Page 1: Cli Command Reference
CLI for PoE Switches Models: ES-24-250W, ES-24-500W, CLI Command Reference ES-48-500W, ES-48-750W...
Page 2: Table Of Contents
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43 Ubiquiti Networks, Inc.
Page 3 [long] . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 59 Ubiquiti Networks, Inc.
Page 4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 74 Ubiquiti Networks, Inc.
Page 5 (TACACS Config) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 94 Ubiquiti Networks, Inc.
Page 6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 107 Ubiquiti Networks, Inc.
Page 7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 128 Ubiquiti Networks, Inc.
Page 8 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 144 Ubiquiti Networks, Inc.
Page 9 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 158 Ubiquiti Networks, Inc.
Page 10 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 171 Ubiquiti Networks, Inc.
Page 11 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 194 Ubiquiti Networks, Inc.
Page 12 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 215 Ubiquiti Networks, Inc.
Page 13 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 230 Ubiquiti Networks, Inc.
Page 14 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 248 Ubiquiti Networks, Inc.
Page 15 (Global Config) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 263 Ubiquiti Networks, Inc.
Page 16 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 277 Ubiquiti Networks, Inc.
Page 17 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 294 Ubiquiti Networks, Inc.
Page 18 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 310 Ubiquiti Networks, Inc.
Page 19 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 327 Ubiquiti Networks, Inc.
Page 20 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 350 Ubiquiti Networks, Inc.
Page 21 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 369 Ubiquiti Networks, Inc.
Page 22 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 381 Ubiquiti Networks, Inc.
Page 23 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 409 Ubiquiti Networks, Inc.
Page 24 Online Resources . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 435 Ubiquiti Networks, Inc.
Page 25: About This Document
• “Purpose and Audience” on page 26 • “Document Organization” on page 26 • “Document Organization” on page 26 • “Products and Models” on page 26 • “Related Documents” on page 26 • “Typographical Conventions” on page 27 Ubiquiti Networks, Inc.
Page 26: Purpose And Audience
• EdgeSwitch ES-24 Quick Start Guide • EdgeSwitch ES-48 Quick Start Guide To download EdgeSwitch documents: 1. Go to the Downloads page on the Ubiquiti website: http://www.ubnt.com/download/ 2. Select EdgeMAX from the Platform drop-down box. 3. Select EdgeSwitch from the Product Group drop-down box.
Page 27: Typographical Conventions
Name of UI page, dialog box, window, etc. Use the IP Address Conflict Detection page > Order of navigation selections to access a page To access the Session page, click System > Users > Session Courier show network CLI commands and their output font Ubiquiti Networks, Inc.
Page 28: Using The Command Line Interface
• “Command Modes” on page 32 • “Command Completion and Abbreviation” on page 34 • “CLI Error Messages” on page 34 • “CLI Line-Editing Conventions” on page 35 • “Using CLI Help” on page 35 • “Accessing the CLI” on page 36 Ubiquiti Networks, Inc.
Page 29: Command Syntax
In addition to these formats, the CLI accepts decimal, hexadecimal and octal formats through the following input formats (where n is any valid hexadecimal, octal or decimal number): (CLI assumes hexadecimal format) (CLI assumes octal format with leading zeros) (CLI assumes decimal format) Ubiquiti Networks, Inc.
Page 30: Slot/Port Naming Convention
For example, the configuration command reverses the shutdown of an interface. Use the command without to re-enable a disabled feature or to enable a feature that is disabled by default. Ubiquiti Networks, Inc.
Page 31: Executing "Show" Commands
Display the running configuration for specificed interface on the switch. (UBNT EdgeSwitch) #show running-config | ? begin Begin with the line that matches exclude Exclude lines that matches include Include lines that matches section Display portion of lines Ubiquiti Networks, Inc.
Page 32: Edgeswitch Modules
Use this mode to manage a range of interfaces. For Switch (Interface 0/1-0/4) # example: Switch (Interface lag lag-intf-num)# Enters LAG Interface configuration mode for the specified LAG. Switch (Interface vlan vlan-id)# Enters VLAN routing interface configuration mode for the specified VLAN ID. Ubiquiti Networks, Inc.
Page 33 To return to Privileged EXEC mode, enter Ctrl-Z. Mail Server Config From Global Config mode, enter: To exit to Global Config mode, enter exit. mail-server address To return to Privileged EXEC mode, enter Ctrl-Z. Ubiquiti Networks, Inc.
Page 34: Command Completion And Abbreviation
Command not found / Indicates that you did not enter the required keywords or values. Incomplete command. Use ? to list commands. Ambiguous command Indicates that you did not enter enough letters to uniquely identify the command. Ubiquiti Networks, Inc.
Page 35: Cli Line-Editing Conventions
Configure MAC Address. mac-type Select the locally administered or burned-in MAC address. mgmt_vlan Configure the Management VLAN ID of the switch. parms Configure Network Parameters of the device. protocol Select DHCP, BootP, or None as the network config protocol. Ubiquiti Networks, Inc.
Page 36: Accessing The Cli
After you have connected the EdgeSwitch to your network, you can access the CLI using a telnet or SSH connection from a remote management host. For on how to connect the switch to your network, refer to the Quick Start Guide that came with the EdgeSwitch. Ubiquiti Networks, Inc.
Page 37: Chapter 2: Management Commands
• Configuration commands configure features and options of the switch . For every configuration command, there is a show command that displays the configuration setting . • Clear commands clear some or all of the settings to factory defaults . Ubiquiti Networks, Inc.
Page 38: Network Interface Commands
DHCP server until a response is received . If you use the parameter, you must configure the network information for the switch manually . Default none network protocol {none | bootp | dhcp} Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 39: Network Protocol Dhcp
. When access is enabled, the Java applet can be viewed from the web interface . When access is disabled, the user cannot view the Java applet . Default enabled network javamode Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 40: Show Network
Example: The following shows example CLI display output for the network port . (admin) #show network Interface Status....... Always Up IP Address........10.250.3.1 Subnet Mask........255.255.255.0 Default Gateway........ 10.250.3.3 IPv6 Administrative Mode....... Enabled IPv6 Prefix is ........ fe80::210:18ff:fe82:64c/64 IPv6 Prefix is ........ 2003::1/128 Ubiquiti Networks, Inc.
Page 41 Burned In MAC Address......00:10:18:82:06:4C Locally Administered MAC address....00:00:00:00:00:00 MAC Address Type....... Burned In Configured IPv4 Protocol ...... None Configured IPv6 Protocol ...... DHCP DHCPv6 Client DUID ......00:03:00:06:00:10:18:82:06:4C IPv6 Autoconfig Mode......Disabled Management VLAN ID......1 Ubiquiti Networks, Inc.
Page 42: Telnet Commands
Default telnetcon maxsessions 0-5 Format Mode Privileged EXEC no telnetcon maxsessions This command sets the maximum number of Telnet connection sessions that can be established to the default value . no telnetcon maxsessions Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 43: Telnetcon Timeout
This object indicates the number of simultaneous remote connection sessions allowed. The factory Remote Connection Sessions default is 5. Allow New Telnet Sessions New Telnet sessions will not be allowed when this field is set to no. The factory default value is yes. Ubiquiti Networks, Inc.
Page 44: Secure Shell Commands
SSH connection can be established . The range is 0 to 5 . Default sshcon maxsessions 0-5 Format Mode Privileged EXEC no sshcon maxsessions This command sets the maximum number of allowed SSH connection sessions to the default value . no sshcon maxsessions Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 45: Sshcon Timeout
The SSH timeout value in minutes. Keys Present Indicates whether the SSH RSA and DSA key files are present on the device. Key Generation in Progress Indicates whether RSA or DSA key files generation is currently in progress. Ubiquiti Networks, Inc.
Page 46: Management Security Commands
DSA key files . crypto key generate dsa Format Mode Global Config no crypto key generate dsa Use this command to delete the DSA key files from the device . no crypto key generate dsa Format Mode Global Config Ubiquiti Networks, Inc.
Page 47: Hypertext Transfer Protocol Commands
Example: The following example configures the http authentication . (UBNT EdgeSwitch)(config)# ip http authentication radius local no ip http authentication Use this command to return to the default . no ip http authentication Format Mode Global Config Ubiquiti Networks, Inc.
Page 48: Ip Https Authentication
. no ip http server Format Mode Privileged EXEC ip http secure-server This command is used to enable the secure socket layer for secure HTTP . Default disabled ip http secure-server Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 49: Ip Http Session Hard-Timeout
1-60 Format Mode Privileged EXEC no ip http session soft-timeout This command resets the soft timeout for un-secure HTTP sessions to the default value . no ip http session soft-timeout Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 50: Ip Http Secure-Session Hard-Timeout
Format Mode Privileged EXEC ip http secure-port This command is used to set the SSL port where port can be 1025-65535 and the default is port 443 . Default ip http secure-port portid Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 51: Ip Http Secure-Protocol
HTTPS Session Soft Timeout The soft timeout for secure http sessions in minutes. Certificate Present Indicates whether the secure-server certificate files are present on the device. Certificate Generation in Indicates whether certificate generation is currently in progress. Progress Ubiquiti Networks, Inc.
Page 52: Access Commands
This command displays the complete user names of the users currently logged in to the switch . show loginsession long Format Mode Privileged EXEC Example: The following shows an example of the command . (UBNT EdgeSwitch) #show loginsession long User Name ------------ admin test1111test1111test1111test1111test1111test1111test1111test1111 Ubiquiti Networks, Inc.
Page 53: User Account Commands
The user manager returns ERROR (not PASS or FAIL) for enable and line methods if no password is configured, and moves to the next configured method in the authentication list . The method none reflects that there is no authentication needed . Ubiquiti Networks, Inc.
Page 54 Uses the list of all RADIUS servers for authentication . tacacs • Uses the list of all TACACS servers for authentication . Example: The following example sets authentication when accessing higher privilege levels . (UBNT EdgeSwitch)(config)# aaa authentication enable default enable Ubiquiti Networks, Inc.
Page 55: Aaa Authorization
Command Authorization List Method -------------------------- -------------------------------------- dfltCmdAuthList tacacs none list2 none undefined list4 tacacs undefined Line Command Method List ------------ ------------------------------ Telnet dfltCmdAuthList dfltCmdAuthList Exec Authorization List Method ----------------------- -------------------------------------- dfltExecAuthList tacacs none list2 none undefined list4 tacacs undefined Ubiquiti Networks, Inc.
Page 56: Enable Authentication
Encrypted password entered, copied from another switch configuration. override-complexity- Disables the validation of the password strength. check Example: The following example configures user bob with password xxxyyymmmm and user level 15 . (UBNT EdgeSwitch)(config)# username bob password xxxyyymmmm level 15 Ubiquiti Networks, Inc.
Page 57: Username Name Nopassword
Range 0-15. username name unlock Use this command to allow a locked user account to be unlocked . Only a user with read/write access can reactivate a locked user account . username name unlock Format Mode Global Config Ubiquiti Networks, Inc.
Page 58: Show Users
Displays the user’s Password override complexity check status. By default it is disabled. Complexity Check Password Strength Displays the user password’s strength (Strong or Weak). This field is displayed only if the Password Strength feature is enabled. Ubiquiti Networks, Inc.
Page 59: Show Users Login-History [Long]
Uses the default list created with the aaa authentication login command. list-name Uses the indicated list created with the aaa authentication login command. Example: The following example specifies the default authentication method for telnet . (UBNT EdgeSwitch) (config)#line telnet (UBNT EdgeSwitch) (config-telnet)#login authentication default Ubiquiti Networks, Inc.
Page 60: Password
(UBNT EdgeSwitch) (Config-line)# password e8d63677741431114f9e39a853a15e8fd35ad059e2 e1b49816c24 3d7e08152b052eafbf23b528d348cdba1b1b7ab91be842278e5e970dbfc62d16dcd13c0b864 encrypted (UBNT EdgeSwitch) (Config-line)# password Enter new password:******** Confirm new password:******** no password (Line Configuration) Use this command to remove the password on a line . no password Format Mode Line Config Ubiquiti Networks, Inc.
Page 61: Password (User Exec)
Definition password Password string. Range: 8-64 characters. encrypted Encrypted password you entered, copied from another switch configuration. The encrypted password should be 128 characters long because the assumption is that this password is already encrypted with AES. Ubiquiti Networks, Inc.
Page 62: Passwords Min-Length
Use this command to implement aging on passwords for local users . When a user’s password expires, the user is prompted to change it before logging in again . The valid range is 1-365 . The default is 0, or no aging . Default passwords aging 1-365 Format Mode Global Config Ubiquiti Networks, Inc.
Page 63: Passwords Lock-Out
Use this command to set the maximum number of repeated characters to be used in password strength . The valid range is 0-15 . The default is 0 . Minimum of 0 means no restriction on that set of characters . Default passwords strength maximum consecutive-characters 0-15 Format Mode Global Config Ubiquiti Networks, Inc.
Page 64: Passwords Strength Minimum Uppercase-Letters
Use this command to enforce a minimum number of special characters that a password should contain . The valid range is 0-16 . The default is 2 . Minimum of 0 means no restriction on that set of characters . Default passwords strength minimum special-characters Format Mode Global Config Ubiquiti Networks, Inc.
Page 65: Passwords Strength Minimum Character-Classes
Minimum number of uppercase characters required in a password. Uppercase Letters Minimum Password Minimum number of lowercase characters required in a password. Lowercase Letters Minimum Password Numeric Minimum number of numeric characters required in a password. Characters Ubiquiti Networks, Inc.
Page 66: Show Passwords Result
Global Config Example: The following shows an example of the command . (UBNT EdgeSwitch) # (UBNT EdgeSwitch) #configure (UBNT EdgeSwitch) (Config)#aaa ias-user username client-1 (UBNT EdgeSwitch) (Config-aaa-ias-User)#exit (UBNT EdgeSwitch) (Config)#no aaa ias-user username client-1 (UBNT EdgeSwitch) (Config)# Ubiquiti Networks, Inc.
Page 67: Aaa Session-Id
Sends a stop accounting notice at the end of the requested user process. none Disables accounting services on this line. method tacacs radius Use either server for accounting purposes. Ubiquiti Networks, Inc.
Page 68: Password (Aaa Ias User Configuration)
. password password [encrypted] Format Mode AAA IAS User Config Parameter Definition password Password for this level. Range: 8-64 characters encrypted Encrypted password to be entered, copied from another switch configuration. Ubiquiti Networks, Inc.
Page 69: Clear Aaa Ias-Users
------------------- Client-1 Client-2 show running-config Example: Following are the IAS configuration commands shown in the output of command . Passwords shown in the command output are always encrypted . aaa ias-user username client-1 password a45c74fdf50a558a2b5cf05573cd633bac2c6c598d54497ad4c46104918f2c encrypted exit Ubiquiti Networks, Inc.
Page 70: Accounting
Format Mode Privileged EXEC Example: The following shows example CLI display output for the command . (UBNT EdgeSwitch) # (UBNT EdgeSwitch) #show accounting methods Acct Type Method Name Record Type Method Type ---------- ------------ ------------ ------------ Ubiquiti Networks, Inc.
Page 71: Clear Accounting Statistics
TACACS DOT1X dfltDot1xList start-stop radius Line EXEC Method List Command Method List ------ --------------------------------------- Telnet dfltExecList dfltCmdsList dfltExecList UserCmdAudit clear accounting statistics This command clears the accounting statistics . clear accounting statistics Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 72: Snmp Commands
The community which is created and then associated with the group. The range is 1 to 20 characters. group-name The name of the group that the community is associated with. The range is 1 to 30 characters. ipaddress Optionally, the IPv4 address that the community may be accessed from. Ubiquiti Networks, Inc.
Page 73: Snmp-Server Enable Traps Violation
Interface Config snmp trap link-status all This command enables link status traps for all interfaces . Note: This command is valid only when the Link Up/Down Flag is enabled . snmp trap link-status all Format Mode Global Config Ubiquiti Networks, Inc.
Page 74: Snmp-Server Enable Traps Linkmode
Format Mode Global Config no snmp-server enable traps stpmode This command disables the sending of new root traps and topology change notification traps . no snmp-server enable traps stpmode Format Mode Global Config Ubiquiti Networks, Inc.
Page 75: Snmp-Server Engineid Local
Generic groups are created for all versions and privileges using the default views. snmp-server group group-name {v1 | v2 | v3 {noauth | auth | priv}} [context Format context-name] [read read-view] [write write-view] [notify notify-view] Mode Global Config Ubiquiti Networks, Inc.
Page 76: Snmp-Server Host
The filter name to associate with this host. Filters can be used to specify which traps are sent to this host. The range is 1 to 30 characters. no snmp-server host This command removes the specified host entry . no snmp-server host host-addr [traps|informs] Format Mode Global Config Ubiquiti Networks, Inc.
Page 77: Snmp-Server User
(1.3.6.2.4) or keywords (system), and asterisks may be used to specify a subtree family (1.3.*.4). included The tree is included in the view. excluded The tree is excluded from the view. no snmp-server view This command removes the specified view . no snmp-server view viewname [oid-tree] Format Mode Global Config Ubiquiti Networks, Inc.
Page 78: Snmp-Server V3-Host
Use this command in Global Configuration mode to remove the global source-interface (Source IP selection) for all SNMP communication between the SNMP client and the server . no snmptrap source-interface Format Mode Global Configuration Ubiquiti Networks, Inc.
Page 79: Show Snmp
[filtername] Format Mode Privileged EXEC Term Definition Name The filter name for this entry. OID Tree The OID tree this entry will include or exclude. Type Indicates if this entry includes or excludes the OID Tree. Ubiquiti Networks, Inc.
Page 80: Show Snmp Group
[viewname] Format Mode Privileged EXEC Parameter Definition Name The view name for this entry. OID Tree The OID tree that this entry will include or exclude. Type Indicates if this entry includes or excludes the OID tree. Ubiquiti Networks, Inc.
Page 81: Show Trapflags
ID is logged into the switch more than once at the same time (either through Telnet or the serial port). Spanning Tree Flag Can be enabled or disabled. The factory default is enabled. Indicates whether spanning tree traps are sent. Ubiquiti Networks, Inc.
Page 82: Radius Commands
RADIUS authentication server . You can configure up to 3 servers per RADIUS client . If the maximum number of configured servers is reached, the command fails until you remove one of the servers by issuing the form of Ubiquiti Networks, Inc.
Page 83: Radius Server Key
. If you want to enter the key in encrypted show running-config format, enter the key along with the encrypted keyword . In the command’s display, these secret keys are displayed in encrypted format . You cannot show these keys in plain text format . Ubiquiti Networks, Inc.
Page 84: Radius Server Msgauth
RADIUS authenticating server . When the maximum number of retries is reached for the RADIUS accounting server and no response is received, the client does not communicate with any other server . Ubiquiti Networks, Inc.
Page 85: Radius Source-Interface
RADIUS server if no response is received . The timeout value is an integer in the range of 1 to 30 . Default radius server timeout seconds Format Mode Global Config Parameter Definition seconds Timeout value in seconds in the range 1–30. Ubiquiti Networks, Inc.
Page 86: Show Radius
[{ipaddr|dnsname | name [servername]}] Format Mode Privileged EXEC Parameter Definition ipaddr The IP address of the authenticating server. dnsname The DNS name of the authenticating server. servername The alias name to identify the server. Ubiquiti Networks, Inc.
Page 87 (UBNT EdgeSwitch) #show radius servers 192.168.37.58 Server Name......Default_RADIUS_Server Host Address......192.168.37.58 Secret Configured...... No Message Authenticator ....Enable Number of Retransmits....4 Time Duration......10 RADIUS Accounting Mode....Disable RADIUS Attribute 4 Mode....Enable RADIUS Attribute 4 Value ....192.168.37.60 Ubiquiti Networks, Inc.
Page 88: Show Radius Accounting
This command displays a summary of statistics for the configured RADIUS accounting servers . show radius accounting statistics {ipaddr|dnsname | name servername} Format Mode Privileged EXEC Parameter Definition ipaddr The IP address of the server. dnsname The DNS name of the server. servername The alias name to identify the server. Ubiquiti Networks, Inc.
Page 89: Host Address
(UBNT EdgeSwitch) #show radius accounting statistics name Default_RADIUS_Server RADIUS Accounting Server Name....Default_RADIUS_Server Host Address........192.168.37.200 Round Trip Time....... 0.00 Requests........0 Retransmissions....... 0 Responses........0 Malformed Responses......0 Bad Authenticators......0 Pending Requests......0 Timeouts........0 Unknown Types......... 0 Packets Dropped....... 0 Ubiquiti Networks, Inc.
Page 90: Show Radius Source-Interface
The number of packets of unknown type that were received from this server on the authentication port. Packets Dropped The number of RADIUS packets received from this server on the authentication port and dropped for some other reason. Ubiquiti Networks, Inc.
Page 91 Server Host Address......192.168.37.200 Access Requests....... 0.00 Access Retransmissions......0 Access Accepts........ 0 Access Rejects........ 0 Access Challenges......0 Malformed Access Responses....0 Bad Authenticators......0 Pending Requests......0 Timeouts........0 Unknown Types......... 0 Packets Dropped....... 0 Ubiquiti Networks, Inc.
Page 92: Tacacs+ Commands
TACACS+ daemon . The parameter has a range of 0-128 characters This key must match the key used on the TACACS+ daemon . no tacacs-server key key-string Format Mode Global Config Ubiquiti Networks, Inc.
Page 93: Tacacs-Server Keystring
TACACS+ servers . The parameter has a range of 1-30 and is the timeout value in seconds . Default tacacs-server timeout timeout Format Mode Global Config Ubiquiti Networks, Inc.
Page 94: Key
0 (zero) is the highest priority . The priority parameter specifies the priority for servers . The highest priority is 0 (zero), and the range is 0 - 65535 . Default priority priority Format Mode TACACS Config Ubiquiti Networks, Inc.
Page 95: Timeout
Format Mode Privileged EXEC Example: The following shows example CLI display output for the command . (Config)# show tacacs source-interface TACACS Client Source Interface : loopback 0 TACACS Client Source IPv4 Address : 1.1.1.1 [UP] Ubiquiti Networks, Inc.
Page 96: Configuration Scripting Commands
This command deletes a specified script where the parameter is the name of the script to delete . The option deletes all the scripts present on the switch . script delete {scriptname | all} Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 97: Script List
.The validate option is intended to be used as a tool for script development . Validation identifies potential problems . It might not identify all problems with a given script on any given device . script validate scriptname Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 98: Prelogin Banner, System Prompt, And Host Name Commands
No contents to display before displaying the login prompt. show clibanner Format Mode Privileged Exec Example: The following shows example CLI display output for the command . (UBNT EdgeSwitch) #show clibanner Banner Message configured : ========================= -------------------------- TEST -------------------------- Ubiquiti Networks, Inc.
Page 99: Set Clibanner
Banner text where ““ (double quote) is a delimiting character. The banner message can be up to 2000 characters. no set clibanner Use this command to unconfigure the prelogin CLI banner . no set clibanner Format Mode Global Config Ubiquiti Networks, Inc.
Page 100: Chapter 3: Utility Commands
. • Copy commands transfer or save configuration and informational files to and from the switch . • Clear commands clear some or all of the settings to factory defaults . Ubiquiti Networks, Inc.
Page 101: Autoinstall Commands
Use this command to enable AutoInstall on the switch for the next reboot cycle . The command does not change the current behavior of AutoInstall and saves the command to NVRAM . Default enabled boot host dhcp Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 102: Boot Host Autosave
AutoInstall process automatically begins . erase startup-config Format Mode Privileged EXEC erase factory-defaults Use this command to erase the text-based factory-defaults file stored in non-volatile memory . Default Disable erase factory-defaults Format Mode Global Config Ubiquiti Networks, Inc.
Page 103: Show Autoinstall
Format Mode Privileged EXEC Example: The following shows example CLI display output for the command . (UBNT EdgeSwitch) #show autoinstall AutoInstall Mode....... Stopped AutoInstall Persistent Mode....Disabled AutoSave Mode........Disabled AutoReboot Mode........ Enabled AutoInstall Retry Count......3 Ubiquiti Networks, Inc.
Page 104: Cli Output Filtering Commands
Time Since Counters Last Cleared....281 day 4 hr 9 min 0 sec (UBNT EdgeSwitch) #show interface 0/1 | exclude "Packets" Transmit Packet Errors......0 Collision Frames....... 0 Time Since Counters Last Cleared....20 day 21 hr 30 min 9 sec Ubiquiti Networks, Inc.
Page 105: Show Xxx | Begin "String
(i .e . “exit”) and that include the match . This type of filter command could also include “exclude” or user-defined end-of-section identifier parameters as well . Ubiquiti Networks, Inc.
Page 106: Dual Image Commands
{active | backup} text-description Format Mode Privileged EXEC update bootcode This command updates the bootcode (boot loader) on the switch . The bootcode is read from the active-image for subsequent reboots . update bootcode Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 107: System Information And Statistics Commands
. In future releases of the software, the command will not be available . For a description of the command output, see the command “show version” on page 108 . show hardware Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 108: Show Version
Timestamp........Thu Aug 28 03:45:53 EDT 2014 show interface This command displays a summary of statistics for a specific interface or a count of all CPU traffic based upon the argument . show interface {slot/port | switchport} Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 109: Show Interfaces Status
. The interfaces displayed by this command are physical interfaces, LAG interfaces and VLAN routing interfaces . show interfaces status [slot/port] Format Mode Privileged EXEC show interfaces traffic Use this command to display interface traffic information . show interfaces traffic [slot/port] Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 110: Show Interface Counters
Example: The following shows example CLI display output for the command . (UBNT EdgeSwitch) #show interface counters Port InOctets InUcastPkts InMcastPkts InBcastPkts --------- ---------------- ---------------- ---------------- ---------------- 15098 ch64 359533 3044 Port OutOctets OutUcastPkts OutMcastPkts OutBcastPkts --------- ---------------- ---------------- ---------------- ---------------- 131369 ch64 4025293 32910 Ubiquiti Networks, Inc.
Page 111: Show Interface Ethernet
• Packets RX and TX 4096–9216 Octets - The total number of packets received that were between 4096 and 9216 octets in length inclusive (excluding framing bits, but including FCS octets) and were otherwise well formed. Ubiquiti Networks, Inc.
Page 112 • Packets Transmitted > 1518 Octets - The total number of packets transmitted that were longer than 1518 octets (excluding framing bits, but including FCS octets) and were otherwise well formed. • Max Frame Size - The maximum size of the Info (non-MAC) field that this port will receive or transmit. Ubiquiti Networks, Inc.
Page 113 The total number of good packets received that were directed to a multicast address. Note that this number does not include packets directed to the broadcast address. Broadcast Packets Received The total number of packets received that were directed to the broadcast address. Note that this does not include multicast packets. Ubiquiti Networks, Inc.
Page 114: Show Interface Ethernet Switchport
Power, Tx Fault, and LOS . The values are derived from the SFP’s A2 (Diagnostics) table using the I C interface . show fiber-ports optical-transceiver {all | slot/port} Format Mode Privileged EXEC Term Description Temp Internally measured transceiver temperature. Voltage Internally measured supply voltage. Current Measured TX bias current. Ubiquiti Networks, Inc.
Page 115: Show Fiber-Ports Optical-Transceiver-Info
The vendor revision number (vendor rev) contains ASCII characters, left aligned and padded on the right with ASCII spaces (20h), defining the vendor’s product revision number. A value of all zero in this field indicates that the vendor revision is unspecified. Ubiquiti Networks, Inc.
Page 116: Show Mac-Addr-Table
MAC Address, Interface, and Status fields appear . If you enter the If you enter interface slot/port parameter, in addition to the MAC Address and Status fields, the VLAN ID field also appears . Ubiquiti Networks, Inc.
Page 117: Process Cpu Threshold
Running 2 switchdrvr 15310 Enabled Disabled Running 3 syncdb 15314 Enabled Disabled Running 4 lighttpd 18718 Enabled Enabled Running 5 syncdb-test 0 Disabled Disabled Stopped 6 proctest 0 Disabled Enabled Stopped 7 user.start 0 Enabled Disabled Stopped Ubiquiti Networks, Inc.
Page 118: Show Process App-Resource-List
1.58% 1.50% show process proc-list This application displays the processes started by applications created by the Process Manager . Note: This command is available in Linux 2 .6 only . show process proc-list Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 119: Show Running-Config
Stop the output and return to the prompt. --More-- (q)uit Note that is displayed at the bottom of the output screen until you reach the end of the output . show running-config [all | scriptname] Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 120: Show Running-Config Interface
Display the content of the factory-defaults file. startup-config Example: The following shows an example of the output from the command when the parameter is specified . (UBNT EdgeSwitch) #show startup-config !Current Configuration: !System Description “EdgeSwitch 24-Port 500W, 0.8.0.4712594, Linux 3.6.5-f4a26ed5” Ubiquiti Networks, Inc.
Page 121 !Current SNTP Synchronized Time: SNTP Last Attempt Status Is Not Successful vlan database exit configure stack member 2 4 exit slot 2/0 5 set slot power 2/0 no set slot disable 2/0 line console exit line telnet exit line ssh exit exit (UBNT EdgeSwitch) # Ubiquiti Networks, Inc.
Page 122: Dir
14328276 May 09 2002 16:01:06 image2 -rwx 148 May 09 2002 16:46:06 hpc_broad.cfg -rwx 0 May 09 2002 14:51:28 olog1.txt -rwx 517 Jul 23 2001 17:24:00 ssh_host_key -rwx 69040 Jun 17 2001 10:43:04 log_error_crashdump -rwx 891 Apr 08 2000 11:14:28 sslt_key1.pem Ubiquiti Networks, Inc.
Page 123: Show Sysinfo
Use this command to set the pagination length to number of lines for the sessions specified by configuring on different Line Config modes (telnet/ssh) and is persistent . Default length value Format Mode Line Config Ubiquiti Networks, Inc.
Page 124: Terminal Length
1-256392 Format Mode Global Config Parameter Description threshold value When CPU free memory falls below this threshold, a notification message is triggered. The range is 1 to 256392. The default is 0 (disabled). Ubiquiti Networks, Inc.
Page 125: Box Services Commands
Enables or disables the sending of traps for fan status events. The default is enable. powersupply Enables or disables the sending of traps for power supply status events. The default is enable. temperature Enables or disables the sending of traps for temperature status events. The default is enable. Ubiquiti Networks, Inc.
Page 126: Logging Commands
Mode Global Config logging host This command configures the logging host parameters . You can configure up to eight hosts . port: 514 Default severitylevel: critical (2) logging host {hostaddress|hostname} addresstype {port severitylevel} Format Mode Global Config Ubiquiti Networks, Inc.
Page 127: Logging Host Reconfigure
Format Mode Global Config logging syslog This command enables syslog logging . logging syslog Format Mode Global Config no logging syslog This command disables syslog logging . no logging syslog Format Mode Global Config Ubiquiti Networks, Inc.
Page 128: Logging Syslog Port
Port on the collector/relay to which syslog messages are sent. Logging Client Source Shows the configured syslog source-interface (source IP address). Interface CLI Command Logging Shows whether CLI Command logging is enabled. Console Logging Shows whether console logging is enabled. Ubiquiti Networks, Inc.
Page 129: Show Logging Buffered
The count of valid entries in the buffered log. show logging hosts This command displays all configured logging hosts . Use the “|” character to display the output filter options . show logging hosts Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 130: Show Logging Persistent
How long the system had been running at the time the trap was sent. Trap The text of the trap message. clear logging buffered This command clears buffered logging (system startup and system operation logs) . clear logging buffered Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 131: Email Alerting And Mail Server Commands
.com . logging email message-type {urgent|non-urgent|both} to-addr to-email-addr Format Mode Global Config no logging email message-type to-addr This command removes the configured to-addr field of email . no logging email message-type {urgent|non-urgent|both} to-addr to-email-addr Format Mode Global Config Ubiquiti Networks, Inc.
Page 132: Logging Email From-Addr
0 to 7 or symbolically through one of the following emergency alert critical error warning notice info keywords: (0), (1), (2), (3), (4), (5), debug (6), or (7) . Default Info (6) messages and higher are logged. logging traps severitylevel Format Mode Global Config Ubiquiti Networks, Inc.
Page 133: Logging Email Test Message-Type
Time Since Last Email Sent The amount of time that has passed since the last email was sent from the switch. clear logging email statistics This command resets the email alerting statistics . clear logging email statistics Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 134: Mail-Server
This command configures the password the switch uses to authenticate with the SMTP server . Default admin password password Format Mode Mail Server Config show mail-server config This command displays information about the email alert configuration . show mail-server {ip-address | hostname | all} config Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 135 The security protocol (TLS or none) the switch uses to authenticate with the SMTP server. Email Alert Username The username the switch uses to authenticate with the SMTP server. Email Alert Password The password the switch uses to authenticate with the SMTP server. Ubiquiti Networks, Inc.
Page 136: System Utility And Clear Commands
TTL, and the size of each probe . Parameter Description ip-address The IP address value should be a valid IP address. ipv6-address The IPv6 address value should be a valid IPv6 address. hostname The hostname value should be a valid hostname. Ubiquiti Networks, Inc.
Page 137 5 10.254.21.2 287 msec 293 msec 296 msec 6 192.168.76.2 290 msec 291 msec 289 msec 7 0.0.0.0 0 msec * Hop Count = 6 Last TTL = 7 Test attempt = 19 Test Success = 18 Ubiquiti Networks, Inc.
Page 138: Clear Config
2 . GVRP is restored to the factory default as a result of handling the VLAN RESTORE NOTIFY event . Since GVRP is disabled by default, this means that GVRP should be disabled and all of its dynamic VLANs should be deleted . clear vlan Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 139: Logout
Received response for icmp_seq = 1. time = 274009 usec Received response for icmp_seq = 2. time = 279459 usec ----10.254.2.160 PING statistics---- 3 packets transmitted, 3 packets received, 0% packet loss round-trip (msec) min/avg/max = 274/279/276 Ubiquiti Networks, Inc.
Page 140: Quit
FTP, TFTP, Xmodem, Ymodem, or Zmodem . SFTP and SCP are available as additional transfer methods if the software package supports secure management . If FTP is used, a password is required . copy source destination {verify | noverify} Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 141 Copies the startup configuration to the backup configuration. nvram:startup-config Copies the startup configuration to a server. nvram:startup-log Uploads the startup log file. nvram:traplog Copies the trap log file to a server. system:running- nvram:startup-config Saves the running configuration to NVRAM. config Ubiquiti Networks, Inc.
Page 142 Management access will be blocked for the duration of the transfer Are you sure you want to start? (y/n) y File transfer operation completed successfully. Validating and updating the users to the IAS users database. Updated IAS users database successfully. (UBNT EdgeSwitch) # Ubiquiti Networks, Inc.
Page 143: File Verify
Disables digital signature verification for both images and configuration files. script Verifies the digital signature of configuration files. no file verify Resets the configured digital signature verification value to the factory default value . no file verify Format Mode Global Config Ubiquiti Networks, Inc.
Page 144: Simple Network Time Protocol Commands
This command sets the poll interval for SNTP unicast clients in seconds as a power of two where interval can be a value from 6-10 . Default sntp unicast client poll-interval poll-interval Format Mode Global Config Ubiquiti Networks, Inc.
Page 145: Sntp Unicast Client Poll-Timeout
{ipaddress | ipv6address | hostname} [priority [version [port-id]]] Format Mode Global Config no sntp server This command deletes an server from the configured SNTP servers . no sntp server remove {ipaddress | ipv6address | hostname} Format Mode Global Config Ubiquiti Networks, Inc.
Page 146: Sntp Source-Interface
SNTP Client Port. The field displays the value 0 if it is default value. When the client port value is 0, if the client is in broadcast mode, it binds to port 123; if the client is in unicast mode, it binds to the port assigned by the underlying OS. Client Mode Configured SNTP Client Mode. Ubiquiti Networks, Inc.
Page 147: Show Sntp Server
The IP address of the interface configured as the SNTP client source interface. Address Example: The following shows example CLI display output for the command . (UBNT EdgeSwitch) #show sntp source-interface SNTP Client Source Interface....(not configured) (UBNT EdgeSwitch) # Ubiquiti Networks, Inc.
Page 148: Time Zone Commands
Example: The following shows examples of the command . (UBNT EdgeSwitch) (Config)# clock summer-time date 1 nov 2011 3:18 2 nov 2011 3:18 (UBNT EdgeSwitch) (Config)# clock summer-time date 1 nov 2011 3:18 2 nov 2011 3:18 offset 120 zone INDA Ubiquiti Networks, Inc.
Page 149: Clock Summer-Time Recurring
(UBNT EdgeSwitch) (Config)# clock timezone 5 minutes 30 zone INDA no clock timezone Use this command to reset the time zone settings . no clock timezone Format Mode Global Config Example: The following shows an example of the command . (UBNT EdgeSwitch) (Config)# no clock timezone Ubiquiti Networks, Inc.
Page 150: Show Clock
Acronym is INDA Offset is UTC+5:30 Summertime: Acronym is INDA Recurring every year Begins on second Sunday of Nov at 03:18 Ends on second Monday of Nov at 03:18 Offset is 120 minutes Summer-time is in effect. Ubiquiti Networks, Inc.
Page 151: Dhcp Server Commands
DHCP client . Name is a string consisting of standard ASCII characters . Default none client-name name Format Mode DHCP Pool Config no client-name This command removes the client name . no client-name Format Mode DHCP Pool Config Ubiquiti Networks, Inc.
Page 152: Default-Router
Mask are valid IP addresses; each made up of four decimal bytes ranging from 0 to 255 . IP address 0 .0 .0 .0 is invalid . The prefix-length is an integer from 0 to 32 . Default none host address [{mask | prefix-length}] Format Mode DHCP Pool Config Ubiquiti Networks, Inc.
Page 153: Lease
This command deletes the boot image name . no bootfile Format Mode DHCP Pool Config domain-name This command specifies the domain name (domain parameter) for a DHCP client . Default none domain-name domain Format Mode DHCP Pool Config Ubiquiti Networks, Inc.
Page 154: Domain-Name Enable
• p-node – Peer-to-peer • m-node – Mixed • h-node – Hybrid (recommended) Default none netbios-node-type type Format Mode DHCP Pool Config no netbios-node-type This command removes the NetBIOS node Type . no netbios-node-type Format Mode DHCP Pool Config Ubiquiti Networks, Inc.
Page 155: Next-Server
IP addresses; each made up of four decimal bytes ranging from 0 to 255 . IP address 0 .0 .0 .0 is invalid . no ip dhcp excluded-address low-address [high-address] Format Mode Global Config Ubiquiti Networks, Inc.
Page 156: Ip Dhcp Ping Packets
This command enables conflict logging on DHCP server . Default enabled ip dhcp conflict logging Format Mode Global Config no ip dhcp conflict logging This command disables conflict logging on DHCP server . no ip dhcp conflict logging Format Mode Global Config Ubiquiti Networks, Inc.
Page 157: Clear Ip Dhcp Binding
The maximum number of Ping Packets that will be sent to verify that an ip address id not already assigned. Conflict Logging Shows whether conflict logging is enabled or disabled. BootP Automatic Shows whether BootP for dynamic pools is enabled or disabled. Ubiquiti Networks, Inc.
Page 158: Show Ip Dhcp Pool Configuration
The number of DHCPINFORM messages the server has received. Message Sent: DHCP OFFER The number of DHCPOFFER messages the server sent. DHCP ACK The number of DHCPACK messages the server sent. DHCP NACK The number of DHCPNACK messages the server sent. Ubiquiti Networks, Inc.
Page 159: Show Ip Dhcp Conflict
The IP address of the host as recorded on the DHCP server. Detection Method The manner in which the IP address of the hosts were found on the DHCP Server. Detection time The time when the conflict was found. Ubiquiti Networks, Inc.
Page 160: Dns Client Commands
. A maximum of 32 names can be entered in to this list . Default none ip domain list name Format Mode Global Config no ip domain list Use this command to delete a name from a list . no ip domain list name Format Mode Global Config Ubiquiti Networks, Inc.
Page 161: Ip Name-Server
“lab-pc 45” . Default none ip host name ipaddress Format Mode Global Config no ip host Use this command to remove the name-to-address mapping . no ip host name Format Mode Global Config Ubiquiti Networks, Inc.
Page 162: Ipv6 Host
DNS cache maintained by the software . This command clears both IPv4 and IPv6 entries . clear host {name | all} Format Mode Privileged EXEC Parameter Description name A particular host entry to remove. The parameter name ranges from 1-255 characters. Removes all entries. Ubiquiti Networks, Inc.
Page 163: Show Hosts
Use this command to display the configured source interface details used for a DNS client . The IP address of the selected interface is used as source IP for all communications with the server . show ip name source-interface Format Mode Privileged Exec Ubiquiti Networks, Inc.
Page 164: Ip Address Conflict Commands
Time Since Conflict Detected The time in days, hours, minutes and seconds since the last address conflict was detected. clear ip address-conflict-detect This command clears the detected address conflict status information . clear ip address-conflict-detect Format Modes • Privileged EXEC • User EXEC Ubiquiti Networks, Inc.
Page 165: Serviceability Packet Tracing Commands
In the capture line mode, the captured packets are saved into the RAM and can be displayed on the CLI. Starting a line capture automatically terminates any remote capture session and capturing into a file. There is a maximum 128 packets of maximum 128 bytes that can be captured and displayed in line mode. Ubiquiti Networks, Inc.
Page 166: Capture Remote Port
Use this command to enable the tracing for AAA in User Manager . This is useful to debug authorization configuration and functionality in the User Manager . Each of the parameters are used to configure authorization debug flags . debug aaa authorization commands|exec Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 167: Debug Arp
Use this command to enable Auto VOIP debug messages . Use the optional parameters to trace H323, SCCP, or SIP packets respectively . Default disabled debug auto-voip [H323|SCCP|SIP|oui] Format Mode Privileged EXEC no debug auto-voip Use this command to disable Auto VOIP debug messages . no debug auto-voip Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 168: Debug Clear
(including devshell and drivshell commands) on specific predefined events . The debug config file is created manually and downloaded to the switch . Default disabled debug debug-config {download url | upload url} Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 169: Debug Dhcp Packet
A sample output of the trace message is shown below . <15> JAN 01 02:45:06 192.168.17.29-1 IGMPSNOOP[185429992]: igmp_snooping_debug.c(116) 908 % Pkt TX - Intf: 0/20(20), Vlan_Id:1 Src_Mac: 00:03:0e:00:00:00 Dest_Mac: 01:00:5e:00:00:01 Src_IP: 9.1.1.1 Dest_IP: 225.0.0.1 Type: V2_Membership_Report Group: 225.0.0.1 Ubiquiti Networks, Inc.
Page 170: Debug Igmpsnooping Packet Receive
IGMP Membership Query • V1_Membership_Report IGMP Version 1 Membership Report V2_Membership_Report • IGMP Version 2 Membership Report • V3_Membership_Report IGMP Version 3 Membership Report • V2_Leave_Group IGMP Version 2 Leave Group Group Multicast group address in the IGMP header. Ubiquiti Networks, Inc.
Page 171: Debug Ip Acl
<15> JAN 01 14:04:51 10.254.24.31-1 DOT3AD[183697744]: dot3ad_debug.c(385) 58 %% Pkt TX - Intf: 0/1(1), Type: LACP, Sys: 00:11:88:14:62:e1, State: 0x47, Key: 0x36 no debug lacp packet This command disables tracing of LACP packets . no debug lacp packet Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 172: Debug Ping Packet
A sample output of the trace message is shown below . <15> JAN 01 01:02:04 192.168.17.29-1 DOT1S[191096896]: dot1s_debug.c(1249) 101 % Pkt RX - Intf: 0/9(9), Source_Mac: 00:11:88:4e:c2:10 Version: 3, Root Mac: 00:11:88:4e:c2:00, Root Priority: 0x8000 Path Cost: 0 Ubiquiti Networks, Inc.
Page 173: Debug Spanning-Tree Bpdu Transmit
Format Mode Privileged EXEC debug tacacs debug tacacs packet Use the command to turn on TACACS+ debugging . debug tacacs {packet [receive | transmit] | accounting | authentication} Format Mode Global Config Ubiquiti Networks, Inc.
Page 174: Debug Transfer
{nfs | tftp | none} Format Mode Global Config no exception protocol Use this command to reset the exception protocol configuration to its factory default value . Default None no exception protocol Format Mode Global Config Ubiquiti Networks, Inc.
Page 175: Exception Dump Tftp-Server
MAC address when generating a core dump file . The prefix length is 15 characters . Default Core exception core-file {file-name-prefix | [hostname] | [time-stamp]} Format Mode Global Config Ubiquiti Networks, Inc.
Page 176: Exception Switch-Chip-Register
NFS mount point configuration Core File name prefix Core file prefix configuration. Hostname Core file name contains hostname if enabled. Timestamp Core file name contains timestamp if enabled. Switch Chip Register Dump Switch chip register dump configuration Ubiquiti Networks, Inc.
Page 177: Logging Persistent
Falling Threshold The percentage of memory buffer resources that, when usage falls below this level for the configured interval, triggers a notification. The range is 1 to 100. The default is 0 (disabled). Severity The severity level. Ubiquiti Networks, Inc.
Page 178: Show Mbuf Total
Number of message buffer allocation failures for RX Mid0 class of message buffer. Failures Total Rx High Alloc Number of message buffer allocation failures for RX High class of message buffer. Failures Total Tx Alloc Number of message buffer allocation failures for TX class of message buffer. Failures Ubiquiti Networks, Inc.
Page 179: Cable Test Command
10/100 Ethernet adapter, then the cable status may display as Open or Short because some Ethernet adapters leave unused wire pairs unterminated or grounded. Unknown is displayed if the cable length could not be determined. Ubiquiti Networks, Inc.
Page 180: Remote Monitoring Commands
This command sets the RMON hcalarm entry in the High Capacity RMON alarm MIB group . rmon hcalarm alarm-number variable sample-interval {absolute|delta} Format rising-threshold high value low value status {positive|negative} [rising-event-index] falling-threshold high value low value status {positive|negative} [falling-event-index] [startup {rising|falling|rising-falling}] [owner string] Mode Global Config Ubiquiti Networks, Inc.
Page 181 100 status positive 1 falling-threshold high 1 low 10 status positive startup rising owner myOwner no rmon hcalarm This command deletes the rmon hcalarm entry . no rmon hcalarm alarm-number Format Mode Global Config Example: The following shows an example of the command . (UBNT EdgeSwitch) (Config)# no rmon hcalarm 1 Ubiquiti Networks, Inc.
Page 182: Rmon Event
The owner string associated with the history control entry. The default is monitorHistoryControl. Owner Example: The following shows an example of the command . (UBNT EdgeSwitch) (Interface 0/1)# rmon collection history 1 buckets 10 interval 30 owner myOwner Ubiquiti Networks, Inc.
Page 183: Show Rmon
(UBNT EdgeSwitch) #show rmon alarms Index Owner ---------------------------------------------- alarmInterval.1 MibBrowser alarmInterval.1 MibBrowser Example: The following shows example CLI display output for the command . (UBNT EdgeSwitch) #show rmon alarm 1 Alarm 1 ---------- OID: alarmInterval.1 Last Sample Value: 1 Ubiquiti Networks, Inc.
Page 184: Show Rmon Collection History
Granted Owner Samples Samples ---------------------------------------------------------------------- myowner 1800 monitorHistoryControl monitorHistoryControl 1800 monitorHistoryControl monitorHistoryControl 1800 monitorHistoryControl monitorHistoryControl 1800 monitorHistoryControl monitorHistoryControl 1800 monitorHistoryControl monitorHistoryControl 1800 monitorHistoryControl monitorHistoryControl 1800 monitorHistoryControl monitorHistoryControl 1800 monitorHistoryControl monitorHistoryControl 1800 monitorHistoryControl 0/10 monitorHistoryControl --More-- or (q)uit Ubiquiti Networks, Inc.
Page 185: Show Rmon Events
The interval in seconds over which the data is sampled. The range is 1 to 3600. The default is 1800. Interval History Control The owner string associated with the history control entry. The default is monitorHistoryControl. Owner Maximum Table Size Maximum number of entries that the history table can hold. Ubiquiti Networks, Inc.
Page 186 Time Octets Packets Broadcast Multicast Util -------------------- ---------- --------- --------- ---------- -------- Jan 01 1970 21:41:43 0 Jan 01 1970 21:42:14 0 Jan 01 1970 21:42:44 0 Jan 01 1970 21:43:14 0 Jan 01 1970 21:43:44 0 Ubiquiti Networks, Inc.
Page 187: Show Rmon Log
Example: The following shows example CLI display output for the command . (UBNT EdgeSwitch) #show rmon log Event Description Time ------------------------------------------------ Example: The following shows example CLI display output for the command . (UBNT EdgeSwitch) #show rmon log 1 Maximum table size: 10 Event Description Time ------------------------------------------------ Ubiquiti Networks, Inc.
Page 188: Show Rmon Statistics Interfaces
Total number of HC overflow packets which are between 512 and 1023 octets in length. - 1023 Octets HC Overflow Pkts Total number of HC overflow packets which are between 1024 and 1518 octets in length. 1024 - 1518 Octets Ubiquiti Networks, Inc.
Page 189: Show Rmon Hcalarms
The default is valuePositive. High Capacity Alarm The lower 32 bits of the absolute value for threshold for the sampled statistic. The range is 0 to Falling-Threshold 4294967295. The default is 1. Absolute Value Low Ubiquiti Networks, Inc.
Page 190 Startup Alarm: rising-falling Rising Threshold High: 0 Rising Threshold Low: 1 Rising Threshold Status: Positive Falling Threshold High: 0 Falling Threshold Low: 1 Falling Threshold Status: Positive Rising Event: 1 Falling Event: 2 Startup Alarm: Rising-Falling Owner: MibBrowser Ubiquiti Networks, Inc.
Page 191: Statistics Application Commands
Format Mode Global Config Example: The following shows examples of the command . (UBNT EdgeSwitch) (Config)# no stats group received (UBNT EdgeSwitch) (Config)# no stats group received-errors (UBNT EdgeSwitch) (Config)# no stats group received-transmitted Ubiquiti Networks, Inc.
Page 192: Stats Flow-Based
. Setting the reporting method as none resets all the reporting methods . stats flow-based reporting list-of-reporting-methods Format Mode Global Config Example: The following shows examples of the command . (UBNT EdgeSwitch) (Config)# stats flow-based reporting email syslog (UBNT EdgeSwitch) (Config)# stats flow-based reporting none Ubiquiti Networks, Inc.
Page 193: Stats Group
This command deletes the interface or interface-range from the flow-based rule specified . no stats flow-based rule-id Format Mode Interface Config Example: The following shows examples of the command . (UBNT EdgeSwitch) (Interface 0/1-0/10)# no stats flow-based 1 (UBNT EdgeSwitch) (Interface 0/1-0/10)# no stats flow-based 2 Ubiquiti Networks, Inc.
Page 194: Show Stats Group
This command displays the configured time range, flow-based rule parameters, and the interface list for the flow specified . show stats flow-based rule-id|all Format Mode Privileged EXEC Parameter Description rule-id The unique identifier for the flow-based rule. Ubiquiti Networks, Inc.
Page 195 Flow based rule Id......2 Time Range........test Source IP........1.1.1.1 Source TCP Port........ 123 Source UDP Port........ 123 Destination IP......... 2.2.2.2 Destination TCP Port......123 Destination UDP Port......123 Interface List -------------- 0/1 - 0/2 Interface Hit Count --------- --------- Ubiquiti Networks, Inc.
Page 196: Switching Commands
• Configuration commands configure features and options of the switch . For every configuration command, there is a show command that displays the configuration setting . • Clear commands clear some or all of the settings to factory defaults . Ubiquiti Networks, Inc.
Page 197: Port Configuration Commands
This command disables automatic negotiation on all ports . no auto-negotiate all Format Mode Global Config description Use this command to create an alphanumeric description of an interface or range of interfaces . description description Format Mode Interface Config Ubiquiti Networks, Inc.
Page 198: Media-Type
“ip mtu” on page 324 . Default 1518 (untagged) mtu 1518-12288 Format Mode Interface Config no mtu This command sets the default MTU size (in bytes) for the interface . no mtu Format Mode Interface Config Ubiquiti Networks, Inc.
Page 199: Shutdown
| full-duplex] | {40G | 10G | 1000 | 100 | 10} {half-duplex | full-duplex}} Mode Interface Config speed all This command sets the speed and duplex setting for all interfaces . speed all {100 | 10} {half-duplex | full-duplex} Format Mode Global Config Ubiquiti Networks, Inc.
Page 200: Show Interface Media-Type
The Link is up or down. Link Trap This object determines whether or not to send a trap when link status changes. The factory default is enabled. LACP Mode LACP is enabled or disabled on this port. Ubiquiti Networks, Inc.
Page 201: Show Port Advertise
. If auto-negotiation is disabled, then operational local link advertisement is not displayed . show port advertise [slot/port] Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 202: Show Port Description
01:23:45:67:89:AB. Bit Offset Val The bit offset value. Example: The following shows example CLI display output for the command . (UBNT EdgeSwitch) #show port description 0/1 Interface...0/1 ifIndex.....1 Description..MAC address..00:10:18:82:0C:10 Bit Offset Val..1 Ubiquiti Networks, Inc.
Page 203: Spanning Tree Protocol Commands
This command sets the Configuration Identifier Name for use in identifying the configuration that this switch is name currently using . The is a string of up to 32 characters . Default base MAC address in hexadecimal notation spanning-tree configuration name name Format Mode Global Config Ubiquiti Networks, Inc.
Page 204: Spanning-Tree Configuration Revision
. This allows this port to transition to Forwarding State without delay . spanning-tree edgeport Format Mode Interface Config no spanning-tree edgeport This command specifies that this port is not an edge port within the common and internal spanning tree . no spanning-tree edgeport Format Mode Interface Config Ubiquiti Networks, Inc.
Page 205: Spanning-Tree Forceversion
Format Mode Global Config spanning-tree max-hops This command sets the Bridge Max Hops parameter to a new value for the common and internal spanning tree . Default spanning-tree max-hops 6-40 Format Mode Global Config Ubiquiti Networks, Inc.
Page 206: Spanning-Tree Mst
1 to 4094, that corresponds to the new instance ID to be added . The maximum number of multiple instances supported by the switch is 4 . Default none spanning-tree mst instance mstid Format Mode Global Config Ubiquiti Networks, Inc.
Page 207: Spanning-Tree Mst Priority
This command removes an association between a multiple spanning tree instance and one or more VLANs so that the VLAN(s) are again associated with the common and internal spanning tree . no spanning-tree mst vlan mstid vlanid Format Mode Global Config Ubiquiti Networks, Inc.
Page 208: Spanning-Tree Port Mode
This command sets the Bridge Transmit Hold Count parameter . Default spanning-tree transmit hold-count Format Mode Global Config Parameter Description hold-count The Bridge Tx hold-count parameter. The value is an integer between 1 and 10. Ubiquiti Networks, Inc.
Page 209: Show Spanning-Tree
Bridge Max Hops........ 20 Bridge Tx Hold Count......6 Bridge Forwarding Delay......15 Hello Time........2 Bridge Hold Time....... 6 CST Regional Root......80:00:00:10:18:48:FC:07 Regional Root Path Cost......0 Associated FIDs Associated VLANs --------------- ---------------- (UBNT EdgeSwitch) # Ubiquiti Networks, Inc.
Page 210: Show Spanning-Tree Brief
Rapid Spanning Tree Protocol Bridge Protocol Data Units sent. RSTP BPDUs Received Rapid Spanning Tree Protocol Bridge Protocol Data Units received. MSTP BPDUs Transmitted Multiple Spanning Tree Protocol Bridge Protocol Data Units sent. MSTP BPDUs Received Multiple Spanning Tree Protocol Bridge Protocol Data Units received. Ubiquiti Networks, Inc.
Page 211: Show Spanning-Tree Mst Detailed
This command displays the detailed settings for an MST instance . show spanning-tree mst detailed mstid Format Mode • Privileged EXEC • User EXEC Parameter Description mstid A multiple spanning tree instance identifier. The value is 0–4094. Ubiquiti Networks, Inc.
Page 212: Show Spanning-Tree Mst Port Detailed
The port identifier for this port within the CST. Port Priority The priority of the port within the CST. Port Forwarding State The forwarding state of the port within the CST. Port Role The role of the specified interface within the CST. Ubiquiti Networks, Inc.
Page 213: Port Path Cost
Example: The following shows example CLI display output for the command using a LAG interface number . (UBNT EdgeSwitch) >show spanning-tree mst port detailed 0 lag 1 Port Identifier........ 60:42 Port Priority........96 Port Forwarding State......Disabled Port Role........Disabled Ubiquiti Networks, Inc.
Page 214: Show Spanning-Tree Mst Port Summary
Example: The following shows example CLI display output for the command in slot/port format . (UBNT EdgeSwitch) >show spanning-tree mst port summary 0 0/1 MST Instance ID........ CST Port Interface Mode Type State Role Desc --------- -------- ------- ----------------- ---------- ---------- Enabled Disabled Disabled Ubiquiti Networks, Inc.
Page 215: Show Spanning-Tree Mst Port Summary Active
MST Instance ID List List of multiple spanning trees IDs currently configured. For each MSTID: • Associated FIDs • List of forwarding database identifiers associated with this instance. • Associated VLANs • List of VLAN IDs associated with this instance. Ubiquiti Networks, Inc.
Page 216: Show Spanning-Tree Summary
Identifier for the associated multiple spanning tree instance or “CST” if associated with the common and internal spanning tree. Example: The following shows example CLI display output for the command . (UBNT EdgeSwitch) >show spanning-tree vlan 1 VLAN Identifier........ 1 Associated Instance......CST Ubiquiti Networks, Inc.
Page 217: Vlan Commands
{admituntaggedonly | vlanonly | all} Format Mode Interface Config no vlan acceptframe This command resets the frame acceptance mode for the interface or range of interfaces to the default value . no vlan acceptframe Format Mode Interface Config Ubiquiti Networks, Inc.
Page 218: Vlan Ingressfilter
VLANS - blank string vlan name 1-4093 name Format Mode VLAN Config no vlan name This command sets the name of a VLAN to a blank string . no vlan name 1-4093 Format Mode VLAN Config Ubiquiti Networks, Inc.
Page 219: Vlan Participation
VLAN ID for this port . With either option, VLAN tagged frames are forwarded in accordance with the IEEE 802 .1Q VLAN specification . no vlan port acceptframe all Format Mode Global Config Ubiquiti Networks, Inc.
Page 220: Vlan Port Ingressfilter All
Format Mode Global Config vlan pvid This command changes the VLAN ID on an interface or range of interfaces . Default vlan pvid 1-4093 Format Mode • Interface Config • Interface Range Config Ubiquiti Networks, Inc.
Page 221: Vlan Tagging
Dynamic. A dynamic VLAN can be created by GVRP registration or during the 802.1X authentication process (DOT1X) if a RADIUS-assigned VLAN does not exist on the switch. Interface Interface in slot/port format. It is possible to set the parameters for all ports by using the selectors on the top line. Ubiquiti Networks, Inc.
Page 222: Show Vlan Internal Usage
Type of VLAN, which can be Default (VLAN ID = 1) or static (one that is configured and permanently defined), or a Dynamic (one that is created by GVRP registration). show vlan port This command displays VLAN port information . show vlan port {slot/port | all} Format Mode • Privileged EXEC • User EXEC Ubiquiti Networks, Inc.
Page 223 When disabled, all frames are forwarded in accordance with the 802.1Q VLAN bridge specification. The factory default is disabled. GVRP May be enabled or disabled. Default Priority The 802.1p priority assigned to tagged packets arriving on the port. Ubiquiti Networks, Inc.
Page 224: Private Vlan Commands
Configures an interface as a private VLAN promiscuous port. The promiscuous ports are members of the primary VLAN. no switchport mode private-vlan This command removes the private-VLAN association or mapping from the port . no switchport mode private-vlan Format Mode Interface Config Ubiquiti Networks, Inc.
Page 225: Private-Vlan
Designates a VLAN as a community VLAN. isolated Designates a VLAN as the isolated VLAN. primary Designates a VLAN as the primary VLAN. no private-vlan This command restores normal VLAN configuration . no private-vlan {association} Format Mode VLAN Config Ubiquiti Networks, Inc.
Page 226: Voice Vlan Commands
Use this command to either trust or untrust the data traffic arriving on the Voice VLAN interface or range of interfaces being configured . Default trust voice vlan data priority {untrust | trust} Format Mode Interface Config Ubiquiti Networks, Inc.
Page 227: Show Voice Vlan
Voice VLAN Untagged The tagging option for the Voice VLAN traffic. Voice VLAN CoS Override The Override option for the voice traffic arriving on the port. Voice VLAN Status The operational status of Voice VLAN on the port. Ubiquiti Networks, Inc.
Page 228: Provisioning (Ieee 802.1P) Commands
Global Config vlan priority This command configures the default 802 .1p port priority assigned for untagged packets for a specific interface . The range for the priority is 0–7 . Default vlan priority priority Format Mode Interface Config Ubiquiti Networks, Inc.
Page 229: Protected Ports Commands
(Interface Config) groupid Use this command to configure a port as unprotected . The parameter identifies the set of protected ports to which this interface is assigned . no switchport protected groupid Format Mode Interface Config Ubiquiti Networks, Inc.
Page 230: Show Switchport Protected
A string associated with this group as a convenience. It can be up to 32 alphanumeric characters long, including blanks. The default is blank. This field is optional. Protected Indicates whether the interface is protected or not (TRUE or FALSE). If the group is multiple groups then it shows TRUE in Group groupid. Ubiquiti Networks, Inc.
Page 231: Garp Commands
10 seconds . You can use this command on all ports (Global Config mode), or on a single port or a range of ports (Interface Config mode) and it only has an effect only when GVRP is enabled . The leave all time must be greater than the leave time . Ubiquiti Networks, Inc.
Page 232: Show Garp
• Privileged EXEC • User EXEC Term Definition GMRP Admin Mode The administrative mode of GARP Multicast Registration Protocol (GMRP) for the system. GVRP Admin Mode The administrative mode of GARP VLAN Registration Protocol (GVRP) for the system. Ubiquiti Networks, Inc.
Page 233: Gvrp Commands
Current attributes are a VLAN or multicast group. There is an instance of this timer on a per- Port, per-GARP participant basis. Permissible values are 10 to 100 centiseconds (0.1 to 1.0 seconds). The factory default is 20 centiseconds (0.2 seconds). The finest granularity of specification is one centisecond (0.01 seconds). Ubiquiti Networks, Inc.
Page 234 200 to 6000 centiseconds (2 to 60 seconds). The factory default is 1000 centiseconds (10 seconds). Port GMRP Mode The GMRP administrative mode for the port, which is enabled or disabled (default). If this parameter is disabled, Join Time, Leave Time and Leave All Time have no effect. Ubiquiti Networks, Inc.
Page 235: Gmrp Commands
• Interface Config • Global Config show gmrp configuration This command displays Generic Attributes Registration Protocol (GARP) information for one or all interfaces . show gmrp configuration {slot/port | all} Format Mode • Privileged EXEC • User EXEC Ubiquiti Networks, Inc.
Page 236: Show Mac-Address-Table Gmrp
The type of the entry. Static entries are those that are configured by the end user. Dynamic entries are added to the table as a result of a learning process or protocol. Description The text description of this multicast table entry. Interfaces The list of interfaces that are designated for forwarding (Fwd:) and filtering (Flt:). Ubiquiti Networks, Inc.
Page 237: Port-Based Network Access Control Commands
This command is used to clear all RADIUS statistics . clear radius statistics Format Mode Privileged EXEC dot1x eapolflood Use this command to enable EAPOL flood support on the switch . Default disabled dot1x eapolflood Format Mode Global Config Ubiquiti Networks, Inc.
Page 238: Dot1X Guest-Vlan
MAC-based 802 .1X authentication is enabled on the port . The maximum users supported per port is dependent count on the product . The value is in the range 1–48 . Default dot1x max-users count Format Mode Interface Config Ubiquiti Networks, Inc.
Page 239: Dot1X Port-Control
802 .1X unaware clients – such as printers, fax machines, and some IP phones – to authenticate to the network using the client MAC address as an identifier . Default disabled dot1x mac-auth-bypass Format Mode Interface Config Ubiquiti Networks, Inc.
Page 240: Dot1X Re-Authenticate
. In Monitor mode, a host is granted network access to an 802 .1X-enabled port even if it fails the authentication process . The results of the process are logged for diagnostic purposes . Default disabled dot1x system-auth-control monitor Format Mode Global Config Ubiquiti Networks, Inc.
Page 241: Dot1X Timeout
(4093 for EdgeSwitch) . The unauthenticated VLAN must be statically configured in the VLAN database to be operational . By default, the unauthenticated VLAN is 0; i .e ., invalid and not operational . Default dot1x unauthenticated-vlan vlan-id Format Mode Interface Config Ubiquiti Networks, Inc.
Page 242: Dot1X User
Enable Authentication Method Lists ---------------------------------- enableList enable none enableNetList enable deny Line Login Method List Enable Method List ------- ----------------- ------------------ Console defaultList enableList Telnet networkList enableNetList networkList enableNetList HTTPS :local HTTP :local DOT1X Ubiquiti Networks, Inc.
Page 243: Show Dot1X
The timer used by the authenticator state machine on this port to define periods of time in which it will not attempt to acquire a supplicant. The value is expressed in seconds and will be in the range 0 and 65535. Ubiquiti Networks, Inc.
Page 244 Protocol Version....... 1 PAE Capabilities....... Authenticator Control Mode........auto Authenticator PAE State......Initialize Backend Authentication State....Initialize Quiet Period (secs)......60 Transmit Period (secs)......30 Guest VLAN ID........0 Guest VLAN Period (secs)....... 90 Supplicant Timeout (secs)...... 30 Ubiquiti Networks, Inc.
Page 245: Session Timeout
The number of EAPOL frames that have been received by this authenticator in which the frame type is Received not recognized. EAP Length Error Frames The number of EAPOL frames that have been received by this authenticator in which the frame type is Received not recognized. Ubiquiti Networks, Inc.
Page 246: Show Dot1X Authentication-History
This value indicates the action to be taken once the session timeout expires. Possible values are Default and Radius-Request. If the value is Default, the session is terminated and client details are cleared. If the value is Radius-Request, then a reauthentication of the client is performed. Ubiquiti Networks, Inc.
Page 247: Show Dot1X Users
This command displays 802 .1X port security user information for locally configured users . show dot1x users slot/port Format Mode Privileged EXEC Term Definition Users Users configured locally to have access to the specified port. Ubiquiti Networks, Inc.
Page 248: 802.1X Supplicant Commands
Mode Interface Config dot1x supplicant timeout start-period start-period This command configures the timer interval to wait for the EAP identity request from the authenticator . Default 30 seconds dot1x supplicant timeout start-period 1-65535 Format Mode Interface Config Ubiquiti Networks, Inc.
Page 249: Dot1X Supplicant Timeout Held-Period
Displays the number of EAPOL frames transmitted via the port. EAPOL Start Frames Displays the number of EAPOL Start frames transmitted via the port. Transmitted EAPOL Logoff Frames Displays the number of EAPOL Log off frames that have been received on the port. Received Ubiquiti Networks, Inc.
Page 250 EAP Resp/Id frames transmitted....0 EAP Response frames transmitted....0 EAP Req/Id frames transmitted....0 EAP Req frames transmitted..... 0 Invalid EAPOL frames received....0 EAP length error frames received....0 Last EAPOL Frame Version....... 0 Last EAPOL Frame Source......00:00:00:00:02:01 Ubiquiti Networks, Inc.
Page 251: Storm-Control Commands
. Therefore, the rate of broadcast traffic is limited to the configured threshold . Default storm-control broadcast level 0-100 Format Mode • Global Config • Interface Config Ubiquiti Networks, Inc.
Page 252: Storm-Control Broadcast Rate
• Interface Config no storm-control multicast This command disables multicast storm recovery mode for all interfaces (Global Config mode) or one or more interfaces (Interface Config mode) . no storm-control multicast Format Mode • Global Config • Interface Config Ubiquiti Networks, Inc.
Page 253: Storm-Control Multicast Level
L2 unicast (destination lookup failure) traffic ingressing on an interface increases beyond the configured threshold, the traffic will be dropped . Therefore, the rate of unknown unicast traffic will be limited to the configured threshold . Default disabled storm-control unicast Format Mode • Global Config • Interface Config Ubiquiti Networks, Inc.
Page 254: Storm-Control Unicast Level
This command sets the unicast storm recovery threshold to the default value for all interfaces (Global Config mode) or one or more interfaces (Interface Config mode) and disables unicast storm recovery . no storm-control unicast rate Format Mode • Global Config • Interface Config Ubiquiti Networks, Inc.
Page 255: Show Storm-Control
(UBNT EdgeSwitch) #show storm-control all Bcast Bcast Mcast Mcast Ucast Ucast Intf Mode Level Mode Level Mode Level ------ ------- -------- ------- -------- ------- -------- Disable Disable Disable Disable Disable Disable Disable Disable Disable Disable Disable Disable Disable Disable Disable Ubiquiti Networks, Inc.
Page 256: Port-Channel/Lag (802.3Ad) Commands
(or range of port-channels) . Instead of slot/port, lag lag- intf-num lag-intf-num can be used as an alternate way to specify the LAG interface, where is the LAG port number . deleteport {slot/port | lag lag-intf_num} Format Mode Interface Config Ubiquiti Networks, Inc.
Page 257: Deleteport (Global Config)
Use this command to configure the administrative value of the LACP actor admin key on an interface or range of interfaces . The valid range for is 0–65535 . Default Internal Interface Number of this Physical Port lacp actor admin key key Format Mode Interface Config Note: This command is applicable only to port-channel interfaces . Ubiquiti Networks, Inc.
Page 258: Lacp Actor Admin State Individual
This command is applicable only to physical interfaces . no lacp actor admin state passive Use this command to set the LACP actor admin state to active . no lacp actor admin state passive Format Mode Interface Config Ubiquiti Networks, Inc.
Page 259: Lacp Actor Admin State
. The valid range for is 0 to 65535 . Default lacp partner admin key key Format Mode Interface Config Note: This command is applicable only to physical interfaces . Ubiquiti Networks, Inc.
Page 260: Lacp Partner Admin State Individual
This command is applicable only to physical interfaces . no lacp partner admin state passive Use this command to set the LACP partner admin state to active . no lacp partner admin state passive Format Mode Interface Config Ubiquiti Networks, Inc.
Page 261: Lacp Partner Port Id
This command is applicable only to physical interfaces . no lacp partner system-id Use this command to configure the default value representing the administrative value of the Aggregation Port’s protocol Partner’s System ID . no lacp partner system-id Format Mode Interface Config Ubiquiti Networks, Inc.
Page 262: Lacp Partner System Priority
This command enables Link Aggregation Control Protocol (LACP) on a port or range of ports . Default enabled port lacpmode Format Mode Interface Config no port lacpmode This command disables Link Aggregation Control Protocol (LACP) on a port . no port lacpmode Format Mode Interface Config Ubiquiti Networks, Inc.
Page 263: Port Lacpmode Enable All
Note: Both the and the commands set the values back to the default, regardless of the command used to configure the ports . Consequently, both show running-config . commands will display in Ubiquiti Networks, Inc.
Page 264: Port-Channel Adminmode
Source/Destination IP and source/destination TCP/UDP Port fields of the packet Enhanced hashing mode slot/port | all slot/port Global Config Mode only: The interface is a logical number of a configured port-channel; applies the command to all currently configured port-channels. Ubiquiti Networks, Inc.
Page 265: Port-Channel Local-Preference
0-65535 . Default 0x8000 port-channel system priority priority Format Mode Global Config no port-channel system priority Use this command to configure the default port-channel system priority value . no port-channel system priority Format Mode Global Config Ubiquiti Networks, Inc.
Page 266: Show Lacp Actor
Trap Flag Shows whether trap flags are enabled or disabled. Type Shows whether the port-channel is statically or dynamically maintained. Mbr Ports The members of this port-channel. Active Ports The ports that are actively participating in the port-channel. Ubiquiti Networks, Inc.
Page 267: Show Port-Channel
Auto True partner/long actor/long Auto True partner/long actor/long Auto False partner/long actor/long Auto False partner/long show port-channel system priority Use this command to display the port-channel system priority . show port-channel system priority Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 268: Show Port-Channel Counters
{lag-intf-num | slot/port} counters Format Mode Privileged EXEC clear port-channel all counters Use this command to clear and reset all port-channel and member flap counters for the specified interface . clear port-channel all counters Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 269: Port Mirroring Commands
{interface slot/port | vlan vlan-id | remote vlan vlan-id} [rx|tx] Example: To the configure RSPAN VLAN destination: monitor session session-id destination {interface slot/port | remote vlan vlan-id reflector-port slot/port} Example: To attach an ACL: monitor session session-id filter {ip access-group acl-id/acl-name | mac access-group acl-name} Ubiquiti Networks, Inc.
Page 270: No Monitor
This command displays the configured RSPAN VLAN . show vlan remote-span Format Mode Privileged EXEC Example: The following shows example output for the command . (UBNT EdgeSwitch)# show vlan remote-span Remote SPAN VLAN ------------------------------------------------------------------------ Ubiquiti Networks, Inc.
Page 271: Static Mac Filtering Commands
VLAN of vlanid . The macaddr parameter must be specified as a 6-byte hexadecimal number in the format vlanid of b1:b2:b3:b4:b5:b6 . The parameter must identify a valid VLAN . no macfilter adddest macaddr Format Mode Interface Config Ubiquiti Networks, Inc.
Page 272: Macfilter Adddest All
VLAN of vlanid . You must specify the macaddr parameter as a 6-byte hexadecimal number in the format of b1:b2:b3:b4:b5:b6 . vlanid parameter must identify a valid VLAN . no macfilter addsrc all macaddr vlanid Format Mode Global Config Ubiquiti Networks, Inc.
Page 273: Show Mac-Address-Table Static
The type of the entry. Static entries are those that are configured by the end user. Dynamic entries are added to the table as a result of a learning process or protocol. Description The text description of this multicast table entry. Interfaces The list of interfaces that are designated for forwarding (Fwd:) and filtering (Flt:). Ubiquiti Networks, Inc.
Page 274: Dhcp Client Commands
Format Mode Privileged EXEC Example: The following shows example CLI display output for the command . (UBNT EdgeSwitch) #show dhcp client vendor-id-option DHCP Client Vendor Identifier Option is Enabled DHCP Client Vendor Identifier Option string is EdgeSwitchClient. Ubiquiti Networks, Inc.
Page 275: Dhcp Snooping Configuration Commands
Use this command to configure the persistent location of the DHCP Snooping database . This can be local or a remote file on a given IP machine . Default local ip dhcp snooping database {local|tftp://hostIP/filename} Format Mode Global Config Ubiquiti Networks, Inc.
Page 276: Ip Dhcp Snooping Database Write-Delay
Interface Config no ip dhcp snooping limit Use this command to set the rate at which the DHCP Snooping messages come, and the burst level, to the defaults . no ip dhcp snooping limit Format Mode Interface Config Ubiquiti Networks, Inc.
Page 277: Ip Dhcp Snooping Log-Invalid
(UBNT EdgeSwitch) #show ip dhcp snooping DHCP snooping is Disabled DHCP snooping source MAC verification is enabled DHCP snooping is enabled on the following VLANs: 11 - 30, 40 Interface Trusted Log Invalid Pkts --------- -------- ---------------- Ubiquiti Networks, Inc.
Page 278: Show Ip Dhcp Snooping Binding
(UBNT EdgeSwitch) #show ip dhcp snooping database agent url: /10.131.13.79:/sai1.txt write-delay: 5000 show ip dhcp snooping interfaces Use this command to show the DHCP Snooping status of the interfaces . show ip dhcp snooping interfaces Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 279: Show Ip Dhcp Snooping Statistics
Example: The following shows example CLI display output for the command . (UBNT EdgeSwitch) #show ip dhcp snooping statistics Interface MAC Verify Client Ifc DHCP Server Failures Mismatch Msgs Rec’d ----------- ---------- ---------- ----------- 0/10 0/11 0/12 0/13 0/14 0/15 0/16 0/17 0/18 0/19 0/20 Ubiquiti Networks, Inc.
Page 280: Clear Ip Dhcp Snooping Binding
[interface slot/port] Format Mode • Privileged EXEC • User EXEC clear ip dhcp snooping statistics Use this command to clear all DHCP Snooping statistics . clear ip dhcp snooping statistics Format Mode • Privileged EXEC • User EXEC Ubiquiti Networks, Inc.
Page 281: Igmp Snooping Configuration Commands
. IGMP Snooping functionality is restored if routing is disabled or if port-channel (LAG) membership is removed from the interface . Default disabled set igmp interfacemode Format Mode Global Config no set igmp interfacemode This command disables IGMP Snooping on all interfaces . no set igmp interfacemode Format Mode Global Config Ubiquiti Networks, Inc.
Page 282: Set Igmp Fast-Leave
IGMP Query Interval time value . The range is 1 to 25 seconds . The optional parameter is supported only in VLAN Config mode . Default 10 seconds set igmp maxresponse [vlan_id] 1-25 Format Mode Global Config, Interface Config, VLAN Config Ubiquiti Networks, Inc.
Page 283: Set Igmp Mcrtrexpiretime
Format Mode Interface Config no set igmp mrouter interface This command disables the status of the interface as a statically configured multicast router interface . no set igmp mrouter interface Format Mode Interface Config Ubiquiti Networks, Inc.
Page 284: Set Igmp Report-Suppression
Multicast Router Expiry Time The amount of time to wait before removing an interface from the list of interfaces with multicast routers attached. The interface is removed if a query is not received. This value may be configured. Ubiquiti Networks, Inc.
Page 285: Show Igmpsnooping Mrouter Interface
This command displays information about statically configured ports . show igmpsnooping mrouter vlan slot/port Format Mode Privileged EXEC Term Definition Interface The port on which multicast router information is being displayed. VLAN ID The list of VLANs of which the interface is a member. Ubiquiti Networks, Inc.
Page 286: Show Igmpsnooping Ssm
The type of the entry, which is either static (added by the user) or dynamic (added to the table as a result of a learning process or protocol). Description The text description of this multicast table entry. Interfaces The list of interfaces that are designated for forwarding (Fwd:) and filtering (Flt:). Ubiquiti Networks, Inc.
Page 287: Igmp Snooping Querier Commands
1-1800 Format Mode Global Config no set igmp querier query-interval Use this command to set the IGMP Querier Query Interval time to its default value . no set igmp querier query-interval Format Mode Global Config Ubiquiti Networks, Inc.
Page 288: Set Igmp Querier Timer Expiry
Use this command to display IGMP Snooping Querier information . Configured information is displayed whether or not IGMP Snooping Querier is enabled . show igmpsnooping querier [{detail | vlan vlanid}] Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 289 Indicates the IGMP version of the most recent Querier from which a Query was received on this VLAN. detail When the optional argument is used, the command shows the global information and the information for all Querier-enabled VLANs . Ubiquiti Networks, Inc.
Page 290: Port Security Commands
This command sets the maximum number of statically locked MAC addresses allowed on a port . The valid range is 0–20 . Default port-security max-static maxvalue Format Mode Interface Config no port-security max-static This command sets maximum number of statically locked MAC addresses to the default value . no port-security max-static Format Mode Interface Config Ubiquiti Networks, Inc.
Page 291: Port-Security Mac-Address
. Instead of slot/port, lag lag-intf-num can also be used to specify the lag-intf-num LAG interface where is the LAG port number . show port-security [{slot/port | all}] Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 292: Show Port-Security Dynamic
MAC Address of statically locked MAC. Example: The following shows example CLI display output for the command . (EdgeSwitch) #show port-security static 0/1 Number of static MAC addresses configured: 2 Statically configured MAC Address VLAN ID Sticky --------------------------------- ------- ------ 00:00:00:00:00:01 00:00:00:00:00:02 Ubiquiti Networks, Inc.
Page 293: Show Port-Security Violation
LAG interface, where is the LAG port number . show port-security violation slot/port Format Mode Privileged EXEC Term Definition MAC Address MAC Address of discarded packet on locked port. Ubiquiti Networks, Inc.
Page 294: Lldp (802.1Ab) Commands
Use this command to return any or all timing parameters for local data transmission on ports enabled for LLDP to the default values . no lldp timers [interval] [hold] [reinit] Format Mode Global Config Ubiquiti Networks, Inc.
Page 295: Lldp Transmit-Tlv
Use this command to configure how frequently the system sends remote data change notifications . The interval parameter is the number of seconds to wait between sending notifications . The valid interval range is 5-3600 seconds . Default lldp notification-interval interval Format Mode Global Config Ubiquiti Networks, Inc.
Page 296: Clear Lldp Statistics
Shows whether the interface sends optional TLVs in the LLDPDUs. The TLV codes can be 0 (Port Description), 1 (System Name), 2 (System Description), or 3 (System Capability). Mgmt Shows whether the interface transmits system management address information in the LLDPDUs. Ubiquiti Networks, Inc.
Page 297: Show Lldp Statistics
The system name of the remote device. Example: The following shows example CLI display output for the command . (UBNT EdgeSwitch) #show lldp remote-device all LLDP Remote Device Summary Local Interface RemID Chassis ID Port ID System Name ------- ------- -------------------- ------------------ ------------------ Ubiquiti Networks, Inc.
Page 298: Show Lldp Remote-Device Detail
Example: The following shows example CLI display output for the command . (UBNT EdgeSwitch) #show lldp remote-device detail 0/7 LLDP Remote Device Detail Local Interface: 0/7 Remote Identifier: 2 Chassis ID Subtype: MAC Address Chassis ID: 00:FC:E3:90:01:0F Ubiquiti Networks, Inc.
Page 299: Show Lldp Local-Device
Indicates the primary function(s) of the device. Supported System Capabilities Enabled Shows which of the supported system capabilities are enabled. Management Address The type of address and the specific address the local LLDP agent uses to send and receive information. Ubiquiti Networks, Inc.
Page 300: Lldp-Med Commands
Transmit the LLDP capabilities TLV. ex-pd Transmit the LLDP extended PD TLV. ex-pse Transmit the LLDP extended PSE TLV. inventory Transmit the LLDP inventory TLV. location Transmit the LLDP location TLV. network-policy Transmit the LLDP network policy TLV. Ubiquiti Networks, Inc.
Page 301: Lldp Med All
Transmit the LLDP capabilities TLV. ex-pd Transmit the LLDP extended PD TLV. ex-pse Transmit the LLDP extended PSE TLV. inventory Transmit the LLDP inventory TLV. location Transmit the LLDP location TLV. network-policy Transmit the LLDP network policy TLV. Ubiquiti Networks, Inc.
Page 302: Show Lldp Med
(UBNT EdgeSwitch) #show lldp med interface 0/2 Interface Link configMED operMED ConfigNotify TLVsTx --------- ------ --------- -------- ------------ ----------- Disabled Disabled Disabled TLV Codes: 0- Capabilities, 1- Network Policy 2- Location, 3- Extended PSE 4- Extended Pd, 5- Inventory (UBNT EdgeSwitch) # Ubiquiti Networks, Inc.
Page 303: Show Lldp Med Local-Device Detail
Asset ID: xxx xxx xxx Location Subtype: elin Info: xxx xxx xxx Extended POE Device Type: pseDevice Extended POE PSE Available: 0.3 Watts Source: primary Priority: critical Extended POE PD Required: 0.2 Watts Source: local Priority: low Ubiquiti Networks, Inc.
Page 304: Show Lldp Med Remote-Device
MED Capabilities Enabled: capabilities, networkpolicy Device Class: Endpoint Class I Network Policies Media Policy Application Type : voice Vlan ID: 10 Priority: 5 DSCP: 1 Unknown: False Tagged: True Media Policy Application Type : streamingvideo Vlan ID: 20 Priority: 1 Ubiquiti Networks, Inc.
Page 305 Asset ID: xxx xxx xxx Location Subtype: elin Info: xxx xxx xxx Extended POE Device Type: pseDevice Extended POE PSE Available: 0.3 Watts Source: primary Priority: critical Extended POE PD Required: 0.2 Watts Source: local Priority: low Ubiquiti Networks, Inc.
Page 306: Denial Of Service Commands
Denial of Service prevention is active for this type of attack . If packets ingress with SIP = DIP, the packets will be dropped if the mode is enabled . Default disabled dos-control sipdip Format Mode Global Config Ubiquiti Networks, Inc.
Page 307: Dos-Control Firstfrag
PSH set and TCP Sequence Number set to 0 or having TCP Flags SYN and FIN both set, the packets will be dropped if the mode is enabled . Default disabled dos-control tcpflag Format Mode Global Config no dos-control tcpflag This command sets disables TCP Flag Denial of Service protections . no dos-control tcpflag Format Mode Global Config Ubiquiti Networks, Inc.
Page 308: Dos-Control L4Port
Format Mode Global Config no dos-control tcpport This command disables TCP L4 source = destination port number (Source TCP Port = Destination TCP Port) Denial of Service protection . no dos-control tcpport Format Mode Global Config Ubiquiti Networks, Inc.
Page 309: Dos-Control Udpport
. Default disabled dos-control tcpoffset Format Mode Global Config no dos-control tcpoffset This command disabled TCP Offset Denial of Service protection . no dos-control tcpoffset Format Mode Global Config Ubiquiti Networks, Inc.
Page 310: Dos-Control Tcpsyn
Denial of Service prevention is active for this type of attack . If ICMPv4 Echo Request (PING) packets ingress having a size greater than the configured value, the packets will be dropped if the mode is enabled . Default disabled (512) dos-control icmpv4 [0-16376] Format Mode Global Config Ubiquiti Networks, Inc.
Page 311: Dos-Control Icmpv6
ICMP packets that have a type set to ECHO_REQ (ping) and a size greater than the configured ICMPv4 Payload Size. Max ICMPv4 Payload Size The maximum ICMPv4 payload size to accept when ICMPv4 DoS protection is enabled. Ubiquiti Networks, Inc.
Page 312 IP fragment offset equal to 1. TCP Offset Mode The administrative mode of TCP Offset DoS prevention. Enabling this causes the switch to drop packets that have a TCP header Offset equal to 1. Ubiquiti Networks, Inc.
Page 313: Mac Database Commands
The list of interfaces that are designated for forwarding (Fwd:) and filtering (Flt:). Forwarding Interfaces The resultant forwarding list is derived from combining all the component’s forwarding interfaces and removing the interfaces that are listed as the static filtering interfaces. Ubiquiti Networks, Inc.
Page 314: Show Mac-Address-Table Stats
Most MFDB Entries Ever The largest number of entries that have been present in the Multicast Forwarding Database table. This Used value is also known as the MFDB high-water mark. Current Entries The current number of entries in the MFDB. Ubiquiti Networks, Inc.
Page 315: Chapter 5: Routing Commands
• Configuration commands configure features and options of the switch . For every configuration command, there is a show command that displays the configuration setting . • Clear commands clear some or all of the settings to factory defaults . Ubiquiti Networks, Inc.
Page 316: Address Resolution Protocol Commands
. In a network where the number of potential neighbors is greater than the ARP cache capacity, enabling dynamic renew could prevent some neighbors from communicating because the ARP cache is full . Default disabled arp dynamicrenew Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 317: Arp Purge
The value for seconds is a valid positive integer, which represents the IP ARP entry ageout time in seconds . The range for seconds is between 15-21600 seconds . Default 1200 arp timeout 15-21600 Format Mode Global Config Ubiquiti Networks, Inc.
Page 318: Clear Arp-Cache
The routing slot/port associated with the device ARP entry. Type The type that is configurable. The possible values are Local, Gateway, Dynamic and Static. The current age of the ARP entry since last refresh (in hh:mm:ss format) Ubiquiti Networks, Inc.
Page 319: Show Arp Brief
Privileged EXEC Term Definition IP Address The IP address of a device on a subnet attached to the switch. MAC Address The hardware MAC address of that device. Interface The routing slot/port associated with the device’s ARP entry. Ubiquiti Networks, Inc.
Page 320: Ip Routing Commands
Example: The following example of the command shows the configuration of the subnet mask with an IP address in the dotted decimal format on interface 4/1 . (UBNT EdgeSwitch) #config (UBNT EdgeSwitch) (Config)#interface 4/1 (UBNT EdgeSwitch) (Interface 4/1)#ip address 192.168.10.1 255.255.255.254 Ubiquiti Networks, Inc.
Page 321: Ip Address Dhcp
253 . A default gateway configured with this command is more preferred than a default gateway learned from a DHCP server . ip default-gateway ipaddr Format Mode Global Config Parameter Description ipaddr The IPv4 address of an attached router. Ubiquiti Networks, Inc.
Page 322: Release Dhcp
. The preference also controls whether a static route is more or less preferred than other static routes to the same destination . A route with a preference of 255 cannot be used to forward traffic . Ubiquiti Networks, Inc.
Page 323: Ip Route Default
This command sets the default static route preference value in the router . Lower route preference values are preferred when determining the best route . no ip route distance Format Mode Global Config Ubiquiti Networks, Inc.
Page 324: Ip Netdirbcast
This command configures the link layer encapsulation type for the packet on an interface or range of interfaces . ethernet or snap . The encapsulation type can be Default ethernet encapsulation {ethernet | snap} Format Mode Interface Config Note: Routed frames are always Ethernet-encapsulated when a frame is routed to a VLAN . Ubiquiti Networks, Inc.
Page 325: Show Dhcp Lease
(UBNT EdgeSwitch) #show ip brief Default Time to Live......64 Routing Mode........Disabled Maximum Next Hops......4 Maximum Routes......... 128 ICMP Rate Limit Interval....... 1000 msec ICMP Rate Limit Burst Size..... 100 messages ICMP Echo Replies......Enabled ICMP Redirects......... Enabled Ubiquiti Networks, Inc.
Page 326: Show Ip Interface
Routing Mode........Disable Administrative Mode......Enable Forward Net Directed Broadcasts....Disable Active State........Inactive Link Speed Data Rate......Inactive MAC Address........00:10:18:82:0C:68 Encapsulation Type......Ethernet IP MTU......... 1500 Bandwidth........100000 kbps Destination Unreachables....... Enabled ICMP Redirects......... Enabled Ubiquiti Networks, Inc.
Page 327: Show Ip Interface Brief
. connected keyword for protocol, the Note: If you use the option is not available because there are no best or nonbest connected routes . Ubiquiti Networks, Inc.
Page 328 S 12.0.0.0/8 [5/0] directly connected, Null0 S 23.0.0.0/8 [3/0] directly connected, Null0 C 1.1.1.0/24 [0/1] directly connected, 0/11 C 2.2.2.0/24 [0/1] directly connected, 0/1 C 5.5.5.0/24 [0/1] directly connected, 0/5 C 11.11.11.0/24 [0/1] directly connected, 0/11 S 10.3.2.0/24 [1/0] via 1.1.1.2, 0/11 Ubiquiti Networks, Inc.
Page 329: Show Ip Route Ecmp-Groups
Total number of routes installed by RIP protocol. BGP Routes Total number of routes installed by the BGP protocol. External The number of external BGP routes. Internal The number of internal BGP routes. Local The number of local BGP routes. Ubiquiti Networks, Inc.
Page 330 The current number of routes with each number of next hops. Example: The following shows example CLI display output for the command . (UBNT EdgeSwitch) #show ip route summary Connected Routes....... 7 Static Routes........1 RIP Routes........20 BGP Routes........10 External........0 Internal........10 Local........0 Ubiquiti Networks, Inc.
Page 331: Clear Ip Route Counters
The route preference value of the default gateway learned from the DHCP server. Example: The following shows example CLI display output for the command . (UBNT EdgeSwitch) #show ip route preferences Local.......... 0 Static......... 1 Configured Default Gateway..... 253 DHCP Default Gateway......254 Ubiquiti Networks, Inc.
Page 332: Show Ip Stats
Example: The following shows example CLI display output for the command . (UBNT EdgeSwitch) #show routing heap summary Heap Size....... 95053184 Memory In Use....56998 Memory on Free List..... 47 Memory Available in Heap..94996170 In Use High Water Mark..57045 Ubiquiti Networks, Inc.
Page 333: Routing Policy Commands
(Optional) If this option is configured, then a prefix is only considered a match if its network mask length is greater than or equal to this value. This value must be longer than the network length and less than or equal to 32. Ubiquiti Networks, Inc.
Page 334: Ip Prefix-List Description
. EdgeSwitch accepts up to 64 route maps . Default No route maps are configured by default. If no permit or deny tag is given, permit is the default. route-map map-tag [permit|deny] [sequence-number] Format Mode Global Configuration Ubiquiti Networks, Inc.
Page 335: Match Ip Address
1 to 99 for standard access list number. This number is 100 to 199 for extended access list number. access-list-name The access-list name that identifies named IP ACLs. Access-list name can be up to 31 characters in length. A maximum of 16 ACLs can be specified in this ‘match’ clause. Ubiquiti Networks, Inc.
Page 336 Current number of all ACLs: 9 Maximum number of all ACLs: 100 MAC ACL Name Rules Direction Interface(s) VLAN(s) ------------------------------- ----- --------- ---------------- ---------- madan mohan goud (UBNT EdgeSwitch) # (UBNT EdgeSwitch) #configure (UBNT EdgeSwitch) (Config)#route-map madan Ubiquiti Networks, Inc.
Page 337: Match Length
Example: The following shows an example of the command . (UBNT EdgeSwitch) (config-route-map)# match length 64 1500 no match length Use this command to delete a match statement from a route map . no match length Format Mode Route Map Configuration Ubiquiti Networks, Inc.
Page 338: Match Mac-List
10 Match clauses: mac-list (access-lists) : madan mohan goud Set clauses: (UBNT EdgeSwitch) (Config)#mac access-list extended madan (UBNT EdgeSwitch) (Config-mac-access-list)#permit 00:00:00:00:00:01 ff:ff:ff:ff:ff:ff any Request denied. Another application using this ACL restricts the number of rules allowed. Ubiquiti Networks, Inc.
Page 339: Set Interface
. A default route in the routing table is not considered an explicit route for an unknown destination address . set ip next-hop set ip default next-hop In a route-map statement, the terms set ip next-hop mutually exclusive; however, can be configured in a separate route-map statement . Ubiquiti Networks, Inc.
Page 340: Set Ip Precedence
Format Mode Route Map Configuration show ip policy This command lists the route map associated with each interface . show ip policy Format Mode Privileged Exec Term Definition Interface The interface Route-map The route map Ubiquiti Networks, Inc.
Page 341: Show Ip Prefix-List
3, range entries: 3, sequences: 5 - 15, refcount: 0 seq 5 permit 10.10.1.1/20 ge 22 (hitcount: 0) seq 10 permit 10.10.1.2/20 le 30 (hitcount: 0) seq 15 permit 10.10.1.2/20 ge 29 le 30 (hitcount: 0) Ubiquiti Networks, Inc.
Page 342: Show Route-Map
(Optional) Network number and length (in bits) of the network mask. If this option is specified, hit counters are only cleared for the matching statement. Example: The following shows an example of the command . (UBNT EdgeSwitch) # clear ip prefix-list orange 20.0.0.0/8 Ubiquiti Networks, Inc.
Page 343: Router Discovery Protocol Commands
This command configures the maximum time, in seconds, allowed between sending router advertisements from maxadvertinterval the interface . The range for is 4 to 1800 seconds . Default ip irdp maxadvertinterval 4-1800 Format Mode Interface Config Ubiquiti Networks, Inc.
Page 344: Ip Irdp Minadvertinterval
Interface Config no ip irdp preference This command configures the default preferability of the address as a default router address, relative to other router addresses on the same subnet . no ip irdp preference Format Mode Interface Config Ubiquiti Networks, Inc.
Page 345: Show Ip Irdp
Hold Time The amount of time, in seconds, that a system should keep the router advertisement before discarding it. Preference The preference of the address as a default router address, relative to other router addresses on the same subnet. Ubiquiti Networks, Inc.
Page 346: Virtual Lan Routing Commands
Example 3: In this example, an interface ID that is already in use is selected . In this case, the CLI displays an error message and does not create the VLAN interface . (UBNT EdgeSwitch) #show ip vlan MAC Address used by Routing VLANs: 00:11:88:59:47:36 Ubiquiti Networks, Inc.
Page 347 !Current SNTP Synchronized Time: SNTP Last Attempt Status Is Not Successful vlan database exit configure aaa authentication enable “enableNetList” none line console serial timeout 0 exit line telnet exit line ssh exit router rip exit router ospf exit ipv6 router ospf exit exit Ubiquiti Networks, Inc.
Page 348: Interface Vlan
VLAN ID The identifier of the VLAN. Logical Interface The logical slot/port associated with the VLAN routing interface. IP Address The IP address associated with this VLAN. Subnet Mask The subnet mask that is associated with this VLAN. Ubiquiti Networks, Inc.
Page 349: Dhcp And Bootp Relay Commands
. The parameter has a range of 0 to 100 seconds . Default bootpdhcprelay minwaittime 0-100 Format Mode Global Config no bootpdhcprelay minwaittime This command configures the default minimum wait time in seconds for BootP/DHCP Relay on the system . no bootpdhcprelay minwaittime Format Mode Global Config Ubiquiti Networks, Inc.
Page 350: Bootpdhcprelay Serverip
Indicates whether relaying of requests is enabled or disabled. Circuit Id Option Mode The DHCP circuit Id option which may be enabled or disabled. show ip bootpdhcprelay This command displays BootP/DHCP Relay information . show ip bootpdhcprelay Format Modes • Privileged EXEC • User EXEC Ubiquiti Networks, Inc.
Page 351 The DHCP circuit Id option which may be enabled or disabled. Example: The following shows an example of the command . (UBNT EdgeSwitch) >show ip bootpdhcprelay Maximum Hop Count......4 Minimum Wait Time(Seconds)..... 0 Admin Mode........Disable Circuit Id Option Mode......Enable Ubiquiti Networks, Inc.
Page 352: Ip Helper Commands
IP addresses . Otherwise, the relay agent checks if there is a global configuration for the destination UDP port . If so, the relay agent unicasts the packet to the configured server IP addresses . Otherwise the packet is not relayed . Ubiquiti Networks, Inc.
Page 353: Clear Ip Helper Statistics
• netbios-dgm Port 138 • netbios-ns Port 137 • Port 123 • pim-auto-rp Port 496 • Port 520 tacacs • Port 49 • tftp Port 69 time • Port 37 Other ports must be specified by number. Ubiquiti Networks, Inc.
Page 354: Ip Helper-Address (Interface Config)
• netbios-dgm Port 138 netbios-ns • Port 137 • Port 123 pim-auto-rp • Port 496 • Port 520 • tacacs Port 49 tftp • Port 69 time • Port 37 Other ports must be specified by number. Ubiquiti Networks, Inc.
Page 355: Ip Helper Enable
Example: The following shows an example of the command . (UBNT EdgeSwitch)(config)#ip helper enable no ip helper enable Use the form of this command to disable relay of all UDP packets . no ip helper enable Format Mode Global Config Ubiquiti Networks, Inc.
Page 356: Show Ip Helper-Address
The number of DHCP client messages received whose hop count is larger than the maximum allowed. exceeded max The maximum hop count is a configurable value listed in show bootpdhcprelay. A log message is written for each such failure. The DHCP relay agent does not relay these packets. Ubiquiti Networks, Inc.
Page 357 UDP client messages relayed....2 DHCP message hop count exceeded max.... 0 DHCP message with secs field below min..0 DHCP message with giaddr set to local address.. 0 Packets with expired TTL....... 0 Packets that matched a discard entry... 0 Ubiquiti Networks, Inc.
Page 358: Icmp Throttling Commands
Default enable ip icmp echo-reply Format Mode Global Config no ip icmp echo-reply Use this command to prevent the generation of ICMP Echo Reply messages by the router . no ip icmp echo-reply Format Mode Global Config Ubiquiti Networks, Inc.
Page 359: Ip Icmp Error-Interval
100 messages ip icmp error-interval burst-interval [burst-size] Format Mode Global Config no ip icmp error-interval burst-interval burst-size Use the form of the command to return to their default values . no ip icmp error-interval Format Mode Global Config Ubiquiti Networks, Inc.
Page 360: Chapter 6: Ipv6 Management Commands
• Configuration commands configure features and options of the switch . For every configuration command, there is a show command that displays the configuration setting . • Clear commands clear some or all of the settings to factory defaults . Ubiquiti Networks, Inc.
Page 361: Ipv6 Management Commands
Use this command with the autoconfig option to disable the stateless global address autoconfiguration on the network port . Use this command with the dhcp option disables the dhcpv6 client protocol on the network port . no network ipv6 address {address/prefix-length [eui64] | autoconfig | dhcp} Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 362: Network Ipv6 Gateway
The time in seconds that has elapsed since an entry was added to the cache. Last Updated The time in seconds that has elapsed since an entry was added to the cache. Type The type of neighbor entry: Static if the entry is manually configured, Dynamic if dynamically resolved. Ubiquiti Networks, Inc.
Page 363: Ping Ipv6
Use the interface keyword to ping an interface by using the link-local address or the global IPv6 address of the interface. size Use the optional size keyword to specify the size of the ping packet. ipv6-address The link local IPv6 address of the device you want to query. Ubiquiti Networks, Inc.
Page 364: Loopback Interface Commands
The IPv4 address of the interface. IPv6 is enabled (disabled) Shows whether IPv6 is enabled on the interface. IPv6 Address/Length is The IPv6 address of the interface. MTU size The maximum transmission size for packets on this interface, in bytes. Ubiquiti Networks, Inc.
Page 365: Quality Of Service Commands
• Show commands display switch settings, statistics, and other information . • Configuration commands configure features and options of the switch . For every configuration command, there is a show command that displays the configuration setting . Ubiquiti Networks, Inc.
Page 366: Class Of Service Commands
(IP precedence value) is only valid on platforms that support independent per-port class of service mappings . classofservice ip-precedence-mapping [0-7] Format Mode Global Config no classofservice ip-precedence-mapping This command returns the mapping to its default value . no classofservice ip-dscp-mapping Format Mode Global Config Ubiquiti Networks, Inc.
Page 367: Classofservice Trust
This command activates weighted random early discard (WRED) for each specified queue on the interface . random-detect queue-parms random- Specific WRED parameters are configured using the and the detect exponential-weighting-constant commands . cos-queue random-detect queue-id-1 [queue-id-2...queue-id-n] Format Modes Global Config, Interface Config Ubiquiti Networks, Inc.
Page 368: Cos-Queue Strict
Use this command to disable WRED, thereby restoring the default tail drop operation for all queues on the interface . no random-detect Format Modes Global Config, Interface Config random-detect exponential weighting-constant This command is used to configure the WRED decay exponent for a CoS queue interface . random-detect exponential-weighting-constant 0-15 Format Modes Interface Config Ubiquiti Networks, Inc.
Page 369: Random-Detect Queue-Parms
Privileged EXEC The following information is repeated for each user priority . Term Definition User Priority The 802.1p user priority value. Traffic Class The traffic class internal queue identifier to which the user priority value is mapped. Ubiquiti Networks, Inc.
Page 370: Show Classofservice Ip-Dscp-Mapping
Term Definition Interface Shaping Rate The global interface shaping rate value. WRED Decay Exponent The global WRED decay exponent value. Queue Id An interface supports n queues numbered 0 to (n-1). The specific n value is platform-dependent. Ubiquiti Networks, Inc.
Page 371: Show Interfaces Random-Detect
This command displays the tail drop threshold information . If you specify the slot/port, the command displays the tail drop threshold information for the specified interface . show interfaces tail-drop-threshold [slot/port] Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 372: Differentiated Services Commands
This command sets the DiffServ operational mode to inactive . While disabled, the DiffServ configuration is retained and can be changed, but it is not activated . When enabled, DiffServ services are activated . no diffserv Format Mode Global Config Ubiquiti Networks, Inc.
Page 373: Diffserv Class Commands
DiffServ class . The parameter is a case-sensitive alphanumeric string from 1 to 31 characters uniquely identifying the class . Default none class-map rename class-map-name new-class-map-name Format Mode Global Config Ubiquiti Networks, Inc.
Page 374: Match Ethertype
This command removes from the specified class definition the set of match conditions defined for another class . refclassname is the name of an existing DiffServ class whose match conditions are being referenced by the specified class definition . no match class-map refclassname Format Mode Class-Map Config Ubiquiti Networks, Inc.
Page 375: Match Cos
. To specify the match condition using a numeric notation, one Layer-4 port number is required . The port number is an integer from 0 to 65535 . Use the option to negate the match condition . Default none match [not] dstl4port {portkey | 0-65535} Format Mode Class-Map Config Ubiquiti Networks, Inc.
Page 376: Match Ip Dscp
This “free form” version of the IP DSCP/Precedence/TOS match specification gives the user complete control when specifying which bits of the IP Service Type field are checked . Default none match [not] ip tos tosbits tosmask Format Mode Class-Map Config Ubiquiti Networks, Inc.
Page 377: Match Protocol
. Each of these translates into its equivalent port number, which is used as both the start and end of a port range . Ubiquiti Networks, Inc.
Page 378: Match Src Port
VLAN Identifier field (the inner 802 .1Q tag of a double VLAN-tagged packet) . The secondary VLAN ID is an integer from 0-4093 . Use the option to negate the match condition . Default none match [not] secondary-vlan 0-4093 Format Mode Class-Map Config Ubiquiti Networks, Inc.
Page 379: Diffserv Policy Commands
Incompatibilities Drop, Redirect redirect This command specifies that all incoming packets for the associated traffic stream are redirected to a specific egress interface (physical port or port-channel) . redirect slot/port Format Mode Policy-Class-Map Config Incompatibilities Drop, Mirror Ubiquiti Networks, Inc.
Page 380: Conform-Color
This command marks the outer VLAN tags in the packets for the associated traffic stream as secondary CoS . Default mark secondary-cos 0-7 Format Mode Policy-Class-Map Config Incompatibilities Drop, Mark IP DSCP, IP Precedence, Police Ubiquiti Networks, Inc.
Page 381: Mark Cos-As-Sec-Cos
0-7 | set-sec-cos-transmit 0-7 | set-prec-transmit 0-7 | set- dscp-transmit 0-63 | transmit} [violate-action {drop | set-cos-as-sec-cos | set- cos-transmit 0-7 | set-sec-cos-transmit 0-7 | set-prec-transmit 0-7 | set-dscp- transmit 0-63 | transmit}]} Mode Policy-Class-Map Config Incompatibilities Drop, Mark (all forms) Ubiquiti Networks, Inc.
Page 382: Police-Single-Rate
. Note: The CLI mode is changed to Policy-Map Config when this command is successfully executed . policy-map policyname {in|out} Format Mode Global Config Ubiquiti Networks, Inc.
Page 383: Policy-Map Rename
This command changes the name of a DiffServ policy . The is the name of an existing DiffServ newpolicyname class . The parameter is a case-sensitive alphanumeric string from 1 to 31 characters uniquely identifying the policy . policy-map rename policyname newpolicyname Format Mode Global Config Ubiquiti Networks, Inc.
Page 384: Diffserv Service Commands
DiffServ on an interface in the inbound direction or an interface in the outbound direction . There is no separate interface administrative ‘mode’ command for DiffServ . no service-policy {in|out} policymapname Format Modes Global Config, Interface Config Ubiquiti Networks, Inc.
Page 385: Diffserv Show Commands
The current and maximum number of entries (rows) for the Policy Instance Table. Current/Max Policy Attribute Table Max The current and maximum number of entries (rows) for the Policy Attribute Table. Current/Max Service Table Size Current/Max The current and maximum number of entries (rows) in the Service Table. Ubiquiti Networks, Inc.
Page 386: Show Policy-Map
The CoS mark value if the non-conform action is set-cos-transmit. Non-Conform DSCP Value The DSCP mark value if the non-conform action is set-dscp-transmit. Non-Conform IP Precedence The IP Precedence mark value if the non-conform action is set-prec-transmit. Value Ubiquiti Networks, Inc.
Page 387: Show Diffserv Service
This command displays policy service information for the specified interface and direction . The parameter specifies a valid slot/port number for the system . show diffserv service slot/port in Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 388: Show Diffserv Service Brief
The following information is repeated for each class instance within this policy: Term Definition Class Name The name of this class instance. In Discarded Packets The number of packets discarded for this class instance for any reason due to DiffServ treatment of the traffic class. Ubiquiti Networks, Inc.
Page 389: Show Service-Policy
The following information is repeated for each interface and direction (only those interfaces configured with an attached policy are shown): Term Definition Interface The slot/port. Operational Status The current operational status of this DiffServ service interface. Policy Name The name of the policy attached to the interface. Ubiquiti Networks, Inc.
Page 390: Mac Access Control List Commands
. {deny|permit} {srcmac | any} {dstmac | any} [ethertypekey | 0x0600-0xFFFF] Format [vlan {eq 0-4095}] [cos 0-7] [[log] [time-range time-range-name] [assign-queue queue-id]] [{mirror | redirect} slot/port] [rate-limit rate burst-size] Mode Mac-Access-List Config Ubiquiti Networks, Inc.
Page 391 . Example: The following shows an example of the command . (UBNT EdgeSwitch) (Config)#mac access-list extended mac1 (UBNT EdgeSwitch) (Config-mac-access-list)#permit 00:00:00:00:aa:bb ff:ff:ff:ff:00:00 any rate-limit 32 16 (UBNT EdgeSwitch) (Config-mac-access-list)#exit Ubiquiti Networks, Inc.
Page 392: Mac Access-Group
MAC ACL to display . The rate-limit attribute displays committed rate and committed burst size . Note: The command output varies based on the match criteria configured within the rules of an ACL . show mac access-lists [name] Format Mode Privileged EXEC Ubiquiti Networks, Inc.
Page 393 Example: The following shows example CLI display output for the command . (UBNT EdgeSwitch) #show mac access-lists mac1 ACL Name: mac1 Rule Number: 1 Action......... permit Source MAC Address......00:00:00:00:AA:BB Source MAC Mask........ FF:FF:FF:FF:00:00 Committed Rate......... 32 Committed Burst Size......16 Ubiquiti Networks, Inc.
Page 394: Ip Access Control List Commands
Specifies a source IP address and source netmask for match condition of the IP ACL rule. any | Specifying specifies the source IP as 0.0.0.0 and the source IP mask as 255.255.255.255. host scrip host A.B.C.D Specifying specifies the source IP as A.B.C.D and source IP mask as 0.0.0.0. Ubiquiti Networks, Inc.
Page 395 IP ACL rule matches on the specified IGMP message type, a number from 0 to 255. fragments Specifies that the IP ACL rule matches on fragmented IP packets. Specifies that this rule is to be logged. Ubiquiti Networks, Inc.
Page 396: No Access-List
1 to 31 characters uniquely identifying the IP access list . newname This command fails if an IP ACL by the name already exists . ip access-list rename name newname Format Mode Global Config Ubiquiti Networks, Inc.
Page 397: Deny | Permit} (Ip Acl)
Specifies a source IP address and source netmask to match for the IP ACL rule. any | Specifying implies a source IP of 0.0.0.0 and the source IP mask of 255.255.255.255. host srcip host A.B.C.D Specifying implies a source IP of A.B.C.D and the source IP mask of 0.0.0.0. Ubiquiti Networks, Inc.
Page 398 ACL containing this ACL rule is applied to an interface or bound to a VLAN, the ACL rule is applied when the time-range with specified name becomes active. The ACL rule is removed when the time-range with specified name becomes inactive. Ubiquiti Networks, Inc.
Page 399: Ip Access-Group
This command removes a specified IP ACL from an interface . Default none no ip access-group {accesslistnumber|name} {{in|out} | vlan vlan-id {in|out}} Format Mode Interface Config, Global Config Example: The following shows an example of the command . (UBNT EdgeSwitch)(Config)#no ip access-group ip1 Ubiquiti Networks, Inc.
Page 400: Acl-Trapflags
The committed rate defined by the rate-limit attribute. Committed Burst Size The committed burst size defined by the rate-limit attribute. Source IP Address The source IP address for this rule. Source IP Mask The source IP Mask for this rule. Ubiquiti Networks, Inc.
Page 401: Show Access-Lists
Valid range is (1 to 4294967295). Example: The following shows an example of the command . (UBNT EdgeSwitch) #show access-lists interface ACL Type ACL ID Sequence Number -------- ------------------------------- --------------- IPv6 ip61 Ubiquiti Networks, Inc.
Page 402: Show Access-Lists Vlan
If the sequence number is not specified by the user, a sequence number that is one greater than the highest sequence number currently in use for this interface and direction is used. Valid range is (1 to 4294967295). Ubiquiti Networks, Inc.
Page 403: Ipv6 Access Control List Commands
. The remaining command parameters are all optional, but the most frequently used parameters appear in the same relative order as shown in the command format . Ubiquiti Networks, Inc.
Page 404 Specifying any implies specifying “::/0 “ | host source-ipv6- host source-ipv6-address Specifying implies matching the specified IPv6 address. address source-ipv6-address argument must be in the form documented in RFC 2373 where the address is specified in hexadecimal using 16-bit values between colons. Ubiquiti Networks, Inc.
Page 405 Specifies that IPv6 ACL rule matches on fragmented IPv6 packets (Packets that have the next header field is set to 44). routing Specifies that IPv6 ACL rule matches on IPv6 packets that have routing extension headers (the next header field is set to 43). Specifies that this rule is to be logged. Ubiquiti Networks, Inc.
Page 406: Ipv6 Traffic-Filter
This command removes an IPv6 ACL identified by name from the interface(s) in a given direction . no ipv6 traffic-filter name {{in|out} | vlan vlan-id {in|out}} Format Modes Global Config, Interface Config Example: The following shows an example of the command . (UBNT EdgeSwitch) (Config)#no ipv6 traffic-filter ip61 Ubiquiti Networks, Inc.
Page 407: Show Ipv6 Access-Lists
Example: The following shows example CLI display output for the command . (UBNT EdgeSwitch) #show ipv6 access-lists ip61 ACL Name: ip61 Rule Number: 1 Action......... permit Match Every........FALSE Protocol........17(udp) Committed Rate......... 32 Committed Burst Size......16 Ubiquiti Networks, Inc.
Page 408: Time Range Commands For Time-Based Acls
. absolute [start time date] [end time date] Format Mode Time-Range Config no absolute This command deletes the absolute time entry in the time range . no absolute Format Mode Time-Range Config Ubiquiti Networks, Inc.
Page 409: Periodic
Name of the time range. Status Status of the time range (active/inactive) Periodic Entry count The number of periodic entries configured for the time range. Absolute Entry Indicates whether an absolute entry has been configured for the time range (Exists). Ubiquiti Networks, Inc.
Page 410: Auto-Voice Over Ip Commands
Example: The following example shows how to add an OUI to the table . (UBNT EdgeSwitch) (Config)#auto-voip oui 00:03:6B desc “Cisco VoIPPhone” no auto-voip oui Use the form of the command to remove a configured OUI prefix from the table . no auto-voip oui oui-prefix Format Mode Global Config Ubiquiti Networks, Inc.
Page 411: Auto-Voip Oui-Based Priority
VoIP mode . The auto-VoIP VLAN is the VLAN used to segregate VoIP traffic from other non-voice traffic . All VoIP traffic that matches a value in the known OUI list gets assigned to this VoIP VLAN . Default None auto-voip vlan vlan-id Format Mode Global Config Ubiquiti Networks, Inc.
Page 412: Show Auto-Voip
Example: The following shows example CLI display output for the command . (UBNT EdgeSwitch)# show auto-voip oui-based interface all VoIP VLAN Id........2 Priority........7 Interface Auto VoIP Operational Status Mode --------- -------------- ------------------ Disabled Down Disabled Down Disabled Down Disabled Down Disabled Down Ubiquiti Networks, Inc.
Page 413: Show Auto-Voip Oui-Table
OUI Description Description of the OUI. Example: The following shows example CLI display output for the command . (UBNT EdgeSwitch)# show auto-voip oui-table Status Description --------- ---------- --------- 00:01:E3 Default SIEMENS 00:03:6B Default CISCO1 00:01:01 Configured VoIP phone Ubiquiti Networks, Inc.
Page 414: Chapter 8: Power Over Ethernet (Poe) Commands
• Configuration commands configure features and options of the switch . For every configuration command, there is a show command that displays the configuration setting . • Clear commands clear some or all of the settings to factory defaults . Ubiquiti Networks, Inc.
Page 415: Poe Management Commands
Privileged EXEC Term Description Intf The valid PoE slot/port number. OP Mode PoE Operational Mode HP Enable High Power Enable HP Mode High Power Mode Detect Enable Detect Enable Disconnect Enable Disconnect Enable Class Enable Class Enable Ubiquiti Networks, Inc.
Page 416: Show Poe Status
Interface Config, Interface Range Config Parameter Description auto Configure auto for PoE operational mode. passive24v Configure passive 24V mode for PoE operation mode. Note: Cannot be set before the port linkup . shutdown Disable PoE power on specific port. Ubiquiti Networks, Inc.
Page 417: Log Messages
Ubiquiti in determining the root cause of such a problem . The most recent log messages are displayed first .
Page 418: Core
The configuration file identified was migrated from a version version_num to version_num previous version number. Both the old and new version number are specified. This message may appear after upgrading the code image to a more current release. Ubiquiti Networks, Inc.
Page 419 = SYSTEM Configuration did not exist or could not be read for the expected_size_of_file_version = specified feature. This message is usually followed by expected_version a message indicating that default configuration values will be used. Ubiquiti Networks, Inc.
Page 420: Utilities
RADIUS: Could not allocate a buffer for RADIUS Resource issue with RADIUS Client service. the packet RADIUS: Access-Challenge failed to RADIUS The RADIUS Client received an invalid message from validate, id = xxx the server. Ubiquiti Networks, Inc.
Page 421 Server address given by the DHCPv6 Server to the DNS6 Client fails. Failed to add Domain name xxx to DNS DHCP6 Client This message appears when the update of a DNS6 Client. Domain name info given by the DHCPv6 Server to the DNS6 Client fails. Ubiquiti Networks, Inc.
Page 422 Domain name list info given by the DHCP Server to the DNS Client fails. Interface xxx Link State is Down. DHCP4 Client This message appears when the Network protocol is Connect the port and try again. configured with DHCP without any active links in the Management VLAN. Ubiquiti Networks, Inc.
Page 423: Management
TFTP from web interface. Web UI Screen with unspecified access Failed to get application-specific authorization handle attempted to be brought up provided to EmWeb/Server by the application in ewsAuthRegister(). The specified web page will be served in read-only mode. Ubiquiti Networks, Inc.
Page 424 Could not migrate config file XXXX from Failed to migrate the config file. XXXX is the config User_Manager version YYYY to ZZZZ. Using defaults. file name. YYYY is the old version number and ZZZZ is the new version number. Ubiquiti Networks, Inc.
Page 425: Switching
Unable to register for VLAN change MAC based VLANs This appears when this component unable to register callback for VLAN change notifications. vlanMacCnfgrFiniPhase1Process: could MAC based VLANs This appears when a semaphore deletion of this not delete avl semaphore component fails. Ubiquiti Networks, Inc.
Page 426 Vlan yyy Snooping message queue being full. snoopCnfgrInitPhase1Process: Error IGMP Snooping Could not allocate buffers for small IGMP packets. allocating small buffers snoopCnfgrInitPhase1Process: Error IGMP Snooping Could not allocate buffers for large IGMP packets. allocating large buffers Ubiquiti Networks, Inc.
Page 427 Typically a case when a new interface is created and for interface %d has no preconfiguration. Table 45. MFDB Log Message Component Message Cause mfdbTreeEntryUpdate: entry does not MFDB Trying to update a non existing entry. exist Ubiquiti Networks, Inc.
Page 428 Failed to modify the VLAN group filter. modified after it is converted to static Cannot find vlan %d to convert it 802.1Q Failed to convert Dynamic VLAN to static VLAN. VLAN ID to static does not exist. Ubiquiti Networks, Inc.
Page 429 The current conditions (e.g., port is not enabled, or Discarded currently not finished processing another BPDU on the same interface) does not allow us to process this BPDU. dot1sBpduTransmit(): could not get a 802.1S Out of system buffers. buffer Ubiquiti Networks, Inc.
Page 430 Appears when VLANRegisterForChange fails to register register pbVlan callback with VLANs VLANs pbVlan for VLAN changes. pbVlanCnfgrInitPhase2Process: Unable to Protocol Based Appears when nvStoreRegister fails to register save register pbVlan callback with nvStore VLANs and restore functions for configuration save. Ubiquiti Networks, Inc.
Page 431: Qos
Policy invalid for service intf: policy DiffServ The DiffServ policy definition is not compatible name, interface x, direction y with the capabilities of the interface specified. Check the platform release notes for information on configuration limitations. Ubiquiti Networks, Inc.
Page 432: Technologies
API issue on remote unit. A synchronization retry will be issued. USL: failed to sync policy table on Could not synchronize unit x due to a transport failure Broadcom unit = x or API issue on remote unit. A synchronization retry will be issued. Ubiquiti Networks, Inc.
Page 433 API issue on remote unit. A synchronization retry will be issued. USL: failed to sync ip-multicast table Could not synchronize unit x due to a transport failure Broadcom on unit = x or API issue on remote unit. A synchronization retry will be issued. Ubiquiti Networks, Inc.
Page 434: O/S Support
Failed to Set Interface IP Address OSAPI Linux Trouble adding VRRP IP or MAC address(es) to a Linux IP Netmask Broadcast Address network interface. Flags Hardware Address Failed to Retrieve Interface Flags Ubiquiti Networks, Inc.
Page 435: Appendix B: Contact Information
©2014 Ubiquiti Networks, Inc . All rights reserved . Ubiquiti, Ubiquiti Networks, the Ubiquiti U logo, the Ubiquiti beam logo, and EdgeSwitch are trademarks or registered trademarks of Ubiquiti Networks, Inc . in the United States and in other countries . All other trademarks are the property of their respective owners .

This manual is also suitable for:

Edgeswitch es-24-500w Edgeswitch es-48-750w Edgeswitch es-48-500wEdgeswitch es-24-250w

Ubiquiti EDGESWITCH ES-24-250W Command Reference Manual

About this Document

Chapter 1 Using the Command Line Interface

Chapter 2: Management Commands

Chapter 3: Utility Commands

Quick Links

CLI Command Reference

Related Manuals for Ubiquiti EDGESWITCH ES-24-250W

Summary of Contents for Ubiquiti EDGESWITCH ES-24-250W