D-Link DGS-3224TGR Command Line Interface Reference Manual
  1. Manuals
  2. Brands
  3. D-Link Manuals
  4. Network Router
  5. DGS-3224TGR - Switch
  6. Command line interface reference manual

D-Link DGS-3224TGR Command Line Interface Reference Manual

Layer 2 gigabit ethernet switch
Hide thumbs Also See for DGS-3224TGR:
Table of Contents

Advertisement

Quick Links

Download this manual See also: Command Line Interface Reference Manual, User Manual
DGS-3224TGR
Layer 2 Gigabit Ethernet Switch
Command Line Interface Reference Manual
(September 2004)
6S24TGRCLI03
Printed In China
RECYCLABLE

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the DGS-3224TGR and is the answer not in the manual?

Questions and answers

Related Manuals for D-Link DGS-3224TGR

Summary of Contents for D-Link DGS-3224TGR

  • Page 1 DGS-3224TGR Layer 2 Gigabit Ethernet Switch Command Line Interface Reference Manual (September 2004) 6S24TGRCLI03 Printed In China RECYCLABLE...

  • Page 2: Copyright Statement

    Trademarks Copyright 2004 D-Link Corporation. Contents subject to change without prior notice. D-Link is a registered trademark of D-Link Corporation/D-Link Systems, Inc. All other trademarks belong to their respective proprietors. Copyright Statement No part of this publication may be reproduced in any form or by any means or used to make any derivative such as translation, transformation, or adaptation without permission from D-Link Corporation/D-Link Systems Inc., as stipulated by the United States...

  • Page 3: Table Of Contents

    IGMP Snooping Commands ................................90 Routing Table Commands................................98 802.1X Commands..................................101 Access Control List (ACL) Commands .............................115 SSH Commands ..................................125 SSL Commands..................................131 Access Authentication Control Commands..........................138 Traffic Segmentation Commands...............................158 D-Link Single IP Management Commands ..........................160 Command History List ................................173 Technical Specifications ................................177...

  • Page 5: Introduction

    Ctrl+r to refresh the console screen. Figure 1-1. Initial Console screen There is no initial username or password. Just press the Enter key twice to display the CLI input cursor − DGS-3224TGR:4#. This is the command line where all commands are input.
  • Page 6 The IP address may be set using the Command Line Interface (CLI) over the console serial port as follows: 1. Starting at the command line prompt DGS-3224TGR:4# − enter the commands config ipif System ipaddress xxx.xxx.xxx.xxx/yyy.yyy.yyy.yyy. Where the x’s represent the IP address to be assigned to the IP interface named System and the y’s represent the corresponding subnet mask.
  • Page 7 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual Figure 1-3. Assigning the Switch an IP Address In the above example, the switch was assigned an IP address of 10.24.22.8 with a subnet mask of 255.0.0.0. The system message “Success” indicates that the command was executed successfully. The switch can now be configured and managed via...

  • Page 8: Using The Console Cli

    ONSOLE The DGS-3224TGR supports a console management interface that allows the user to connect to the switch’s management agent via a serial port and a terminal or a computer running a terminal emulation program. The console can also be used over the network using the TCP/IP Telnet protocol.
  • Page 9 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual Figure 2-1. Initial Console screen Commands are entered at the command prompt, DGS-3224TGR:4#. There are a number of helpful features included in the CLI. Entering the ? command will display a list of all of the top-level commands.
  • Page 10 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual Figure 2-3. Example Command Parameter Help In this case, the command config account was entered with the parameter <username>. The CLI will then prompt you to enter the <username> with the message, Next possible completions:. Every command in the CLI has this feature, and complex commands have several layers of parameter prompting.
  • Page 11 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual Figure 2-5. The Available Commands Prompt The top-level commands consist of commands like show or config. Most of these commands require one or more parameters to narrow the top-level command. This is equivalent to show what? or config what? Where the what? is the next parameter.

  • Page 12: Command Syntax

    DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual OMMAND YNTAX The following symbols are used in this manual to describe how command entries are made and values and arguments are specified in this manual. The online help contained in the CLI and available through the console interface uses the same syntax.
  • Page 13 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual {braces} Purpose Encloses an optional value or set of optional arguments. Example Syntax config igmp [<ipif_name>|all] {version <value>|query_interval <sec>|max_response_time <sec>| robustness_variable <value>|last_member_query_interval <value>|state [enabled|disabled]} Description In the above syntax example, you must choose to enter an IP interface name in the <ipif_name>...

  • Page 14: Basic Switch Commands

    DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual ASIC WITCH OMMANDS The basic switch commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters create account [admin|user] <username 15> config account <username>...
  • Page 15 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual Each command is listed, in detail, in the following sections. create account Purpose Used to create user accounts Syntax create account [admin|user] <username> The create account command is used to create user accounts that consist of a Description username of 1 to 15 characters and a password of 0 to 15 characters.
  • Page 16 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4#config account dlink Command: config account dlink Enter a old password:**** Enter a case-sensitive new password:**** Enter the new password again for confirmation:**** Success. DGS-3224TGR:4# show account Used to display user accounts Purpose...
  • Page 17 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4#delete account System Command: delete account System Success. DGS-3224TGR:4# show session Purpose Used to display a list of currently logged-in users. Syntax show session This command displays a list of all the users that are logged-in at the time the command is Description issued.
  • Page 18 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4#sh sw Command: show switch Device Type : DGS-3224TGR Gigabit-Ethernet Switch MAC Address : 00-01-02-03-04-00 IP Address : 10.90.90.90 (Manual) VLAN Name : default Subnet Mask : 255.0.0.0 Default Gateway : 0.0.0.0 Boot PROM Version: Build 0.01.004 Firmware Version : Build 0.03.018...
  • Page 19 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual config serial_port Used to configure the serial port. Purpose Syntax config serial_port {baud_rate[9600|19200|38400|115200]|auto_logout [never|2_minutes|5_minutes|10_minutes| 15_minutes]} This command is used to configure the serial port’s baud rate and auto logout settings. Description [9600|19200|38400|115200] − The serial bit rate that will be used to communicate with the Parameters management host.
  • Page 20 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual disable jumbo_frame Used to disable support for Jumbo Frames. Purpose Syntax disable jumbo_frame Description This command is used to disable support for Jumbo Frames of up to 9216 bytes. Parameters None. Restrictions Only administrator-level users can issue this command.
  • Page 21 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual enable clipaging Used to pause the scrolling of the console screen when the show command displays more Purpose than one page. Syntax enable clipaging Description This command is used when issuing the show command will cause the console screen to rapidly scroll through several pages.
  • Page 22 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual enable telnet Used to enable communication with and management of the switch using the Telnet protocol. Purpose Syntax enable telnet <tcp_port_number> Description This command is used to enable the Telnet protocol on the switch. The user can specify the TCP or UDP port number the switch will use to listen for Telnet requests.
  • Page 23 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual enable web Used to enable the HTTP-based management software on the switch. Purpose Syntax enable web <tcp_port_number> Description This command is used to enable the Web-based management software on the switch. The user can specify the TCP port number the switch will use to listen for Telnet requests.
  • Page 24 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual save Used to save changes in the switch’s configuration to non-volatile RAM. Purpose Syntax save Description This command is used to enter the current switch configuration into non-volatile RAM. The saved switch configuration will be loaded into the switch’s memory each time the switch is restarted.
  • Page 25 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual reset Used to reset the switch to the factory default settings. Purpose Syntax reset {config|system} Description This command is used to restore the switch’s configuration to the default settings assigned from the factory.
  • Page 26 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual logout Used to log out a user from the switch’s console. Purpose Syntax logout Description This command terminates the current user’s session on the switch’s console. Parameters None. Restrictions None. Example Usage: To terminate the current user’s console session:...
  • Page 27 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4#show realtime Command: show realtime The current time : 2003/09/23 11:00:59 DGS-3224TGR:4# show config Used to collect and show all system configurations in a single CLI command. Purpose Syntax show config [dram|flash] This command displays all system configurations. The continuous display...

  • Page 28: Switch Port Commands

    DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual WITCH OMMANDS The switch port commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config ports [<portlist | all> [speed [auto | 10_half | 10_full | 100_half | 100_full | 1000_full {[master | slave]} ] | flow_control [enable | disable] | learning [enable | disable] state [enable | disable] description <string 32>| clear]...
  • Page 29 Example Usage: To configure the speed of the ports 1 to 3 to be 10 Mbps, full duplex, learning, and state enabled: DGS-3224TGR:4#config ports 1-3 speed 10_full learning enable state enable Command: config ports 1-3 speed 10_full learning enable state enable...
  • Page 30 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual show ports Used to display the current configuration of a range of ports. Purpose Syntax show ports <portlist> {description} Description This command is used to display the current configuration of a range of ports.

  • Page 31: Network Management Commands

    DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual ETWORK ANAGEMENT OMMANDS The network management commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters create snmp <community_string 32> view <view_name> community...
  • Page 32 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual Command Parameters create snmp view <view_view 32> [all | <oid>] config snmp <snmp_engineID 10-64> engineID create snmp <groupname 32> [v1 | v2c | v3 [noauth_nopriv | auth_nopriv| auth_priv]] {read_view group <view_name 32> | write_view <view_name 32> | notify_view <view_name 32>} delete snmp <goupname 32>...
  • Page 33 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual create snmp community Purpose Used to create an SNMP community string. Syntax create snmp community <community_string 32> view <view_name> [read_only|read_write] Description This command is used to create an SNMP community string and to specify the string as enabling read only or read-write privileges for the SNMP management host.
  • Page 34 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4#delete snmp community System Command: delete snmp community System Success. DGS-3224TGR:4# delete trusted_host Purpose Used to delete a trusted host entry made using the create trusted_host command above. Syntax delete trusted _host <ipaddr>...
  • Page 35 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual config snmp system_location Used to enter a description of the location of the switch. Purpose Syntax config snmp system_location <sw_location> Description This command is used to enter a description of the location of the switch. A maximum of 128 characters can be used.
  • Page 36 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual enable rmon Used to enable RMON on the switch. Purpose Syntax enable rmon Description This command is used, in conjunction with the disable rmon command below, to enable and disable remote monitoring (RMON) on the switch.
  • Page 37 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual show trusted_host Used to display a list of trusted hosts entered on the switch using the create trusted_host Purpose command above. Syntax show trusted_host Description This command is used to display a list of trusted hosts entered on the switch using the create trusted_host command above.
  • Page 38 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual disable snmp traps Purpose Used to disable SNMP trap support on the switch. Syntax enable snmp traps This command is used to disable SNMP trap support on the switch. Description None. Parameters Restrictions Only administrator-level users can issue this command.
  • Page 39 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual Example Usage: To turn off SNMP authentication trap support: DGS-3224TGR:4#disable snmp authenticate traps Command: disable snmp authenticate traps Success. DGS-3224TGR:4# ping Purpose Used to test the connectivity between network devices. Syntax ping <ipaddr> {times <value>} {timeout <sec>}...

  • Page 40: Download/Upload Commands

    DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual OWNLOAD PLOAD OMMANDS The download/upload commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters download firmware <ipaddr> <path_filename> configuration <ipaddr> <path_filename> {increment}...
  • Page 41 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual download Purpose Used to download and install new firmware or a switch configuration file from a TFTP server. Syntax download [ firmware <ipaddr> <path_filename> |configuration <ipaddr> <path_filename> {increment}] Description This command is used to download a new firmware or a switch configuration file from a TFTP server.
  • Page 42 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual upload Purpose Used to upload the current switch settings or the switch history log to a TFTP server. Syntax upload [configuration|log] <ipaddr> <path_filename> This command is used to upload either the switch’s current settings or the switch’s history Description log to a TFTP server.

  • Page 43: Network Monitoring Commands

    DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual ETWORK ONITORING OMMANDS The network monitoring commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters show packet <portlist> ports show error <portlist>...
  • Page 44 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual show packet ports Purpose Used to display statistics about the packets sent and received by the switch. Syntax show packet ports <portlist> This command is used to display statistics about packets sent and received by ports Description specified in the port list.
  • Page 45 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual show error ports Purpose Used to display the error statistics for a range of ports. Syntax show error ports <portlist> This command will display all of the packet error statistics collected and logged by the swtich Description for a given port list.
  • Page 46 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4# show utilization ports Command: show utilization ports Port TX|sec RX|sec Util Port TX|sec RX|sec Util ---- ---------- ---------- ---- ---- ---------- ---------- ---- To display the CPU utilization: DGS-3224TGR:4# show utilization cpu...
  • Page 47 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4#clear counters ports 7-9 Command: clear counters ports 7-9 Success. DGS-3224TGR:4# clear log Purpose Used to clear the switch’s history log. Syntax clear log This command will clear the switch’s history log. Description None.
  • Page 48 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4# show log Command: show log Index Time Log Text ----- ---------------------------- ------------------------------------------------------------------------------------- 2003/09/18 09:03:45 Successful login through Console (Username: Anonymous) 2003/09/18 09:03:30 Logout through Console (Username: Anonymous) 2003/09/18 09:03:28 Successful login through Console (Username: Anonymous)

  • Page 49: Spanning Tree Commands

    DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual PANNING OMMANDS The spanning tree commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config stp {maxage <value 6-40>| hellotime <value 1-10>| forwarddelay <value 4-30>|...
  • Page 50 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual config stp Purpose Used to configure Bridge management parameters for STP on the switch. Syntax config stp {maxage <value 6-40>|hellotime <value 1-10> |forwarddelay <value 4- 30>|priority <value 0-61440>|version [rstp|stp] |txholdcount <value 1-10>|fbpdu [enabled|disabled]} Description This command is used to setup the Spanning Tree Protocol (STP) for the entire switch.
  • Page 51 Example Usage: To set the path cost 19, the priority 15, and the state enabled of the ports 1-5: DGS-3224TGR:4#config stp ports 1-5 cost 19 priority 15 state enabled Command: config stp ports 1-5 cost 19 priority 15 state enabled Success.
  • Page 52 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual enable stp Used to globally enable STP on the switch. Purpose Syntax enable stp Description This command allows the Spanning Tree Protocol to be globally enabled on the switch. Parameters None. Restrictions Only administrator-level users can issue this command.
  • Page 53 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual Example Usage: Status 1: STP enabled DGS-3224TGR:4#show stp Command: show stp STP Status : Enabled Max Age : 20 Hello Time Forward Delay : 15 Priority : 32768 Default Path Cost : 802.1T...
  • Page 54 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual show stp ports Used to display the switch’s current per-port group STP configuration. Purpose Syntax show stp ports <portlist> Description This command displays the switch’s current per-port group STP configuration. <portlist> − Specifies a range of ports to be configured. The port list is specified by listing the Parameters beginning port number and the highest port number of the range.

  • Page 55: Layer 2 Forwarding Database Commands

    DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual AYER ORWARDING ATABASE OMMANDS The layer 2 forwarding database commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters create fdb <vlan_name> <macaddr>...
  • Page 56 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual create fdb Purpose Used to create a static entry to the unicast MAC address forwarding table (database) Syntax create fdb <vlan_name> <macaddr> [port <port>] This command will make an entry into the switch’s unicast MAC address forwarding Description database.
  • Page 57 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual config multicast_fdb Purpose Used to configure the switch’s multicast MAC address forwarding database. Syntax config multicast_fdb <vlan_name> <macaddr> [add|delete] <portlist> This command configures the multicast MAC address forwarding table. Description <vlan_name> − The name of the VLAN on which the MAC address resides.
  • Page 58 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual clear fdb Used to clear the switch’s forwarding database of all dynamically learned MAC addresses. Purpose Syntax clear fdb [vlan <vlan_name>|port <port>|all] Description This command is used to clear dynamically learned entries to the switch’s forwarding database.
  • Page 59 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual show fdb Purpose Used to display the current unicast MAC address forwarding database. Syntax show fdb {port <port>|vlan <vlan_name>|mac_address <macaddr>|static|aging_time} This command will display the current contents of the switch’s forwarding database. Description <port>...

  • Page 60: Broadcast Storm Control Commands

    DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual ROADCAST TORM ONTROL OMMANDS The broadcast storm control commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config traffic <storm_portlist> control broadcast [enable|disable]...
  • Page 61 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4#config traffic control 2-3 broadcast enable Command: config traffic control 2-3 broadcast enable Success. DGS-3224TGR:4# show traffic control Purpose Used to display current traffic control settings. Syntax show traffic control <storm_portlist> This command displays the current storm traffic control configuration on the switch.

  • Page 62: Arp Commands

    DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual ARP C OMMANDS The ARP commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config arp_aging time <min 0-65535> show arpentry {ipif(1) <ipif_name 12> | ipaddress(2) <ipaddr> | static(3)} clear arptable Each command is listed, in detail, in the following sections.
  • Page 63 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual show arpentry Purpose Used to display the ARP table. Syntax show arpentry {ipif <ipif_name>|ipaddress <network_address>|static} Description This command is used to display the current contents of the switch’s ARP table. <ipif_name> − The name of the IP interface the end node or station for which the ARP table Parameters entry was made, resides on.

  • Page 64: Qos Commands

    DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual QOS C OMMANDS The MAC address priority commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config scheduling <class_id 0-7> weight <value 1-15>...
  • Page 65 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual config scheduling Purpose Used to configure the traffic scheduling mechanism for each COS queue. Syntax config scheduling <class_id 0-7> weight <value 1-15> The switch contains eight hardware priority queues. Incoming packets must be Description mapped to one of these eight queues.
  • Page 66 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4# show scheduling Command: show scheduling QOS Output Scheduling Class ID MAX. Weight ------------- ------------------ Class-0 Class-1 Class-2 Class-3 Class-4 Class-5 Class-6 Class-7 DGS-3224TGR:4# config scheduling_mechanism Purpose Used to configure the traffic scheduling mechanism for each COS queue.
  • Page 67 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual Example Usage: To show the scheduling mechanism: DGS-3224TGR:4# show scheduling_mechanism Command: show scheduling_mechanism Scheduling Mechanism : weight_fair DGS-3224TGR:4# config 802.1p user_priority Used to map the 802.1p user priority of an incoming packet to one of the eight hardware Purpose queues available on the switch.
  • Page 68 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4# config 802.1p user_priority 1 3 Command: config 802.1p user_priority 1 3 Success. DGS-3224TGR:4# show 802.1p user_priority Used to display the current 802.1p user priority to hardware priority queue mapping in use by Purpose the switch.
  • Page 69 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual config 802.1p default_priority Purpose Used to configure the 802.1p default priority settings on the switch. If an untagged packet is received by the switch, the priority configured with this command will be written to the packet’s priority field.
  • Page 70 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual Example Usage: To show 802.1p default priority: DGS-3224TGR:4# show 802.1p default_priority Command: show 802.1p default_priority Port Priority ------- ----------- DGS-3224TGR:4# enable hol_prevention Used to enable HOL prevention. Purpose Syntax enable hol_prevention Description The enable hol_prevention command enables Head of Line prevention.
  • Page 71 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4# enable hol_prevention Command: enable hol_prevention Success. DGS-3224TGR:4# disable hol_prevention Purpose Used to disable HOL prevention. Syntax disable hol_prevention Description The disable hol_prevention command disables Head of Line prevention. None. Parameters You must have administrator privileges.

  • Page 72: Port Mirroring Commands

    DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual IRRORING OMMANDS The port mirroring commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config mirror port <port> [add|delete] source ports <portlist> [rx|tx|both]...
  • Page 73 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4#config mirror port 10 add source ports 1-5 both Command: config mirror port 10 add source ports 1-5 both Success. DGS-3224TGR:4# config mirror delete Used to delete a port mirroring configuration| Purpose Syntax config mirror <port>...
  • Page 74 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4#enable mirror Command: enable mirror Success. DGS-3224TGR:4# disable mirror Used to disable a previously entered port mirroring configuration. Purpose Syntax disable mirror Description This command, combined with the enable mirror command above, allows you to enter a port mirroring configuration into the switch, and then turn the port mirroring on and off without having to modify the port mirroring configuration.

  • Page 75: Port Security Commands

    DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual ECURITY OMMANDS The port security commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config ports [ <portlist>| all ] {admin_state [enable | port_security disable]max_learning_addr<max_lock_no 0-10>|lock_address_mode [permanent|...
  • Page 76 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual config port_security Only administrator-level users can issue this command. Restrictions Example Usage: To config port security: DGS-3224TGR:4#config port_security ports 1-6 admin_state enable max_learning_addr 10 lock_address_mode Permanent Command: config port_security ports 1-6 admin_state enable max_learning_addr 10 lock_address_mode Permanent Success.
  • Page 77 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual Example Usage: To clear port security entry by port(s): DGS-3224TGR:4#clear port_security_entry port 1-6 Command: clear port_security_entry port 1-6 Success. DGS-3224TGR:4# show port_security Used to display the port security related information of the switch ports.

  • Page 78: Vlan Commands

    DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual VLAN C OMMANDS The VLAN commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters create vlan <vlan_name 32> tag <vlanid 1-4094> advertisement delete vlan <vlan_name 32>...
  • Page 79 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual create vlan Used to create a VLAN on the switch. Purpose Syntax create vlan <vlan_name 32> {tag <vlanid 1-4094>|advertisement} Description This command allows you to create a VLAN on the switch. <vlan_name 32> − The name of the VLAN to be created.
  • Page 80 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual config vlan add ports Purpose Used to add additional ports to a previously configured VLAN. Syntax config vlan <vlan_name 32> add [tagged|untagged|forbidden] <portlist> This command allows you to add ports to the port list of a previously configured VLAN. You Description can specifiy the additional ports as tagging, untagging, or forbidden.
  • Page 81 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4#config vlan v1 delete 4-8 Command: config vlan v1 delete 4-8 Success. DGS-3224TGR:4# config vlan advertisement Used to enable or disable the VLAN advertisement. Purpose Syntax config vlan <vlan_name 32> advertisement [enable|disable] Description This command is used to enable or disable sending GVRP messages on the specified VLAN.
  • Page 82 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual config gvrp Only administrator-level users can issue this command. Restrictions Example Usage: To sets the ingress checking status and the GVRP status: DGS-3224TGR:4#config gvrp 1-5 state enable ingress_checking enable pvid 2 Command: config gvrp 1-5 state enable ingress_checking enable pvid 2 Success.
  • Page 83 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4#disable gvrp Command: disable gvrp Success. DGS-3224TGR:4# show vlan Purpose Used to display the current VLAN configuration on the switch Syntax show vlan {<vlan_name 32>} Description This command displays summary information about each VLAN including the VLAN ID, VLAN name, the Tagging/Untagging status, and the Member/Non-member/Forbidden status of each port that is a member of the VLAN.
  • Page 84 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual To display 802.1Q port setting: DGS-3224TGR:4#show gvrp Command: show gvrp Global GVRP : Disabled Port PVID GVRP Ingress Checking ---- -------- -------- -------------------- Enable Enable Enable Enable Enable Enable Enable Enable Enable Enable...
  • Page 85 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4#enable asymmetric_vlan Command: enable asymmetric_vlan Success. DGS-3224TGR:4# disable asymmetric_vlan Purpose Used to disable asymmetric VLANs on the switch. Syntax disable asymmetric_vlan This command disables asymmetric VLANs. Description None. Parameters Restrictions Only administrator-level users can issue this command.

  • Page 86: Link Aggregation Commands

    DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual GGREGATION OMMANDS The link aggregation commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters create group_id <value 1-32>{type [lacp|static]} link_aggregation delete group_id <value 1-32>...
  • Page 87 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual create link_aggregation group_id Purpose Used to create a link aggregation group on the switch. Syntax create link_aggregation group_id <value 1-32>(type [lacp|static]} This command will create a link aggregation group. Description <value 1-32> − Specifies the group id. The switch allows up to 32 link aggregation groups to Parameters be configured.
  • Page 88 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual config link_aggregation Purpose Used to configure a previously created link aggregation group. Syntax config link_aggregation group_id <value 1-32> {master_port <port>|ports <portlist>| state [enable|disable] Description This command allows you to configure a link aggregation group that was created with the create link_aggregation command above.
  • Page 89 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual config link_aggregation algorithm Purpose Used to configure the link aggregation algorithm. Syntax config link_aggregation algorithm [mac_source|mac_destination|mac_source_dest| ip_source|ip_destination|ip_source_dest] Description This command configures to part of the packet examined by the switch when selecting the egress port for transmitting load-sharing data.
  • Page 90 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4#show link_aggregation Command: show link_aggregation Link Aggregation Algorithm = MAC-source Group ID Type : TRUNK Master Port : 10 Member Port : 5-10 Active Port Status : Disabled Flooding Port DGS-3224TGR:4# config lacp_ports Used to configure the current mode of LACP for specified ports.
  • Page 91 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual To show the LACP status for ports 1 to 3: DGS-3224TGR:4#show lacp_ports Command: show lacp_ports 1-3 Port Activity -------- ------------ Active Active Active DGS-3224TGR:4#...

  • Page 92: Ip Interface Commands

    DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual IP I NTERFACE OMMANDS The IP interface commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config ipif System vlan <vlan_name> ipaddress <network_address>...
  • Page 93 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4#config ipif System ipaddress 10.48.74.122/8 Command: config ipif System ipaddress 10.48.74.122/8 Success. DGS-3224TGR:4# show ipif Purpose Used to display the configuration of an IP interface on the switch. Syntax show ipif {<ipif_name 12>} This command will display the configuration of an IP interface on the switch.

  • Page 94: Igmp Snooping Commands

    DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual IGMP S NOOPING OMMANDS The switch port commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config igmp_snooping <vlan_name 32> host_timeout <sec 1-16711450>...
  • Page 95 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual config igmp_snooping Purpose Used to configure IGMP snooping on the switch. Syntax config igmp_snooping [<vlan_name 32>|all] {host_timeout <sec 1- 16711450>|router_timeout <sec 1-16711450>|leave_timer <sec 1-16711450>|state [enable|disable]} fast_leave [enable|disable] Description This command allows you to configure IGMP snooping on the switch.
  • Page 96 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual config igmp_snooping querier Purpose Used to configure the time in seconds between general query transmissions, the maximum time in seconds to wait for reports from members, the permitted packet loss that guarantees IGMP snooping.
  • Page 97 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4#config igmp_snooping querier default query_interval 125 state enable Command: config igmp_snooping querier default query_interval 125 state enable Success. DGS-3224TGR:4# config router_ports Used to configure ports as router ports. Purpose Syntax config router_ports <vlan_name 32> [add|delete] <portlist>...
  • Page 98 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual enable igmp_snooping Purpose Used to enable IGMP snooping on the switch. Syntax enable igmp_snooping {forward_mcrouter_only} This command allows you to enable IGMP snooping on the switch. If forward_mcrouter_only Description is specified, the switch will forward all multicast traffic to the multicast router, only. Otherwise, the switch forwards all mulitcast traffic to any IP router.
  • Page 99 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual show igmp_snooping Used to show the current status of IGMP snooping on the switch. Purpose Syntax show igmp_snooping {vlan <vlan_name 32>} Description This command will display the current IGMP snooping configuration on the switch.
  • Page 100 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual show igmp_snooping group Purpose Used to display the current IGMP snooping group configuration on the switch. Syntax show igmp_snooping group {vlan <vlan_name 32>} Description This command will display the current IGMP snooping group configuration on the swtich.
  • Page 101 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual Example Usage: To display the router ports: DGS-3224TGR:4#show router_ports Command: show router_ports VLAN Name : default Static router port : 1-10 Dynamic router port : Total Entries DGS-3224TGR:4#...

  • Page 102: Routing Table Commands

    DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual OUTING ABLE OMMANDS The routing table commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters create iproute default <network_address> <ipaddr> <metric> delete iproute default <network_address>...
  • Page 103 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4#create iproute 10.48.74.121/255.0.0.0 10.1.1.254 1 Command: create iproute 10.48.74.121/8 10.1.1.254 1 Success. DGS-3224TGR:4# delete iproute Purpose Used to delete an IP route entry from the switch’s IP routing table. Syntax delete iproute [default|<network_address>] This command will delete an existing entry from the switch’s IP routing table.
  • Page 104 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4#show iproute Command: show iproute IP Address /Netmask Gateway Interface Hops Protocol ------------------------------ ----------------- ----------------- ----------- ------------- 10.0.0.0/9 0.0.0.0 System Local Total Entries DGS-3224TGR:4#...

  • Page 105: Commands

    802.1X C OMMANDS The DGS-3224TGR implements the server-side of the IEEE 802.1x Port-based Network Access Control. This mechanism is intended to allow only authorized users, or other network devices, access to network resources by establishing criteria for each port on the switch that a user or network device must meet before allowing that port to forward or receive frames.
  • Page 106 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual Command Parameters show {ports <portlist>} auth_session_statistics show radius auth_client show radius acct_client config 802.1x auth_mode [port_based |mac_based] enable 802.1x Purpose Used to enable the 802.1x server on the switch. Syntax enable 802.1x The enable 802.1x command enables the 802.1x Port-based Network Access control server Description application on the switch.
  • Page 107 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual config 802.1x auth_protocol Used to configure the 802.1x authentication protocol on the switch. Purpose Syntax config 802.1x auth_protocol [local|radius_eap] Description The config 802.1x auth_protocol command enables you to configure the authentication protocol. Parameters local|radius_EAP –...
  • Page 108 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual config 802.1x auth_parameter Used to configure the 802.1x Authentication parameters on a range of ports. The default Purpose parameter will return all ports in the specified range to their default 802.1x settings. Syntax config 802.1x auth_parameter ports [<portlist>|all] [default|{direction...
  • Page 109 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual config 802.1x init Used to initialize the 802.1x functions on a range of ports. Purpose Syntax config 802.1x init [port_based [<portlist>|all] |mac_based[<portlist>|all] {mac_address <macaddr>}] The config 802.1x init command is used to immediately initialize the 802.1x functions on a Description range of ports.
  • Page 110 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual Example Usage: To configure 802.1x reauthentication for ports 15-18: config 802.1x reauth port_based 15-18 DGS-3224TGR:4# Command: config 802.1x reauth port_based 15-18 Success. DGS-3224TGR:4# config radius add Used to configure the settings the switch will use to communicate with a RADIUS server.
  • Page 111 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual config radius delete Purpose Used to delete a previously entered RADIUS server configuration. Syntax config radius delete <server_index 1-3> The config radius delete command is used to delete a previously entered RADIUS server Description configuration.
  • Page 112 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual config radius add 1 10.48.74.121 key dlink default DGS-3224TGR:4# Command: config radius add 1 10.48.74.121 key dlink default Success. DGS-3224TGR:4# show radius Purpose Used to display the current RADIUS configurations on the switch.
  • Page 113 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual show 802.1x user DGS-3224TGR:4# Command: show 802.1x user Index UserName ------- -------------------- ctsnow DGS-3224TGR:4# create 802.1x user Purpose Used to create a new 802.1x user. Syntax create 802.1x user <username 15> Description The create 802.1x user command is used to create new 802.1x users.
  • Page 114 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual show auth_statistics Used to display the switch’s authentication statistics. Purpose Syntax show auth_statistics {ports <portlist>} Description The show auth_statistics command is used to display authentication statistics. ports <portlist> − Specifies a range of ports. The port list is specified by listing the beginning Parameters port number and the highest port number of the range.
  • Page 115 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual show auth_diagnostics DGS-3224TGR:4# Command: show auth_diagnostics Port number EntersConnecting EapLogoffsWhileConnecting EntersAuthenticating SuccessWhileAuthenticating TimeoutsWhileAuthenticating FailWhileAuthenticating ReauthsWhileAuthenticating EapStartsWhileAuthenticating EapLogoffWhileAuthenticating ReauthsWhileAuthenticated EapStartsWhileAuthenticated EapLogoffWhileAuthenticated BackendResponses BackendAccessChallenges BackendOtherRequestsToSupplicant BackendNonNakResponsesFromSupplicant 0 BackendAuthSuccesses BackendAuthFails CTRL+C ESC q Quit SPACE n...
  • Page 116 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4# show auth_session_statistics Command: show auth_session_statistics Port number : 1 SessionOctetsRx SessionOctetsTx SessionFramesRx SessionFramesTx SessionId SessionAuthenticMethod Remote Authentication Server SessionTime SessionTerminateCause SupplicantLogoff SessionUserName CTRL+C ESC q Quit SPACE n Next Page Previous Page...
  • Page 117 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4# show radius auth_client Command: show radius auth_client radiusAuthClient ==> radiusAuthClientInvalidServerAddresses radiusAuthClientIdentifier D-Link radiusAuthServerEntry ==> radiusAuthServerIndex :1 radiusAuthServerAddress 0.0.0.0 radiusAuthClientServerPortNumber radiusAuthClientRoundTripTime radiusAuthClientAccessRequests radiusAuthClientAccessRetransmissions radiusAuthClientAccessAccepts radiusAuthClientAccessRejects radiusAuthClientAccessChallenges radiusAuthClientMalformedAccessResponses 0 radiusAuthClientBadAuthenticators radiusAuthClientPendingRequests radiusAuthClientTimeouts radiusAuthClientUnknownTypes radiusAuthClientPacketsDropped...
  • Page 118 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4# show radius acct_client Command: show radius acct_client radiusAcctClient ==> radiusAcctClientInvalidServerAddresses 0 radiusAcctClientIdentifier D-Link radiusAuthServerEntry ==> radiusAccServerIndex : 1 radiusAccServerAddress 0.0.0.0 radiusAccClientServerPortNumber radiusAccClientRoundTripTime radiusAccClientRequests radiusAccClientRetransmissions radiusAccClientResponses radiusAccClientMalformedResponses radiusAccClientBadAuthenticators radiusAccClientPendingRequests radiusAccClientTimeouts radiusAccClientUnknownTypes radiusAccClientPacketsDropped CTRL+C ESC q...

  • Page 119: Access Control List (Acl) Commands

    DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual (ACL) CCESS ONTROL OMMANDS The DGS-3224TGR implements Access Control Lists that enable the switch to deny network access to specific devices or device groups based on IP settings or MAC address. Command Parameters ethernet...
  • Page 120 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual Command Parameters add access_id <value 1-255> ethernet vlan <vlan_name 32> source_mac <macaddr> destination_mac <macaddr> 802.1p <value 0-7> ethernet_type <hex 0x0-0xfff> vlan <vlan_name 32> source_ip <ipaddr> destination_ip <ipaddr> dscp <value 0-63> icmp type <value 0-255>...
  • Page 121 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual Command Parameters user_define <hex 0x0-0xffffffff> <hex 0x0-0xffffffff><hex 0x0-0xffffffff><hex 0x0- 0xffffffff><hex 0x0-0xffffffff> packet_content_mask {offset_0-15 <hex 0x0-0xffffffff><hex 0x0-0xffffffff><hex 0x0-0xffffffff><hex 0x0-0xffffffff> offset_16-31 <hex 0x0-0xffffffff><hex 0x0- 0xffffffff><hex 0x0-0xffffffff><hex 0x0-0xffffffff> offset_32-47 <hex 0x0- 0xffffffff><hex 0x0-0xffffffff><hex 0x0-0xffffffff><hex 0x0-0xffffffff> offset_48-63 <hex 0x0-0xffffffff><hex 0x0-0xffffffff><hex 0x0-0xffffffff><hex 0x0-0xffffffff>...
  • Page 122 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual create access_profile Used to create an access profile on the switch and to define which parts of each incoming Purpose frame’s header the switch will examine. Masks can be entered that will be combined with the values the switch finds in the specified frame header fields.
  • Page 123 − Specifies the index of the access list profile. Only administrator-level users can issue this command. Restrictions Example Usage: To create an access profile: DGS-3224TGR:4#create access_profile ethernet vlan 802.1p port all profile_id 1 Command: create access_profile ethernet vlan 802.1p port all profile_id 1 Success. DGS-3224TGR:4# delete access_profile Purpose Used to delete a previously created access profile.
  • Page 124 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual delete access_profile profile_id 1 DGS-3224TGR:4# Command: delete access_profile profile_id 1 Success. DGS-3224TGR:4#...
  • Page 125 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual config access_profile Purpose Used to configure an access profile on the switch and to define specific values that will be used to by the switch to determine if a given packet should be forwarded or filtered. Masks entered using the create access_profile command will be combined, using a logical AND operation, with the values the switch finds in the specified frame header fields.
  • Page 126 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual config access_profile profile_id <value 1-8> − An integer between 1 and 8 that is used to identify the access profile Parameters that will be configured with this command. add access_id <value 1-255> − Adds an additional rule to the above specified access profile.
  • Page 127 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual config access_profile igmp − Specifies that the switch will examine the Internet Group Management Protocol Parameters (IGMP) field within each packet. type <value 0-255> − Specifies that the access profile will apply to packets that have this IGMP type value.
  • Page 128 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4#config access_profile profile_id 1 add access_id 1 ethernet vlan default 802.1p 5 permit Command: config access_profile profile_id 1 add access_id 1 ethernet vlan default 802.1p 5 permit Success. DGS-3224TGR:4# show access_profile Used to display the currently configured access profiles on the switch.

  • Page 129: Ssh Commands

    DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual SSH C OMMANDS The Secure Shell (SSH) commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config ssh [3DES|Blowfish|MD5|SHA1| DSA|RSA] [enable|disable] algorithm...
  • Page 130 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual config ssh algorithm Purpose Used to configure the SSH algorithm. Syntax config ssh algorithm [3DES|Blowfish|MD5|SHA1|DSA|RSA] [enable|disable] This command allows you to configure the desired type of SSH algorithm. Description [3DES|Blowfish|MD5|SHA1|DSA|RSA] – Choose the desired security algorithm.
  • Page 131 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual config ssh authmode Purpose Used to configure the SSH authentication mode setting. Syntax config ssh authmode [password |publickey|hostbased] [enable|disable] This command will allow you to configure the SSH authentication mode. Description [password |publickey|hostbased] – Choose the desired SSH authentication mode.
  • Page 132 |Hostbased [host_name <domain_ name 32>|hostname_IP <domain_name 32> <ipaddr>]]. Restrictions Only administrator-level users can issue this command. Usage Example: To configure the SSH user: DGS-3224TGR:4#config ssh user Sibyl authmode Hostbased hostname_IP 172.18.211.200 Command: config ssh user Sibyl authmode Hostbased hostname_IP 172.18.211.200 Success. DGS-3224TGR:4# show ssh user Used to display the SSH user setting.
  • Page 133 –TCP port number. Restrictions Only administrator-level users can issue this command. Usage Example: To configure the SSH server: DGS-3224TGR:4#config ssh server maxsession 8 contimeout 300 authfail 2 Command: config ssh server maxsession 8 contimeout 300 authfail 2 Success. DGS-3224TGR:4# show ssh server Purpose Used to display the SSH server setting.
  • Page 134 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4#show ssh server Command: show ssh server The SSH server configuration: max Session Connection timeout : 300 Authfail attempts Rekey Timeout : never SSH server status : Disable Listened Port Number : 22...

  • Page 135: Ssl Commands

    DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual SSL C OMMANDS Secure Sockets Layer or SSL is a security feature that will provide a secure communication path between a host and client through the use of authentication, digital signatures and encryption. These security functions are implemented through the use of...
  • Page 136 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual enable ssl To enable the SSL function on the switch. Purpose Syntax enable ssl [ ciphersuite {RSA_with_RC4_128_MD5 | RSA_with_3DES_EDE_CBC_SHA | DHE_DSS_with_3DES_EDE_CBC_SHA | RSA_EXPORT_with_RC4_40_MD5} | version {ssl_v3 | tls_v1}] This command will enable SSL on the switch by implementing any Description one or combination of listed ciphersuites on the switch.
  • Page 137 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4#enable ssl version ssl_v3 Command: enable ssl version ssl_v3 Note: WEB will be disabled if SSL is enabled. Success. DGS-3224TGR:4# NOTE: Enabling the SSL function on the switch will disable the port for the web manager (port 80).
  • Page 138 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual disable ssl To disable the SSL function on the switch. Purpose Syntax disable ssl [ciphersuite {RSA_with_RC4_128_MD5 | RSA_with_3DES_EDE_CBC_SHA | DHE_DSS_with_3DES_EDE_CBC_SHA | RSA_EXPORT_with_RC4_40_MD5} | version {ssl_v3 | tls_v1} ] This command will disable SSL on the switch and can be used to Description disable any one or combination of listed ciphersuites on the switch.
  • Page 139 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4#disable ssl version ssl_v3 Command: disable ssl version ssl_v3 SSL V3 successfully disabled. Success. DGS-3224TGR:4# To disable ciphersuite RSA_EXPORT_with_RC4_40_MD5 only: DGS-3224TGR:4#disable ssl ciphersuite RSA_EXPORT with_RC4_40_MD5 Command: disable ssl ciphersuite RSA_EXPORT with_RC4_40_MD5 Success. DGS-3224TGR:4#...
  • Page 140 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual show certificate Purpose Used to view the SSL certificate file status on the switch. Syntax show certificate Description This command is used to view the certificate file status on the switch. Parameters None.
  • Page 141 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4#download certificate 172.18.211.69 certfilename cert.der keyfilename pkey.der Command: download certificate 172.18.211.69 certfilename cert.der keyfilename pkey.der Certificate Loaded Successfully! DGS-3224TGR:4#...

  • Page 142: Access Authentication Control Commands

    DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual CCESS UTHENTICATION ONTROL OMMANDS The Access Authentication Control commands let you secure access to the Switch using the TACACS/XTACACS/TACACS+ protocols. When a user logs in to the Switch or tries to access the administrator level privilege, he or she is prompted for a password.
  • Page 143 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual Command Parameters enable authentication _policy disable authentication _policy show authentication _policy <string 15> create authentication login method_list_name [default | method_list_name <string 15>] method<string> {<string> config authentication {<string> {<string>}}} login <string 15> delete authentication login method_list_name {default | method_list_name <string 15>}...
  • Page 144 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual Each command is listed, in detail, in the following sections. enable authentication_policy Purpose Used to enable system access authentication policy. Syntax enable authentication_policy This command will enable an administrator-defined authentication Description policy for users trying to access the Switch. When enabled, the device will check the method list and choose a technique for user authentication upon login.
  • Page 145 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual Example usage: To disable the system access authentication policy: DGS-3224TGR:4#disable authentication_policy Command: disable authentication_policy Success. DGS-3224TGR:4# show authentication_policy Used to display the system access authentication policy status on Purpose the Switch. Syntax show authentication_policy...
  • Page 146 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual Example usage: To create the method list “Trinity.”: DGS-3224TGR:4#create authentication login method_list_name Trinity Command: create authentication login method_list_name Trinity Success. DGS-3224TGR:4#...
  • Page 147 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual config authentication login Purpose Used to configure a user-defined or default method list of authentication methods for user login. Syntax config authentication login [default | method_list_name <string 15>] method <string> {<string> {<string> {<string>}}}...
  • Page 148 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual config authentication login method_list_name – Enter a previously implemented method list name defined by the user. The user may add one, or a combination of up to four of the following authentication methods to this method list: tacacs –...
  • Page 149 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual delete authentication login method_list_name Used to delete a previously configured user defined method list of Purpose authentication methods for users logging on to the Switch. Syntax delete authentication login method_list_name <string 15> This command is used to delete a list for authentication methods for Description user login.
  • Page 150 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual show authentication login Purpose Used to display a previously configured user-defined method list of authentication methods for users logging on to the Switch. Syntax show authentication login [default | method_list_name <string 15>] Description This command is used to show a list of authentication methods for user login.
  • Page 151 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual create authentication server_host Used to create an authentication server host. Purpose Syntax create authentication server_host <server_ip> protocol [tacacs|xtacacs|tacacs+] Description This command will create an authentication server host for the TACACS/XTACACS/TACACS+ security protocols on the Switch. When a user...
  • Page 152 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual config authentication server_host Used to configure a user-defined authentication server host. Purpose Syntax config authentication server_host <server_ip> protocol [tacacs|xtacacs|tacacs+] {port <int 1-65535> |key <key_string 254> | timeout <int 1-255> | retransmit <int 1-255>}...
  • Page 153 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual Example usage: To configure a TACACS authentication server host, with port number 4321, a timeout value of 12 seconds and a retransmit count of 4. DGS-3224TGR:4#config authentication server_host 10.1.1.121 protocol tacacs port 4321 timeout 12 retransmit 4 Command: config authentication server_host 10.1.1.121 protocol...
  • Page 154 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual show authentication server_host Used to view a user-defined authentication server host. Purpose Syntax show authentication server_host Description This command is used to view user-defined authentication server hosts previously created on the Switch. The following parameters are displayed: IP address –...
  • Page 155 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual create authentication server_group Purpose Used to create a user-defined authentication server group. Syntax create authentication server_group <string 15> Description This command will create an authentication server group. A server group is a technique used to group TACACS, XTACACS, and TACACS+ server hosts into user defined categories for authentication using method lists.
  • Page 156 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual config authentication server_group Purpose Used to create a user-defined authentication server group. Syntax config authen server_ <string 15>] [add | delete] server_host <server_ip> protocol [tacacs | xtacacs | tacacs+] This command will configure an authentication server group. A server group...
  • Page 157 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual Example usage: To add an authentication host to server group “group_1”: DGS-3224TGR:4#config authentication server_group group_1 add server_host 10.1.1.121 protocol tacacs+ Command: config authentication server_group group_1 add server_host 10.1.1.121 protocol tacacs+ Success. DGS-3224TGR:4# delete authentication server_group Purpose Used to delete a user-defined authentication server group.
  • Page 158 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual show authentication server_group Purpose Used to view authentication server groups on the Switch. Syntax show authentication server_group <string 15> Description This command will display authentication server groups currently configured on the Switch. This command will display the following fields: Group Name: The name of the server group currently configured on the Switch, including built in groups and user defined groups.
  • Page 159 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual config login_authentication response_timeout Purpose Used to configure the amount of time the Switch will wait for a user to enter authentication before timing out. Syntax config login_authentication response_timeout <int 1-255> Description This command will set the time the Switch will wait for a response of authentication from the user.
  • Page 160 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual Example usage: To set the maximum number of authentication attempts at 5: DGS-3224TGR:4# config login_authentication attempt 5 Command: config login_authentication attempt 5 Success. DGS-3224TGR:4# show login_authentication Purpose Used to display current login authentication information.
  • Page 161 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual config login_authentication method_list_name <method_list_name> – Enter an alphanumeric string of up to 15 characters to define the login_authentication method list the user wishes to configure. None. Restrictions DGS-3224TGR:4#config login_authentication console default Command: config login_authentication console default Success.

  • Page 162: Traffic Segmentation Commands

    DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual RAFFIC EGMENTATION OMMANDS The traffic segmentation commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config traffic_segmentation <portlist> forward_list [null | <portlist>] show traffic_segmentation {<portlist>}...
  • Page 163 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual show traffic_segmentation Used to display the current traffic segmentation table. Purpose Syntax show traffic_segmentation {<portlist>} Description This command displays the current traffic segmentation table. Parameters <portlist> – Specifes a range of ports to be displayed. If no parameter is specified, the system will display all current traffic segmentation tables.

  • Page 164: D-Link Single Ip Management Commands

    ANAGEMENT OMMANDS Simply put, D-Link Single IP Management is a concept that will stack switches together over Ethernet instead of using stacking ports or modules. Switches using Single IP Management (labeled here as SIM) must conform to the following rules: SIM is an optional feature on the Switch and can easily be enabled or disabled.
  • Page 165 CS belongs. However if a MS has its own IP address, it can belong to SNMP communities to which other switches in the group, including the CS, do not belong. The D-Link Single IP Management commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
  • Page 166 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual enable sim Purpose Used to enable Single IP Management (SIM) on the Switch Syntax enable sim Description This command will enable SIM globally on the Switch. SIM features and functions will not function properly unless this function is enabled.
  • Page 167 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual show sim Purpose Used to view the current information regarding the SIM group on the Switch. Syntax show sim {[candidates {<candidate_id 1-100>} | members {<member_id 1-32>} | group {commander_mac <macaddr>} neighbor]} This command will display the current information regarding the SIM group on the...
  • Page 168 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual Example usage: To show the SIM information in detail: DGS-3224TGR:4#show sim Command: show sim SIM Version : VER-1 Firmware Version : Build 3.00-B13 Device Name MAC Address : 00-35-26-11-11-00 Capabilities : L3 Platform...
  • Page 169 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual Port MAC Address Role ------ ------------------ --------- 00-35-26-00-11-99 Commander 00-35-26-00-11-91 Member 00-35-26-00-11-90 Candidate Total Entries: 3 DGS-3224TGR:4# To show other groups information in summary, if group is specified: DGS-3224TGR:4#show sim group Command: show sim group...
  • Page 170 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual reconfig Syntax reconfig {member_id <value 1-32 | exit} Description This command is used to reconnect to a member switch using telnet. Parameters member_id <value 1-32> - Select the ID number of the member switch the user desires to configure.
  • Page 171 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual Example usage: To add a member: DGS-3224TGR:4#config sim_group add 2 Command: config sim_group add 2 Please wait for ACK... SIM Config Success !!! Success. DGS-3224TGR:4# To delete a member: DGS-3224TGR:4#config sim delete 1 Command: config sim delete 1 Please wait for ACK...
  • Page 172 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual config sim Purpose Used to configure role parameters for the SIM protocol on the Switch. Syntax config sim [{[commander {group_name <groupname 64> | candidate] | dp_interval <30-90> | hold_time <sec 100-255>}] This command is used to configure parameters of switches of the SIM.
  • Page 173 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual To change the hold time of the discovery protocol: DGS-3224TGR:4# config sim commander hold_time 120 Command: config sim commander hold_time 120 Success. DGS-3224TGR:4# To transfer the commander switch to be a candidate: DGS-3224TGR:4#config sim candidate Command: config sim candidate Success.
  • Page 174 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual download sim_ms Purpose Used to download firmware or configuration file to an indicated device. Syntax download sim_ms [ firmware | configuration] <ipaddr> <path_filename> {members <mslist 1-32> | all} Description This command will download a firmware file or configuration file to a specified device from a TFTP server.
  • Page 175 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual Example usage: To download firmware: DGS-3224TGR:4# download sim firmware 10.53.13.94 c:/dgssri.had members all Command: download sim firmware 10.53.13.94 c:/dgssri.had members This device is updating firmware. Please wait... Download Status : MAC Address Result...
  • Page 176 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual upload sim_ms configuration Purpose User to upload a configuration file to a TFTP server from a specified member of a SIM group. Syntax upload sim_ms configuration <ipaddr> <path_filename> <member_id 1-32> Description This command will upload a configuration file to a TFTP server from a specified member of a SIM group.

  • Page 177: Command History List

    DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual OMMAND ISTORY The switch port commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters <command> show command_history config <value> command_history Each command is listed, in detail, in the following sections.
  • Page 178 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4#? Command: ? clear clear arptable clear counters clear fdb clear log clear port_security_entry port config 802.1p default_priority config 802.1p user_priority config 802.1x auth_mode config 802.1x auth_parameter ports config 802.1x auth_protocol config 802.1x capability ports config 802.1x init...
  • Page 179 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4#show command_history Command: show command_history ? show show vlan config router_ports vlan2 add 1:1-1:10 config router_ports vlan2 add config router_ports vlan2 config router_ports show vlan create vlan vlan2 tag 3 create vlan vlan2 tag 2...
  • Page 180 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual DGS-3224TGR:4#dir Command: dir clear clear arptable clear counters clear fdb clear log clear port_security_entry port config 802.1p default_priority config 802.1p user_priority config 802.1x auth_mode config 802.1x auth_parameter ports config 802.1x auth_protocol config 802.1x capability ports config 802.1x init...

  • Page 181: Technical Specifications

    DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual ECHNICAL PECIFICATIONS Performance Transmission Method Store-and-forward 2 MB per device RAM Buffer Packet Filtering/ Forwarding Rate Full-wire speed for all connections. 1,488,095 pps per port (for 1000Mbps) MAC Address Learning Automatic update. Supports 16K MAC address.
  • Page 182 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual General Standards IEEE 802.3 10BASE-T Ethernet IEEE 802.3u 100BASE-TX Fast Ethernet IEEE 802.3z Gigabit Ethernet IEEE 802.1Q Tagged VLAN IEEE 802.1P Tagged Packets IEEE 802.3ab 1000BASE-T IEEE 802.3x Full-duplex Flow Control ANSI/IEEE 802.3 NWay auto-negotiation...
  • Page 183 DGS-3224TGR Gigabit Ethernet Switch CLI Reference Manual...

Table of Contents