics.
Page 1000 Command Manual (For Soliton) – IPv6 Management H3C S3100 Series Ethernet Switches Chapter 1 IPv6 Configuration Commands parameter problem: unknown error type: echoed: echo replied: neighbor solicit: neighbor advert: router solicit: router advert: redirected: router renumbering: unknown info type: Deliver failed:...

Save PDF