Allied Telesis AT-8100L/8 User Manual
  1. Manuals
  2. Brands
  3. Allied Telesis Manuals
  4. Network Router
  5. AT-8100L/8
  6. User manual

Allied Telesis AT-8100L/8 User Manual

Fast ethernet switches at-8100 series management software command line interface user’s guide alliedware plus version 2.2.5
Hide thumbs Also See for AT-8100L/8:
1
2
3
4
Table Of Contents
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872
873
874
875
876
877
878
879
880
881
882
883
884
885
886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908
909
910
911
912
913
914
915
916
917
918
919
920
921
922
923
924
925
926
927
928
929
930
931
932
933
934
935
936
937
938
939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
975
976
977
978
979
980
981
982
983
984
985
986
987
988
989
990
Table of Contents

Advertisement

Quick Links

Management Software

Command Line Interface User's Guide
AlliedWare Plus Version 2.2.5
613-001749 Rev. B
AT-8100 Series
Fast Ethernet Switches
AT-8100L/8
AT-8100L/8POE
AT-8100L/8POE-E
AT-8100S/24
AT-8100S/24C
AT-8100S/24F-LC
AT-8100S/24POE
AT-8100S/16F8-LC
AT-8100S/16F8-SC
AT-8100S/48
AT-8100S/48POE

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the AT-8100L/8 and is the answer not in the manual?

Questions and answers

Related Manuals for Allied Telesis AT-8100L/8

Summary of Contents for Allied Telesis AT-8100L/8

  • Page 1: Management Software

    AT-8100 Series Fast Ethernet Switches AT-8100L/8  AT-8100L/8POE  AT-8100L/8POE-E  AT-8100S/24  AT-8100S/24C  AT-8100S/24F-LC  AT-8100S/24POE  AT-8100S/16F8-LC  AT-8100S/16F8-SC  AT-8100S/48  AT-8100S/48POE  Management Software Command Line Interface User’s Guide AlliedWare Plus Version 2.2.5 613-001749 Rev. B...
  • Page 2 * Neither the name of Allied Telesis, Inc. nor the names of the respective companies above may be used to endorse or promote products derived from this software without specific prior written permission.
  • Page 3 Telesis, Inc. be liable for any incidental, special, indirect, or consequential damages whatsoever, including but not limited to lost profits, arising out of or related to this manual or the information contained herein, even if Allied Telesis, Inc. has been advised of, known, or should have known, the possibility of such damages.

  • Page 5: Table Of Contents

    Contents Preface ................................41 Document Conventions..........................42 Where to Find Web-based Guides......................43 Contacting Allied Telesis..........................44 Section I: Getting Started ......................... 45 Chapter 1 : AlliedWare Plus Command Line Interface ................47 Management Sessions..........................48 Local Management ..........................48 Remote Management ..........................
  • Page 6 Contents Creating a Boot Configuration File ....................... 74 Changing the Login Password ......................75 Assigning a Name to the Switch ......................75 Adding a Management IP Address ...................... 76 Saving Your Changes .......................... 78 Ending a Management Session........................79 Chapter 3 : Basic Command Line Management ..................
  • Page 7 AT-8100 Switch Command Line User’s Guide Chapter 8 : Basic Switch Management Commands ................137 BANNER EXEC ............................139 BANNER LOGIN ............................141 BANNER MOTD............................143 BAUD-RATE SET ............................ 145 CLOCK SET............................. 146 ERASE STARTUP-CONFIG ........................147 EXEC-TIMEOUT ............................148 HELP................................
  • Page 8 Contents EGRESS-RATE-LIMIT ..........................208 FCTRLLIMIT.............................209 FLOWCONTROL............................210 HOLBPLIMIT ............................213 NO EGRESS-RATE-LIMIT ........................216 NO FLOWCONTROL ..........................217 NO SHUTDOWN ............................218 NO SNMP TRAP LINK-STATUS......................219 NO STORM-CONTROL ...........................220 POLARITY..............................221 PURGE..............................223 RENEGOTIATE............................224 RESET..............................225 SHOW FLOWCONTROL INTERFACE ....................226 SHOW INTERFACE ..........................228 SHOW INTERFACE BRIEF ........................232 SHOW INTERFACE STATUS........................234 SHOW PLATFORM TABLE PORT COUNTERS ..................236 SHOW RUNNING-CONFIG INTERFACE ....................239 SHOW STORM-CONTROL........................240...
  • Page 9 AT-8100 Switch Command Line User’s Guide POWER-INLINE MAX ..........................277 POWER-INLINE PRIORITY........................278 POWER-INLINE USAGE-THRESHOLD....................280 SERVICE POWER-INLINE ........................281 SHOW POWER-INLINE........................... 282 SHOW POWER-INLINE COUNTERS INTERFACE ................285 SHOW POWER-INLINE INTERFACE ..................... 287 SHOW POWER-INLINE INTERFACE DETAIL..................288 SNMP-SERVER ENABLE TRAP POWER-INLINE.................. 291 Chapter 13 : IPv4 and IPv6 Management Addresses ................
  • Page 10 Contents SHOW NTP ASSOCIATIONS ........................347 SHOW NTP STATUS ..........................349 Chapter 17 : Domain Name System (DNS) ....................351 Overview..............................352 Domain name parts..........................352 Server Hierarchy ..........................352 DNS Sever List...........................353 DNS List .............................353 Default Domain ..........................353 Adding a DNS Server to the Switch......................354 Enabling or Disabling the DNS Client.......................355 Adding a Domain to the DNS List......................356 Setting a Default Domain Name for the DNS ...................357...
  • Page 11 AT-8100 Switch Command Line User’s Guide Common VLAN..........................408 Guidelines............................409 General Steps............................ 409 Configuring the Command Switch......................411 Configuring a Member Switch ........................414 Managing the Member Switches of an Enhanced Stack................416 Changing the Enhanced Stacking Mode....................418 Uploading Boot Configuration Files from the Command Switch to Member Switches......
  • Page 12 Contents Adding DHCP Relay to the VLANs ....................481 Configuring the DHCP Relay Option 82.....................483 Configuring the Maximum Hop Count ....................485 Activating or Deactivating DHCP Relay on the Switch...............485 Chapter 30 : DHCP Relay Commands .......................487 IP DHCP-RELAY ............................489 IP DHCP-RELAY AGENT-OPTION......................490 IP DHCP-RELAY AGENT-OPTION CHECKING..................491 IP DHCP-RELAY INFORMATION POLICY....................492 IP DHCP-RELAY MAX-MESSAGE-LENGTH ..................494...
  • Page 13 AT-8100 Switch Command Line User’s Guide MOVE............................... 550 SHOW FILE SYSTEMS ........................... 551 Chapter 36 : Boot Configuration Files ...................... 553 Overview ..............................554 Specifying the Active Boot Configuration File ..................555 Creating a New Boot Configuration File....................557 Displaying the Active Boot Configuration File ..................558 Chapter 37 : Boot Configuration File Commands ...................
  • Page 14 Contents IP IGMP SNOOPING MROUTER ......................610 IP IGMP STATUS.............................611 NO IP IGMP SNOOPING .........................612 NO IP IGMP SNOOPING MROUTER ......................613 SHOW IP IGMP SNOOPING ........................614 Chapter 42 : IGMP Snooping Querier ......................617 Overview..............................618 Assigning Multiple Queriers .......................619 Guidelines..............................622 Configuring the Feature..........................623 Configuring One Querier ........................623 Configuring Multiple Queriers......................624 Chapter 43...
  • Page 15 AT-8100 Switch Command Line User’s Guide Chapter 46 : Event Log Commands ......................683 CLEAR LOG ............................685 CLEAR LOG BUFFERED ........................686 CLEAR LOG PERMANENT ........................687 LOG BUFFERED ............................. 688 LOG CONSOLE ............................690 LOG PERMANENT ..........................692 NO LOG BUFFERED..........................
  • Page 16 Contents Deleting Aggregators..........................749 Displaying Aggregators ..........................750 Chapter 52 : LACP Commands ........................753 CHANNEL-GROUP ..........................754 LACP SYSTEM-PRIORITY ........................756 NO CHANNEL-GROUP..........................757 PORT-CHANNEL LOAD-BALANCE ......................758 SHOW ETHERCHANNEL ........................760 SHOW ETHERCHANNEL DETAIL ......................761 SHOW ETHERCHANNEL SUMMARY.....................763 SHOW LACP SYS-ID ..........................764 SHOW PORT ETHERCHANNEL ......................765 Section VII: Spanning Tree Protocols ....................767 Chapter 53...
  • Page 17 AT-8100 Switch Command Line User’s Guide Enabling the Rapid Spanning Tree Protocol .................... 815 Configuring the Switch Parameters......................816 Setting the Forward Time, Hello Time, and Max Age ................ 816 Setting the Bridge Priority ........................817 Enabling or Disabling BPDU Guard....................817 Configuring the Port Parameters......................
  • Page 18 Contents NO SPANNING-TREE ERRDISABLE-TIMEOUT ENABLE ..............874 NO SPANNING-TREE PORTFAST ......................875 NO SPANNING-TREE MSTP ENABLE ....................876 SHOW SPANNING-TREE........................877 SHOW SPANNING-TREE MST CONFIG ....................878 SHOW SPANNING-TREE MST .......................879 SHOW SPANNING-TREE MST INSTANCE ....................880 SPANNING-TREE ERRDISABLE-TIMEOUT ENABLE................881 SPANNING-TREE ERRDISABLE-TIMEOUT INTERVAL ................882 SPANNING-TREE GUARD ROOT......................883 SPANNING-TREE MODE MSTP ......................884 SPANNING-TREE MSTP ENABLE......................885 SPANNING-TREE MST CONFIGURATION ....................886...
  • Page 19 AT-8100 Switch Command Line User’s Guide SWITCHPORT TRUNK ALLOWED VLAN....................931 SWITCHPORT TRUNK NATIVE VLAN ....................934 VLAN................................ 936 Chapter 62 : GARP VLAN Registration Protocol ..................939 Overview ..............................940 Guidelines ..............................943 GVRP and Network Security........................944 GVRP-inactive Intermediate Switches ..................... 945 Enabling GVRP on the Switch .........................
  • Page 20 Contents NO VLAN MACADDRESS (Global Configuration Mode) .................997 NO VLAN MACADDRESS (Port Interface Mode) ..................998 SHOW VLAN MACADDRESS........................ 1000 VLAN MACADDRESS..........................1002 VLAN SET MACADDRESS (Global Configuration Mode)..............1004 VLAN SET MACADDRESS (Port Interface Mode)................. 1006 Chapter 66 : Private Port VLANs ......................1009 Overview..............................
  • Page 21 AT-8100 Switch Command Line User’s Guide Authentication Process .......................... 1057 Port Roles .............................. 1058 None Role............................1058 Authenticator Role ........................... 1058 Supplicant Role ..........................1058 Authentication Methods for Authenticator Ports..................1060 Operational Settings for Authenticator Ports..................1061 Operating Modes for Authenticator Ports....................1062 Single Host Mode ..........................
  • Page 22 Contents DOT1X SUPPLICANT-PARAMS AUTH-PERIOD.................. 1114 DOT1X SUPPLICANT-PARAMS HELD-PERIOD .................. 1115 DOT1X SUPPLICANT-PARAMS MAX-START ..................1116 DOT1X SUPPLICANT-PARAMS PASSWORD..................1117 DOT1X SUPPLICANT-PARAMS USERNAME ..................1118 DOT1X TIMEOUT TX-PERIOD......................1119 NO AAA AUTHENTICATION DOT1X DEFAULT GROUP RADIUS ............1120 NO AUTH DYNAMIC-VLAN-CREATION ....................1121 NO AUTH GUEST-VLAN ........................
  • Page 23 AT-8100 Switch Command Line User’s Guide NO SNMP-SERVER ENGINEID LOCAL ....................1176 NO SNMP-SERVER GROUP ........................ 1177 NO SNMP-SERVER HOST ........................1178 NO SNMP-SERVER USER ........................1180 NO SNMP-SERVER VIEW ........................1181 SHOW SNMP-SERVER......................... 1182 SHOW SNMP-SERVER GROUP ......................1183 SHOW SNMP-SERVER HOST......................
  • Page 24 Contents Removing LLDP TLVs from Ports ......................1245 Removing LLDP-MED TLVs from Ports ....................1246 Deleting LLDP-MED Location Entries ....................1247 Disabling LLDP and LLDP-MED on the Switch ..................1248 Displaying General LLDP Settings ......................1249 Displaying Port Settings ......................... 1250 Displaying or Clearing Neighbor Information..................1251 Displaying Port TLVs ..........................
  • Page 25 AT-8100 Switch Command Line User’s Guide Chapter 81 : Address Resolution Protocol (ARP) Commands ............. 1321 ARP ............................... 1322 CLEAR ARP-CACHE ..........................1324 NO ARP (IP ADDRESS) ........................1325 SHOW ARP............................1326 Chapter 82 : RMON ........................... 1329 Overview ..............................1330 RMON Port Statistics ..........................
  • Page 26 Contents NO ENABLE PASSWORD ........................1386 NO SERVICE PASSWORD-ENCRYPTION................... 1387 NO USERNAME............................. 1388 SERVICE PASSWORD-ENCRYPTION ....................1389 USERNAME ............................1390 Chapter 86 : Telnet Server ........................1393 Overview..............................1394 Enabling the Telnet Server ........................1395 Disabling the Telnet Server ........................1396 Displaying the Telnet Server ........................
  • Page 27 AT-8100 Switch Command Line User’s Guide Chapter 94 : Secure HTTPS Web Browser Server ................. 1445 Overview ..............................1446 Certificates............................1446 Distinguished Name ........................1447 Guidelines............................1448 Creating a Self-signed Certificate ......................1449 Configuring the HTTPS Web Server for a Certificate Issued by a CA ........... 1452 Enabling the Web Browser Server ......................
  • Page 28 Contents TACACS-SERVER HOST ........................1512 TACACS-SERVER KEY......................... 1513 TACACS-SERVER TIMEOUT........................ 1514 Section XIII: Quality of Service ......................1515 Chapter 98 : Advanced Access Control Lists (ACLs) ................1517 Overview..............................1518 Filtering Criteria..........................1518 Actions ............................. 1519 ID Numbers ............................1519 How Ingress Packets are Compared Against ACLs.................
  • Page 29 AT-8100 Switch Command Line User’s Guide IP ACCESS-LIST (UDP) ........................1604 IPV6 ACCESS-LIST..........................1608 IPV6 ACCESS-LIST (ICMP) ........................1609 IPV6 ACCESS-LIST (IP) ........................1612 IPV6 ACCESS-LIST (PROTO)....................... 1615 IPV6 ACCESS-LIST (TCP) ........................1618 IPV6 ACCESS-LIST (UDP)........................1622 IPV6 TRAFFIC-FILTER.......................... 1626 MAC ACCESS-GROUP .........................
  • Page 30 Contents CLASS..............................1699 CLASS-MAP............................1701 DEFAULT-ACTION ..........................1702 DESCRIPTION (Policy Map) ........................1704 MATCH ACCESS-GROUP ........................1706 MATCH COS ............................1709 MATCH DSCP............................1711 MATCH IP-PRECEDENCE ........................1712 MATCH MAC-TYPE ..........................1713 MATCH PROTOCOL..........................1715 MATCH TCP-FLAGS..........................1720 MATCH VLAN ............................1722 MLS QOS AGGREGATE-POLICE SINGLE-RATE ................
  • Page 31 AT-8100 Switch Command Line User’s Guide Chapter 103 : QSP Commands ....................... 1793 SHOW MLS QOS INTERFACE STORM-STATUS................1794 STORM-ACTION ........................... 1796 STORM-DOWNTIME ..........................1798 STORM-PROTECTION ......................... 1799 STORM-RATE ............................1800 STORM-WINDOW ..........................1802 Section XIV: Routing .......................... 1805 Chapter 104 : Internet Protocol Version 4 Packet Routing ..............
  • Page 32 Contents IP RIP RECEIVE-PACKET........................1866 IP RIP RECEIVE VERSION ........................1867 IP RIP SEND-PACKET........................... 1869 IP RIP SEND VERSION ......................... 1870 IP RIP SPLIT-HORIZON ........................1871 NETWORK ............................. 1873 NO AUTO-SUMMARY..........................1875 NO DEFAULT-INFORMATION ORIGINATE..................1876 NO IP RIP AUTHENTICATION MODE ....................1877 NO IP RIP AUTHENTICATION STRING....................1878 NO IP RIP RECEIVE-PACKET ......................
  • Page 33 AT-8100 Switch Command Line User’s Guide Manager Account ........................... 1932 Port Settings............................1933 RADIUS Client ............................1934 Remote Manager Account Authentication....................1935 RMON ..............................1936 Secure Shell Server ..........................1937 sFlow Agent ............................1938 Simple Network Management Protocol (SNMPv1, SNMPv2c and SNMPv3) ........1939 Simple Network Time Protocol.......................
  • Page 34 Contents...
  • Page 35 Tables Table 1. Remote Software Tool Settings ..........................48 Table 2. AlliedWare Plus Modes ............................54 Table 3. Adding a Management Address: Example 1 ......................77 Table 4. Adding a Management IP Address: Example 2 ....................77 Table 5. Basic Command Line Commands ........................87 Table 6.
  • Page 36 Tables Table 50. Link Control Groups on Switch 3 in Example 7 ....................513 Table 51. Group Link Control Commands ........................515 Table 52. Group Link Control Commands ........................519 Table 53. SHOW GROUP-LINK-CONTROL Command ....................527 Table 54. Multicast Commands ............................529 Table 55. File Extensions and File Types .........................538 Table 56.
  • Page 37 AT-8100 Switch Command Line User’s Guide Table 110. MAC Address-based Port Security Commands .................... 1041 Table 111. SHOW PORT-SECURITY INTERFACE Command ..................1044 Table 112. Reauthentication Commands ........................1078 Table 113. Username and Password Commands for Supplicant Ports ................1080 Table 114.
  • Page 38 Tables Table 170. IP ACCESS-LIST Commands for Creating Named IPv4 ACLs ..............1535 Table 171. Named IPv4 ACL ICMP Permit Example ......................1536 Table 172. Named IPv4 ACL TCP Deny Example ......................1536 Table 173. IPv6 ACCESS-LIST Commands for Creating ACLs ..................1537 Table 174. Named IPv6 ACL Example ...........................1538 Table 175.
  • Page 39 AT-8100 Switch Command Line User’s Guide Table 230. Auto-QoS-MED Traffic Example ........................1681 Table 231. Auto-QoS MED with Trust DSCP Functionality Example ................1682 Table 232. QoS Display Commands ..........................1684 Table 233. Quality of Service Commands ........................1691 Table 234. ACCESS-LIST Commands for Creating Numbered IPv4 ACLs ..............1707 Table 235.
  • Page 40 Tables...

  • Page 41: Preface

    “Contacting Allied Telesis” on page 44 Caution The customer, re-seller, sub-contractor, distributor, software developer or any buyer of an Allied Telesis “ATI” product known as “customer”, hereby agrees to have all licenses required by any governmental agency and to comply with all applicable laws and regulations in its performance under this Agreement, including export control, maintained by U.S.

  • Page 42: Document Conventions

    Document Conventions This document uses the following conventions: Note Notes provide additional information. Caution Cautions inform you that performing or omitting a specific action may result in equipment damage or loss of data. Warning Warnings inform you that performing or omitting a specific action may result in bodily injury.

  • Page 43: Where To Find Web-Based Guides

    AT-8100 Switch Command Line User’s Guide Where to Find Web-based Guides The installation and user guides for all of the Allied Telesis products are available for viewing in portable document format (PDF) from our web site at www.alliedtelesis.com/support/documentation.

  • Page 44: Contacting Allied Telesis

    Contacting Allied Telesis If you need assistance with this product, you may contact Allied Telesis technical support by going to the Support & Services section of the Allied Telesis web site at www.alliedtelesis.com/support. You can find links for the following services on this page: ...

  • Page 45: Section I: Getting Started

    Section I Getting Started This section contains the following chapters:  Chapter 1, “AlliedWare Plus Command Line Interface” on page 47  Chapter 2, “Starting a Management Session” on page 69  Chapter 3, “Basic Command Line Management” on page 81 ...

  • Page 47: Chapter 1 : Alliedware Plus Command Line Interface

    Chapter 1 AlliedWare Plus Command Line Interface This chapter has the following sections:  “Management Sessions” on page 48  “Management Interfaces” on page 51  “Local Manager Account” on page 52  “AlliedWare Plus Command Modes” on page 53 ...

  • Page 48: Management Sessions

    Chapter 1: AlliedWare Plus Command Line Interface Management Sessions You can manage the switch locally or remotely. Local management is conducted through the Console port on the switch. Remote management is possible with a variety of management tools from workstations on your network.
  • Page 49 If an intruder captures the packet with your login name and password, the security of the switch will be compromised. For secure remote management, Allied Telesis recommends Secure Shell (SSH) or secure web browser (HTTPS).
  • Page 50 RFC 2096 IP Forwarding Table MIB  RFC 2790 Host MIB  RFC 2863 Interface Group MIB  RFC 3176 sFlow MIB  IEEE 802.1x 2010 MIB The Allied Telesis managed switch MIBs (atistackinfo.mib and atiEdgeSwitch.mib) are available from the Allied Telesis web site.

  • Page 51: Management Interfaces

    AT-8100 Switch Command Line User’s Guide Management Interfaces The switch has two management interfaces:  AlliedWare Plus command line  Web browser windows The AlliedWare Plus command line is available from local management sessions, and remote Telnet and Secure Shell management sessions. The web browser windows are available from remote web browser management sessions.

  • Page 52: Local Manager Account

    Chapter 1: AlliedWare Plus Command Line Interface Local Manager Account You must log on to manage the switch. This requires a valid user name and password. The switch comes with one local manager account. The user name of the account is “manager” and the default password is “friend.”...

  • Page 53: Alliedware Plus Command Modes

    AT-8100 Switch Command Line User’s Guide AlliedWare Plus Command Modes The AlliedWare Plus command line interface consists of a series of modes that are arranged in the hierarchy shown in Figure 1. Figure 1. Command Modes The modes have different commands and support different management functions.

  • Page 54: Table 2. Alliedware Plus Modes

    Chapter 1: AlliedWare Plus Command Line Interface Note By default, the mode prompts are prefixed with the “awplus” string. To change this string, use the HOSTNAME command. See “What to Configure First” on page 74. Table 2. AlliedWare Plus Modes Mode Prompt Function...
  • Page 55 AT-8100 Switch Command Line User’s Guide Table 2. AlliedWare Plus Modes (Continued) Mode Prompt Function Console Line mode awplus (config-line)#  Sets the session timer for local management sessions.  Activates and deactivates remote manager authentication. Virtual Terminal Line mode awplus (config-line)# ...

  • Page 56: Moving Down The Hierarchy

    Chapter 1: AlliedWare Plus Command Line Interface Moving Down the Hierarchy To move down the mode hierarchy, you have to step through each mode in sequence. Skipping modes is not permitted. Each mode has a different command. For instance, to move from the User Exec mode to the Privileged Exec mode, you use the ENABLE command.

  • Page 57: Line Console 0 Command

    AT-8100 Switch Command Line User’s Guide LINE CONSOLE You use this command to move from the Global Configuration mode to the Console Line mode to set the management session timer and to activate 0 Command or deactivate remote authentication for local management sessions. The mode is also used to set the baud rate of the terminal port.

  • Page 58: Interface Command - Dynamic Port Trunk

    Chapter 1: AlliedWare Plus Command Line Interface This example adds to a traffic class a flow group with the ID number 1: awplus(config-pmap)# class 1 awplus(config-pmap-c)# Figure 8. CLASS Command INTERFACE You use this command to move from the Global Configuration mode to the Dynamic Port Trunk Interface mode, to change the load distribution Command - methods of static port trunks.

  • Page 59: Interface Command - Static Port Trunk

    AT-8100 Switch Command Line User’s Guide awplus(config-if)# interface port1.0.7,port1.0.10 awplus(config-if)# Figure 12. INTERFACE PORT Command - Moving Between Port Interface Modes INTERFACE You use this command to move from the Global Configuration mode to the Static Port Trunk Interface mode, to change the load distribution methods Command - of static port trunks.

  • Page 60: Location Civic-Location Command

    Chapter 1: AlliedWare Plus Command Line Interface awplus(config)# vlan database awplus(config-vlan)# Figure 15. VLAN DATABASE Command LOCATION You use this command to move from the Global Configuration mode to the Civic Location mode, to create LLDP civic location entries. The format of CIVIC- the command is: LOCATION...

  • Page 61: Moving Up The Hierarchy

    AT-8100 Switch Command Line User’s Guide Moving Up the Hierarchy There are four commands for moving up the mode hierarchy. They are the EXIT, QUIT, END and DISABLE commands. EXIT and QUIT These commands, which are functionally identical, are found in nearly all the modes.

  • Page 62: Disable Command

    Chapter 1: AlliedWare Plus Command Line Interface Figure 19. Returning to the Privileged Exec Mode with the END Command DISABLE To return to the User Exec mode from the Privileged Exec mode, use the DISABLE command. Command Figure 20. Returning to the User Exec Mode with the DISABLE Command...

  • Page 63: Port Numbers In Commands

    AT-8100 Switch Command Line User’s Guide Port Numbers in Commands The ports on the switch are identified in the commands with the PORT parameter. The parameter has the format shown in Figure 21. Figure 21. PORT Parameter in the Command Line Interface The variables in the parameter are defined here: ...

  • Page 64: Stacks

    Chapter 1: AlliedWare Plus Command Line Interface You can also combine individual ports and port ranges in the same command, as illustrated in these commands, which enter the Port Interface mode for ports 5 to 11 and ports 16 and 18: awplus>...

  • Page 65: Command Format

    AT-8100 Switch Command Line User’s Guide Command Format The following sections describe the command line interface features and the command syntax conventions. Command Line The command line interface has these features: Interface  Command history - Use the up and down arrow keys. Features ...

  • Page 66: Startup Messages

    Loading: 0x80001000/42538636 0x8289268c/96724 Entry at 0x80230860 Starting program at 0x80230860 Starting... ______________ ____ /\ \ / /______\ \ \_ __/ /| ______ | | ______ | \ ____ / /______/\____\ \/ /____________/ Allied Telesis Inc.Mounting Filesystems... Starting SNMP... Starting MainTask... Figure 22. Startup Messages...
  • Page 67 AT-8100 Switch Command Line User’s Guide Initializing System ......... done! Initializing Board ........done! Initializing Serial Interface ....... done! Initializing Timer Library ......done! Initializing IPC ........done! Initializing Event Log ......done! Initializing Switch Models ......done! Initializing File System ......done! Initializing Database .......
  • Page 68 Chapter 1: AlliedWare Plus Command Line Interface Initializing FTAB ........done! Initializing FTABV6 ......... done! Initializing ACM ........done! Initializing Filter ......... done! Initializing L3_MGMT ........ done! Initializing L3APP_MGMT ......done! Initializing SFLOW ........done! Initializing NTP ........done! Initializing CPU_HIST ....... done! Initializing EStacking ......

  • Page 69: Chapter 2 : Starting A Management Session

    Chapter 2 Starting a Management Session This chapter has the following sections:  “Starting a Local Management Session” on page 70  “Starting a Remote Telnet or SSH Management Session” on page 72  “What to Configure First” on page 74 ...

  • Page 70: Starting A Local Management Session

    Chapter 2: Starting a Management Session Starting a Local Management Session To start a local management session on the switch, perform the following procedure: 1. Connect the management cable that comes with the switch to the Console port with the RJ-45 connector, as shown in Figure 25. The Console port is located on the front panel of the AT-8100 switch.
  • Page 71 AT-8100 Switch Command Line User’s Guide The local management session has started when the AlliedWare Plus command line prompt, shown in Figure 26 is displayed. awplus> Figure 26. AlliedWare Plus Command Line Prompt...

  • Page 72: Starting A Remote Telnet Or Ssh Management Session

    Chapter 2: Starting a Management Session Starting a Remote Telnet or SSH Management Session Here are the requirements for remote management of the switch from a Telnet or SSH client on your network:  You must assign the switch a management IP address. To initially assign the switch an address, use a local management session.

  • Page 73: Vty Lines

    AT-8100 Switch Command Line User’s Guide VTY Lines The switch has ten VTY (virtual teletypewriter) lines. Each line supports one remote Telnet or SSH management session. The switch allocates the lines, which are numbered 0 to 9, in ascending order, beginning with line 0, as remote sessions are initiated.

  • Page 74: What To Configure First

    Chapter 2: Starting a Management Session What to Configure First Here are a few suggestions on what to configure during your initial management session of the switch. The initial management session must be a local management session from the Console port on the switch. For instructions on how to start a local management session, refer to “Starting a Local Management Session”...

  • Page 75: Changing The Login Password

    If you forget the manager password, you cannot manage the switch if there are no other management accounts on the unit. In this case, contact Allied Telesis Technical Support for assistance. For instructions on how to create additional management accounts, refer to Chapter 84, “Local Manager Accounts”...

  • Page 76: Adding A Management Ip Address

    Chapter 2: Starting a Management Session This example assigns the name “Engineering_sw2” to the switch: awplus> enable awplus# configure terminal awplus(config)# hostname Engineering_sw2 Engineering_sw2(config)# Adding a You must assign the switch a management IP address to use the features in Table 27 on page 294. Here are the requirements: Management IP Address ...

  • Page 77: Table 3. Adding A Management Address: Example 1

    AT-8100 Switch Command Line User’s Guide Table 3. Adding a Management Address: Example 1 awplus> enable Move to the Privileged Exec mode. awplus# configure terminal Move to the Global Configuration mode. awplus(config)# interface vlan1 Use the INTERFACE VLAN command to move to the VLAN Interface mode of the Default_VLAN.

  • Page 78: Saving Your Changes

    Chapter 2: Starting a Management Session Table 4. Adding a Management IP Address: Example 2 awplus(config-if)# switchport access vlan 5 Add the ports as untagged ports to the VLAN with the SWITCHPORT ACCESS VLAN command. awplus(config-if)# exit Return to the Global Configuration mode. awplus(config)# interface vlan5 Use the INTERFACE VLAN command to move to the VLAN Interface mode of...

  • Page 79: Ending A Management Session

    AT-8100 Switch Command Line User’s Guide Ending a Management Session To end a management session, go to either the Privileged Exec mode or the User Exec mode. From the Privileged Exec mode, enter either the EXIT or LOGOUT to end a management session: awplus# exit awplus# logout From the User Exec mode, enter either the EXIT or LOGOUT command to...
  • Page 80 Chapter 2: Starting a Management Session...

  • Page 81: Chapter 3 : Basic Command Line Management

    Chapter 3 Basic Command Line Management This chapter contains the following sections:  “Clearing the Screen” on page 82  “Displaying the On-line Help” on page 83  “Saving Your Configuration Changes” on page 85  “Ending a Management Session” on page 86...

  • Page 82: Clearing The Screen

    Chapter 3: Basic Command Line Management Clearing the Screen If your screen becomes cluttered with commands, you can start fresh by entering the CLEAR SCREEN command in the User Exec or Privileged Exec mode. If you are in a lower mode, you have to move up the mode hierarchy to one of these modes to use the command.

  • Page 83: Displaying The On-Line Help

    AT-8100 Switch Command Line User’s Guide Displaying the On-line Help The command line interface has an on-line help system to assist you with the commands. The help system is displayed by typing a question mark. Typing a question mark at a command line prompt displays all the keywords in the current mode.
  • Page 84 Chapter 3: Basic Command Line Management awplus> enable awplus> enable awplus# configure terminal awplus# configure terminal awplus(config)# hostname ? awplus(config)# hostname ? <STRING:sysName> <STRING:sysName> Figure 30. Displaying the Class of a Parameter...

  • Page 85: Saving Your Configuration Changes

    AT-8100 Switch Command Line User’s Guide Saving Your Configuration Changes To permanently save your changes to the parameter settings on the switch, you must update the active boot configuration file. This is accomplished with either the WRITE command or the COPY RUNNING- CONFIG STARTUP-CONFIG command, both of which are found in the Privileged Exec mode.

  • Page 86: Ending A Management Session

    Chapter 3: Basic Command Line Management Ending a Management Session To end a management session, go to either the Privileged Exec mode or the User Exec mode. From the Privileged Exec mode, enter either the EXIT or LOGOUT to end a management session: awplus# exit awplus# logout From the User Exec mode, enter either the EXIT or LOGOUT command to...

  • Page 87: Chapter 4 : Basic Command Line Management Commands

    Chapter 4 Basic Command Line Management Commands The basic command line commands are summarized in Table 5. Table 5. Basic Command Line Commands Command Mode Description “? (Question Mark Key)” on page 89 All modes Displays the on-line help. “CLEAR SCREEN” on page 91 User Exec and Clears the screen.
  • Page 88 Chapter 4: Basic Command Line Management Commands Table 5. Basic Command Line Commands (Continued) Command Mode Description “QUIT” on page 103 All modes Moves you up one mode. except the User Exec and Privileged Exec “WRITE” on page 104 Privileged Exec Updates the active boot configuration file with the current settings of the switch.

  • Page 89: (Question Mark Key)

    AT-8100 Switch Command Line User’s Guide ? (Question Mark Key) Syntax Parameters None Modes All modes Description Use the question mark key to display on-line help messages. Typing the key at different points in a command displays different messages:  Typing “?”...
  • Page 90 Chapter 4: Basic Command Line Management Commands This example displays the class of the value for the SPANNING-TREE HELLO-TIME command in the Global Configuration mode: awplus> enable awplus# configure terminal awplus(config)# spanning-tree hello-time ?

  • Page 91: Clear Screen

    AT-8100 Switch Command Line User’s Guide CLEAR SCREEN Syntax clear screen Parameters None Modes User Exec and Privileged Exec modes Description Use this command to clear the screen. Example awplus# clear screen...

  • Page 92: Configure Terminal

    Chapter 4: Basic Command Line Management Commands CONFIGURE TERMINAL Syntax configure terminal Parameters None Mode Privileged Exec mode Description Use this command to move from the Privileged Exec mode to the Global Configuration mode. Example awplus# configure terminal awplus(config)#...

  • Page 93: Copy Running-Config Startup-Config

    AT-8100 Switch Command Line User’s Guide COPY RUNNING-CONFIG STARTUP-CONFIG Syntax copy running-config startup-config Parameters None Mode Privileged Exec mode Description Use this command to update the active boot configuration file with the switch’s current configuration, for permanent storage. When you enter the command, the switch copies its parameter settings into the active boot configuration file.

  • Page 94: Disable

    Chapter 4: Basic Command Line Management Commands DISABLE Syntax disable Parameters None Mode Privileged Exec mode Description Use this command to return to the User Exec mode from the Privileged Exec mode. Example The following command returns the software to the User Exec mode: awplus# disable awplus>...
  • Page 95 AT-8100 Switch Command Line User’s Guide Syntax command Parameter command Specifies the Privileged Exec mode command to perform. Refer to the Description for the list of supported commands. Mode Global Configuration mode Description Use this command to perform Privileged Exec mode commands from the Global Configuration mode.
  • Page 96 Chapter 4: Basic Command Line Management Commands  SHOW SYSTEM  WRITE Examples This example performs the SHOW INTERFACE command for port 4 from the Global Configuration mode: awplus(config)# do show interface port1.0.4 This example pings a network device: awplus(config)# do ping 149.11.123.45...

  • Page 97: Enable

    AT-8100 Switch Command Line User’s Guide ENABLE Syntax enable Parameters None Mode User Exec mode Description Use this command to move from the User Exec mode to the Privileged Exec mode. Example The following command moves the prompt from the User Exec mode to the Privileged Exec mode: awplus>...

  • Page 98: End

    Chapter 4: Basic Command Line Management Commands Syntax Parameters None Mode All modes below the Global Configuration mode. Description Use this command to return to the Privileged Exec mode. Example The following command returns the prompt to the Privileged Exec mode: awplus(config-if)# end awplus#...

  • Page 99: Exit

    AT-8100 Switch Command Line User’s Guide EXIT Syntax exit Parameters None Mode All modes Description Use this command to move down one mode in the mode hierarchy in all modes except the User Exec and Privileged Exec modes. Using the EXIT command in the User Exec and Privileged Exec modes terminates the management session.

  • Page 100: Length

    Chapter 4: Basic Command Line Management Commands LENGTH Syntax value length Parameters value Specifies the maximum number of lines that the SHOW commands display at one time on the screen. The range is 0 to 512 lines. Use the value 0 if you do not want the SHOW commands to pause. Mode Console Line and Virtual Terminal Line modes Description...
  • Page 101 AT-8100 Switch Command Line User’s Guide This example returns the number of lines to the default setting for local management sessions: awplus> enable awplus# configure terminal awplus(config)# line console 0 awplus(config-line)# no length...

  • Page 102: Logout

    Chapter 4: Basic Command Line Management Commands LOGOUT Syntax logout Parameters None Mode User Exec and Privileged Exec modes Description Use this command to end a management session. Note Entering the EXIT command in either the User Exec or Privileged Exec mode also ends a management session.

  • Page 103: Quit

    AT-8100 Switch Command Line User’s Guide QUIT Syntax quit Parameters None Mode All modes except the User Exec and Privileged Exec modes. Description Use this command to move up one mode in the mode hierarchy. This command is almost identical to the EXIT command. The difference is that unlike the EXIT command, the QUIT command cannot be used to end a management session.

  • Page 104: Write

    Chapter 4: Basic Command Line Management Commands WRITE Syntax write Parameters None Mode Privileged Exec mode Description Use this command to update the active boot configuration file with the switch’s current configuration, for permanent storage. When you enter the command, the switch copies its parameter settings into the active boot configuration file.

  • Page 105: Chapter 5 : Temperature And Fan Control Overview

    Chapter 5 Temperature and Fan Control Overview  “Overview” on page 106  “Displaying the System Environmental Status” on page 107  “Controlling Eco-Mode LED” on page 108...

  • Page 106: Overview

    Chapter 5: Temperature and Fan Control Overview Overview The switch monitors the environmental status, such as temperature and voltage, and the status of fan modules. Checking this information helps you to identify potential hardware issues before they become problems. To check the switch’s environmental and saving energy status, and turn on and off the port LEDs, use the following commands: ...

  • Page 107: Displaying The System Environmental Status

    AT-8100 Switch Command Line User’s Guide Displaying the System Environmental Status The switch monitors the environmental status of the switch and any attached PSU, XEM, or expansion option. The environmental status covers information about temperatures, fans, and voltage. To display this information, go to User Exec or Privileged Exec mode and enter the command: awplus# show system environment...

  • Page 108: Controlling Eco-Mode Led

    Chapter 5: Temperature and Fan Control Overview Controlling Eco-Mode LED AlliedWare Plus products provide an Eco-Mode LED control to conserve additional power on the port LEDs. The Eco-Mode LED is an eco-friendly feature that turns off the port LEDs when they are not necessary. To enable Eco-Mode LED control, enter the command: awplus(config)# ecofriendly led To disable Eco-Mode LED control,...

  • Page 109: Chapter 6 : Temperature And Fan Control Commands

    Chapter 6 Temperature and Fan Control Commands The temperature and fan control commands are summarized in Table 6. Table 6. Temperature and Fan Control Commands Command Mode Description “ECOFRIENDLY LED” on page 110 Global Turns off the port LEDs on the switch Configuration to save power.

  • Page 110: Ecofriendly Led

    Chapter 6: Temperature and Fan Control Commands ECOFRIENDLY LED Syntax ecofriendly led Parameters None Mode Global Configuration mode Description Use this command to turn off the port LEDs on the switch to save power. Confirmation Command “SHOW ECOFRIENDLY” on page 112 Example awplus# ecofriendly led...

  • Page 111: No Ecofriendly Led

    AT-8100 Switch Command Line User’s Guide NO ECOFRIENDLY LED Syntax no ecofriendly led Parameters None Mode Global Configuration mode Description Use this command to turn on the port LEDs on the switch. Confirmation Command “SHOW ECOFRIENDLY” on page 112 Example The following command turns on the port LEDs on the switch: awplus# no ecofriendly led...

  • Page 112: Show Ecofriendly

    Chapter 6: Temperature and Fan Control Commands SHOW ECOFRIENDLY Syntax show ecofriendly Parameters None Mode Privileged Exec mode Description Use this command to display the power saving status of the port LEDs. An example of the information the command displays is shown in Figure 32. Front panel port LEDs: on Figure 32.

  • Page 113: Show System Environment

    AT-8100 Switch Command Line User’s Guide SHOW SYSTEM ENVIRONMENT Syntax show system environment Parameters None Mode Privileged Exec mode Description Use this command to display the environmental information for the switch. When the command is entered on the stack master, it displays the information for all the stack members.

  • Page 114: Table 7. Show System Environment Command

    Chapter 6: Temperature and Fan Control Commands Figure 34 shows an example of the information that the command displays when the switch is a stack master. Environment Monitoring Status ---------------------------------------------------------------- Switch Model: AT-8100S/24 Stack Member Type: Master ---------------------------------------------------------------- Sensor (Units) Reading Status ----------------------------------------------------------------...
  • Page 115 AT-8100 Switch Command Line User’s Guide awplus# show system environment...
  • Page 116 Chapter 6: Temperature and Fan Control Commands...

  • Page 117: Basic Operations

    Section II Basic Operations This section contains the following chapters:  Chapter 7, “Basic Switch Management” on page 119  Chapter 8, “Basic Switch Management Commands” on page 137  Chapter 9, “Port Parameters” on page 177  Chapter 10, “Port Parameter Commands” on page 197 ...

  • Page 119: Chapter 7 : Basic Switch Management

    Chapter 7 Basic Switch Management This chapter contains the following:  “Adding a Name to the Switch” on page 120  “Adding Contact and Location Information” on page 121  “Displaying Parameter Settings” on page 122  “Manually Setting the Date and Time” on page 123 ...

  • Page 120: Adding A Name To The Switch

    Chapter 7: Basic Switch Management Adding a Name to the Switch The switch will be easier to identify if you assign it a name. The switch displays its name in the command line prompt, in place of the default prefix “awplus.” To assign the switch a name, use the HOSTNAME command in the Global Configuration mode.

  • Page 121: Adding Contact And Location Information

    AT-8100 Switch Command Line User’s Guide Adding Contact and Location Information The commands for assigning the switch contact and location information are the SNMP-SERVER CONTACT and SNMP-SERVER LOCATION commands, both of which are found in the Global Configuration mode. Here are the formats of the commands: contact snmp-server contact location...

  • Page 122: Displaying Parameter Settings

    Chapter 7: Basic Switch Management Displaying Parameter Settings To display the current parameter settings on the switch, use the SHOW RUNNING-CONFIG command in the Privileged Exec mode. The settings, which are displayed in their equivalent command line commands, are limited to just those parameters that have been changed from their default values.

  • Page 123: Manually Setting The Date And Time

    AT-8100 Switch Command Line User’s Guide Manually Setting the Date and Time To manually set the date and time on the switch, use the CLOCK SET command in the Privileged Exec mode. Here is the format of the command: hh:mm:ss dd mmm yyyy clock set Here are the variables: ...

  • Page 124: Pinging Network Devices

    Chapter 7: Basic Switch Management Pinging Network Devices If the switch is unable to communicate with a network device, such as a syslog server or a TFTP server, you can test for an active link between the two devices by instructing the switch to send ICMP Echo Requests and to listen for replies sent back from the other device.

  • Page 125: Resetting The Switch

    AT-8100 Switch Command Line User’s Guide Resetting the Switch To reset the switch, use either the REBOOT or RELOAD command in the Privileged Exec mode. You might reset the switch if it is experiencing a problem or if you want to reconfigure its settings after designating a new active boot configuration file.

  • Page 126: Restoring The Default Settings To The Switch

    Chapter 7: Basic Switch Management Restoring the Default Settings to the Switch To restore the default settings to the switch, delete or rename the active boot configuration file and then reset the unit. Without an active boot configuration file, the switch will use the default parameter settings after it initializes the management software.
  • Page 127 AT-8100 Switch Command Line User’s Guide Another way to delete the file is with the ERASE STARTUP-CONFIG command, also in the Privileged Exec mode. The advantage of this command over the DELETE command is that you do not have to know the name of the active boot configuration file.

  • Page 128: Setting The Baud Rate Of The Console Port

    Chapter 7: Basic Switch Management Setting the Baud Rate of the Console Port The Console port is used for local management of the switch. To set its baud rate, use the BAUD-RATE SET command in the Global Configuration mode. Note If you change the baud rate of the Console port during a local management session, your session is interrupted.
  • Page 129 AT-8100 Switch Command Line User’s Guide Note The baud rate is the only adjustable parameter on the Console port. For reference information, refer to “BAUD-RATE SET” on page 145 and “SHOW BAUD-RATE” on page 162.

  • Page 130: Configuring The Management Session Timers

    Chapter 7: Basic Switch Management Configuring the Management Session Timers You should always conclude a management session by logging off so that if you leave your workstation unattended, someone cannot use it to change the switch’s configuration. If you forget to log off, the switch has management session timers that detect and log off inactive local and remote management sessions automatically.
  • Page 131 AT-8100 Switch Command Line User’s Guide Both the first_line_id and the last_line_id parameters have value of 0 to 9. You can specify one VTY line or a range of VTY lines. This example sets the management session timer to 8 minutes on VTY line 2: awplus>...

  • Page 132: Setting The Maximum Number Of Manager Sessions

    Chapter 7: Basic Switch Management Setting the Maximum Number of Manager Sessions The switch supports up to three manager sessions simultaneously so that more than one person can manage the unit at a time. You set the maximum number of sessions with the SERVICE MAXMANAGER command in the Global Configuration mode.

  • Page 133: Configuring The Banners

    AT-8100 Switch Command Line User’s Guide Configuring the Banners The switch has banner messages you may use to identify the switch or to display other information about the unit. The banners are listed here:  Message-of-the-day banner  Login banner ...
  • Page 134 Chapter 7: Basic Switch Management The commands for setting the banners are located in the Global Configuration mode with the exception of the SHOW BANNER LOGIN command which you access in the Privileged Exec mode. After you enter the BANNER EXEC, BANNER LOGIN, or BANNER MOTD command, the “Type CTRL/D to finish”...
  • Page 135 AT-8100 Switch Command Line User’s Guide To remove messages without assigning new messages, use the NO versions of the commands. This example removes the message-of-the- day banner: awplus> enable awplus# configure terminal awplus(config)# no banner motd This example removes the login banner: awplus>...
  • Page 136 Chapter 7: Basic Switch Management...

  • Page 137: Chapter 8 : Basic Switch Management Commands

    Chapter 8 Basic Switch Management Commands The basic switch management commands are summarized in Table 8. Table 8. Basic Switch Management Commands Command Mode Description “BANNER EXEC” on page 139 Global Creates a User Exec and Privileged Configuration Exec modes banner. “BANNER LOGIN”...
  • Page 138 Chapter 8: Basic Switch Management Commands Table 8. Basic Switch Management Commands Command Mode Description “REBOOT” on page 158 Privileged Exec Resets the switch. “RELOAD” on page 159 Privileged Exec Resets the switch. “SERVICE MAXMANAGER” on Global Sets the maximum number of page 160 Configuration permitted manager sessions.

  • Page 139: Banner Exec

    AT-8100 Switch Command Line User’s Guide BANNER EXEC Syntax banner exec Parameters None Mode Global Configuration mode Description Use this command to create a banner for the User Exec and Privilege Exec modes. The message is displayed above the command line prompt when you log on or clear the screen with the CLEAR SCREEN command, in local, Telnet, and SSH management sessions.

  • Page 140: Table 8. Basic Switch Management Commands

    Chapter 8: Basic Switch Management Commands This example deletes the banner: awplus> enable awplus# configure terminal awplus(config)# no banner exec...

  • Page 141: Banner Login

    AT-8100 Switch Command Line User’s Guide BANNER LOGIN Syntax banner login Parameters None Mode Global Configuration mode Description Use this command to configure the login banner. The message is displayed prior to the login user name and password prompts for local, Telnet, and SSH management sessions.
  • Page 142 Chapter 8: Basic Switch Management Commands This example removes the login banner: awplus> enable awplus# configure terminal awplus(config)# no banner login...

  • Page 143: Banner Motd

    AT-8100 Switch Command Line User’s Guide BANNER MOTD Syntax banner motd Parameters None Mode Global Configuration mode Description Use this command to create a message-of-the-day banner. The message is displayed prior to the login user name and password prompts for local, Telnet, and SSH management sessions.
  • Page 144 Chapter 8: Basic Switch Management Commands This example removes the message-of-the-day banner: awplus> enable awplus# configure terminal awplus(config)# no banner motd...

  • Page 145: Baud-Rate Set

    AT-8100 Switch Command Line User’s Guide BAUD-RATE SET Syntax baud-rate set 1200|2400|4800|9600|19200|38400|57600|115200 Parameters None Mode Global Configuration mode Description Use this command to set the baud rate of the Console port, which is used for local management sessions of the switch. Note If you change the baud rate of the serial terminal port during a local management session, your session will be interrupted.

  • Page 146: Clock Set

    Chapter 8: Basic Switch Management Commands CLOCK SET Syntax hh:mm:ss dd mmm yyyy clock set Parameters hh:mm:ss Specifies the hour, minute, and second for the switch’s time in 24- hour format. Specifies the day of the month. Specifies the month. The month is specified by its first three letters. For example, June is Jun.

  • Page 147: Erase Startup-Config

    AT-8100 Switch Command Line User’s Guide ERASE STARTUP-CONFIG Syntax erase startup-config Parameters None Mode Privileged Exec mode Description Use this command to delete the active boot configuration file to restore the default settings to all the parameters on the switch. After entering this command, enter the REBOOT command to reset the switch and restore the default settings.

  • Page 148: Exec-Timeout

    Chapter 8: Basic Switch Management Commands EXEC-TIMEOUT Syntax value exec-timeout Parameters exec-timeout Specifies the session timer in minutes. The range is 0 to 35,791 minutes. The default value is 10 minutes. Mode Line Console and Virtual Terminal Line modes Description Use this command to set the management session timers.
  • Page 149 AT-8100 Switch Command Line User’s Guide This example sets the session timer for the first (vty 0) Telnet or SSH session to 5 minutes: awplus> enable awplus# configure terminal awplus(config)# line vty 0 awplus(config-line)# exec-timeout 5...

  • Page 150: Help

    Chapter 8: Basic Switch Management Commands HELP Syntax help Parameters None Mode All modes Description Use this command to learn how to use on-line help. Entering this command at a command line displays how to use the on-line help system. See Figure 38 for the description displayed on the screen.

  • Page 151: Hostname

    AT-8100 Switch Command Line User’s Guide HOSTNAME Syntax name hostname Parameters name Specifies a name of up to 39 alphanumeric characters for the switch. Spaces, punctuation, special characters, and quotation marks are not permitted. Mode Global Configuration mode Description Use this command to assign the switch a name. The switch displays the name in the command line prompt, in place of the default prefix “awplus.”...

  • Page 152: Line Console

    Chapter 8: Basic Switch Management Commands LINE CONSOLE Syntax line console 0 Parameters None Mode Global Configuration mode Description Use this command to enter the Line Console mode to set the session timer and to activate or deactivate remote authentication for local management sessions.

  • Page 153: Line Vty

    AT-8100 Switch Command Line User’s Guide LINE VTY Syntax first_line_id [last_line_id] line vty Parameters first_line_id Specifies the number of a VTY line. The range is 0 to 9. last_line_id Specifies the number of a VTY line. The range is 0 to 9. This is an optional parameter.

  • Page 154: No Hostname

    Chapter 8: Basic Switch Management Commands NO HOSTNAME Syntax no hostname Parameters None Mode Global Configuration mode Description Use this command to delete the switch’s name without assigning a new name. Example This example deletes the current name of the switch without assigning a new value: Bld2_Shipping>...

  • Page 155: Ping

    AT-8100 Switch Command Line User’s Guide PING Syntax ipaddress|hostname ping Parameters ipaddress Specifies the IP address of the network device to receive the ICMP Echo Requests from the switch. You can specify only one IP address. hostname Specifies the host name of the network device to receive the ICMP Echo Requests from the switch.
  • Page 156 Chapter 8: Basic Switch Management Commands Note The switch sends the ICMP Echo Requests from the ports of the VLAN assigned the management IP address. The device the switch is pinging must be a member of that VLAN or must be accessible through routers or other Layer 3 devices.

  • Page 157: Ping Ipv6

    AT-8100 Switch Command Line User’s Guide PING IPv6 Syntax ipv6-address 1-99> 36-18024> ping ipv6 < > repeat < size < Parameters ipv6-address Indicates the destination IPv6 address. The IPv6 address uses the format: nnnn:nnnn:nnnn:nnnn:nnnn:nnnn:nnnn:nnnn Where N is a hexadecimal digit from 0 to F. The eight groups of digits have to be separated by colons.

  • Page 158: Reboot

    Chapter 8: Basic Switch Management Commands REBOOT Syntax reboot Parameters None Mode Privileged Exec mode Description Use this command to reset the switch. You might reset the unit if it is experiencing a problem or if you want to reconfigure its settings after you designate a new active boot configuration file.This command is identical to “RELOAD”...

  • Page 159: Reload

    AT-8100 Switch Command Line User’s Guide RELOAD Syntax reload Parameters None Mode Privileged Exec mode Description Use this command to reset the switch. You might reset the unit if it is experiencing a problem or if you want to reconfigure its settings after you designate a new active boot configuration file.

  • Page 160: Service Maxmanager

    Chapter 8: Basic Switch Management Commands SERVICE MAXMANAGER Syntax value service maxmanager Parameters value Specifies the maximum number of manager sessions the switch will allow at one time. The range is 1 to 3. The default is 3. Mode Global Configuration mode Description Use this command to set the maximum number of manager sessions that can be open on the switch simultaneously.

  • Page 161: Show Banner Login

    AT-8100 Switch Command Line User’s Guide SHOW BANNER LOGIN Syntax show banner login Parameters None Mode Privileged Exec mode Description Use this command to display the contents of the banner login file configured with the BANNER LOGIN command. A sample of the display is shown below.

  • Page 162: Show Baud-Rate

    Chapter 8: Basic Switch Management Commands SHOW BAUD-RATE Syntax show baud-rate Parameters None Mode User Exec mode and Privileged Exec mode Description Use this command to display the settings of the Console port, used for local management sessions of the switch. Here is an example of the information.

  • Page 163: Show Clock

    AT-8100 Switch Command Line User’s Guide SHOW CLOCK Syntax show clock Parameters None Modes User Exec mode Description Use this command to display the system’s current date and time. Example This example displays the system’s current date and time: awplus# show clock...

  • Page 164: Show Running-Config

    Chapter 8: Basic Switch Management Commands SHOW RUNNING-CONFIG Syntax show running-config Parameters None Modes Privileged Exec mode Description Use this command to display the settings of the switch, in their equivalent command line commands. The command displays only the settings that have been changed from their default values and includes those values that have not yet been saved in the active boot configuration file.

  • Page 165: Show Switch

    Table 9. SHOW SWITCH Command Parameter Description Application Software The version number of the management Version software. Application Software Build The date and time when Allied Telesis Date released this version of the management software. MAC Address The MAC address of the switch.
  • Page 166 Chapter 8: Basic Switch Management Commands Table 9. SHOW SWITCH Command (Continued) Parameter Description Active Spanning Tree The active spanning tree protocol on the version switch. The protocol can be STP, RSTP, or MSTP. The active spanning tree protocol is set with “SPANNING-TREE MODE STP”...

  • Page 167: Show System

    AT-8100 Switch Command Line User’s Guide SHOW SYSTEM Syntax show system Parameters None Modes User Exec and Privileged Exec modes Description Use this command to view general information about the switch. Figure 42 is an example of the information. Switch System StatusFri, 18 Nov 2011 00:37:26 BoardBoard NameRevSerial Number ---------------------------------------------------------------- BaseAT-8100S/24 R1S05525A090200007...

  • Page 168: Show System Serialnumber

    Chapter 8: Basic Switch Management Commands SHOW SYSTEM SERIALNUMBER Syntax show system serialnumber Parameters None Mode User Exec and Privileged Exec modes Description Use this command to display the serial number of the switch. Figure 43 is an example of the output. S05525A023600001 Figure 43.

  • Page 169: Show Users

    AT-8100 Switch Command Line User’s Guide SHOW USERS Syntax show users Parameters None Modes Privileged Exec mode Description Use this command to display the managers who are currently managing the switch locally through the Console port and remotely from Telnet and SSH sessions.
  • Page 170 Chapter 8: Basic Switch Management Commands Table 10. SHOW USERS Command (Continued) Parameter Description Idle The number of hours, minutes, and seconds since the manager using the account entered a command on the switch. The value is always zero for your account because you just entered the SHOW USERS command.

  • Page 171: Show Version

    AT-8100 Switch Command Line User’s Guide SHOW VERSION Syntax show version Parameters None Mode User Exec and Privileged Exec modes Description Use this command to display the software version number and build date of the management software. Figure 45 displays an example of the information.

  • Page 172: Snmp-Server Contact

    Chapter 8: Basic Switch Management Commands SNMP-SERVER CONTACT Syntax contact snmp-server contact Parameters contact Specifies the name of the person responsible for managing the switch. The name can be up to 255 alphanumeric characters in length. Spaces and special characters are allowed. Mode Global Configuration mode Description...

  • Page 173: Snmp-Server Location

    AT-8100 Switch Command Line User’s Guide SNMP-SERVER LOCATION Syntax location snmp-server location Parameters location Specifies the location of the switch. The location can be up to 255 alphanumeric characters. Spaces and special characters are allowed. Mode Global Configuration mode Description Use this command to add location information to the switch.

  • Page 174: System Territory

    Chapter 8: Basic Switch Management Commands SYSTEM TERRITORY Syntax territory system territory Parameters territory Specifies the territory of the switch. The switch can have only one territory. You may choose from the following: australia china europe japan korea nz (New Zealand) Mode Global Configuration mode Description...
  • Page 175 AT-8100 Switch Command Line User’s Guide This example removes the current territory information: awplus> enable awplus# configure terminal awplus(config)# no system territory...
  • Page 176 Chapter 8: Basic Switch Management Commands...

  • Page 177: Chapter 9 : Port Parameters

    Chapter 9 Port Parameters This chapter contains the following:  “Adding Descriptions” on page 178  “Setting the Speed and Duplex Mode” on page 179  “Setting the MDI/MDI-X Wiring Configuration” on page 181  “Enabling or Disabling Ports” on page 182 ...

  • Page 178: Adding Descriptions

    Chapter 9: Port Parameters Adding Descriptions The ports will be easier to identify if you give them descriptions. The descriptions are viewed with the SHOW INTERFACE command in the Privileged Exec mode. The command for adding descriptions is the DESCRIPTION command in the Port Interface mode.

  • Page 179: Setting The Speed And Duplex Mode

    AT-8100 Switch Command Line User’s Guide Setting the Speed and Duplex Mode The twisted pair ports on the switch can operate at 10, 100, or 1000 Mbps, in either half-duplex or full-duplex mode. You may set the speeds and duplex modes yourself or, since the ports support Auto-Negotiation, you may let the switch configure the ports automatically.
  • Page 180 Chapter 9: Port Parameters This example sets the speeds of ports 11 and 17 to 100Mbps: awplus> enable awplus# configure terminal awplus(config)# interface port1.0.11,port1.0.17 awplus(config-if)# speed 100 This example configures port 1 to half-duplex: awplus> enable awplus# configure terminal awplus(config)# interface port1.0.1 awplus(config-if)# duplex half This example configures ports 2 to 4 to 10 Mbps, full-duplex: awplus>...

  • Page 181: Setting The Mdi/Mdi-X Wiring Configuration

    AT-8100 Switch Command Line User’s Guide Setting the MDI/MDI-X Wiring Configuration The wiring configurations of twisted pair ports that operate at 10 or 100 Mbps are MDI (medium dependent interface) and MDI-X (medium dependent interface crossover). A port on the switch and a port on a link partner must have different settings.

  • Page 182: Enabling Or Disabling Ports

    Chapter 9: Port Parameters Enabling or Disabling Ports Disabling ports turns off their receivers and transmitters so that they cannot forward traffic. You might disable unused ports on the switch to protect them from unauthorized use, or if there is a problem with a cable or a network device.

  • Page 183: Enabling Or Disabling Backpressure

    AT-8100 Switch Command Line User’s Guide Enabling or Disabling Backpressure Ports use backpressure during periods of packet congestion, to prevent packet overruns. They use it to stop their link partners from sending any further packets to enable them to process the packets already in their buffers.

  • Page 184: Enabling Or Disabling Flow Control

    Chapter 9: Port Parameters Enabling or Disabling Flow Control When a port that is operating in full-duplex mode needs to temporarily stop its local or remote counterpart from sending any further packets, it initiates flow control by sending what are known as pause packets. Pause packets instruct the link partner to stop sending packets to allow the sender of the packets time to process the packets already stored in its buffers.
  • Page 185 AT-8100 Switch Command Line User’s Guide This example configures port 21 not to send pause packets during periods of packet congestion: awplus> enable awplus# configure terminal awplus(config)# interface port1.0.21 awplus(config-if)# speed 100 awplus(config-if)# duplex full awplus(config-if)# flowcontrol send off This example enables both the receive and send portions of flow control on port 7: awplus>...
  • Page 186 Chapter 9: Port Parameters If flow control is not configured on a port, this message is displayed: Flow control is not set on interface port1.0.2...

  • Page 187: Resetting Ports

    AT-8100 Switch Command Line User’s Guide Resetting Ports If a port is experiencing a problem, you may be able to correct it with the RESET command in the Port Interface mode. This command performs a hardware reset. The port parameter settings are retained. The reset takes just a second or two to complete.

  • Page 188: Configuring Threshold Limits For Ingress Packets

    Chapter 9: Port Parameters Configuring Threshold Limits for Ingress Packets You can set threshold limits for the ingress packets on the ports. The threshold limits control the number of packets the ports accept each second. Packets that exceed the limits are discarded by the ports. You can set different limits for broadcast, multicast, and unknown unicast traffic.
  • Page 189 AT-8100 Switch Command Line User’s Guide To remove threshold limits from the ports, use the NO STORM-CONTROL command, also in the Port Interface mode. This example removes the threshold limit for broadcast packets on port 12: awplus> enable awplus# configure terminal awplus(config)# interface port1.0.12 awplus(config-if)# no storm-control broadcast This example disables unknown unicast rate limiting on port 5, 6, and 15:...

  • Page 190: Displaying Threshold Limit Settings On Ports

    Chapter 9: Port Parameters Displaying Threshold Limit Settings on Ports To display the threshold settings for the ingress packets on the ports, use the SHOW STORM-CONTROL command in the Privileged Exec mode. Here is the format: port show storm-control [ This example of the command displays the broadcast, multicast and dif levels on ports 18: awplus# show storm-control port1.0.18...

  • Page 191: Reinitializing Auto-Negotiation

    AT-8100 Switch Command Line User’s Guide Reinitializing Auto-Negotiation If you believe that a port set to Auto-Negotiation is not using the highest possible common speed and duplex-mode between itself and a network device, you can instruction it to repeat Auto-Negotiation. This is accomplished with the RENEGOTIATE command in the Port Interface mode.

  • Page 192: Restoring The Default Settings

    Chapter 9: Port Parameters Restoring the Default Settings To restore the default settings on a port, use the PURGE command in the Port Interface mode. This example returns ports 12, 13 and 15 to their default settings: awplus> enable awplus# configure terminal awplus(config)# interface port1.0.12,port1.0.13,port1.0.15 awplus(config-if)# purge For reference information, refer to “PURGE”...

  • Page 193: Displaying Port Settings

    AT-8100 Switch Command Line User’s Guide Displaying Port Settings There are several ways to display port settings. See the following:  “Displaying Speed and Duplex Settings” on page 193  “Displaying Port Status” on page 193  “Displaying Port Configuration” on page 194 Displaying Speed To display the speed and duplex mode settings of the ports, use the SHOW INTERFACE STATUS command in the Privileged Exec mode.

  • Page 194: Displaying Port Configuration

    Chapter 9: Port Parameters Interface port1.0.1 Link is UP, administrative state is UP Address is 0015.77cc.e243 index 1 mtu 9198 SNMP link-status traps: Enabled (Suppressed in 0 sec.) Bandwidth 1g input packets 0, bytes 0, dropped 0, multicast packets 0 output packets 0, bytes 0, multicast packets 0 broadcast packets 0 Interface port1.0.2 Link is UP, administrative state is UP...

  • Page 195: Displaying Or Clearing Port Statistics

    AT-8100 Switch Command Line User’s Guide Displaying or Clearing Port Statistics To view packet statistics for the individual ports, use the SHOW PLATFORM TABLE PORT COUNTERS command in the Privileged Exec mode. Here is the format of the command: port show platform table port [ ] counters This example displays the statistics for ports 23 and 24:...

  • Page 196: Displaying Sfp Information

    Chapter 9: Port Parameters Displaying SFP Information To view information on a plugged SFP on the switch, use the SHOW SYSTEM PLUGGABLE command in the Privileged Exec mode. Here is the format of the command: show system pluggable For more information about this command, see “SHOW SYSTEM PLUGGABLE”...

  • Page 197: Chapter 10 : Port Parameter Commands

    Chapter 10 Port Parameter Commands The port parameter commands are summarized in Table 11. Table 11. Port Parameter Commands Command Mode Description “BACKPRESSURE” on page 200 Port Interface Enables or disables backpressure on ports that are operating in half-duplex mode. “BPLIMIT”...
  • Page 198 Chapter 10: Port Parameter Commands Table 11. Port Parameter Commands (Continued) Command Mode Description “NO STORM-CONTROL” on Port Interface Removes threshold limits for page 220 broadcast, multicast, or unknown unicast packets. “POLARITY” on page 221 Port Interface Sets the MDI/MDI-X settings on twisted pair ports.
  • Page 199 Table 11. Port Parameter Commands (Continued) Command Mode Description “STORM-CONTROL” on page 248 Port Interface Sets a maximum limit of the number of broadcast, multicast, or unknown unicast packets forwarded by a port.

  • Page 200: Backpressure

    Chapter 10: Port Parameter Commands BACKPRESSURE Syntax backpressure on|off Parameters Activates backpressure on the ports. Deactivates backpressure on the ports. Mode Port Interface mode Description Use this command to enable or disable backpressure on ports that are operating at 10 or 100 Mbps in half-duplex mode. Backpressure is used by ports during periods of packet congestion to temporarily stop their network counterparts from transmitting more packets.
  • Page 201 AT-8100 Switch Command Line User’s Guide This example configures ports 8 and 21 to 100 Mbps, half-duplex mode, with backpressure disabled: awplus> enable awplus# configure terminal awplus(config)# interface port1.0.8,port1.0.21 awplus(config-if)# speed 100 awplus(config-if)# duplex half awplus(config-if)# backpressure off...

  • Page 202: Bplimit

    Chapter 10: Port Parameter Commands BPLIMIT Syntax bplimit bplimit Parameters bplimit Specifies the number of cells for backpressure. A cell represents 128 bytes. The range is 1 to 7935 cells. The default value is 7935 cells. Mode Port Interface mode Description Use this command to specify a threshold level for backpressure on a port.

  • Page 203: Clear Port Counter

    AT-8100 Switch Command Line User’s Guide CLEAR PORT COUNTER Syntax port clear port counter Parameters port Specifies the port whose packet counters you want to clear. You can specify more than one port at a time in the command. Mode User Exec mode and Privileged Exec mode Description Use this command to clear the packet counters of the ports.

  • Page 204: Description

    Chapter 10: Port Parameter Commands DESCRIPTION Syntax description description Parameters description Specifies a description of 1 to 240 alphanumeric characters for a port. Spaces and special characters are allowed. Mode Port Interface mode Description Use this command to add descriptions to the ports on the switch. The ports will be easier to identify if they have descriptions.
  • Page 205 AT-8100 Switch Command Line User’s Guide This example removes the current name from port 11 without assigning a new name: awplus> enable awplus# configure terminal awplus(config)# interface port1.0.11 awplus(config-if)# no description...

  • Page 206: Duplex

    Chapter 10: Port Parameter Commands DUPLEX Syntax duplex auto|half|full Parameters auto Activates Auto-Negotiation for the duplex mode, so that the duplex mode is set automatically. half Specifies half-duplex mode. full Specifies full-duplex mode. Mode Port Interface mode Description Use this command to set the duplex modes of the twisted pair ports. Ports operating in half-duplex mode can either receive packets or transmit packets, but not both at the same time, while ports operating in full-duplex can both send and receive packets, simultaneously.
  • Page 207 AT-8100 Switch Command Line User’s Guide Examples This example sets the duplex mode on port 11 half-duplex: awplus> enable awplus# configure terminal awplus(config)# interface port1.0.11 awplus(config-if)# duplex half This example configures the duplex mode with Auto-Negotiation on port awplus> enable awplus# configure terminal awplus(config)# interface port1.0.15 awplus(config-if)# duplex auto...

  • Page 208: Egress-Rate-Limit

    Chapter 10: Port Parameter Commands EGRESS-RATE-LIMIT Syntax value egress-rate-limit Parameters value Specifies the maximum amount of traffic that can be transmitted from the port. The value is kilobits per second. The range is 64 to 1,000,000 kilobits per second. Mode Port Interface mode Description Use this command to set a limit on the amount of traffic that can be...

  • Page 209: Fctrllimit

    AT-8100 Switch Command Line User’s Guide FCTRLLIMIT Syntax fctrllimit fctrllimit Parameters fctrllimit Specifies the number of cells for flow control. A cell represents 128 bytes. The range is 1 to 7935 cells. The default value is 7935 cells. Mode Port Interface mode Description Use this command to specify threshold levels for flow control on the ports.

  • Page 210: Flowcontrol

    Chapter 10: Port Parameter Commands FLOWCONTROL Syntax flowcontrol send|receive|both on|off Parameter send Controls whether a port sends pause packets during periods of packet congestion, to initiate flow control. receive Controls whether a port, when it receives pause packets from its network counterpart, stops sending packets.
  • Page 211 AT-8100 Switch Command Line User’s Guide partner. If it is off, a port does not respond to pause packets and continues to transmit packets. At the default setting, the receive portion of flow control is off. The SEND parameter determines whether a port sends pause packets when it experiences traffic congestion.
  • Page 212 Chapter 10: Port Parameter Commands This example configures port 1 and 2 to 10 Mbps, full-duplex mode. The send portion of flow control is disabled so that the ports do not send pause packets during periods of traffic congestion. But the receive portion is enabled so that the ports respond to pause packets from their network counterparts by temporarily ceasing transmission: awplus>...

  • Page 213: Holbplimit

    AT-8100 Switch Command Line User’s Guide HOLBPLIMIT Syntax holbplimit holbplimit Parameter holbplimit Specifies the threshold at which a port signals a head of line blocking event. The threshold is specified in cells. A cell is 128 bytes. The range is 1 to 8,191 cells; the default is 7,168 cells. Mode Port Interface mode Description...
  • Page 214 Chapter 10: Port Parameter Commands Figure 52. Head of Line Blocking The HOL Limit parameter can help prevent this problem from occurring. It sets a threshold on the utilization of a port’s egress queue. When the threshold for a port is exceeded, the switch signals other ports to discard packets to the oversubscribed port.
  • Page 215 AT-8100 Switch Command Line User’s Guide awplus> enable awplus# configure terminal awplus(config)# interface port1.0.9 awplus(config-if)# no holbplimit...

  • Page 216: No Egress-Rate-Limit

    Chapter 10: Port Parameter Commands NO EGRESS-RATE-LIMIT Syntax no egress-rate-limit Parameters None Mode Port Interface mode Description Use this command to disable egress rate limiting on the ports. Confirmation Command “SHOW RUNNING-CONFIG” on page 164 Example This example disable egress rate limiting on the ports 4 and 5: awplus>...

  • Page 217: No Flowcontrol

    AT-8100 Switch Command Line User’s Guide NO FLOWCONTROL Syntax no flowcontrol Parameter None Mode Port Interface mode Description Use this command to disable flow control on ports. Confirmation Command “SHOW FLOWCONTROL INTERFACE” on page 226 Example This example disables flow control on port 16: awplus>...

  • Page 218: No Shutdown

    Chapter 10: Port Parameter Commands NO SHUTDOWN Syntax no shutdown Parameters None Mode Port Interface mode Description Use this command to enable ports so that they forward packets again. This is the default setting for a port. Confirmation Command “SHOW RUNNING-CONFIG” on page 164 Example This example enables port 22: awplus>...

  • Page 219: No Snmp Trap Link-Status

    AT-8100 Switch Command Line User’s Guide NO SNMP TRAP LINK-STATUS Syntax no snmp trap link-status Parameter None Mode Port Interface mode Description Use this command to deactivate SNMP link traps on the ports of the switch. The switch does not send traps when a port on which link trap is disabled experiences a change in its link state (i.e., goes up or down).

  • Page 220: No Storm-Control

    Chapter 10: Port Parameter Commands NO STORM-CONTROL Syntax no storm-control broadcast|multicast|dlf Parameters broadcast Specifies broadcast packets. multicast Specifies multicast packets. Specifies unknown unicast packets. Description Use this command to remove packet threshold levels that were set on the ports with “STORM-CONTROL” on page 248. Confirmation Command “SHOW RUNNING-CONFIG”...

  • Page 221: Polarity

    AT-8100 Switch Command Line User’s Guide POLARITY Syntax polarity auto|mdi|mdix Parameters auto Activates auto-MDI/MDIX. Sets a port’s wiring configuration to MDI. mdix Sets a port’s wiring configuration to MDI-X. Mode Port Interface mode Description Use this command to set the wiring configuration of twisted pair ports that are operating at 10 or 100 Mbps, in half- or full-duplex mode.
  • Page 222 Chapter 10: Port Parameter Commands This example sets ports 4 and 18 to the MDI-X wiring configuration: awplus> enable awplus# configure terminal awplus(config)# interface port1.0.4,port1.0.18 awplus(config-if)# polarity mdix This example activates auto-MDI/MDIX on ports 1 to 3: awplus> enable awplus# configure terminal awplus(config)# interface port1.0.1-port1.0.3 awplus(config-if)# polarity auto...

  • Page 223: Purge

    AT-8100 Switch Command Line User’s Guide PURGE Syntax purge Parameters None Mode Port Interface mode Description Use this command to restore the default settings to these port parameters:  Enabled status (NO SHUTDOWN)  Description  Speed  Duplex mode ...

  • Page 224: Renegotiate

    Chapter 10: Port Parameter Commands RENEGOTIATE Syntax renegotiate Parameters None Mode Port Interface mode Description Use this command to prompt a port that is set to Auto-Negotiation to renegotiate its speed and duplex mode with its network device. You might use this command if you believe that a port and a network device did not establish the highest possible common settings during the Auto- Negotiation process.

  • Page 225: Reset

    AT-8100 Switch Command Line User’s Guide RESET Syntax reset Parameters None Mode Port Interface mode Description Use this command to perform a hardware reset on the ports. The ports retain their parameter settings. The reset takes only a second or two to complete.

  • Page 226: Show Flowcontrol Interface

    Chapter 10: Port Parameter Commands SHOW FLOWCONTROL INTERFACE Syntax port show flowcontrol interface Parameter port Specifies the port whose flow control setting you want to view. You can specify just one port at a time. Modes Privileged Exec mode Description Use this command to display the current settings for flow control on the ports.
  • Page 227 AT-8100 Switch Command Line User’s Guide Table 12. SHOW FLOWCONTROL INTERFACE Command (Continued) Parameter Description RxPause The number of received pause packets. TxPause The number of transmitted pause packets. Example This command displays the flow control settings for port 2: awplus# show flowcontrol interface port1.0.2...

  • Page 228: Show Interface

    Chapter 10: Port Parameter Commands SHOW INTERFACE Syntax port show interface [ Parameter port Specifies the port whose current status you want to view. You can display more than one port at a time. To display all the ports, do not include this parameter.

  • Page 229: Table 13. Show Interface Command

    AT-8100 Switch Command Line User’s Guide Interface port1.0.1 Link is UP, administrative state is UP Address is 0015.77cc.e243 Description: index 1 mtu 9198 Unknown Ingress Multicast Blocking: Disabled Unknown Egress Multicast Blocking: Disabled SNMP link-status traps: Enabled (Suppressed in 0 sec.) Bandwidth 1g input packets 0, bytes 0, dropped 0, multicast packets 0 output packets 0, bytes 0, multicast packets 0 broadcast packets 0...
  • Page 230 Chapter 10: Port Parameter Commands Table 13. SHOW INTERFACE Command (Continued) Parameter Description Link is The status of the link on the port. This field is UP when the port has a link with a network device, and DOWN when the port does not have a link.
  • Page 231 AT-8100 Switch Command Line User’s Guide Examples This command displays the current operational state of all the ports: awplus# show interface This command displays the current operational state of ports 1 to 4: awplus# show interface port1.0.1-port1.0.4...

  • Page 232: Show Interface Brief

    Chapter 10: Port Parameter Commands SHOW INTERFACE BRIEF Syntax show interface brief Parameter None Modes Privileged Exec mode Description Use this command to display the administrative and link statuses of all of the ports on the switch. An example of the information is shown in Figure 55.
  • Page 233 AT-8100 Switch Command Line User’s Guide Table 14. SHOW INTERFACE BRIEF Command (Continued) Field Description Protocol Indicates the status of the link on the port. This field is UP when the port has a link with a network device, and DOWN when the port does not have a link.

  • Page 234: Show Interface Status

    Chapter 10: Port Parameter Commands SHOW INTERFACE STATUS Syntax port show interface [ ] status Parameter port Specifies the port whose parameter settings you want to view. You can display more than one port at a time. To display all the ports, do not include a port number.
  • Page 235 AT-8100 Switch Command Line User’s Guide Table 15. SHOW INTERFACE STATUS Command (Continued) Parameter Description Duplex The duplex mode setting of the port. The setting can be half, full or auto for Auto- Negotiation. To set the duplex mode, refer to “DUPLEX”...

  • Page 236: Show Platform Table Port Counters

    Chapter 10: Port Parameter Commands SHOW PLATFORM TABLE PORT COUNTERS Syntax port show platform table port [ ] counters Parameter port Specifies the port whose statistics you want to view. You can specify more than one port at a time in the command. To view all the ports, omit this parameter.
  • Page 237 AT-8100 Switch Command Line User’s Guide Table 16. SHOW PLATFORM TABLE PORT COUNTERS Command Parameter Description MulticastPkts Number of received and transmitted multicast packets. BroadcastPkts Number of received and transmitted broadcast packets PauseMACCtrlFrms Number of received and transmitted flow control pause packets. OversizePkts Number of received packets that exceeded the maximum size as specified...
  • Page 238 Chapter 10: Port Parameter Commands Table 16. SHOW PLATFORM TABLE PORT COUNTERS Command Parameter Description ifOutErrors Number of packets that were discarded prior to transmission because of an error. ipInHdrErrors Number of ingress packets that were discarded because of a hardware error. Miscellaneous Counters MAC TxErr Number of frames not transmitted...

  • Page 239: Show Running-Config Interface

    AT-8100 Switch Command Line User’s Guide SHOW RUNNING-CONFIG INTERFACE Syntax port show running-config interface Parameters port Specifies a port, multiple ports, or a range of ports. For a detailed explanation on how to specify ports, see “Port Numbers in Commands” on page 63. Modes Privileged Exec mode Description...

  • Page 240: Show Storm-Control

    Chapter 10: Port Parameter Commands SHOW STORM-CONTROL Syntax port show storm-control [ Parameters port Specifies the port whose storm-control, threshold limit settings you want to view. You can specify more than one port at a time. To display all the ports, do not include this parameter. Mode Privileged Exec mode Description...
  • Page 241 AT-8100 Switch Command Line User’s Guide Table 17. SHOW STORM-CONTROL Command (Continued) Column Description DlfLevel Indicates the maximum number of unknown unicast packets, destination lookup failure (DLF) packets per second for the port. DLF packets beyond this number are discarded. Examples This command displays the settings of all the ports: awplus# show storm-control...

  • Page 242: Show System Pluggable

    Chapter 10: Port Parameter Commands SHOW SYSTEM PLUGGABLE Syntax show system pluggable Parameters None Mode Privileged Exec mode Description Use this command to display information about the SFP modules in the switch. System Pluggable Information PortVendorDevice Serial NumberDatecode Type --------------------------------------------------------- 1.0.49ATIAT-SPSX A03240R08420074120081018 1000BASE-SX...

  • Page 243: Show System Pluggable Detail

    AT-8100 Switch Command Line User’s Guide SHOW SYSTEM PLUGGABLE DETAIL Syntax show system pluggable detail Parameters None Mode Privileged Exec mode Description Use this command to display information about the SFP modules in the switch. See Figure 60. The SHOW SYSTEM PLUGGABLE DETAIL command provides more detailed information than the SHOW SYSTEM PLUGGABLE command.

  • Page 244: Shutdown

    Chapter 10: Port Parameter Commands SHUTDOWN Syntax shutdown Parameter None Mode Port Interface mode Description Use this command to disable ports. Ports that are disabled do not forward traffic. You might disable ports that are unused to secure them from unauthorized use or that are having problems with network cables or their link partners.

  • Page 245: Snmp Trap Link-Status

    AT-8100 Switch Command Line User’s Guide SNMP TRAP LINK-STATUS Syntax snmp trap link-status Parameter None Mode Port Interface mode Description Use this command to activate SNMP link traps on the ports. The switch sends an SNMP trap to an SNMP trap receiver on your network whenever a port experiences a change in its link state.

  • Page 246: Speed

    Chapter 10: Port Parameter Commands SPEED Syntax speed auto|10|100|1000 Parameters auto Activates Auto-Negotiation so that the speed is configured automatically. Specifies 10 Mbps. Specifies 100 Mbps. 1000 Specifies 1000 Mbps. This setting should not be used on twisted pair ports. For 1000Mbps, full duplex operation, a twisted pair port must be set to Auto-Negotiation.
  • Page 247 AT-8100 Switch Command Line User’s Guide This example activates Auto-Negotiation on port 15: awplus> enable awplus# configure terminal awplus(config)# interface port1.0.15 awplus(config-if)# speed auto...

  • Page 248: Storm-Control

    Chapter 10: Port Parameter Commands STORM-CONTROL Syntax value storm-control broadcast|multicast|dlf level Parameters broadcast Specifies broadcast packets. multicast Specifies multicast packets. Specifies unknown unicast packets. level Specifies the maximum number of ingress packets per second of the designated type the port will forward. The range is 0 to 33,554,431 packets.
  • Page 249 AT-8100 Switch Command Line User’s Guide Examples This example sets the maximum threshold level of 5,000 packets per second for ingress broadcast packets on port 12: awplus> enable awplus# configure terminal awplus(config)# interface port1.0.12 awplus(config-if)# storm-control broadcast level 5000 This example sets the maximum threshold level of 100,000 packets per second for ingress multicast packets on port 4: awplus>...
  • Page 250 Chapter 10: Port Parameter Commands...

  • Page 251: Power Over Ethernet

    Chapter 11 Power Over Ethernet  “Overview” on page 252  “Enabling and Disabling PoE” on page 254  “Adding PD Descriptions to Ports” on page 256  “Prioritizing Ports” on page 257  “Managing the Maximum Power Limit on Ports” on page 258 ...

  • Page 252: Overview

    Chapter 11: Power Over Ethernet Overview The AT-8100L/8PoE, AT-8100S/24PoE, and AT-8100S/48PoE switches feature Power over Ethernet (PoE) on the 10/100Base-Tx ports. PoE is used to supply power to network devices over the same twisted pair cables that carry the network traffic. The main advantage of PoE is that it can make it easier to install a network.

  • Page 253: Port Prioritization

    AT-8100 Switch Command Line User’s Guide be operated using either one power supply or both power supplies. One power supply is responsible for providing 185 watts of the power budget. Table 19 shows power budget per model. Table 19. PoE Switch’s Power Budget When Using One When Using Two Switch Model...

  • Page 254: Enabling And Disabling Poe

    Chapter 11: Power Over Ethernet Enabling and Disabling PoE Enabling PoE on ports allows the switch to supply power to PDs connected to the ports. In order for PDs to receive power, PoE must be enabled on the ports. By default, PoE is enabled on all the ports on the PoE switch.
  • Page 255 AT-8100 Switch Command Line User’s Guide This example enables PoE individually on port 6 and port 8: awplus> enable awplus# configure terminal awplus(config)# interface port1.0.6,port1.0.8 awplus(config-if)# power-inline enable This example disables PoE individually on port 5 to port 8: awplus> enable awplus# configure terminal awplus(config)# interface port1.0.5-port1.0.8 awplus(config-if)# no power-inline enable...

  • Page 256: Adding Pd Descriptions To Ports

    Chapter 11: Power Over Ethernet Adding PD Descriptions to Ports PDs connected to the ports are easier to identify if you give them descriptions. To add descriptions to PDs, use the POWER-INLINE DESCRIPTION command in the Port Interface mode. Here is the format: description power-inline description The description parameter can consist of up to 256 alphanumeric...

  • Page 257: Prioritizing Ports

    AT-8100 Switch Command Line User’s Guide Prioritizing Ports When the total power requirements of the PDs exceed the total available power of the switch, the switch denies power to one or more ports based on port prioritization.To guarantee power to the most critical PDs before any other PDs, the switch allows you to prioritize the ports for power supply.

  • Page 258: Managing The Maximum Power Limit On Ports

    Chapter 11: Power Over Ethernet Managing the Maximum Power Limit on Ports To manage the switch’s power and optimize its power distribution, the switch allows you to adjust the power limit that the switch provides to each port. The switch automatically sets a default power limit to the port where a PD is connected and allows you to change the default settings.

  • Page 259: Managing Legacy Pds

    AT-8100 Switch Command Line User’s Guide Managing Legacy PDs The PoE switch automatically detects whether or not a device plugged into the PoE-enabled port is a valid PD. The switch supports PDs compliant with the IEEE 802.3af and IEEE 802.3at PoE standards. In addition, the switch supports legacy PDs that were designed before the IEEE standards were finalized.

  • Page 260: Monitoring Power Consumption

    Chapter 11: Power Over Ethernet Monitoring Power Consumption You can monitor the power consumption of the switch and PDs by configuring the unit to transmit an SNMP power-inline trap if their combined power requirements exceed a defined threshold. The threshold is specified as a percentage of the switch’s nominal power, which is the total available power of the switch.

  • Page 261: Displaying Poe Information

    AT-8100 Switch Command Line User’s Guide Displaying PoE Information The switch allows you to display PoE information using three commands. Each command displays a different set of PoE information as described in Table 22. Table 22. PoE Show Commands Command Description SHOW POWER-INLINE Displays PoE information about the switch...
  • Page 262 Chapter 11: Power Over Ethernet This example displays the PoE information of port 1 through port 4: awplus# show power inline interface port1.0.1-port1.0.4 Figure 62 shows an example of the information the command displays. The columns are described in Table 24 on page 283. Interface Admin Oper...

  • Page 263: Chapter 12 : Power Over Ethernet Commands

    Chapter 12 Power Over Ethernet Commands The Power over Ethernet (PoE) commands are summarized in Table 23. These commands are only supported on the PoE switches. Table 23. Power over Ethernet Commands Command Mode Description “CLEAR POWER-INLINE Privileged Exec Clears the PoE event counters on the COUNTERS INTERFACE”...
  • Page 264 Chapter 12: Power Over Ethernet Commands Table 23. Power over Ethernet Commands (Continued) Command Mode Description “POWER-INLINE PRIORITY” on Port Interface Assigns a PoE priority level to a port. page 278 “POWER-INLINE USAGE- Global Sets the power threshold for the THRESHOLD”...

  • Page 265: Clear Power-Inline Counters Interface

    AT-8100 Switch Command Line User’s Guide CLEAR POWER-INLINE COUNTERS INTERFACE Syntax clear power-inline counters interface [ port Parameter port Specifies a port. You can specify more than one port and clear event counters for multiple ports. Mode Privileged Exec mode Description Use this command to clear the PoE port event counters.

  • Page 266: No Power-Inline Allow-Legacy

    Chapter 12: Power Over Ethernet Commands NO POWER-INLINE ALLOW-LEGACY Syntax no power-inline allow-legacy Parameters None Mode Port Interface mode Description Use this command to configure the ports to deny power to legacy PDs. Legacy PDs are PoE devices that were designed before the IEEE 802.3af and IEEE 802.3at PoE standards were finalized.

  • Page 267: No Power-Inline Description

    AT-8100 Switch Command Line User’s Guide NO POWER-INLINE DESCRIPTION Syntax no power-inline description Parameters None Mode Port Interface mode Description Use this command to delete PD descriptions from the ports. Confirmation Commands “SHOW POWER-INLINE” on page 282 “SHOW POWER-INLINE INTERFACE” on page 287 “SHOW POWER-INLINE INTERFACE DETAIL”...

  • Page 268: No Power-Inline Enable

    Chapter 12: Power Over Ethernet Commands NO POWER-INLINE ENABLE Syntax no power-inline enable Parameters None Mode Port Interface mode Description Use this command to disable PoE on the ports. Ports do not transmit power when PoE is disabled, but they do forward network traffic. Confirmation Commands “SHOW POWER-INLINE”...

  • Page 269: No Power-Inline Max

    AT-8100 Switch Command Line User’s Guide NO POWER-INLINE MAX Syntax no power-inline max Parameters None Mode Port Interface mode Description Use this command to restore the default maximum power limits on the ports. The default power limits are based on the power classes of the PDs. See “Managing the Maximum Power Limit on Ports”...

  • Page 270: No Power-Inline Priority

    Chapter 12: Power Over Ethernet Commands NO POWER-INLINE PRIORITY Syntax no power-inline priority Parameters None Mode Port Interface mode Description Use this command to restore the default Low priority setting to the ports. Confirmation Commands “SHOW POWER-INLINE” on page 282 “SHOW POWER-INLINE INTERFACE”...

  • Page 271: No Power-Inline Usage-Threshold

    AT-8100 Switch Command Line User’s Guide NO POWER-INLINE USAGE-THRESHOLD Syntax no power-inline usage-threshold Parameters None Mode Global Configuration mode Description Use this command to reset the power usage threshold to the default 80%. The switch sends an SNMP power-inline trap if the power requirements of the switch and PDs exceed the defined threshold.

  • Page 272: No Service Power-Inline

    Chapter 12: Power Over Ethernet Commands NO SERVICE POWER-INLINE Syntax no service power-inline Parameters None Mode Global Configuration mode Description Use this command to disable PoE on the switch. The ports do not transmit power to the PDs when PoE is disabled, but they do forward network traffic.

  • Page 273: No Snmp-Server Enable Trap Power-Inline

    AT-8100 Switch Command Line User’s Guide NO SNMP-SERVER ENABLE TRAP POWER-INLINE Syntax no snmp-server enable trap power-inline Parameters None Mode Global Configuration mode Description Use this command to disable the transmission of SNMP power-inline traps. The switch sends this trap if the power requirements of the switch and PDs exceed the threshold set with “POWER-INLINE USAGE- THRESHOLD”...

  • Page 274: Power-Inline Allow-Legacy

    Chapter 12: Power Over Ethernet Commands POWER-INLINE ALLOW-LEGACY Syntax power-inline allow-legacy Parameters None Mode Port Interface mode Description Use this command to configure the ports to support legacy PDs. Legacy PDs are PoE devices that were designed before the IEEE 802.3af and IEEE 802.3at PoE standards were finalized.

  • Page 275: Power-Inline Description

    AT-8100 Switch Command Line User’s Guide POWER-INLINE DESCRIPTION Syntax power-inline description description Parameters description Specifies a PD description of up to 256 alphanumeric characters. Spaces and special characters are allowed. Mode Port Interface mode Description Use this command to add PD descriptions to the ports to make the ports and PDs easier to identify.

  • Page 276: Power-Inline Enable

    Chapter 12: Power Over Ethernet Commands POWER-INLINE ENABLE Syntax power-inline enable Parameters None Mode Port Interface mode Description Use this command to enable PoE on the ports. This is the default setting. Confirmation Commands “SHOW POWER-INLINE” on page 282 “SHOW POWER-INLINE INTERFACE” on page 287 “SHOW POWER-INLINE INTERFACE DETAIL”...

  • Page 277: Power-Inline Max

    AT-8100 Switch Command Line User’s Guide POWER-INLINE MAX Syntax power-inline max max_power Parameters max_power Specifies the maximum power limit of the ports in milliwatts (mW). The range is 4000 to 30000 mW. Mode Port Interface mode Description Use this command to set the maximum power limits on the ports. The maximum power limit is the maximum amount of power a port may transmit to a PD.

  • Page 278: Power-Inline Priority

    Chapter 12: Power Over Ethernet Commands POWER-INLINE PRIORITY Syntax power-inline priority critical|high|low Parameters critical Sets ports to the Critical priority level for PoE ports. Ports set to the Critical level are guaranteed power before any of the ports assigned to the other priority levels. high Sets ports to the High priority level.
  • Page 279 AT-8100 Switch Command Line User’s Guide Example This example assigns the Critical priority level to port 5: awplus> enable awplus# configure terminal awplus(config)# interface port1.0.5 awplus(config-if)# power-inline priority critical...

  • Page 280: Power-Inline Usage-Threshold

    Chapter 12: Power Over Ethernet Commands POWER-INLINE USAGE-THRESHOLD Syntax power-inline usage-threshold threshold Parameters threshold Specifies the power usage threshold in a percentage of the switch’s total available system and PoE power. The range is 1 to 99%. Mode Global Configuration mode Description Use this command to set a threshold of the switch’s total available system and PoE power.

  • Page 281: Service Power-Inline

    AT-8100 Switch Command Line User’s Guide SERVICE POWER-INLINE Syntax service power-inline Parameters None Mode Global Configuration mode Description Use this command to enable PoE on the switch or stack. This is the default setting. Confirmation Commands “SHOW POWER-INLINE” on page 282 “SHOW POWER-INLINE INTERFACE”...

  • Page 282: Show Power-Inline

    Chapter 12: Power Over Ethernet Commands SHOW POWER-INLINE Syntax show power-inline Parameter None Mode Privileged Exec mode Description Use this command to display operational information about PoE. An example is shown in Figure 64. The fields are described in Table 24 on page 283.

  • Page 283: Table 24. Show Power-Inline Command

    AT-8100 Switch Command Line User’s Guide Table 24. SHOW POWER-INLINE Command Field Description Nominal Power The switch’s total available power in watts (W). Power Allocated The available power in watts (W) for PDs. This value is updated every 5 seconds. Actual Power The current power consumption in watts (W) of the Consumption...
  • Page 284 Chapter 12: Power Over Ethernet Commands Table 24. SHOW POWER-INLINE Command (Continued) Field Description Oper The PoE operating status of the port. The possible status are listed here:  Powered: The port is transmitting power to the  Denied: The port is not transmitting power to the PD because the switch has reached its maximum power capacity.

  • Page 285: Show Power-Inline Counters Interface

    AT-8100 Switch Command Line User’s Guide SHOW POWER-INLINE COUNTERS INTERFACE Syntax show power-inline counters interface port Parameter port Specifies a port. You can specify and display more than one port at a time. Omit this parameter to display all of the ports. Mode Privileged Exec mode Description...
  • Page 286 Chapter 12: Power Over Ethernet Commands Table 25. SHOW POWER-INLINE COUNTERS INTERFACE Command Field Description Denied The number of times the port had to deny power to the PD because the switch had reached its maximum power capacity. Example This command displays the PoE event counters for ports 4 to 6: awplus# show power-inline counters interface port1.0.4- port1.0.6...

  • Page 287: Show Power-Inline Interface

    AT-8100 Switch Command Line User’s Guide SHOW POWER-INLINE INTERFACE Syntax show power-inline interface port Parameter port Specifies a port. You can display more than one port at a time. Mode Privileged Exec mode Description Use this command to display the PoE information on the ports. An example is shown in Figure 66.

  • Page 288: Show Power-Inline Interface Detail

    Chapter 12: Power Over Ethernet Commands SHOW POWER-INLINE INTERFACE DETAIL Syntax show power-inline interface port detail Parameter port Specifies a port. You can display more than one port at a time. Mode Privileged Exec mode Description Use this command to display additional information about the ports. An example is shown in Figure 67.
  • Page 289 AT-8100 Switch Command Line User’s Guide Table 26. SHOW POWER-INLINE INTERFACE DETAIL Command Field Description PoE admin The status of PoE on the port. The status can be one of the following:  Enabled: PoE is enabled. The port can transmit power to a PD.
  • Page 290 Chapter 12: Power Over Ethernet Commands Table 26. SHOW POWER-INLINE INTERFACE DETAIL Command Field Description Detection of The status of support for a legacy PD on the port: legacy devices  Enabled: The port supports legacy devices.  Disabled: The port does not support legacy devices.

  • Page 291: Snmp-Server Enable Trap Power-Inline

    AT-8100 Switch Command Line User’s Guide SNMP-SERVER ENABLE TRAP POWER-INLINE Syntax snmp-server enable trap power-inline Parameters None Mode Global Configuration mode Description Use this command to activate the transmission of the SNMP power-inline trap. The trap is sent if the power requirements of the switch and PDs exceed the power limit threshold set with “POWER-INLINE USAGE- THRESHOLD”...
  • Page 292 Chapter 12: Power Over Ethernet Commands...

  • Page 293: Chapter 13 : Ipv4 And Ipv6 Management Addresses

    Chapter 13 IPv4 and IPv6 Management Addresses This chapter contains the following information:  “Overview” on page 294  “Assigning an IPv4 Management Address and Default Gateway” on page 297  “Assigning an IPv6 Management Address and Default Gateway” on page 302...

  • Page 294: Overview

    Chapter 13: IPv4 and IPv6 Management Addresses Overview This chapter explains how to assign the switch an IP address. The switch must have an IP address to perform the features in Table 27. It uses the address as its source address when it communicates with other network devices, such as TFTP servers, and Telnet management workstations.
  • Page 295 AT-8100 Switch Command Line User’s Guide Table 27. Features Requiring an IP Management Address on the Switch (Continued) Supported Supported Feature Description by IPv4 by IPv6 Address Address RMON Used with the RMON portion of the MIB tree on an SNMP workstation to remotely monitor the switch.
  • Page 296 Chapter 13: IPv4 and IPv6 Management Addresses Table 27. Features Requiring an IP Management Address on the Switch (Continued) Supported Supported Feature Description by IPv4 by IPv6 Address Address Secure HTTPS web browser Used to remotely manage the server switch with a web browser, with encryption.

  • Page 297: Assigning An Ipv4 Management Address And Default Gateway

    AT-8100 Switch Command Line User’s Guide Assigning an IPv4 Management Address and Default Gateway This section covers the following topics:  “Adding an IPv4 Management Address” next  “Adding an IPv4 Default Gateway Address” on page 299  “Deleting an IPv4 Management Address and Default Gateway” on page 300 ...
  • Page 298 Chapter 13: IPv4 and IPv6 Management Addresses Here are several examples of the command. The first example assigns the switch the management IPv4 address 149.121.43.56/24 to the Default_VLAN, which has the VID number 1. Note By default, the switch is configured with the Default_VLAN which has a VID number of 1 and includes all ports on the switch.

  • Page 299: Adding An Ipv4 Default Gateway Address

    AT-8100 Switch Command Line User’s Guide The next series of commands assigns the management address 143.24.55.67 and subnet mask 255.255.255.0 to the new VLAN. awplus# configure terminal Enter the Global Configuration mode. awplus(config)# interface vlan17 Use the INTERFACE VLAN command to move to the VLAN Interface.

  • Page 300: Deleting An Ipv4 Management Address And Default Gateway

    Chapter 13: IPv4 and IPv6 Management Addresses Note If an IPv4 default gateway is already assigned to the switch, you must delete it prior to entering the new address. For instructions, refer to “Deleting an IPv4 Management Address and Default Gateway”...

  • Page 301: Displaying An Ipv4 Management Address And Default Gateway

    AT-8100 Switch Command Line User’s Guide awplus> enable awplus# configure terminal awplus(config)# no ip route 0.0.0.0/0 149.121.43.23 Displaying an The easiest way to view the IPv4 management address and default gateway address of the switch is with the SHOW IP ROUTE command. It IPv4 displays both addresses at the same time.

  • Page 302: Assigning An Ipv6 Management Address And Default Gateway

    Chapter 13: IPv4 and IPv6 Management Addresses Assigning an IPv6 Management Address and Default Gateway This section covers the following topics:  “Adding an IPv6 Management Address” next  “Adding an IPv6 Default Gateway Address” on page 303  “Deleting an IPv6 Management Address and Default Gateway” on page 304 ...

  • Page 303: Adding An Ipv6 Default Gateway Address

    AT-8100 Switch Command Line User’s Guide Note If there is a management IPv6 address already assigned to the switch, you must delete it prior to entering the new address. For instructions, refer to “Deleting an IPv6 Management Address and Default Gateway” on page 304. Here are several examples of the command.

  • Page 304: Deleting An Ipv6 Management Address And Default Gateway

    Chapter 13: IPv4 and IPv6 Management Addresses The IPADDDRESS parameter is the default gateway to be assigned the switch. The address must be an IPv6 address and it must be a member of the same subnet as the management IPv6 address. Note This configuration is different in the AT-8000GS switch where the gateway is specified as the Link Local address.

  • Page 305: Displaying An Ipv6 Management Address And Default Gateway

    AT-8100 Switch Command Line User’s Guide Displaying an There are two commands for displaying a management IPv6 address and default gateway. If the switch has both an IPv6 address and default IPv6 gateway, you can display both of them with the SHOW IPV6 ROUTE Management command, in the Privileged Exec mode, as shown here: Address and...
  • Page 306 Chapter 13: IPv4 and IPv6 Management Addresses...

  • Page 307: Chapter 14 : Ipv4 And Ipv6 Management Address Commands

    Chapter 14 IPv4 and IPv6 Management Address Commands The IPv4 and IPv6 management address commands are summarized in Table 28. Table 28. Management IP Address Commands Command Mode Description “CLEAR IPV6 NEIGHBORS” on Privileged Exec Clears all dynamic IPv6 neighbor page 309 entries.
  • Page 308 Chapter 14: IPv4 and IPv6 Management Address Commands Table 28. Management IP Address Commands (Continued) Command Mode Description “SHOW IPV6 INTERFACE” on Privileged Exec Displays the IPv4 management page 329 address. “SHOW IPV6 ROUTE” on page 330 Privileged Exec Displays the IPv6 management address and default gateway.

  • Page 309: Clear Ipv6 Neighbors

    AT-8100 Switch Command Line User’s Guide CLEAR IPV6 NEIGHBORS Syntax clear ipv6 neighbors Parameters None Mode Privileged Exec mode Description Use this command to clear all of the dynamic IPv6 neighbor entries. Example This example clears all of the dynamic IPv6 neighbor entries: awplus>...

  • Page 310: Ip Address

    Chapter 14: IPv4 and IPv6 Management Address Commands IP ADDRESS Syntax ip address ipaddress/mask Parameters ipaddress Specifies a management IPv4 address for the switch. The address is specified in the following format: nnn.nnn.nnn.nnn Where each NNN is a decimal number from 0 to 255. The numbers must be separated by periods.
  • Page 311 AT-8100 Switch Command Line User’s Guide Examples This example assigns the switch the IPv4 management address 142.35.78.21 and subnet mask 255.255.255.0. The address is assigned to the Default_VLAN, which has the VID 1: awplus> enable awplus# configure terminal awplus(config)# interface vlan1 awplus(config-if)# ip address 142.35.78.21/24 This example assigns the switch the IPv4 management address 116.152.173.45 and subnet mask 255.255.255.0.

  • Page 312: Ip Address Dhcp

    Chapter 14: IPv4 and IPv6 Management Address Commands IP ADDRESS DHCP Syntax ip address dhcp Parameters None Mode VLAN Interface mode Description Use this command to assign the switch an IPv4 management address from a DHCP server. This command activates the DHCP client, which automatically queries the network for a DHCP server.
  • Page 313 AT-8100 Switch Command Line User’s Guide Example This example activates the DHCP client so that the switch obtains its IPv4 management address from a DHCP server on your network. The address is applied to a VLAN with the VID 4: awplus>...

  • Page 314: Ip Route

    Chapter 14: IPv4 and IPv6 Management Address Commands IP ROUTE Syntax ip route 0.0.0.0/0 ipaddress Parameters ipaddress Specifies an IPv4 default gateway address. Mode Global Configuration mode Description Use this command to assign the switch an IPv4 default gateway address. A default gateway is an address of an interface on a router or other Layer 3 device.
  • Page 315 AT-8100 Switch Command Line User’s Guide Example This example assigns the switch the IPv4 default gateway address 143.87.132.45: awplus> enable awplus# configure terminal awplus(config)# ip route 0.0.0.0/0 143.87.132.45...

  • Page 316: Ipv6 Address

    Chapter 14: IPv4 and IPv6 Management Address Commands IPV6 ADDRESS Syntax ipv6 address ipaddress/mask Parameters ipaddress Specifies an IPv6 management address for the switch. The address is entered in this format: nnnn:nnnn:nnnn:nnnn:nnnn:nnnn:nnnn:nnnn Where N is a hexadecimal digit from 0 to F. The eight groups of digits have to be separated by colons.
  • Page 317 AT-8100 Switch Command Line User’s Guide and syslog servers). The VLAN must already exist on the switch before you use this command. Confirmation Commands “SHOW IPV6 INTERFACE” on page 329 and “SHOW IPV6 ROUTE” on page 330 Examples This example assigns the IPv6 management address 4c57:17a9:11::190:a1d4/64 to the Default_VLAN, which has the VID 1: awplus>...

  • Page 318: Ipv6 Route

    Chapter 14: IPv4 and IPv6 Management Address Commands IPV6 ROUTE Syntax ipv6 route ::/0 ipaddress Parameters ipaddress Specifies an IPv6 address of a default gateway. The address is entered in this format: nnnn:nnnn:nnnn:nnnn:nnnn:nnnn:nnnn:nnnn Where N is a hexadecimal digit from 0 to F. The eight groups of digits have to be separated by colons.
  • Page 319 AT-8100 Switch Command Line User’s Guide Example This example assigns the switch the IPv6 default gateway address 45ab:672:934c::78:17cb: awplus> enable awplus# configure terminal awplus(config)# ipv6 route ::/0 45ab:672:934c::78:17cb...

  • Page 320: No Ip Address

    Chapter 14: IPv4 and IPv6 Management Address Commands NO IP ADDRESS Syntax no ip address Parameters None Mode VLAN Interface mode Description Use this command to delete the current IPv4 management address from the switch if the address was assigned manually. If a DHCP server supplied the address, refer to “NO IP ADDRESS DHCP”...

  • Page 321: No Ip Address Dhcp

    AT-8100 Switch Command Line User’s Guide NO IP ADDRESS DHCP Syntax no ip address dhcp Parameters None Mode VLAN Interface mode Description Use this command to delete the current IPv4 management address from the switch if the address was assigned by a DHCP server. You must perform this command from the VLAN Interface mode of the VLAN to which the address is attached.

  • Page 322: No Ip Route

    Chapter 14: IPv4 and IPv6 Management Address Commands NO IP ROUTE Syntax no ip route 0.0.0.0/0 ipaddress Parameters ipaddress Specifies the current default gateway. Mode Global Configuration mode Description Use this command to delete the current IPv4 default gateway. The command must include the current default gateway.

  • Page 323: No Ipv6 Address

    AT-8100 Switch Command Line User’s Guide NO IPV6 ADDRESS Syntax no ipv6 address Parameters None Mode VLAN Interface mode Description Use this command to delete the current IPv6 management address from the switch. You must perform this command from the VLAN Interface mode of the VLAN to which the address is attached.

  • Page 324: No Ipv6 Route

    Chapter 14: IPv4 and IPv6 Management Address Commands NO IPV6 ROUTE Syntax no ipv6 route ::/0 ipaddress Parameters ipaddress Specifies the current IPv6 default gateway. Mode Global Configuration mode Description Use this command to delete the current IPv6 default gateway from the switch.

  • Page 325: Show Ip Interface

    AT-8100 Switch Command Line User’s Guide SHOW IP INTERFACE Syntax show ip interface Parameters None Mode Privileged Exec mode Description Use this command to display the management IP address on the switch. Figure 72 is an example of the information. Interface IP Address Status...

  • Page 326: Show Ip Route

    Chapter 14: IPv4 and IPv6 Management Address Commands SHOW IP ROUTE Syntax show ip route Parameters None Mode Privileged Exec mode Description Use this command to display the routes on the switch. Figure 73 displays an example of the information. -------------------------------------------------------------------- Destination Mask...

  • Page 327: Table 30. Route Codes In The Show Ip Route Command

    AT-8100 Switch Command Line User’s Guide The field “Gateway of last resort is” states the default gateway, which, if defined on the switch, is also included as the first entry in the table. The possible codes in the left column in the table are described in Table Table 30.
  • Page 328 Chapter 14: IPv4 and IPv6 Management Address Commands Example The following example displays the routes on the switch: awplus# show ip route...

  • Page 329: Show Ipv6 Interface

    AT-8100 Switch Command Line User’s Guide SHOW IPV6 INTERFACE Syntax show ipv6 interface Parameters None Mode Privileged Exec mode Description Use this command to display the IPv6 management address on the switch. Figure 75 is an example of the information. Interface IPv6-Address Status...

  • Page 330: Show Ipv6 Route

    Chapter 14: IPv4 and IPv6 Management Address Commands SHOW IPV6 ROUTE Syntax show ipv6 route Parameters None Mode Privileged Exec mode Description Use this command to display the IPv6 management address and default gateway on the switch. Figure 76 is an example of the information. The default route is display first, followed by the management address.

  • Page 331: Chapter 15 : Simple Network Time Protocol (Sntp) Client

    Chapter 15 Simple Network Time Protocol (SNTP) Client This chapter contains the following information:  “Overview” on page 332  “Activating the SNTP Client and Specifying the IP Address of an NTP or SNTP Server” on page 333  “Configuring Daylight Savings Time and UTC Offset” on page 334 ...

  • Page 332: Overview

    Chapter 15: Simple Network Time Protocol (SNTP) Client Overview The switch has a Simple Network Time Protocol (SNTP) client for setting its date and time from an SNTP or NTP server on your network or the Internet. The date and time are added to the event messages that are stored in the event log and sent to syslog servers.

  • Page 333: Activating The Sntp Client And Specifying The Ip Address Of An Ntp Or Sntp Server

    AT-8100 Switch Command Line User’s Guide Activating the SNTP Client and Specifying the IP Address of an NTP or SNTP Server To activate the SNTP client on the switch and to specify the IP address of an NTP or SNTP server, use the NTP PEER command in the Global Configuration mode.

  • Page 334: Configuring Daylight Savings Time And Utc Offset

    Chapter 15: Simple Network Time Protocol (SNTP) Client Configuring Daylight Savings Time and UTC Offset If the time that the NTP or SNTP server provides to the switch is in Coordinated Universal Time (UTC), it has to be converted into local time. To do that, the switch needs to know whether to use Standard Time (ST) or Daylight Savings Time (DST), and the number of hours and minutes it is ahead of or behind UTC, referred to as the UTC offset.
  • Page 335 AT-8100 Switch Command Line User’s Guide In this example, the client is configured for ST and a UTC offset of +2 hours and 45 minutes: awplus> enable awplus# configure terminal awplus(config)# no clock summer-time awplus(config)# clock timezone +02:45...

  • Page 336: Disabling The Sntp Client

    Chapter 15: Simple Network Time Protocol (SNTP) Client Disabling the SNTP Client To disable the SNTP client so that the switch does not obtain its date and time from an NTP or SNTP server, use the NO PEER command in the Global Configuration mode: awplus>...

  • Page 337: Displaying The Sntp Client

    AT-8100 Switch Command Line User’s Guide Displaying the SNTP Client To display the settings of the SNTP client on the switch, use the SHOW NTP ASSOCIATIONS command in the Privileged Exec mode. awplus# show ntp associations The following is displayed: SNTP Configuration: Status ......

  • Page 338: Displaying The Date And Time

    Chapter 15: Simple Network Time Protocol (SNTP) Client Displaying the Date and Time To display the date and time, use the SHOW CLOCK command in the User Exec mode or Privileged Exec mode: awplus# show clock...

  • Page 339: Chapter 16 : Sntp Client Commands

    Chapter 16 SNTP Client Commands The SNTP commands are summarized in Table 33. Table 33. Simple Network Time Protocol Commands Command Mode Description “CLOCK SUMMER-TIME” on Global Activates Daylight Savings Time on page 340 Configuration the SNTP client. “CLOCK TIMEZONE” on page 341 Global Sets the UTC offset value, the time Configuration...

  • Page 340: Clock Summer-Time

    Chapter 16: SNTP Client Commands CLOCK SUMMER-TIME Syntax clock summer-time Parameters None Mode Global Configuration mode Description Use this command to enable Daylight Savings Time (DST) on the SNTP client. Note The switch does not set the DST automatically. If the switch is in a locale that uses DST, you must remember to enable this when DST begins and disable when DST ends.

  • Page 341: Clock Timezone

    AT-8100 Switch Command Line User’s Guide CLOCK TIMEZONE Syntax +hh:mm -hh:mm clock timezone Parameters hh:mm Specifies the number of hours and minutes difference between Coordinated Universal Time (UTC) and local time. HH are hours in the range of -12 to +12, and MM are minutes in the range of increments of 15.

  • Page 342: No Clock Summer-Time

    Chapter 16: SNTP Client Commands NO CLOCK SUMMER-TIME Syntax no clock summer-time Parameters None Mode Global Configuration mode Description Use this command to disable Daylight Savings Time (DST) and activate Standard Time (ST) on the SNTP client. Confirmation Command “SHOW NTP ASSOCIATIONS” on page 347 Examples The following example disables Daylight Savings Time (DST) and activates Standard Time (ST) on the SNTP client:...

  • Page 343: No Ntp Peer

    AT-8100 Switch Command Line User’s Guide NO NTP PEER Syntax no ntp server Parameter None Mode Global Configuration mode Description Use this command to deactivate the SNTP client on the switch. When the client is disabled, the switch does not obtain its date and time from an SNTP or NTP server the next time it is reset or power cycled.

  • Page 344: Ntp Peer

    Chapter 16: SNTP Client Commands NTP PEER Syntax ipaddress ntp peer Parameter ipaddress Specifies an IP address of an SNTP or NTP server. Mode Global Configuration mode Description Use this command to activate the NTP client on the switch and to specify the IP address of the SNTP or NTP server from which it is to obtain its date and time.

  • Page 345: Purge Ntp

    AT-8100 Switch Command Line User’s Guide PURGE NTP Syntax purge ntp Parameter None Mode Global Configuration mode Description Use this command to disable the SNTP client, delete the IP address of the SNTP or NTP server, and restore the client settings to the default values. Confirmation Command “SHOW NTP ASSOCIATIONS”...

  • Page 346: Show Clock

    Chapter 16: SNTP Client Commands SHOW CLOCK Syntax show clock Parameters None Modes User Exec mode and Privileged Exec mode Description Use this command to display the switch’s date and time. Example The following example displays the switch’s date and time. awplus# show clock...

  • Page 347: Show Ntp Associations

    AT-8100 Switch Command Line User’s Guide SHOW NTP ASSOCIATIONS Syntax show ntp associations Parameters None Mode Privileged Exec mode Description Use this command to display the settings of the SNTP client. The information the command displays is shown in Figure 79. NTP Configuration: Status ......
  • Page 348 Chapter 16: SNTP Client Commands Table 34. SHOW NTP ASSOCIATIONS Command (Continued) Parameter Description UTC Offset The time difference in hours between UTC and local time. The range is -12 to +12 hours. The default is 0 hours. This value is set with “CLOCK TIMEZONE” on page 341.

  • Page 349: Show Ntp Status

    AT-8100 Switch Command Line User’s Guide SHOW NTP STATUS Syntax show ntp status Parameters None Mode Privileged Exec mode Description Use this command to display the status of an NTP or SNTP server assigned to the switch. The display states whether or not the switch has synchronized its time with an NTP or SNTP server.
  • Page 350 Chapter 16: SNTP Client Commands...

  • Page 351: Chapter 17 : Domain Name System (Dns)

    Chapter 17 Domain Name System (DNS)  “Overview” on page 352  “Adding a DNS Server to the Switch” on page 354  “Enabling or Disabling the DNS Client” on page 355  “Adding a Domain to the DNS List” on page 356 ...

  • Page 352: Overview

    Chapter 17: Domain Name System (DNS) Overview The Domain Name System (DNS) is a naming system that allows you to access remote systems using host names that consist of text or text- based rather than IP addresses. DNS creates a mapping between a domain name, such as “www.alliedtelesis.com,”...

  • Page 353: Dns Sever List

    AT-8100 Switch Command Line User’s Guide DNS Sever List The DNS server list is a set of DNS servers that a DNS client on the switch sends a request to. When you enter a domain name in the CLI as a part of the command, for example, ping www.alliedtelesis.com , the DNS...

  • Page 354: Adding A Dns Server To The Switch

    Chapter 17: Domain Name System (DNS) Adding a DNS Server to the Switch The switch has a DNS client. When you add a DNS server to the switch, the DNS client allows you to use domain names instead of IP addresses when you use commands on the switch.

  • Page 355: Enabling Or Disabling The Dns Client

    AT-8100 Switch Command Line User’s Guide Enabling or Disabling the DNS Client The DNS client on the switch allows you to use domain names instead of IP addresses when you enter commands on your switch. The DNS client on the switch is enable by default. To disable the DNS client, use the NO IP DOMAIN-LOOKUP command: awplus# no ip domain-lookup To enable the DNS client, use the IP DOMAIN-LOOKUP command:...

  • Page 356: Adding A Domain To The Dns List

    Chapter 17: Domain Name System (DNS) Adding a Domain to the DNS List The switch allows you to create a list of domains to save typing the portion of a domain name on the CLI. Once you add domains to the DNS list, the switch appends a domain name to incomplete host names in DNS requests.

  • Page 357: Setting A Default Domain Name For The Dns

    AT-8100 Switch Command Line User’s Guide Setting a Default Domain Name for the DNS The switch allows you to save typing of the portion of a domain name in the CLI by setting a default domain. Once you set a default domain for the DNS, the DNS client appends this domain to incomplete host-names in DNS requests.
  • Page 358 Chapter 17: Domain Name System (DNS)

  • Page 359: Chapter 18 : Domain Name System (Dns) Commands

    Chapter 18 Domain Name System (DNS) Commands The DNS commands are summarized in Table 35. Table 35. DNS Commands Command Mode Description “IP NAME-SERVER” on page 360 Global Adds a DNS server to the list of Configuration servers that the switch sends DNS queries to.

  • Page 360: Ip Name-Server

    Chapter 18: Domain Name System (DNS) Commands IP NAME-SERVER Syntax ip-address ip name-server < > Parameters ip-address Specifies the IP address of a DNS server. Mode Global Configuration mode Description Use this command to add the IP address of a DNS server to the DNS server list on the switch.
  • Page 361 AT-8100 Switch Command Line User’s Guide To delete a DNS server with an IP address of 10.10.10.5 from the DNS server list, use the command: awplus> enable awplus# configure terminal awplus(config)# no ip name-server 10.10.10.5...

  • Page 362: Ip Domain-Name

    Chapter 18: Domain Name System (DNS) Commands IP DOMAIN-NAME Syntax domain-name ip domain-name < > Parameters domain-name Specifies a domain string, for example “alliedtelesis.com.” Mode Global Configuration mode Description Use this command to set a default domain for the DNS. The DNS client on the switch appends this domain to incomplete host names in DNS requests.

  • Page 363: Ip Domain-List

    AT-8100 Switch Command Line User’s Guide IP DOMAIN-LIST Syntax domain-name ip domain-list < > Parameters domain-name Specifies a domain string, for example, “com.” Mode Global Configuration mode Description Use this command to add a domain name to the DNS list on the switch. You can add up to three domain names to the list.
  • Page 364 Chapter 18: Domain Name System (DNS) Commands Examples To add the domains “com” and “net” to the DNS list, use the following commands: awplus> enable awplus# configure terminal awplus(config)# ip domain-list com awplus(config)# ip domain-list net To delete the domain “net” from the DNS list, use the following command: awplus>...

  • Page 365: Ip Domain-Lookup

    AT-8100 Switch Command Line User’s Guide IP DOMAIN-LOOKUP Syntax ip domain-lookup Parameters None Mode Global Configuration mode Description Use this command to enable the DNS client on the switch. The command allows you to use domain names instead of IP addresses in commands. The DNS client resolves a domain name into an IP address by sending a DNS query to the DNS server specified with the IP NAME-SERVER command.

  • Page 366: Show Ip Name-Server

    Chapter 18: Domain Name System (DNS) Commands SHOW IP NAME-SERVER Syntax show ip name-server Parameters None Mode Privileged Exec mode Description Use this command to display the list of DNS servers on the DNS server list on the switch. This command shows a static list configured using the IP NAME-SERVER command.

  • Page 367: Show Ip Domain-Name

    AT-8100 Switch Command Line User’s Guide SHOW IP DOMAIN-NAME Syntax show ip domain-name Parameters None Mode Privileged Exec mode Description Use this command to display the default domain and a list of domains on the DNS list on the switch. This command shows information configured using the IP DOMAIN-NAME and IP DOMAIN-LIST commands.

  • Page 368: Show Hosts

    Chapter 18: Domain Name System (DNS) Commands SHOW HOSTS Syntax show hosts Parameters None Mode Privileged Exec mode Description Use this command to display the default domain name, a list of DNS domain names, and a list of DNS servers. Figure 89 shows an example of the information.

  • Page 369: Chapter 19 : Mac Address Table

    Chapter 19 MAC Address Table This chapter discusses the following topics:  “Overview” on page 370  “Adding Static MAC Addresses” on page 372  “Deleting MAC Addresses” on page 374  “Setting the Aging Timer” on page 376  “Displaying the MAC Address Table”...

  • Page 370: Overview

    Chapter 19: MAC Address Table Overview The MAC address table stores the MAC addresses of all the network devices that are connected to the switch’s ports. Each entry in the table consists of a MAC address, a port number where an address was learned by the switch, and an ID number of a VLAN where a port is a member.
  • Page 371 AT-8100 Switch Command Line User’s Guide The period of time the switch waits before purging inactive dynamic MAC addresses is called the aging time. This value is adjustable on the switch. The default value is 300 seconds (5 minutes). You can also enter addresses manually into the table. These addresses are referred to as static addresses.

  • Page 372: Adding Static Mac Addresses

    Chapter 19: MAC Address Table Adding Static MAC Addresses The command for adding static unicast MAC addresses to the switch is MAC ADDRESS-TABLE STATIC in the Global Configuration mode. Here is the format of the command: macaddress mac address-table static forward|discard interface port...
  • Page 373 AT-8100 Switch Command Line User’s Guide awplus> enable awplus# configure terminal awplus(config)# mac address-table static 00:a0:d2:18:1a:11 discard interface port1.0.7...

  • Page 374: Deleting Mac Addresses

    Chapter 19: MAC Address Table Deleting MAC Addresses To delete MAC addresses from the switch, use the CLEAR MAC ADDRESS-TABLE command in the Privileged Exec mode. The format of the command is: clear mac address-table dynamic|static [address macaddress ]|[interface port ]|[vlan Here are the variables: ...
  • Page 375 AT-8100 Switch Command Line User’s Guide This example deletes all of the dynamic addresses learned on port 20: awplus> enable awplus# clear mac address-table dynamic interface port1.0.20 This example deletes all of the static addresses added to ports 2 to 5: awplus>...

  • Page 376: Setting The Aging Timer

    Chapter 19: MAC Address Table Setting the Aging Timer The aging timer defines the length of time that inactive dynamic MAC addresses remain in the table before they are deleted by the switch. The switch deletes inactive addresses to insure that the table contains only active and current addresses.

  • Page 377: Displaying The Mac Address Table

    AT-8100 Switch Command Line User’s Guide Displaying the MAC Address Table To view the aging time or the MAC address table, use the SHOW MAC ADDRESS-TABLE command in the Privileged Exec mode. Here is its format: port show mac address-table [interface ]|[vlan An example of the table is shown in Figure 90.
  • Page 378 Chapter 19: MAC Address Table This example displays the addresses learned on the ports in a VLAN with the VID 8: awplus# show mac address-table vlan 8...

  • Page 379: Chapter 20 : Mac Address Table Commands

    Chapter 20 MAC Address Table Commands The MAC address table commands are summarized in Table 36. Table 36. MAC Address Table Commands Command Mode Description “CLEAR MAC ADDRESS-TABLE” on Privileged Exec Deletes MAC addresses from the page 380 MAC address table. “MAC ADDRESS-TABLE AGEING- Global Sets the aging timer, which is used by...

  • Page 380: Clear Mac Address-Table

    Chapter 20: MAC Address Table Commands CLEAR MAC ADDRESS-TABLE Syntax clear mac address-table dynamic|static [address macaddress ]|[interface port ]|[vlan Parameters dynamic Deletes dynamic MAC addresses. static Deletes static addresses. address Deletes a specific address. macaddress Specifies the address to be deleted. The address must be specified in either one of the following formats: xx:xx:xx:xx:xx:xx or xxxx.xxxx.xxxx interface...
  • Page 381 AT-8100 Switch Command Line User’s Guide Examples This example deletes all of the dynamic addresses from the table: awplus> enable awplus# clear mac address-table dynamic This example deletes all of the static addresses: awplus> enable awplus# clear mac address-table static This example deletes a single dynamic address: awplus>...

  • Page 382: Mac Address-Table Ageing-Time

    Chapter 20: MAC Address Table Commands MAC ADDRESS-TABLE AGEING-TIME Syntax value none mac address-table ageing-time Parameter ageing-time Specifies the aging timer in seconds for the MAC address table. The range is 10 to 1000000 seconds. The default is 300 seconds (5 minutes).
  • Page 383 AT-8100 Switch Command Line User’s Guide This example disables the aging timer so that the switch does not delete inactive dynamic MAC addresses from the table: awplus> enable awplus# configure terminal awplus(config)# mac address-table ageing-time none This example returns the aging timer to its default setting of 300 seconds: awplus>...

  • Page 384: Mac Address-Table Static

    Chapter 20: MAC Address Table Commands MAC ADDRESS-TABLE STATIC Syntax macaddress mac address-table static forward|discard interface port [vlan vlan-name Parameters macaddress Specifies the static unicast address you want to add to the switch’s MAC address table. The address must be specified in either one of the following formats: xx:xx:xx:xx:xx:xx or xxxx.xxxx.xxxx forward Forwards packets containing the designated source MAC address.
  • Page 385 AT-8100 Switch Command Line User’s Guide Confirmation Command “SHOW MAC ADDRESS-TABLE” on page 388 Examples This example adds the static MAC address 44:c3:22:17:62:a4 to port 4 in the Production VLAN. The port forwards the packets from the specified node: awplus> enable awplus# configure terminal awplus(config)# mac address-table static 44:c3:22:17:62:a4 forward interface port1.0.4 vlan Production...

  • Page 386: No Mac Address-Table Static

    Chapter 20: MAC Address Table Commands NO MAC ADDRESS-TABLE STATIC Syntax macaddress forward|discard no mac address-table static interface port [vlan vlan-name Parameters macaddress Specifies the static unicast address you want to delete from the switch’s MAC address table. The address must be specified in either one of the following formats: xx:xx:xx:xx:xx:xx or xxxx.xxxx.xxxx forward...
  • Page 387 AT-8100 Switch Command Line User’s Guide Confirmation Command “SHOW MAC ADDRESS-TABLE” on page 388 Examples This example deletes the MAC address 00:A0:D2:18:1A:11 from port 12 in the Default_VLAN, which has the VID 1. The port is forwarding packets of the owner of the address: awplus>...

  • Page 388: Show Mac Address-Table

    Chapter 20: MAC Address Table Commands SHOW MAC ADDRESS-TABLE Syntax show mac address-table begin|exclude|include [interface port ]|[vlan Parameters begin Specifies the first line that matches the MAC address is displayed. The address must be specified in either one of the following formats: xx:xx:xx:xx:xx:xx or xxxx.xxxx.xxxx exclude Indicates the specified MAC address is excluded from the display.

  • Page 389: Table 37. Show Mac Address-Table Command - Unicast Addresses

    AT-8100 Switch Command Line User’s Guide An example of the table is shown in Figure 91. Aging Interval: 300 second(s) Switch Forwarding Database ------------------------------------------------------------ VLAN Port ------------------------------------------------------------ 1.0.1 00a0.d218.1ac8 Forward Dynamic 1.0.2 00a0.c416.3b80 Forward Dynamic 1.0.3 00a0.12c2.10c6 Forward Dynamic 1.0.4 00a0.c209.10d8 Forward Dynamic...

  • Page 390: Table 38. Show Mac Address-Table Command - Multicast Addresses

    Chapter 20: MAC Address Table Commands Table 37. SHOW MAC ADDRESS-TABLE Command - Unicast Addresses Parameter Description The status of the address. MAC addresses have the status of Forward, meaning that they are used by the switch to forward packets. (unlabeled) The type of address: static or dynamic.

  • Page 391: Hardware Stacking

    Chapter 21 Hardware Stacking  “Overview” on page 392  “Configuring the Stack ID Number” on page 399  “Displaying the Switches of a Stack” on page 400  “Updating the Management Software” on page 402 Note This feature is supported on the 8100S Series switches, but not on the 8100L Series switches.

  • Page 392: Overview

    Chapter 21: Hardware Stacking Overview A stack is a group of two to eight 8100S Series switches that are linked together with the S1 and S2 stacking ports. The switches function as a unified Fast Ethernet switch. They synchronize their actions so that network operations, such as spanning tree protocols, virtual LANs, and static port trunks, span across all of the Fast Ethernet ports.
  • Page 393 AT-8100 Switch Command Line User’s Guide The second topology, the duplex-ring topology, is identical to the duplex- chain, except that the unused stacking ports on the end switches of the stack are connected together to form a physical loop, creating two pathways through the stack.

  • Page 394: Active Boot Configuration File

    Chapter 21: Hardware Stacking Active Boot The master switch stores the settings of the stack in a file in its file system. This file is called the active boot configuration file. The switch updates the Configuration file with the most recent parameter changes whenever you issue the File WRITE or COPY RUNNING-CONFIG STARTUP-CONFIG command.

  • Page 395: Initialization Processes

    AT-8100 Switch Command Line User’s Guide Here is an example of how the process works. Assume your stack has three switches, assigned the ID numbers 1 to 3. The switch with the ID number 1 is the master switch because it has the lowest ID number of all the switches in the stack.

  • Page 396: Stacking Actions

    Chapter 21: Hardware Stacking This phase may take from just a few seconds to up to a minute, depending on the size of the stack, and the number and complexity of the commands in the file. The switches of the stack begin to forward network traffic at the completion of the fifth phase.

  • Page 397: Guidelines

    AT-8100 Switch Command Line User’s Guide Caution Designating the new member as the new master switch causes the stack to lose its configuration unless the new unit has the same configuration file as the previous master switch.  If the ID number of the new member switch is the same as one of the existing switches in the stack, the new member is automatically assigned the next available ID number.
  • Page 398 Chapter 21: Hardware Stacking  You have to assign the switches unique stack ID numbers, in the range of 1 to 8, with the STACK command in the Global Configuration mode. You have to assign the numbers before connecting the switches together with the S1 and S2 ports. (A stack in which two or more switches have the same ID number will not function properly.) ...

  • Page 399: Configuring The Stack Id Number

    AT-8100 Switch Command Line User’s Guide Configuring the Stack ID Number To set the stack ID number of a switch, use the STACK command in the Global Configuration mode. The command has this format: stack old_id renumber new_id The OLD_ID parameter specifies the current ID number of the switch. This number is visible on the Stack ID LED and displayed with the SHOW STACK command, described in “Displaying the Switches of a Stack”...

  • Page 400: Displaying The Switches Of A Stack

    Chapter 21: Hardware Stacking Displaying the Switches of a Stack The SHOW STACK command in the Privileged Exec mode displays the stack ID numbers and MAC addresses of the switches of a stack: awplus> enable awplus# show stack The information the command displays depends on whether the switch is a stand-alone unit or part of a stack.

  • Page 401: Table 39. Show Stack Command

    AT-8100 Switch Command Line User’s Guide Stacking summary Information: ID MACADDRESS SwVer Model Status Role 00:00:54:55:56:42 2.2.1.3 AT-8100S/24 Ready Master 00:00:54:55:78:11 2.2.1.3 AT-8100S/24C Ready Member 00:00:54:55:12:09 2.2.1.3 AT-8100S/24 Ready Member 00:00:54:55:56:42 2.2.1.3 AT-8100S/48 Ready Member Operational status Ring topology is broken Master Module ID: Stack MAC Address: 00:00:54:55:56:42...

  • Page 402: Updating The Management Software

    Allied Telesis may periodically release new versions of the management software for this product on the company’s web site. For instructions on how to obtain new software, see “Contacting Allied Telesis” on page 44. To install new management software on the switches of a stack, you may update the master switch and let that unit automatically update the member switches for you.

  • Page 403: Chapter 22 : Stacking Commands

    Chapter 22 Stacking Commands The stacking commands are summarized in Table 40. Table 40. Stacking Commands Command Mode Description “SHOW STACK” on page 404 Privileged Exec Displays the stack ID numbers and MAC addresses of the switches of a stack. “STACK”...

  • Page 404: Show Stack

    Chapter 22: Stacking Commands SHOW STACK Syntax show stack Parameters None Mode Privileged Exec mode Description Use this command to display the stack ID numbers, MAC addresses, and other information of the switches in a stack. The information the command displays depends on whether the switch is acting as a stand-alone unit or as part of a stack.

  • Page 405: Stack

    AT-8100 Switch Command Line User’s Guide STACK Syntax old_id new_id stack renumber Parameters old_id Specifies the current ID number of the switch. This number is displayed on the Stack ID LED and with “SHOW STACK” on page 404. You can enter only one ID number. new_id Specifies the switch’s new stack ID number.
  • Page 406 Chapter 22: Stacking Commands This example assigns the stack ID number 0 to a switch that currently has the ID number 4: awplus> enable awplus# configure terminal awplus(config)# stack 4 renumber 0...

  • Page 407: Enhanced Stacking

    Chapter 23 Enhanced Stacking This chapter discusses the following topics:  “Overview” on page 408  “Configuring the Command Switch” on page 411  “Configuring a Member Switch” on page 414  “Managing the Member Switches of an Enhanced Stack” on page 416 ...

  • Page 408: Overview

    Chapter 23: Enhanced Stacking Overview Enhanced stacking is a management tool that allows you to manage different AT-8100 Switches from one management session. With enhanced stacking you can start a management session on one switch and then redirect the session to any of the other switches in the stack, without having to start a new session.

  • Page 409: Guidelines

    IP addresses.  The enhanced stacking feature on the AT-8100 Switch is not compatible with the same feature on other Allied Telesis switches, such as the AT-8400, AT-8500, and AT-9400 Series switches.  Remote Telnet, SSH, or web browser management of an enhanced stack must be conducted through the subnet of the common VLAN.
  • Page 410 Chapter 23: Enhanced Stacking 2. On the switch chosen to be the command switch, activate enhanced stacking and change its stacking status to command switch. The commands are ESTACK RUN and ESTACK COMMAND-SWITCH, both in the Global Configuration mode. 3. On the member switches, activate enhanced stacking. You do not have to set the enhanced stacking mode on the member switch because the member mode is the default setting.

  • Page 411: Configuring The Command Switch

    AT-8100 Switch Command Line User’s Guide Configuring the Command Switch Here is an example on how to configure the switch as the command switch of the enhanced stack. The example creates a common VLAN and assigns it a management IP address. Here are the specifications for this command switch: ...
  • Page 412 Chapter 23: Enhanced Stacking 2. After creating the common VLAN on the switch, assign it the management IP address and default gateway: awplus# configure terminal Enter the Global Configuration mode. awplus(config)# interface vlan12 From the Global Configuration mode, enter the VLAN Interface mode for the Tech_Support VLAN.
  • Page 413 AT-8100 Switch Command Line User’s Guide awplus# write Save the configuration.

  • Page 414: Configuring A Member Switch

    Chapter 23: Enhanced Stacking Configuring a Member Switch This example shows you how to configure the switch as a member switch of an enhanced stack. It configures the switch to be part of the same enhanced stack with the same common VLAN as the command switch in the previous example.
  • Page 415 AT-8100 Switch Command Line User’s Guide awplus(config)# estack run Activate enhanced stacking on the switch. awplus(config)# exit Return to the Privileged Exec mode. awplus# show estack Confirm the stack mode of the switch. 3. To save the configuration, enter the WRITE command in the Privileged Executive mode.

  • Page 416: Managing The Member Switches Of An Enhanced Stack

    Chapter 23: Enhanced Stacking Managing the Member Switches of an Enhanced Stack Here are the steps on how to manage the member switches of an enhanced stack. 1. Start a local or remote management session on the command switch of the enhanced stack. After logging on, you can view and configure the settings of just the command switch.
  • Page 417 AT-8100 Switch Command Line User’s Guide 6. When you are finished managing the member switch, enter the EXIT command from the User Exec mode or Privileged Exec mode to return the management session to the command switch. 7. To manage another member switch in the enhanced stack, repeat this procedure starting with step 2.

  • Page 418: Changing The Enhanced Stacking Mode

    Chapter 23: Enhanced Stacking Changing the Enhanced Stacking Mode If you want to change the enhanced stacking mode of a switch from command to member, all you have to do is enter the NO ESTACK COMMAND-SWITCH command in the Global Configuration mode, as shown here: awplus>...
  • Page 419 AT-8100 Switch Command Line User’s Guide 2. On the member switch, change its mode from member to command with the ESTACK COMMAND-SWITCH command. 3. On the original command switch, restart enhanced stacking with the ESTACK RUN command and, if desired, reestablish its command mode with the ESTACK COMMAND-SWITCH command.

  • Page 420: Uploading Boot Configuration Files From The Command Switch To Member Switches

    Chapter 23: Enhanced Stacking Uploading Boot Configuration Files from the Command Switch to Member Switches You may use the enhanced stacking feature to transfer boot configuration files from the file system in the command switch of the enhanced stack to member switches.
  • Page 421 AT-8100 Switch Command Line User’s Guide The second prompt is shown here: Enter the list of switches -> At the prompt, enter the enhanced stack numbers of the member switches to receive the file. You may upload a file to more than one member switch at a time by separating the numbers with commas.
  • Page 422 Chapter 23: Enhanced Stacking Here are the steps to perform on the command switch to upload the configuration file from its file system to the member switch: awplus> enable Enter the Privileged Executive mode from the User Executive mode. awplus# show estack remotelist Display the member switches of the enhanced stack with the SHOW ESTACK REMOTELIST...
  • Page 423 AT-8100 Switch Command Line User’s Guide Here is another example of the feature. This example uploads a configuration file to a new switch in an enhanced stack, such as a replacement switch for a failed unit. This example is more complicated than the previous example because the stack is not using the Default VLAN as the common VLAN, and the new switch will not be using BOOT.CFG as the name of its active boot configuration file.
  • Page 424 Chapter 23: Enhanced Stacking awplus(config-if)# Return to the Privileged Exec mode. awplus# show vlan 12 Verify the new VLAN. 3. Use the ESTACK RUN command in the Global Configuration mode to activate enhanced stacking on the switch. It is not necessary to set the switch to the member mode because that is the default setting.
  • Page 425 AT-8100 Switch Command Line User’s Guide awplus# dir List the files in the file system of the command switch to confirm that it has the configuration file you want to upload to the member switch. In this example, the filename is Eng12c.cfg file. awplus# configure terminal Enter the Global Configuration mode.
  • Page 426 Chapter 23: Enhanced Stacking awplus# show estack remotelist Reconfirm the enhanced stacking ID number of the replacement member switch. awplus# configure terminal Enter the Global Configuration mode. awplus(config)# rcommand 3 Use the RCOMMAND command to start a remote management session on the replacement member switch.

  • Page 427: Uploading The Management Software From The Command Switch To Member Switches

    AT-8100 Switch Command Line User’s Guide Uploading the Management Software from the Command Switch to Member Switches You may use enhanced stacking to install new releases of the management software on the member switches from the command switch. After you update the command switch with the new management software, you can instruct it to upload the software to the member switches for you.
  • Page 428 Chapter 23: Enhanced Stacking Caution A member switch stops forwarding network traffic after it receives the management software from the command switch and begins writing it to flash memory. Some network traffic may be lost. Caution Do not power off a member switch while it is writing the software to flash memory.

  • Page 429: Disabling Enhanced Stacking

    AT-8100 Switch Command Line User’s Guide Disabling Enhanced Stacking The command that disables enhanced stacking on a switch is the NO ESTACK RUN command in the Global Configuration mode, and the confirmation command is the SHOW ESTACK command in the Privileged Exec mode.
  • Page 430 Chapter 23: Enhanced Stacking...

  • Page 431: Chapter 24 : Enhanced Stacking Commands

    Chapter 24 Enhanced Stacking Commands The enhanced stacking commands are summarized in Table 41. Table 41. Enhanced Stacking Commands Command Mode Description “ESTACK COMMAND-SWITCH” on Global Designates the switch as the page 433 Configuration command switch. “ESTACK RUN” on page 434 Global Activates enhanced stacking on the Configuration...
  • Page 432 Chapter 24: Enhanced Stacking Commands Table 41. Enhanced Stacking Commands Command Mode Description “UPLOAD IMAGE REMOTELIST” on Global Uploads the management software on page 446 Configuration the command switch of an enhanced stack to the member switches.

  • Page 433: Estack Command-Switch

    AT-8100 Switch Command Line User’s Guide ESTACK COMMAND-SWITCH Syntax estack command-switch Parameter None Mode Global Configuration mode Description  Use this command to set the enhanced stacking mode on the switch to the command mode. This command has the following guidelines: ...

  • Page 434: Estack Run

    Chapter 24: Enhanced Stacking Commands ESTACK RUN Syntax estack run Parameter None Mode Global Configuration mode Description Use this command to activate enhanced stacking on the switch. Confirmation Command “SHOW ESTACK” on page 440 Example The following example activates enhanced stacking on the switch: awplus>...

  • Page 435: No Estack Command-Switch

    AT-8100 Switch Command Line User’s Guide NO ESTACK COMMAND-SWITCH Syntax no estack command-switch Parameter None Mode Global Configuration mode Description Use this command to return the enhanced stacking mode on the switch to member switch from command switch. This command has the following guidelines: ...

  • Page 436: No Estack Run

    Chapter 24: Enhanced Stacking Commands NO ESTACK RUN Syntax no estack run Parameter None Mode Global Configuration mode Description Use this command to disable enhanced stacking on the switch. The switch cannot use enhanced stacking when the feature is disabled. If you disable enhanced stacking on the command switch, you cannot use that switch to manage the switches in the stack.

  • Page 437: Rcommand

    AT-8100 Switch Command Line User’s Guide RCOMMAND Syntax switch_id rcommand Parameters switch_id Specifies the ID number of a member switch you want to manage in the enhanced stack. This number is displayed with “SHOW ESTACK REMOTELIST” on page 443. You can enter only one ID number.

  • Page 438: Reboot Estack Member

    Chapter 24: Enhanced Stacking Commands REBOOT ESTACK MEMBER Syntax id_number reboot estack member | all Parameters id_number Specifies the enhanced stack ID number of a switch. The number is displayed with “SHOW ESTACK REMOTELIST” on page 443. You may specify the ID number of only one switch. Specifies all of the switches of the enhanced stack, except the command switch.
  • Page 439 AT-8100 Switch Command Line User’s Guide Examples This example reboots a member switch that has the ID number 3: awplus> enable awplus# configure terminal awplus(config)# reboot estack member 3 This example reboots all of the member switches of the enhanced stack: awplus>...

  • Page 440: Show Estack

    Chapter 24: Enhanced Stacking Commands SHOW ESTACK Syntax show estack Parameters None Mode Privileged Exec mode Description Use this command to display whether enhanced stacking is enabled or disabled on the switch and whether the switch’s mode is command or member.
  • Page 441 AT-8100 Switch Command Line User’s Guide Table 42. SHOW ESTACK Command (Continued) Parameter Description Enhanced Stacking mode  Member [1] - Enhanced stacking is (Continued) enabled on the switch, and the switch is set to the member mode. If there is a number in the brackets, the switch detected a command switch on the common VLAN of the enhanced stack.

  • Page 442: Show Estack Command-Switch

    Chapter 24: Enhanced Stacking Commands SHOW ESTACK COMMAND-SWITCH Syntax show estack command-switch Parameters None Mode Privileged Exec mode Description Use this command on a member switch in an enhanced stack to display the enhanced stacking information about the command switch. This command is equivalent to issuing the SHOW ESTACK command on the command switch.

  • Page 443: Show Estack Remotelist

    AT-8100 Switch Command Line User’s Guide SHOW ESTACK REMOTELIST Syntax show estack remotelist [name] [series] Parameters name Sorts the list of switches by the host name. series Sorts the list of switches by the model name. Mode Privileged Exec mode Description Use this command on the command switch to display the member switches of an enhanced stack.
  • Page 444 Chapter 24: Enhanced Stacking Commands This example sorts the switches by host name: awplus> enable awplus# configure terminal awplus(config)# show estack remotelist name This example sorts the switches by model series: awplus> enable awplus# configure terminal awplus(config)# show estack remotelist series...

  • Page 445: Upload Config Remotelist

    AT-8100 Switch Command Line User’s Guide UPLOAD CONFIG REMOTELIST Syntax upload config remotelist Parameters None Mode Global Configuration mode Description Use this command to upload boot configuration files from the file system in the command switch of an enhanced stack to the member switches. The member switches store the files in their file systems as BOOT.CFG.

  • Page 446: Upload Image Remotelist

    Chapter 24: Enhanced Stacking Commands UPLOAD IMAGE REMOTELIST Syntax upload image remotelist Parameters None Mode Global Configuration mode Description Use this command to upload the management software on the command switch of an enhanced stack to the member switches. The command displays the following prompt: Remote switches will reboot after load is complete...
  • Page 447 AT-8100 Switch Command Line User’s Guide Caution The member switches stop forwarding network traffic after they receive the management software from the command switch and as they write the file to their flash memory. Some network traffic may be lost. Caution Do not power off the member switches while they are writing the software to their flash memory.
  • Page 448 Chapter 24: Enhanced Stacking Commands...

  • Page 449: Chapter 25 : Link-Flap Protection

    Chapter 25 Link-flap Protection This chapter explains link-flap protection. The sections in this chapter include:  “Overview” on page 450  “Guidelines” on page 451  “Configuring the Feature” on page 452...

  • Page 450: Overview

    Chapter 25: Link-flap Protection Overview A port that is unable to maintain a reliable connection to a network node may experience a condition referred to as link-flapping. This problem, which is usually caused by intermittent problems with network cables or network nodes, causes the state of a link on a port to fluctuate up and down.

  • Page 451: Guidelines

    AT-8100 Switch Command Line User’s Guide Guidelines Here are the guidelines to link-flap protection:  You can enable this feature on a per-port basis.  The performance of the switch is not affected if you enable it on all of the ports. ...

  • Page 452: Configuring The Feature

    Chapter 25: Link-flap Protection Configuring the Feature Here are the commands that are used to configure the link-flap protection feature. They configure the feature such that link-flap events are defined as seven link changes in three minutes, and they activate the feature on ports 11 to 20.

  • Page 453: Chapter 26 : Link-Flap Protection Commands

    Chapter 26 Link-flap Protection Commands The link-flap protection commands are summarized in the following table: Table 43. Link-flap Protection Commands Command Mode Description “LINK-FLAP DURATION” on Global Configuration Specifies the time period for link-flap page 454 events. “LINK-FLAP PROTECTION” Port Interface Activates link-flap protection on the ports.

  • Page 454: Link-Flap Duration

    Chapter 26: Link-flap Protection Commands LINK-FLAP DURATION Syntax link-flap duration <20 - 65535> Parameters duration Indicates the time period that defines a link flap event. The range is 20 to 65535 seconds. The default is 60 seconds. Mode Global Configuration mode Description Use this command to specify the time period the switch uses to determine whether a port has experienced a link flap event.

  • Page 455: Link-Flap Protection

    AT-8100 Switch Command Line User’s Guide LINK-FLAP PROTECTION Syntax port link-flap protection Parameter port Specifies a port for link-flap protection. You can configure more than one port at a time. Mode Port Interface mode Description Use this command to activate link-flap protection on the ports. Confirmation Command “SHOW LINK-FLAP”...

  • Page 456: Link-Flap Rate

    Chapter 26: Link-flap Protection Commands LINK-FLAP RATE Syntax <4 - 65535> link-flap rate Parameters rate Specifies the number of link changes that constitute a link flap event on a port. The range is 4 to 65535 changes. The default is 10 changes.

  • Page 457: No Link-Flap Protection

    AT-8100 Switch Command Line User’s Guide NO LINK-FLAP PROTECTION Syntax no link-flap protection Parameters None Mode Port Interface mode Description Use this command to disable link-flap protection on the ports. Link-flap protection is disabled on the switch if it is disabled on all of the ports. Confirmation Command “SHOW LINK-FLAP”...

  • Page 458: Show Link-Flap

    Chapter 26: Link-flap Protection Commands SHOW LINK-FLAP Syntax show link-flap Parameters None Mode User Exec and Privileged Exec modes Description Use this command to display the status and settings of link-flap protection on the switch. Here is an example of the information this command displays.

  • Page 459: Port Mirror

    Chapter 27 Port Mirror This chapter discusses the following topics:  “Overview” on page 460  “Creating the Port Mirror or Adding New Source Ports” on page 461  “Removing Source Ports or Deleting the Port Mirror” on page 462 ...

  • Page 460: Overview

    Chapter 27: Port Mirror Overview The port mirror is a management tool that allows you to monitor the traffic on one or more ports on the switch. It works by copying the traffic from designated ports to another port where the traffic can be monitored with a network analyzer.

  • Page 461: Creating The Port Mirror Or Adding New Source Ports

    AT-8100 Switch Command Line User’s Guide Creating the Port Mirror or Adding New Source Ports The command to create the port mirror is the MIRROR INTERFACE command. You must perform this command from the Port Interface mode of the destination port of the port mirror. The command has this format: source_ports mirror interface direction...

  • Page 462: Removing Source Ports Or Deleting The Port Mirror

    Chapter 27: Port Mirror Removing Source Ports or Deleting the Port Mirror To remove source ports from the port mirror, enter the Port Interface mode of the destination port and issue the NO MIRROR INTERFACE command. Here is the format of the command: source_ports no mirror interface This example removes source port 2 from the port mirror.

  • Page 463: Combining The Port Mirror With Access Control Lists

    AT-8100 Switch Command Line User’s Guide Combining the Port Mirror with Access Control Lists You may combine the port mirror with an access control list to monitor a subset of the ingress traffic on a port. The access control list is used to specify the ingress traffic to be coped to the destination port of the port mirror.
  • Page 464 Chapter 27: Port Mirror awplus(config)# interface port1.0.14,port1.0.15 Enter the Port Interface modes for ports 14 and 15. awplus(config-if)# access-group 3008 Assign the access control list to the ports. awplus(config-if)# end Return to the Privileged Exec mode. awplus# show mirror Use the SHOW MIRROR command to confirm that port 18 is the destination port of the port Mirror-To-Port Name: Port1.0.18...

  • Page 465: Displaying The Port Mirror

    AT-8100 Switch Command Line User’s Guide Displaying the Port Mirror To display the port mirror, go to the Privileged Exec mode and enter the SHOW MIRROR command: awplus# show mirror In this example of the information, the port mirror is enabled, and the ingress and egress packets on ports 1 and 3, as well as the egress traffic on ports 11 to 13, are being copied to destination port 22.
  • Page 466 Chapter 27: Port Mirror...

  • Page 467: Chapter 28 : Port Mirror Commands

    Chapter 28 Port Mirror Commands The port mirror commands are summarized in Table 44. Table 44. Port Mirror Commands Command Mode Description “MIRROR” on page 468 Port Interface Designates the destination port for access control lists that use the copy- to-mirror action.

  • Page 468: Mirror

    Chapter 28: Port Mirror Commands MIRROR Syntax mirror Parameters None Mode Port Interface mode Description Use this command to designate the destination port for the copy-to-mirror action in access control lists. You can designate only one destination port. Confirmation Command “SHOW MIRROR”...

  • Page 469: Mirror Interface

    AT-8100 Switch Command Line User’s Guide MIRROR INTERFACE Syntax source_ports mirror interface direction receive|transmit|both Parameters source_ports Specifies a source port for the port mirror. You can specify more than one source port. direction Specifies the traffic to be mirrored from a source port to the destination port.
  • Page 470 Chapter 28: Port Mirror Commands Example This example configures the port mirror to copy the ingress traffic on ports 3 and 4, the source ports, to port 5, the destination port. If port 5 is already acting as the destination port of the port mirror, the commands add ports 3 and 4 to the port mirror: awplus>...

  • Page 471: No Mirror Interface

    AT-8100 Switch Command Line User’s Guide NO MIRROR INTERFACE Syntax source_ports no mirror interface Parameters source_ports Specifies a source port of the port mirror. You can specify more than one source port at a time in the command. Mode Port Interface mode Description Use this command to remove source ports from the port mirror or to delete the port mirror.

  • Page 472: Show Mirror

    Chapter 28: Port Mirror Commands SHOW MIRROR Syntax show mirror Parameters None Modes Privileged Exec mode Description Use this command to display the source and destination ports of the port mirror on the switch. An example is shown in Figure 104. Destination Port Mirror Test Port Name: port1.0.22 Mirror option: Enabled...
  • Page 473 AT-8100 Switch Command Line User’s Guide Table 45. SHOW MIRROR Command (Continued) Parameter Description Mirror direction The packets to be mirrored to the destination port. The states are listed here:  Receive - The ingress packets of the source port are mirrored to the destination port.
  • Page 474 Chapter 28: Port Mirror Commands...

  • Page 475: Chapter 29 : Dhcp Relay Overview

    Chapter 29 DHCP Relay Overview  “Overview” on page 476  “Configuring the DHCP Relay Agent” on page 480...

  • Page 476: Overview

    Chapter 29: DHCP Relay Overview Overview The switch has a DHCP relay agent to relay BOOTP messages between clients and DHCP or BOOTP servers. A client that transmits a request for an IP configuration to a DHCP or BOOTP server has to send the request as a broadcast packet because it does not know the IP address of the server.

  • Page 477: Dhcp Relay Agent Option 82

    AT-8100 Switch Command Line User’s Guide A routing interface that receives a BOOTP reply from a server inspects the broadcast flag field in the packet to determine whether the client, in its original request to the server, set this flag to signal that the response must be sent as a broadcast datagram.

  • Page 478: Client Requests With Option 82

    Chapter 29: DHCP Relay Overview Client Requests The previous discussion deals with cases where DHCP requests do not already contain option-82 information. However, it is possible that the with Option 82 requests arriving from the clients to the relay agent could already contain option-82 information.

  • Page 479: Dhcp Relay Agent Option 82 Maximum Message Length

    AT-8100 Switch Command Line User’s Guide The possible actions are listed here:  Leave the existing option-82 field untouched  Append its own option-82 field after the existing field  Drop the packet  Replace the existing option-82 information with its own (the default) DHCP Relay When a DHCP relay agent (that has the option 82 insertion enabled) receives a request packet from a DHCP client, it appends the option 82...

  • Page 480: Configuring The Dhcp Relay Agent

    Chapter 29: DHCP Relay Overview Configuring the DHCP Relay Agent Here are the procedures to configuring the DHCP relay agent:  “Adding the IP Addresses of the DHCP Servers” on page 480  “Adding DHCP Relay to the VLANs” on page 481 ...

  • Page 481: Adding Dhcp Relay To The Vlans

    AT-8100 Switch Command Line User’s Guide awplus# show ip dhcp-relay Confirm the IP addresses with the SHOW IP DHCP-RELAY command. DHCP Relay Service is disabled List of Interfaces: Maximum hop count is 10 Maximum DHCP message length is 576 Insertion of Relay Agent Option is disabled Checking if Relay Agent Option is disabled Relay Information policy is to replace existing relay agent information.
  • Page 482 Chapter 29: DHCP Relay Overview awplus> enable Enter the Privileged Exec mode from the User Executive mode. awplus# configure terminal Enter the Global Configuration mode. awplus(config)# interface vlan28 Enter the VLAN Configuration mode for the VLAN. awplus(config-if)# ip address 149.23.32.41/24 Create the IP address interface with the IP ADDRESS command.

  • Page 483: Configuring The Dhcp Relay Option 82

    AT-8100 Switch Command Line User’s Guide Configuring the Table 46 lists the commands that configure DHCP relay option 82. The commands are located in the Global Configuration mode and apply to the DHCP Relay entire switch. Option 82 Table 46. DHCP Relay Option 82 Commands To Do This Task Use This Command Value...
  • Page 484 Chapter 29: DHCP Relay Overview Table 46. DHCP Relay Option 82 Commands (Continued) To Do This Task Use This Command Value Set the response of the DHCP relay IP DHCP-RELAY INFORMATION The policies are agent to client packets containing POLICY policy listed here: option-82 information.

  • Page 485: Configuring The Maximum Hop Count

    AT-8100 Switch Command Line User’s Guide This example of the commands configures the DHCP agent to append its option 82 information to the BOOTP requests, and sets the maximum length of the client requests to 1220 bytes. awplus> enable awplus# configure terminal awplus(config) ip dhcp-relay agent-option awplus(config) ip dhcp-relay information policy append awplus(config) ip dhcp-relay max-message-length 1220...
  • Page 486 Chapter 29: DHCP Relay Overview...

  • Page 487: Chapter 30 : Dhcp Relay Commands

    Chapter 30 DHCP Relay Commands The DHCP relay commands are summarized in Table 47. Table 47. DHCP Relay Commands Command Mode Description “IP DHCP-RELAY” on page 489 VLAN Adds the DHCP relay agent to VLANs. Configuration “IP DHCP-RELAY AGENT-OPTION” Global Configures the DHCP relay agent to on page 490 Configuration...
  • Page 488 Chapter 30: DHCP Relay Commands Table 47. DHCP Relay Commands (Continued) Command Mode Description “NO IP DHCP-RELAY AGENT- Global Configures the DHCP relay agent to OPTION CHECKING” on page 499 Configuration forward DHCP requests that have option 82 information and a null IP address (0.0.0.0) in the giaddr fields.

  • Page 489: Ip Dhcp-Relay

    AT-8100 Switch Command Line User’s Guide IP DHCP-RELAY Syntax ip dhcp-relay Parameters None Mode VLAN Configuration mode Description Use this command to activate the DHCP relay agent on VLANs so that they forward DHCP requests. The VLANs must be assigned IP addresses. Confirmation Command “SHOW IP DHCP-RELAY”...

  • Page 490: Ip Dhcp-Relay Agent-Option

    Chapter 30: DHCP Relay Commands IP DHCP-RELAY AGENT-OPTION Syntax ip dhcp-relay agent-option Parameters None Mode Global Configuration mode Description Use this command to configure the DHCP relay agent to insert its option 82 information into the client-request packets it relays to the DHCP servers.

  • Page 491: Ip Dhcp-Relay Agent-Option Checking

    AT-8100 Switch Command Line User’s Guide IP DHCP-RELAY AGENT-OPTION CHECKING Syntax ip dhcp-relay agent-option checking Parameters None Mode Global Configuration Mode Description Use this command to configure the DHCP relay agent to discard DHCP requests that have option 82 information and a null IP address (0.0.0.0) in the giaddr fields.

  • Page 492: Ip Dhcp-Relay Information Policy

    Chapter 30: DHCP Relay Commands IP DHCP-RELAY INFORMATION POLICY Syntax policy ip dhcp-relay information policy append|drop|keep|replace Parameters policy Specifies one of the following policies: append The relay agent appends the option 82 field of the packet with its own option 82 details. drop The relay agent discards the packet.
  • Page 493 AT-8100 Switch Command Line User’s Guide Examples This example selects the append policy so that the DHCP relay agent adds its option 82 details to the existing option 82 fields in the packets: awplus> enable awplus# configure terminal awplus(config)# ip dhcp-relay information policy append This example selects the keep policy so that the DHCP relay agent does not modify the option 82 fields in the packets: awplus>...

  • Page 494: Ip Dhcp-Relay Max-Message-Length

    Chapter 30: DHCP Relay Commands IP DHCP-RELAY MAX-MESSAGE-LENGTH Syntax length ip dhcp-relay max-message-length Parameters length Specifies the maximum length in bytes of DHCP client requests. The range is 548 to 1472 bytes. The default is 1400 bytes. Mode Global Configuration Description Use this command to set the maximum length in bytes of DHCP client requests.

  • Page 495: Ip Dhcp-Relay Maxhops

    AT-8100 Switch Command Line User’s Guide IP DHCP-RELAY MAXHOPS Syntax maxhops ip dhcp-relay maxhops Parameters maxhops Specifies the maximum hop count for DHCP requests. The range is 1 to 255. Mode Global Configuration Class Description Use this command to set the hop count for DHCP requests. The relay agent discards DHCP requests that have hop counts that exceed the threshold.

  • Page 496: Ip Dhcp-Relay Server-Address

    Chapter 30: DHCP Relay Commands IP DHCP-RELAY SERVER-ADDRESS Syntax ipaddress ip dhcp-relay server-address Parameters ipaddress Specifies the IP address of a DHCP server. You may specify only one IP address at a time with this command. Mode Global Configuration mode Description Use this command to add the IP addresses of DHCP servers to the relay agent.

  • Page 497: No Ip Dhcp-Relay

    AT-8100 Switch Command Line User’s Guide NO IP DHCP-RELAY Syntax no ip dhcp-relay Parameters None Mode VLAN Configuration mode Description Use this command to remove the DHCP relay agent from VLANs to stop them from forwarding any further DHCP requests. Confirmation Command “SHOW IP DHCP-RELAY”...

  • Page 498: No Ip Dhcp-Relay Agent-Option

    Chapter 30: DHCP Relay Commands NO IP DHCP-RELAY AGENT-OPTION Syntax no ip dhcp-relay agent-option Parameters None Mode Global Configuration mode Description Use this command to stop the DHCP relay agent from inserting its option 82 information into the client-request packets it relays to the DHCP servers.

  • Page 499: No Ip Dhcp-Relay Agent-Option Checking

    AT-8100 Switch Command Line User’s Guide NO IP DHCP-RELAY AGENT-OPTION CHECKING Syntax no ip dhcp-relay agent-option checking Parameters None Mode Global Configuration Mode Description Use this command to configure the DHCP relay agent to forward DHCP requests that have option 82 information and a null IP address (0.0.0.0) in the giaddr fields.

  • Page 500: No Ip Dhcp-Relay Server-Address

    Chapter 30: DHCP Relay Commands NO IP DHCP-RELAY SERVER-ADDRESS Syntax ipaddress no ip dhcp-relay server-address Parameters ipaddress Specifies the IP address of a DHCP server. You may specify only one IP address. Mode Global Configuration mode Description Use this command to delete the IP addresses of the DHCP servers from the relay agent.

  • Page 501: No Service Dhcp-Relay

    AT-8100 Switch Command Line User’s Guide NO SERVICE DHCP-RELAY Syntax no service dhcp-relay Parameters None Mode Global Configuration mode Description Use this command to disable the DHCP relay agent on the switch to stop the VLANs from forwarding any further DHCP requests. Confirmation Command “SHOW IP DHCP-RELAY”...

  • Page 502: Service Dhcp-Relay

    Chapter 30: DHCP Relay Commands SERVICE DHCP-RELAY Syntax service dhcp-relay Parameters None Mode Global Configuration mode Description Use this command to activate the DHCP relay agent on the switch. Confirmation Command “SHOW IP DHCP-RELAY” on page 503 Example This example activates the DHCP relay agent: awplus>...

  • Page 503: Show Ip Dhcp-Relay

    AT-8100 Switch Command Line User’s Guide SHOW IP DHCP-RELAY Syntax vlanid show ip dhcp-relay [interface Parameters vlanid Specifies a VLAN ID number, such as vlan1. You may specify only one VLAN. Mode Privileged Exec mode Description Use this command to view the settings of the DHCP relay agent. Figure 106 is an example of the information.
  • Page 504 Chapter 30: DHCP Relay Commands Table 48. SHOW IP DHCP-RELAY Command (Continued) Field Definition Maximum DHCP The maximum length permitted for DHCP message length requests from clients when the policy is set to the append policy. This parameter is set with “IP DHCP-RELAY MAX-MESSAGE-LENGTH”...

  • Page 505: Chapter 31 : Group Link Control

    Chapter 31 Group Link Control This chapter provides the following sections:  “Overview” on page 506  “Guidelines” on page 514  “Configuration Examples” on page 515...

  • Page 506: Overview

    Chapter 31: Group Link Control Overview Group link control is designed to improve the effectiveness of the redundant systems in a network. It enables the switch to alert network devices about problems they might not otherwise detect or respond to, so that they can implement their redundant systems, automatically.
  • Page 507 AT-8100 Switch Command Line User’s Guide In the first diagram a server with two teamed network adapter cards is connected to different switches, with the active link to switch 3. If there is a failure on the active link, the server can detect it directly and would respond by automatically transferring the traffic to the redundant network interface and the secondary path, which leads to switch 4.
  • Page 508 Chapter 31: Group Link Control Figure 108. Group Link Control Example 2 With group link control you can address this problem by creating on switch 3 a group of the two ports that connect to switch 1 and the server. Thus, any change to the link state of the port connected to switch 1 is automatically transferred to the port connected to the server.
  • Page 509 AT-8100 Switch Command Line User’s Guide Figure 109. Group Link Control Example 3 When a link on an upstream port is reestablished, the switch automatically reactivates the downstream counterpart. Referring to the example, when the link on port 17 is reestablished, the switch enables port 24 again. A link control group can have more than one upstream or downstream port.
  • Page 510 Chapter 31: Group Link Control Figure 110. Group Link Control Example 4 If connectivity is lost on both ports 17 and 20, the downstream ports 24 and 25 are disabled. Figure 111. Group Link Control Example 5 In the previous examples, the ports of the groups on the switch are connected to different devices, making it possible for downstream devices to know whether or not there are links to upstream devices.

  • Page 511: Table 49. Link Control Groups On Switch 3 In Example 6

    AT-8100 Switch Command Line User’s Guide approach is to create groups in which the ports are connected to the same network node. This is useful in network topologies where redundant static port trunks or LACP trunks are controlled by the spanning tree protocol. If a primary trunk loses bandwidth capacity because connectivity is lost on one or more of the links and there is a redundant trunk held in the blocking state by the spanning tree protocol, it may be advantageous to shut down...
  • Page 512 Chapter 31: Group Link Control Table 49. Link Control Groups on Switch 3 in Example 6 Link Control Upstream Port Downstream Ports Group 7, 8 Only one group has to be true for the switch to shut down the ports of the trunk.

  • Page 513: Table 50. Link Control Groups On Switch 3 In Example 7

    AT-8100 Switch Command Line User’s Guide Table 50. Link Control Groups on Switch 3 in Example 7 Link Control Upstream Downstream Group Ports Ports 7, 8 9, 10 8, 9 7, 10 9, 10 7, 8 7, 9 8, 10 8, 10 7, 9 7, 10...

  • Page 514: Guidelines

    Chapter 31: Group Link Control Guidelines Here are the guidelines to group link control:  The switch or stack can support up to eight groups.  A group can have any number of ports, up to the total number of ports on the switch.

  • Page 515: Configuration Examples

    AT-8100 Switch Command Line User’s Guide Configuration Examples Table 51 lists the group link control commands. Table 51. Group Link Control Commands To Do This Task Use This Command Range Create groups. GROUP-LINK-CONTROL group_id 1 to 8 Add upstream ports. GROUP-LINK-CONTROL 1 to 8 UPSTREAM group_id...
  • Page 516 Chapter 31: Group Link Control awplus(config-if)# interface port1.0.24 Move to the Port Interface mode for port 24. awplus(config-if)# group-link-control downstream 1 Add port 24 as the downstream port to the group. awplus(config-if)# end Return to the Privileged Exec mode. awplus# show group-link-control Display the group to verify its configuration.
  • Page 517 AT-8100 Switch Command Line User’s Guide awplus# show group-link-control Display the groups to verify their configurations. ID ....... 1 Status ......Down Downstream (Link) Ports(s) ..port1.0.8-port1.0.9 Upstream (Member) Ports(s) ..port1.0.7 ID ....... 2 Status ......Down Downstream (Link) Ports(s) ..port1.0.7-port1.0.9 Upstream (Member) Ports(s) ..
  • Page 518 Chapter 31: Group Link Control...

  • Page 519: Chapter 32 : Group Link Control Commands

    Chapter 32 Group Link Control Commands The group link control commands are summarized in the following table and described in detail within the chapter. Table 52. Group Link Control Commands Command Mode Description “GROUP-LINK-CONTROL” on Global Creates groups. page 520 Configuration “GROUP-LINK-CONTROL Port Interface...

  • Page 520: Group-Link-Control

    Chapter 32: Group Link Control Commands GROUP-LINK-CONTROL Syntax group_id group-link-control Parameter group_id Specifies the ID number of a new group. The range is 1 through 8. You can create only one group at a time. Mode Global Configuration mode Description Use this command to create new groups for group link control.

  • Page 521: Group-Link-Control Downstream

    AT-8100 Switch Command Line User’s Guide GROUP-LINK-CONTROL DOWNSTREAM Syntax group_id group-link-control downstream Parameter group_id Specifies a group ID number. The range is 1 through 8. The group must already exist. Mode Port Interface mode Description Use this command to add downstream ports to groups in group link control.

  • Page 522: Table 51. Group Link Control Commands

    Chapter 32: Group Link Control Commands This example adds ports 15 and 16 as downstream ports to group ID 3: awplus> enable awplus# configure terminal awplus(config)# interface port1.0.15-port1.0.16 awplus(config-if)# group-link-control downstream 3...

  • Page 523: Group-Link-Control Upstream

    AT-8100 Switch Command Line User’s Guide GROUP-LINK-CONTROL UPSTREAM Syntax group_id group-link-control upstream Parameter group_id Specifies a group ID number. The range is 1 through 8. The group must already exist. Mode Port Interface mode Description Use this command to add upstream ports to groups in group link control. You may add more than one port at a time.

  • Page 524: No Group-Link-Control

    Chapter 32: Group Link Control Commands NO GROUP-LINK-CONTROL Syntax group_id no group-link-control Parameters group_id Specifies the ID number of the group to be deleted. The range is 1 through 8. You can delete only one group at a time. Mode Global Configuration mode Description Use this command to delete groups from group link control.

  • Page 525: No Group-Link-Control Downstream

    AT-8100 Switch Command Line User’s Guide NO GROUP-LINK-CONTROL DOWNSTREAM Syntax group_id no group-link-control group downstream Parameter group_id Specifies a group ID number. The range is 1 through 8. The group must already exist. Mode Port Interface mode Description Use this command to remove downstream ports from groups in group link control.

  • Page 526: No Group-Link-Control Upstream

    Chapter 32: Group Link Control Commands NO GROUP-LINK-CONTROL UPSTREAM Syntax group_id no group-link-control upstream Parameter group_id Specifies a group ID number. The range is 1 through 8. Mode Port Interface mode Description Use this command to remove upstream ports from groups. Note Removing all of the upstream ports from a group disables the downstream ports.

  • Page 527: Show Group-Link-Control

    AT-8100 Switch Command Line User’s Guide SHOW GROUP-LINK-CONTROL Syntax group_id show group-link-control [ Parameters group_id Specifies a group ID number. The range is 1 through 8. Mode Privileged Exec mode Description Use this command to display the groups in group link control. Figure 114 is an example of the information.
  • Page 528 Chapter 32: Group Link Control Commands Table 53. SHOW GROUP-LINK-CONTROL Command (Continued) Field Definition Status The status of the group. The possible states are listed here:  Suspended - The group has no ports or has either upstream or downstream ports, but not both.

  • Page 529: Chapter 33 : Multicast Commands

    Chapter 33 Multicast Commands The multicast commands are summarized in Table 54. Table 54. Multicast Commands Command Mode Description “NO SWITCHPORT BLOCK Port Interface Resumes forwarding egress multicast EGRESS-MULTICAST” on page 530 packets on ports. “NO SWITCHPORT BLOCK Port Interface Resumes forwarding ingress multicast INGRESS-MULTICAST”...

  • Page 530: No Switchport Block Egress-Multicast

    Chapter 33: Multicast Commands NO SWITCHPORT BLOCK EGRESS-MULTICAST Syntax no switchport block egress-multicast Parameters None Mode Port Interface mode Description Use this command to resume forwarding of egress multicast packets on ports. By default, this is the default setting on all of the ports on the switch. Confirmation Command “SHOW INTERFACE”...

  • Page 531: No Switchport Block Ingress-Multicast

    AT-8100 Switch Command Line User’s Guide NO SWITCHPORT BLOCK INGRESS-MULTICAST Syntax no switchport block ingress-multicast Parameters None Mode Port Interface mode Description Use this command to resume forwarding of ingress multicast packets on ports. Confirmation Command “SHOW INTERFACE” on page 228 Example This example resumes forwarding of ingress multicast packets on ports 2 and 8:...

  • Page 532: Switchport Block Egress-Multicast

    Chapter 33: Multicast Commands SWITCHPORT BLOCK EGRESS-MULTICAST Syntax switchport block egress-multicast Parameters None Mode Port Interface mode Description Use this command to block egress multicast packets on ports. By default, all ports on the switch are set to allow multicast packets. Note This feature does not block multicast packets that have reserved multicast addresses in the range of 01:80:C2:00:00:00 to...

  • Page 533: Switchport Block Ingress-Multicast

    AT-8100 Switch Command Line User’s Guide SWITCHPORT BLOCK INGRESS-MULTICAST Syntax switchport block ingress-multicast Parameters None Mode Port Interface mode Description Use this command to block ingress multicast packets on ports. Note This feature does not block multicast packets that have reserved multicast addresses in the range of 01:80:C2:00:00:00 to 01:80:C2:00:00:0F.
  • Page 534 Chapter 33: Multicast Commands...

  • Page 535: File System

    Section III File System This section contains the following chapters:  Chapter 34, “File System” on page 537  Chapter 35, “File System Commands” on page 545  Chapter 36, “Boot Configuration Files” on page 553  Chapter 37, “Boot Configuration File Commands” on page 559 ...

  • Page 537: File System

    Chapter 34 File System This chapter discusses the following topics:  “Overview” on page 538  “Copying Boot Configuration Files” on page 539  “Renaming Boot Configuration Files” on page 540  “Deleting Boot Configuration Files” on page 541  “Displaying the Specifications of the File System”...

  • Page 538: Overview

    Chapter 34: File System Overview The file system in the switch stores the following types of files:  Boot configuration files  Encryption key pairs The file system has a flat directory structure. All the files are stored in the root directory.

  • Page 539: Copying Boot Configuration Files

    “unit24.cfg”: awplus# copy unit12.cfg unit24.cfg Note Allied Telesis recommends that you periodically upload the active boot configuration file of the switch to a network device, so that if the switch should fail and become inoperable, the uploaded files will be available to quickly configure its replacement.

  • Page 540: Renaming Boot Configuration Files

    Chapter 34: File System Renaming Boot Configuration Files To rename boot configuration files in the file system, use the MOVE command, found in the Privileged Exec mode. Here is the format: move filename1 .cfg filename2 .cfg The FILENAME1 variable is the name of the file to be renamed and the FILENAME2 variable is the file’s new name.

  • Page 541: Deleting Boot Configuration Files

    AT-8100 Switch Command Line User’s Guide Deleting Boot Configuration Files If the file system becomes cluttered with unnecessary configuration files, you use the DELETE command in the Privileged Exec mode to delete them. The format of the command is: filename.ext delete This example deletes the configuration file “unit2a.cfg”: awplus# delete unit2a.cfg...

  • Page 542: Displaying The Specifications Of The File System

    Chapter 34: File System Displaying the Specifications of the File System The User Exec mode and the Privileged Exec mode have a command that lets you display the size of the file system, the amount of free space, and the amount of space used by the files currently stored in the file system. It is the SHOW FILE SYSTEMS command.

  • Page 543: Listing The Files In The File System

    AT-8100 Switch Command Line User’s Guide Listing the Files in the File System To view the names of the files in the file system of the switch, use the DIR command in the Privileged Exec mode: awplus# dir The command does not accept wildcards.
  • Page 544 Chapter 34: File System...

  • Page 545: Chapter 35 : File System Commands

    Chapter 35 File System Commands The file system commands are summarized in Table 56. Table 56. File System Commands Command Mode Description “COPY” on page 546 Privileged Exec Copies boot configuration files. “DELETE” on page 547 Privileged Exec Deletes boot configuration files from the file system.

  • Page 546: Copy

    Chapter 35: File System Commands COPY Syntax sourcefile destinationfile copy .cfg .cfg Parameters sourcefile.cfg Specifies the name of the boot configuration file you want to copy. destinationfile.cfg Specifies the name of the new copy of the file. The filename can be from 1 to 16 alphanumeric characters.

  • Page 547: Delete

    AT-8100 Switch Command Line User’s Guide DELETE Syntax filename delete .cfg Parameter filename.cfg Specifies the name of the boot configuration file to be deleted. You can use the wildcard “*” to replace any part of a filename to delete multiple configuration files. Mode Privileged Exec mode Description...

  • Page 548: Delete Force

    Chapter 35: File System Commands DELETE FORCE Syntax filename.ext delete force Parameter filename.ext Specifies the name of the boot configuration file to be deleted. You can use the wildcard “*” to replace any part of a filename to delete multiple configuration files. Mode Privileged Exec mode Description...

  • Page 549: Dir

    AT-8100 Switch Command Line User’s Guide Syntax Parameter None Mode Privileged Exec mode Description Use this command to list the names of the files stored in the file system on the switch. Example The following command lists the file names stored in the file system: awplus# dir...

  • Page 550: Move

    Chapter 35: File System Commands MOVE Syntax filename1 filename2 move .cfg .cfg Parameters filename1.cfg Specifies the name of the boot configuration file to be renamed. filename2.cfg Specifies the new name for the file. The filename can be from 1 to 16 alphanumeric characters, not including the filename extension, which must be “.cfg”.

  • Page 551: Show File Systems

    AT-8100 Switch Command Line User’s Guide SHOW FILE SYSTEMS Syntax show file systems Parameter None Mode Privileged Exec mode Description Use this command to display the specifications of the file system in the switch. An example is shown in Figure 116. Size (b) Free (b) Type...
  • Page 552 Chapter 35: File System Commands Table 57. SHOW FILE SYSTEMS Command (Continued) Parameter Description Lcl/Ntwk Whether the memory is located locally or via a network connection. Whether the memory is accessible: Y (yes), N (no), - (not appropriate) Example The following example displays the specifications of the file system: awplus# show file systems...

  • Page 553: Chapter 36 : Boot Configuration Files

    Chapter 36 Boot Configuration Files This chapter discusses the following topics:  “Overview” on page 554  “Specifying the Active Boot Configuration File” on page 555  “Creating a New Boot Configuration File” on page 557  “Displaying the Active Boot Configuration File” on page 558...

  • Page 554: Overview

    Chapter 36: Boot Configuration Files Overview The changes that you make to the parameters settings of the switch are saved as a series of commands in a special file in the file system. The file is referred to as the active boot configuration file. This file is updated by the switch with your latest changes whenever you issue the WRITE command or the COPY RUNNING-CONFIG STARTUP-CONFIG command in the Privileged Exec mode.

  • Page 555: Specifying The Active Boot Configuration File

    AT-8100 Switch Command Line User’s Guide Specifying the Active Boot Configuration File To create or designate a new active boot configuration file for the switch, use the BOOT CONFIG-FILE command in the Global Configuration mode. Here is the format of the command; filename boot config-file .cfg...
  • Page 556 Chapter 36: Boot Configuration Files Here are a couple examples of the command. The first example creates a new active boot configuration file called “sw_product4.cfg”: awplus> enable awplus# configure terminal awplus(config)# boot config-file sw_product4.cfg After you enter the command, the switch creates the file in its file system, updates it with the current parameter settings, and finally marks it as the active boot configuration file.

  • Page 557: Creating A New Boot Configuration File

    AT-8100 Switch Command Line User’s Guide Creating a New Boot Configuration File It is a good idea to periodically make copies of the current configuration of the switch so that you can return the switch to an earlier configuration, if necessary.

  • Page 558: Displaying The Active Boot Configuration File

    Chapter 36: Boot Configuration Files Displaying the Active Boot Configuration File To display the name of the active boot configuration file on the switch, go to the Privileged Exec mode and enter the SHOW BOOT command. Here is the command: awplus# show boot Here is an example of the information.

  • Page 559: Chapter 37 : Boot Configuration File Commands

    Chapter 37 Boot Configuration File Commands The boot configuration file commands are summarized in Table 58 and described in detail within the chapter. Table 58. Boot Configuration File Commands Command Mode Description “BOOT CONFIG-FILE” on page 560 Global Designates or creates a new active Configuration boot configuration file for the switch.

  • Page 560: Boot Config-File

    Chapter 37: Boot Configuration File Commands BOOT CONFIG-FILE Syntax filename boot config-file .cfg Parameter filename Specifies the name of a boot configuration file that is to act as the active boot configuration file on the switch. The filename can be from 1 to 16 alphanumeric characters.
  • Page 561 AT-8100 Switch Command Line User’s Guide Confirmation Command “SHOW BOOT” on page 566. Examples This example designates a file called “region2asw.cfg” as the switch’s active configuration file. This example assumes that the file is completely new. The switch creates the file, with its current parameter settings, and then designates it as the active boot configuration file: awplus>...

  • Page 562: Copy Running-Config

    Chapter 37: Boot Configuration File Commands COPY RUNNING-CONFIG Syntax filename copy running-config .cfg Parameter filename Specifies a name for a new boot configuration file. The name can be from 1 to 16 alphanumeric characters. The extension must be “.cfg”. Mode Privileged Exec mode Description Use this command to create new boot configuration files.

  • Page 563: Copy Running-Config Startup-Config

    AT-8100 Switch Command Line User’s Guide COPY RUNNING-CONFIG STARTUP-CONFIG Syntax copy running-config startup-config Parameters None Mode Privileged Exec mode Description Use this command to update the active boot configuration file with the switch’s current configuration, for permanent storage. When you enter the command, the switch copies its parameter settings into the active boot configuration file.

  • Page 564: Erase Startup-Config

    Chapter 37: Boot Configuration File Commands ERASE STARTUP-CONFIG Syntax erase startup-config Parameters None Mode Privileged Exec mode Description Use this command to restore the default settings to all the parameters on the switch. Review the following information before using this command: ...

  • Page 565: No Boot Config-File

    AT-8100 Switch Command Line User’s Guide NO BOOT CONFIG-FILE Syntax no boot config-file Parameter None Mode Global Configuration mode Description Use this command to configure the switch with the settings in the default BOOT.CFG file. Caution This command causes the switch to reset. It does not forward network traffic while it initializes the management software.

  • Page 566: Show Boot

    Chapter 37: Boot Configuration File Commands SHOW BOOT Syntax show boot Parameter None Mode Privileged Exec mode Description Use this command to display the name of the active boot configuration file and the version numbers of the management software and bootloader. Figure 118 is an example of the information.
  • Page 567 AT-8100 Switch Command Line User’s Guide Example This command displays the name of the active boot configuration file and the version numbers of the management software and bootloader. awplus# show boot...

  • Page 568: Show Startup-Config

    Chapter 37: Boot Configuration File Commands SHOW STARTUP-CONFIG Syntax show startup-config Parameters None Mode Privileged Exec mode Description Use this command to display the contents of the active boot configuration file. Example The following example displays the contents of the active boot configuration file: awplus# show startup-config...

  • Page 569: Write

    AT-8100 Switch Command Line User’s Guide WRITE Syntax write Parameters None Mode Privileged Exec mode Description Use this command to update the active boot configuration file with the switch’s current configuration, for permanent storage. When you enter the command, the switch copies its parameter settings into the active boot configuration file.
  • Page 570 Chapter 37: Boot Configuration File Commands...

  • Page 571: File Transfer

    Chapter 38 File Transfer This chapter discusses the following topics:  “Overview” on page 572  “Uploading or Downloading Files with TFTP” on page 573  “Uploading or Downloading Files with Zmodem” on page 577  “Downloading Files with Enhanced Stacking” on page 580...

  • Page 572: Overview

    Chapter 38: File Transfer Overview This chapter discusses how to download files onto the switch and upload files onto the switch. You can download the following file types to the switch:  New versions of the management software  Boot configuration files (Refer to Chapter 36, “Boot Configuration Files”...

  • Page 573: Uploading Or Downloading Files With Tftp

    Some network traffic may be lost. 1. Obtain the new management software from the Allied Telesis web site and store it on the TFTP server on your network. For information on how to obtain management software from Allied Telesis, refer to “Contacting Allied Telesis”...

  • Page 574: Downloading Files To The Switch With Tftp

    Chapter 38: File Transfer The IPADDRESS parameter is the IP address of the TFTP server, and the FILENAME parameter is the name of the new management software file to be downloaded to the switch from the TFTP server. The filename must include the “.img” extension and cannot contain spaces. In this example of the command, the IP address of the TFTP server is 149.11.124.5 and the filename of the new management software to be downloaded from the server is “at-8100_sw.img”:...

  • Page 575: Uploading Files From The Switch With Tftp

    AT-8100 Switch Command Line User’s Guide In this example of the command, the IP address of the TFTP server is 152.34.67.8, and the filename of the boot configuration to be downloaded from the server is “switch2a.cfg”: awplus# copy tftp flash 152.34.67.8 switch2a.cfg After receiving the entire file, the switch stores it in the file system.
  • Page 576 Chapter 38: File Transfer To upload a file from the file system of the switch using TFTP: 1. Start a local or remote management session on the switch. 2. Use the DIR command in the Privileged Exec mode to confirm the name of the file you want to upload from the file system in the switch.

  • Page 577: Uploading Or Downloading Files With Zmodem

    AT-8100 Switch Command Line User’s Guide Uploading or Downloading Files with Zmodem  “Downloading Files to the Switch with Zmodem” next  “Uploading Files from the Switch with Zmodem” on page 578 Note You may not use Zmodem to download new versions of the management software to the switch.

  • Page 578: Uploading Files From The Switch With Zmodem

    Chapter 38: File Transfer 7. At this point, do one of the following:  To configure the switch using the settings in the newly designated active boot configuration file, reset the switch with the REBOOT command in the Privileged Exec mode. Caution The switch does not forward packets while it is initializing its management software.
  • Page 579 AT-8100 Switch Command Line User’s Guide After you enter the command, the switch displays this message: Waiting to send ... 4. Use your terminal or terminal emulator program to begin the upload. The upload must be Zmodem. The upload should take only a few moments.

  • Page 580: Downloading Files With Enhanced Stacking

    Chapter 38: File Transfer Downloading Files with Enhanced Stacking If you are using the enhanced stacking feature, you can automate the process of updating the management software in the switches by having the command switch download its management software to the other switches in the stack.
  • Page 581 AT-8100 Switch Command Line User’s Guide 4. Enter the ID numbers of the switches to receive the management software from the command switch. The ID numbers are the numbers in the Num column in the SHOW ESTACK REMOTELIST command. You can update more than one switch at a time. For example, to update switches 1 and 2 in Figure 119, you would enter: Remote switches will reboot after load is complete.
  • Page 582 Chapter 38: File Transfer...

  • Page 583: Chapter 39 : File Transfer Commands

    Chapter 39 File Transfer Commands The file transfer commands are summarized in Table 60 and described in detail within the chapter. Table 60. File Transfer Commands Command Mode Description “COPY FILENAME ZMODEM” on Privileged Exec Uses Zmodem to upload files from the page 584 file system in the switch.

  • Page 584: Copy Filename Zmodem

    Chapter 39: File Transfer Commands COPY FILENAME ZMODEM Syntax: filename copy .cfg zmodem Parameters filename Specifies the filename of a configuration file to upload from the file system in the switch. The filename cannot contain spaces and include the extension “.cfg”. You can specify one filename. Mode Privileged Exec mode Description...

  • Page 585: Copy Flash Tftp

    AT-8100 Switch Command Line User’s Guide COPY FLASH TFTP Syntax ipaddress filename copy flash tftp Parameters ipaddress Specifies the IP address of a TFTP server on your network. filename Specifies the filename of a configuration file to upload from the file system in the switch to a TFTP server.

  • Page 586: Copy Tftp Flash

    Chapter 39: File Transfer Commands COPY TFTP FLASH Syntax ipaddress filename copy tftp flash Parameters ipaddress Specifies the IP address of a TFTP server on your network. filename Specifies the filename of the file on the TFTP server to download to the switch.
  • Page 587 AT-8100 Switch Command Line User’s Guide Examples This example downloads the new management software file “at8100_app.img” to the switch from a TFTP server that has the IP address 149.22.121.45: awplus> enable awplus# copy tftp flash 149.22.121.45 at8100_app.img This example downloads the boot configuration file “sw12a.cfg” to the switch from a TFTP server with the IP address 112.141.72.11: awplus>...

  • Page 588: Copy Zmodem

    Chapter 39: File Transfer Commands COPY ZMODEM Syntax copy zmodem Parameters None Mode Privileged Exec mode Description Use this command together with a Zmodem utility to download boot configuration files or CA certificates to the file system in the switch. This command must be performed from a local management session.

  • Page 589: Upload Image Remotelist

    AT-8100 Switch Command Line User’s Guide UPLOAD IMAGE REMOTELIST Syntax upload image remotelist Parameters None Mode Global Configuration mode Description Use this command to download the management software on the command switch to other switches in an enhanced stack. For background information on enhanced stacking, refer to Chapter 23, “Enhanced Stacking”...
  • Page 590 Chapter 39: File Transfer Commands...

  • Page 591: Snooping

    Section IV Snooping This section contains the following chapters:  Chapter 40, “Internet Group Management Protocol (IGMP) Snooping” on page 593  Chapter 41, “IGMP Snooping Commands” on page 603  Chapter 42, “IGMP Snooping Querier” on page 617  Chapter 43, “IGMP Snooping Querier Commands”...

  • Page 593: Chapter 40 : Internet Group Management Protocol (Igmp) Snooping

    Chapter 40 Internet Group Management Protocol (IGMP) Snooping This chapter discusses the following topics:  “Overview” on page 594  “Host Node Topology” on page 596  “Enabling IGMP Snooping” on page 597  “Configuring the IGMP Snooping Commands” on page 598 ...

  • Page 594: Overview

    Chapter 40: Internet Group Management Protocol (IGMP) Snooping Overview IGMP snooping allows the switch to control the flow of multicast packets from its ports. It enables the switch to forward packets of multicast groups to only ports that have host nodes that want to join the multicast groups. IGMP is used by IPv4 routers to create lists of nodes that are members of multicast groups.

  • Page 595: Understanding Multicast Traffic Settings

    AT-8100 Switch Command Line User’s Guide improves switch performance and network security by restricting the flow of multicast packets to only those switch ports that are connected to host nodes. If the switch is not using IGMP snooping and receives multicast packets, it floods the packets out all its ports, except the port on which it received the packets.

  • Page 596: Host Node Topology

    Chapter 40: Internet Group Management Protocol (IGMP) Snooping Host Node Topology The switch has a host node topology setting. You use this setting to define whether there is more than one host node on each port on the switch. The switch refers to the topology to determine whether or not to continue transmitting multicast packets from ports that receive leave requests or where host nodes time out due to inactivity.

  • Page 597: Enabling Igmp Snooping

    AT-8100 Switch Command Line User’s Guide Enabling IGMP Snooping The command to enable IGMP Snooping on the switch is the IP IGMP SNOOPING command in the Global Configuration mode. After you enter the command, the switch begins to build its multicast table as queries from the multicast router and reports from the host nodes arrive on its ports.

  • Page 598: Configuring The Igmp Snooping Commands

    Chapter 40: Internet Group Management Protocol (IGMP) Snooping Configuring the IGMP Snooping Commands This table lists the IGMP Snooping commands with the exception of the enable, disable, and display commands which are described in other sections of this chapter. Table 61. IGMP Snooping Commands Use This Command Range Clear all IGMP group membership...
  • Page 599 AT-8100 Switch Command Line User’s Guide This example limits the switch to two multicast groups and specifies that there is only one host node per port: awplus> enable awplus# configure terminal awplus(config)# ip igmp limit 2 awplus(config)# ip igmp status single For more information about these commands, see “IP IGMP LIMIT”...

  • Page 600: Disabling Igmp Snooping

    Chapter 40: Internet Group Management Protocol (IGMP) Snooping Disabling IGMP Snooping The command to disable IGMP Snooping on the switch is the NO IP IGMP SNOOPING command in the Global Configuration mode. To disable IGMP Snooping: awplus> enable awplus# configure terminal awplus(config)# no ip igmp snooping When IGMP Snooping is disabled, the switch floods the multicast packets on all ports, except on ports that receive the packets.

  • Page 601: Displaying Igmp Snooping

    AT-8100 Switch Command Line User’s Guide Displaying IGMP Snooping To display the settings of IGMP Snooping and its status, use the SHOW IP IGMP SNOOPING command in the User Exec mode or Privileged Exec mode: awplus# show ip igmp snooping Here is an example of the information the command displays: IGMP Snooping Configuration: IGMP Snooping Status ....
  • Page 602 Chapter 40: Internet Group Management Protocol (IGMP) Snooping...

  • Page 603: Chapter 41 : Igmp Snooping Commands

    Chapter 41 IGMP Snooping Commands The IGMP snooping commands are summarized in Table 62 and are described in detail within the chapter. Table 62. Internet Group Management Protocol Snooping Commands Command Mode Description “CLEAR IP IGMP” on page 604 Privileged Exec Clears all IGMP group membership records.

  • Page 604: Clear Ip Igmp

    Chapter 41: IGMP Snooping Commands CLEAR IP IGMP Syntax clear ip igmp Parameters None Mode Privileged Exec mode Description Use this command to clear all IGMP group membership records on all VLANs. Example This example clears all IGMP group membership records on all VLANs: awplus>...

  • Page 605: Ip Igmp Limit

    AT-8100 Switch Command Line User’s Guide IP IGMP LIMIT Syntax multicastgroups ip igmp limit Parameter multicastgroups Specifies the maximum number of multicast addresses the switch is allowed to learn. The range is 0 to 255 multicast addresses; the default is 64 addresses. Mode Global Configuration mode Description...

  • Page 606: Ip Igmp Querier-Timeout

    Chapter 41: IGMP Snooping Commands IP IGMP QUERIER-TIMEOUT Syntax timeout ip igmp querier-timeout Parameters timeout Specifies the time period in seconds used by the switch to identify inactive host nodes and multicast routers. The range is from 0 to 65535 seconds. The default is 255 seconds. Setting the timeout to zero (0) disables the timer.

  • Page 607: Ip Igmp Snooping

    AT-8100 Switch Command Line User’s Guide IP IGMP SNOOPING Syntax ip igmp snooping Parameters None Mode Global Configuration mode Description Use this command to activate IGMP snooping on the switch. Caution The IP IGMP SNOOPING FLOOD-UNKNOWN-MCAST command is enabled by default when IGMP Snooping is activated. This may cause a slow-down of network data.

  • Page 608: Ip Igmp Snooping Flood-Unknown-Mcast

    Chapter 41: IGMP Snooping Commands IP IGMP SNOOPING FLOOD-UNKNOWN-MCAST Syntax ip igmp snooping flood-unknown-mcast Parameter None Mode Global Configuration mode Description This command disables the automatic suppression of unknown multicast traffic on the switch. By default, IGMP Snooping does not suppress all unknown multicast traffic except for IPv4 reserved addresses 224.0.0.1 through 224.0.0.255.
  • Page 609 AT-8100 Switch Command Line User’s Guide awplus> enable awplus# configure terminal awplus(config)# ip igmp snooping awplus(config)# ip igmp snooping flood-unknown-mcast This example enables the automatic suppression of unknown multicast traffic on the switch: awplus> enable awplus# configure terminal awplus(config)# no ip igmp snooping flood-unknown-mcast...

  • Page 610: Ip Igmp Snooping Mrouter

    Chapter 41: IGMP Snooping Commands IP IGMP SNOOPING MROUTER Syntax port ip igmp snooping mrouter interface Parameter port Specifies a port connected to a multicast router. You can specify more than one port. Mode Global Configuration mode Description Use this command to manually specify ports that are connected to multicast routers.

  • Page 611: Ip Igmp Status

    AT-8100 Switch Command Line User’s Guide IP IGMP STATUS Syntax ip igmp status single | multiple Parameters single Activates the single-host per port setting, which is used when the ports on the switch have only one host node each. multiple Activates the multiple-host per port setting, which is used when the ports have more than one host node.

  • Page 612: No Ip Igmp Snooping

    Chapter 41: IGMP Snooping Commands NO IP IGMP SNOOPING Syntax no ip igmp snooping Parameters None Mode Global Configuration mode Description Use this command to deactivate IGMP snooping on the switch. When IGMP snooping is disabled, the switch floods multicast packets on all ports, except on ports that receive the packets.

  • Page 613: No Ip Igmp Snooping Mrouter

    AT-8100 Switch Command Line User’s Guide NO IP IGMP SNOOPING MROUTER Syntax port no ip igmp snooping mrouter interface Parameter port Specifies a multicast router port. Mode Global Configuration mode Description Use this command to remove static multicast router ports. Removing all multicast router ports activates auto-detect.

  • Page 614: Show Ip Igmp Snooping

    Chapter 41: IGMP Snooping Commands SHOW IP IGMP SNOOPING Syntax show ip igmp snooping Parameters None Mode Privileged Exec mode Description Use this command to display the IGMP snooping parameters. Figure 121 illustrates the information. IGMP Snooping Configuration: IGMP Snooping Status ....Enabled Host Topology ......

  • Page 615: Table 63. Show Ip Igmp Snooping Command

    AT-8100 Switch Command Line User’s Guide The information the command displays is explained in Table 63. Table 63. SHOW IP IGMP SNOOPING Command Parameter Description IGMP Snooping Configuration IGMP Snooping Status The status of IGMP snooping on the switch. To enable or disable the feature, refer to “IP IGMP SNOOPING”...
  • Page 616 Chapter 41: IGMP Snooping Commands Table 63. SHOW IP IGMP SNOOPING Command (Continued) Parameter Description Port/Trunk ID The port of a multicast router. If the switch learned a router on a port trunk, the trunk ID number, instead of a port number, is displayed.

  • Page 617: Chapter 42 : Igmp Snooping Querier

    Chapter 42 IGMP Snooping Querier This chapter covers the following topics:  “Overview” on page 618  “Guidelines” on page 622  “Configuring the Feature” on page 623...

  • Page 618: Overview

    VLAN. Then apply the IP address to the VLAN where it sends its queries, to enable IGMP snooping querier on the VLAN. Allied Telesis recommends using the Default VLAN which has a VID of 1.

  • Page 619: Assigning Multiple Queriers

    AT-8100 Switch Command Line User’s Guide Figure 122. IGMP Snooping Querier with One Querier Table 64 lists the switch settings that are illustrated in Figure 122. Table 64. IGMP Snooping Querier with One Querier IGMP Routing IGMP Querier Switch Snooping Address Snooping Status...

  • Page 620: Table 65. Igmp Snooping Querier With Two Queriers

    Chapter 42: IGMP Snooping Querier network with IGMP snooping enabled and IGMP querier disabled determines the standby querier and then the second standby querier by comparing their IP addresses. The following example consists of a LAN with three switches. See Figure 123.
  • Page 621 AT-8100 Switch Command Line User’s Guide Table 65. IGMP Snooping Querier with Two Queriers (Continued) IGMP Routing IGMP Querier Switch Snooping Address Snooping Status Querier 149.123.48 Enabled Disabled None 149.123.48 Enabled Enabled Standby...

  • Page 622: Guidelines

    Chapter 42: IGMP Snooping Querier Guidelines The guidelines for IGMP snooping querier are listed here:  The network can have only one LAN.  The network can have up to three multicast routers.  You must enable IGMP snooping on all of the switches that you assign a querier, plus one extra switch that has IGMP snooping querier disabled.

  • Page 623: Configuring The Feature

    AT-8100 Switch Command Line User’s Guide Configuring the Feature This section lists the IGMP snooping querier commands and describes how to configure one querier as well as multiple queriers. See the following procedures:  “Configuring One Querier” on page 623 ...

  • Page 624: Configuring Multiple Queriers

    Chapter 42: IGMP Snooping Querier Table 67. Configuring One Querier (Continued) Command Description awplus(config-if)# ip igmp query- Set the interval at which IGMP general interval 500 query messages are transmitted to 500 seconds. awplus(config-if)# end Return to the Privileged Exec mode. awplus# show ip interface Verify the IP address with the SHOW IP INTERFACE command.
  • Page 625 AT-8100 Switch Command Line User’s Guide Table 68. Configuring Multiple Queriers (Continued) Command Description Log on to switch 2. awplus> enable Enter the Privileged Executive mode from the User Executive mode of switch 2. awplus# configure terminal Enter the Global Configuration mode. awplus(config)# ip igmp snooping Activate IGMP snooping on the switch.
  • Page 626 Chapter 42: IGMP Snooping Querier...

  • Page 627: Chapter 43 : Igmp Snooping Querier Commands

    Chapter 43 IGMP Snooping Querier Commands The IGMP snooping querier commands are summarized in Table 69. Table 69. IGMP Snooping Querier Commands Command Mode Description “IP IGMP QUERY-INTERVAL” on VLAN Interface Sets the time interval at which the page 628 VLANs send out IGMP General Query messages.

  • Page 628: Ip Igmp Query-Interval

    Chapter 43: IGMP Snooping Querier Commands IP IGMP QUERY-INTERVAL Syntax ip igmp query-interval interval Parameter interval Specifies the time interval, in seconds, at which the switch transmits IGMP General Query messages from the VLANs. The range is 2 to 18,000 seconds. The default is 125 seconds. Mode VLAN Interface mode Description...

  • Page 629: Ip Igmp Snooping Querier

    AT-8100 Switch Command Line User’s Guide IP IGMP SNOOPING QUERIER Syntax ip igmp snooping querier Parameters None Mode VLAN Interface mode Description Use this command to activate an IGMP snooping querier on an VLAN. Here are the guidelines:  IGMP snooping must be enabled on the switch. ...

  • Page 630: No Ip Igmp Snooping Querier

    Chapter 43: IGMP Snooping Querier Commands NO IP IGMP SNOOPING QUERIER Syntax no ip igmp snooping querier Parameters None Mode VLAN Interface mode Description Use this command to deactivate an IGMP snooping querier on the VLANs. Confirmation Command “SHOW IP IGMP INTERFACE” on page 631 Example This example deactivates an IGMP snooping querier on the VLAN with an ID of 18:...

  • Page 631: Show Ip Igmp Interface

    AT-8100 Switch Command Line User’s Guide SHOW IP IGMP INTERFACE Syntax show ip igmp interface vlanid Parameters vlanid Specifies a VLAN ID, for example, “vlan3.” You may specify only one VLAN. Mode Privileged Exec mode Description Use this command to display the status of IGMP snooping querier on the VLANs.
  • Page 632 Chapter 43: IGMP Snooping Querier Commands Table 70. SHOW IP IGMP INTERFACE Command (Continued) Field Definition IGMP Snooping The status of IGMP snooping on the switch. The commands for enabling and disabling this feature are “IP IGMP SNOOPING” on page 607 and “NO IP IGMP SNOOPING”...

  • Page 633: Chapter 44 : Dhcp Snooping Commands

    Chapter 44 DHCP Snooping Commands The DHCP commands are summarized in Table 71 and are described in detail within the chapter. Table 71. DHCP Commands Command Mode Description “ARP SECURITY” on page 635 Port Interface Enables ARP security on a port. mode “ARP SECURITY VIOLATION”...
  • Page 634 Chapter 44: DHCP Snooping Commands Table 71. DHCP Commands (Continued) Command Mode Description “IP DHCP SNOOPING MAX- Port Interface Sets the maximum number of DHCP BINDINGS” on page 649 mode lease entries that can be stored in the DHCP snooping database for each port.

  • Page 635: Arp Security

    AT-8100 Switch Command Line User’s Guide ARP SECURITY Syntax arp security Parameters None Mode Port Interface mode Description Use this command to enable ARP security on untrusted ports in VLANs. When the ARP SECURITY command is enabled, the port only responds to and forwards ARP packets with recognized IP and MAC Source addresses.

  • Page 636: Arp Security Violation

    Chapter 44: DHCP Snooping Commands ARP SECURITY VIOLATION Syntax link-down|log|trap arp security violation Parameters violation Specifies one of the following actions if an ARP security violation occurs: link-down: Disables the port. log: Generates a log message. Use the SHOW LOG command to display these messages.
  • Page 637 AT-8100 Switch Command Line User’s Guide Example This example generates a log message if port 17 experiences an ARP security violation: awplus> enable awplus# configure terminal awplus(config)# interface port1.0.17 awplus(config-if)# arp security awplus(config-if)# arp security violation log...

  • Page 638: Clear Arp Security Statistics

    Chapter 44: DHCP Snooping Commands CLEAR ARP SECURITY STATISTICS Syntax interface port-list clear arp security statistics Parameters interface Specifies a port list. Mode Privileged Exec mode Description Use this command to clear ARP security violations from the specified ports. For information about defining ARP security violations, see “ARP SECURITY VIOLATION”...

  • Page 639: Clear Ip Dhcp Snooping Binding

    AT-8100 Switch Command Line User’s Guide CLEAR IP DHCP SNOOPING BINDING Syntax ipaddr interface port-list clear ip dhcp snooping binding < > vlan < vid-list > Parameters ipaddr Removes the entry for this client IP address. interface Specifies a port list. Removes all entries for the ports specified. The port list may contain switch ports and static or dynamic link aggregators (channel groups).
  • Page 640 Chapter 44: DHCP Snooping Commands Example This example removes all of the dynamic lease entries from the DHCP snooping database for a client with an IP address of 192.168.1.2: awplus> enable awplus# clear ip dhcp snooping binding 192.168.1.2...

  • Page 641: Clear Ip Dhcp Snooping Statistics

    AT-8100 Switch Command Line User’s Guide CLEAR IP DHCP SNOOPING STATISTICS Syntax interface port-list clear dhcp snooping statistics Parameters interface Specifies a port list. Mode Privileged Executive mode Description Use this command to clear DHCP snooping statistics from the ports specified.

  • Page 642: Ip Dhcp Snooping

    Chapter 44: DHCP Snooping Commands IP DHCP SNOOPING Syntax ip dhcp snooping Parameters None Mode Global Configuration mode Description Use this command to enable DHCP snooping on the VLAN interfaces specified. Use the no version of the command, NO IP DHCP SNOOPING command, to disable DHCP snooping in the VLAN interfaces specified.

  • Page 643: Ip Dhcp Snooping Agent-Option

    AT-8100 Switch Command Line User’s Guide IP DHCP SNOOPING AGENT-OPTION Syntax ip dhcp snooping agent-option Parameters None Mode Global Configuration mode Description Use this command to enable DHCP Option 82 data insertion on the switch. When the IP DHCP SNOOPING AGENT-OPTION command is enabled, the switch: ...

  • Page 644: Ip Dhcp Snooping Agent-Option Allow-Untrusted

    Chapter 44: DHCP Snooping Commands IP DHCP SNOOPING AGENT-OPTION ALLOW-UNTRUSTED Syntax ip dhcp snooping agent-option allow-untrusted Parameters None Mode Global Configuration mode Description Use this command to enable DHCP Option 82 reception on untrusted ports. When this command is enabled, the switch accepts incoming DHCP packets that contain DHCP Option 82 data on untrusted ports.

  • Page 645: Ip Dhcp Snooping Binding

    AT-8100 Switch Command Line User’s Guide IP DHCP SNOOPING BINDING Syntax ipaddr macaddr (vlan vid) ip dhcp snooping binding (interface port) (expiry expiry-time) Parameters ipaddr Specifies the client’s IP address. macaddr Specifies a client’s MAC address in the HHHH.HHHH.HHHH format. vlan Specifies a VLAN ID for the entry.
  • Page 646 Chapter 44: DHCP Snooping Commands Use the no version of the command, the NO IP DHCP SNOOPING BINDING command, to restore the delete a dynamic entry for an IP address from the DHCP snooping database or to delete all dynamic entries from the database.

  • Page 647: Ip Dhcp Snooping Delete-By-Client

    AT-8100 Switch Command Line User’s Guide IP DHCP SNOOPING DELETE-BY-CLIENT Syntax ip dhcp snooping delete-by-client Parameters None Mode Global Configuration mode Description Use this command to set the switch to remove a dynamic entry from the DHCP snooping database when it receives a valid DHCP message with matching IP address, VLAN ID, and client hardware on an untrusted port.

  • Page 648: Ip Dhcp Snooping Delete-By-Linkdown

    Chapter 44: DHCP Snooping Commands IP DHCP SNOOPING DELETE-BY-LINKDOWN Syntax ip dhcp snooping delete-by-linkdown Parameters None Mode Global Configuration mode Description Use this command to set the switch to remove a dynamic entry from the DHCP snooping database when its port goes down. If the port is part of an aggregated link, the entries in the database are deleted only when all of the ports in the aggregated link are down.

  • Page 649: Ip Dhcp Snooping Max-Bindings

    AT-8100 Switch Command Line User’s Guide IP DHCP SNOOPING MAX-BINDINGS Syntax max-bindings 0 - 520 ip dhcp snooping < > Parameters max-bindings Specifies the maximum number of bindings that are stored in the DHCP snooping binding database for the port specified. If 0 is specified, no entries are stored in the database.
  • Page 650 Chapter 44: DHCP Snooping Commands Example This example sets the maximum number of bindings that can be stored in the DHCP snooping database to 10 per port for ports 15 to 19: awplus> enable awplus# configure terminal awplus(config)# interface port1.0.15-port1.0.19 awplus(config-if)# ip dhcp snooping max-bindings 10...

  • Page 651: Ip Dhcp Snooping Subscriber-Id

    AT-8100 Switch Command Line User’s Guide IP DHCP SNOOPING SUBSCRIBER-ID Syntax sub-id ip dhcp snooping subscriber-id < > Parameters sub-id Specifies a subscriber ID in an alphanumeric (ASCII) string of 1 to 50 characters. Spaces are permitted; however, they must be enclosed in double quotation marks.
  • Page 652 Chapter 44: DHCP Snooping Commands Examples This example assigns port 3 a subscriber ID of “room_534:” awplus> enable awplus# configure terminal awplus(config)# interface port1.0.3 awplus(config-if)# ip dhcp snooping subscriber-id room_534 This example assigns port 17 a subscriber ID of “Campus A Building 3” awplus>...

  • Page 653: Ip Dhcp Snooping Trust

    AT-8100 Switch Command Line User’s Guide IP DHCP SNOOPING TRUST Syntax ip dhcp snooping trust Parameters None Mode Port Interface mode Description Use this command to set ports as DHCP-snooping-trusted ports. Typically, ports connecting the switch to trusted elements in the network (towards the core) are set as trusted ports while ports connecting untrusted network elements are set as untrusted.

  • Page 654: Ip Dhcp Verify Mac-Address

    Chapter 44: DHCP Snooping Commands IP DHCP VERIFY MAC-ADDRESS Syntax ip dhcp verify mac-address Parameters None Mode Global Configuration mode Description Use this command to verify that the source MAC address and client hardware address match in DHCP packets received on untrusted ports. By default, this command is enabled.
  • Page 655 AT-8100 Switch Command Line User’s Guide This example disables MAC address verification on the switch: awplus> enable awplus# configure terminal awplus(config)# no ip dhcp verify mac-address...

  • Page 656: Ip Dhcp Snooping Violation

    Chapter 44: DHCP Snooping Commands IP DHCP SNOOPING VIOLATION Syntax trap link-down ip dhcp snooping violation Parameters Generates a log message. Use the SHOW LOG command to display these messages. See “NO LOG BUFFERED” on page 693. trap Generates an SNMP notification or trap. To make this parameter active, configure SNMP and enable DHCP snooping notifications with the SNMP-SERVER ENABLE TRAP command.
  • Page 657 AT-8100 Switch Command Line User’s Guide Confirmation Command “NO LOG BUFFERED” on page 693 “SNMP-SERVER ENABLE TRAP” on page 1166. Example This example sets the switch to send an SNMP notification and sets the link status to link-down if it detects an DHCP snooping violation on switch ports 1 through 4: awplus>...

  • Page 658: Ip Source Binding

    Chapter 44: DHCP Snooping Commands IP SOURCE BINDING Syntax ipaddr macaddr vlan interface ip source binding < > < > < > < port > Parameters ipaddr Specifies the client’s IP address. If there is already an entry in the DHCP snooping database for the IP address, then this option replaces it with the new entry.
  • Page 659 AT-8100 Switch Command Line User’s Guide Examples This example adds a static entry to the DHCP snooping database for a client with the IP address of 192.168.1.2 and a MAC address of 0001.0002.0003 on port 6 of VLAN 7: awplus> enable awplus# configure terminal awplus(config)# ip source binding 192.168.1.2 0001.0002.0003 vlan 7 interface port1.0.6...

  • Page 660: Service Dhcp Snooping

    Chapter 44: DHCP Snooping Commands SERVICE DHCP SNOOPING Syntax service dhcp snooping Parameters None Mode Global Configuration mode Description Use this command to enable the DHCP snooping service on the switch globally. You must enable the SERVICE DHCP-SNOOPING command before entering other DHCP snooping commands. By default, DHCP snooping is disabled on the switch.
  • Page 661 AT-8100 Switch Command Line User’s Guide The DHCP snooping service cannot be enabled on a switch that is configured with any of the following features:  Web authentication (using the AUTH-WEB ENABLE command)  Guest VLAN authentication (using the AUTH GUEST-VLAN command) ...

  • Page 662: Show Arp Security

    Chapter 44: DHCP Snooping Commands SHOW ARP SECURITY Syntax show arp security Parameters None Mode Privilege Exec mode Description Use this command to display the ARP security configuration for the specified ports or all ports. Example This example displays the ARP security configuration on the switch: awplus>...

  • Page 663: Table 72. Parameters In Show Arp Security Command

    AT-8100 Switch Command Line User’s Guide Table 72. Parameters in SHOW ARP SECURITY Command Parameter Description Total VLANs enabled Specifies the number of VLANs that have ARP security enabled. Total VLANs disabled Specifies the number of VLANs that have ARP security disabled.

  • Page 664: Show Arp Security Interface

    Chapter 44: DHCP Snooping Commands SHOW ARP SECURITY INTERFACE Syntax interface <port-list> show arp security Parameters interface Indicates the list of ports. If no ports are specified, information for all ports is displayed. Mode Privilege Exec mode Description Use this command to display ARP security configuration for the specified ports or all ports.

  • Page 665: Table 73. Parameters In Show Arp Security Interface Command

    AT-8100 Switch Command Line User’s Guide Table 73. Parameters in SHOW ARP SECURITY INTERFACE Command Parameter Description Action Indicates the action the switch takes when it detects an ARP security violation on the port. Port Specifies the port name. LG, Log Generates a log message.

  • Page 666: Show Arp Security Statistics

    Chapter 44: DHCP Snooping Commands SHOW ARP SECURITY STATISTICS Syntax detail interface <port-list> show arp security statistics Parameters detail Displays detailed statistics. interface Indicates the list of ports. Mode Privilege Exec mode Description Use this command to display ARP security statistics for the specified ports or all ports.

  • Page 667: Table 74. Parameters In Show Arp Security Statistcs Command

    AT-8100 Switch Command Line User’s Guide Table 74. Parameters in SHOW ARP SECURITY STATISTCS Command Parameter Description Interface Indicates a port name. In Packets Specifies the total number of incoming APR packets that are processed by DHCP Snooping ARP Security. In Discards Specifies the total number of ARP packets that are dropped by DHCP Snooping ARP...

  • Page 668: Show Ip Dhcp Snooping

    Chapter 44: DHCP Snooping Commands SHOW IP DHCP SNOOPING Syntax show ip dhcp snooping Parameters None Mode Privilege Exec mode Description Use this command to display global DHCP snooping configuration on the switch. Example This example displays entries in the DHCP snooping database: awplus>...
  • Page 669 AT-8100 Switch Command Line User’s Guide awplus# show ip dhcp snooping DHCP Snooping Information: DHCP Snooping service....Enabled Option 82 insertion....Enabled Option 82 on untrusted ports...Not allowed Binding delete by client....Disabled Binding delete by link down....Disabled Verify MAC address.....Disabled SNMP DHCP Snooping trap....Disabled DHCP Snooping database: Database location......nvs Number of entries in database..2...

  • Page 670: Show Ip Dhcp Snooping Binding

    Chapter 44: DHCP Snooping Commands SHOW IP DHCP SNOOPING BINDING Syntax show ip dhcp snooping binding Parameters None Mode Privilege Exec mode Description Use this command to display all dynamic and static entries in the DHCP snooping binding database. Example This example displays entries in the DHCP snooping database: awplus>...

  • Page 671: Table 75. Show Ip Dhcp Snooping Binding Command Parameters

    AT-8100 Switch Command Line User’s Guide Table 75. SHOW IP DHCP SNOOPING BINDING Command Parameters Parameter Description Client IP Address The IP address of the DHCP client. MAC Address The MAC address of the DHCP client. Server IP Address The IP address of the DHCP server. VLAN The VLAN associated with this entry.

  • Page 672: Show Ip Dhcp Snooping Interface

    Chapter 44: DHCP Snooping Commands SHOW IP DHCP SNOOPING INTERFACE Syntax port-list show ip dhcp snooping interface Parameters port-list Indicates the list of ports. If no ports are specified, information for all ports is displayed. Mode Privileged Exec mode Description Use this command to display DHCP snooping configuration and leases for a port or a list of ports.

  • Page 673: Table 76. Parameters In Show Ip Dhcp Snooping Interface Command

    AT-8100 Switch Command Line User’s Guide awplus# show ip dhcp snooping interface port1.0.1-port1.0.6 DHCP Snooping Port Status and Configuration: Port: Provisioned ports marked with brackets, e.g. (portx.y.z) Action: LG = Log TR = Trap LD = Link down DHCP Snooping Bindings: Full Port Status...

  • Page 674: Show Ip Source Binding

    Chapter 44: DHCP Snooping Commands SHOW IP SOURCE BINDING Syntax show ip source binding Parameters None Mode Privileged Exec mode Description Use this command to display static entries in the DHCP snooping database. The static entries have been added with the IP SOURCE BINDING command.
  • Page 675 AT-8100 Switch Command Line User’s Guide Table 77. SHOW IP DHCP SOURCE BINDING Command Parameters Parameter Description VLAN Indicates the VLAN ID the packet is received on. Port Specifies Layer 2 port name the packet is received on. Expires (sec) Indicates the time, in seconds, until the lease expires.
  • Page 676 Chapter 44: DHCP Snooping Commands...

  • Page 677: Event Messages

    Section V Event Messages This section contains the following chapters:  Chapter 45, “Event Log” on page 679  Chapter 46, “Event Log Commands” on page 683  Chapter 47, “Syslog Client” on page 707  Chapter 48, “Syslog Client Commands” on page 715...

  • Page 679: Chapter 45 : Event Log

    Chapter 45 Event Log This chapter covers the following topics:  “Overview” on page 680  “Displaying the Event Log” on page 681  “Clearing the Event Log” on page 682...

  • Page 680: Overview

    Chapter 45: Event Log Overview A managed switch is a complex piece of computer equipment that includes both hardware and software components. Multiple software features operate simultaneously, inter-operating with each other and processing large amounts of network traffic. It is often difficult to determine exactly what is happening when a switch appears not to be operating normally, or what happened when a problem occurred.

  • Page 681: Displaying The Event Log

    AT-8100 Switch Command Line User’s Guide Displaying the Event Log There are two commands to display the messages stored in the event log. Both display the same messages and both are found in the Privileged Exec mode. The only difference is that one displays the messages from oldest to newest and the other from newest to oldest.

  • Page 682: Clearing The Event Log

    Chapter 45: Event Log Clearing the Event Log To clear all the messages from the event log, use the CLEAR LOG BUFFERED command in the Privileged Exec mode. Here is the command: awplus# clear log buffered...

  • Page 683: Chapter 46 : Event Log Commands

    Chapter 46 Event Log Commands The event log commands are summarized in Table 78 and described in detail within this chapter. Table 78. Event Log Commands Command Mode Description “CLEAR LOG” on page 685 Privileged Exec Deletes all entries in the buffered and permanent logs.
  • Page 684 Chapter 46: Event Log Commands Table 78. Event Log Commands Command Mode Description “SHOW LOG REVERSE” on Privileged Exec Displays the event messages in the page 705 buffered log from newest to oldest. “SHOW LOG TAIL” on page 706 Privileged Exec Displays a limited number of the event messages in the buffered log.

  • Page 685: Clear Log

    AT-8100 Switch Command Line User’s Guide CLEAR LOG Syntax clear log Parameters None Mode Privileged Exec mode Description Use this command to delete the event messages in the buffered and permanent logs. Confirmation Commands “SHOW LOG” on page 698 and “SHOW LOG PERMANENT” on page 703 Example The following example deletes the event messages in the buffered and permanent logs:...

  • Page 686: Clear Log Buffered

    Chapter 46: Event Log Commands CLEAR LOG BUFFERED Syntax clear log buffered Parameters None Mode Privileged Exec mode Description Use this command to delete the event messages in the buffered log. Confirmation Command “SHOW LOG” on page 698 Example The following example deletes the event messages in the buffered log: awplus>...

  • Page 687: Clear Log Permanent

    AT-8100 Switch Command Line User’s Guide CLEAR LOG PERMANENT Syntax clear log permanent Parameters None Mode Privileged Exec mode Description Use this command to delete the event messages in the permanent log. Confirmation Command “SHOW LOG PERMANENT” on page 703 Example The following example deletes the event messages in the permanent log: awplus>...

  • Page 688: Log Buffered

    Chapter 46: Event Log Commands LOG BUFFERED Syntax level program log buffered [level ] [program ] [msgtext msgtext Parameters level Specifies the minimum severity level of the event messages to be stored in the buffered event log. The log stores the messages of the specified level and all higher levels.
  • Page 689 AT-8100 Switch Command Line User’s Guide Table 79. Event Message Severity Levels (Continued) Severity Description Warning message Informational message Debug message The management software modules are listed in Table 81 on page 699. Confirmation Command “SHOW LOG CONFIG” on page 701 Examples This example configures the buffered log to save only those event messages that have a severity level of 0 or 4:...

  • Page 690: Log Console

    Chapter 46: Event Log Commands LOG CONSOLE Syntax level program log console [level ]|[program ]|[msgtext msgtext Parameters level Specifies the minimum severity level of the event messages. The levels are listed in Table 79 on page 688. program Specifies the event messages of a particular management software module.
  • Page 691 AT-8100 Switch Command Line User’s Guide Examples This example configures the switch to send to the console only those event messages that have the minimum severity level 4: awplus> enable awplus# configure terminal awplus(config)# log console level 4 This example configures the switch to send to the console only those event messages that are generated by IGMP snooping (IGMPSNOOP) and LACP: awplus>...

  • Page 692: Log Permanent

    Chapter 46: Event Log Commands LOG PERMANENT Syntax level program log permanent [level ]|[program [msgtext msgtext Parameters level Specifies the minimum severity level of the event messages to be stored in the permanent log. The severity levels are listed in Table 79 on page 688.

  • Page 693: No Log Buffered

    AT-8100 Switch Command Line User’s Guide NO LOG BUFFERED Syntax level program no log buffered [level ]|[program [msgtext msgtext Parameters level Specifies the severity level setting. program Specifies the management software module setting. To specify more than one module, separate the modules with commas. msgtext Specifies a text string setting.
  • Page 694 Chapter 46: Event Log Commands OUtputID Type Status Details --------------------------------------------------------------------------------------------------------------------------- Temporary Enabled Wrap on Full. Filter: Level 4 program MAC, IP awplus# configure terminal awplus(config)# no log buffered Program mac...

  • Page 695: No Log Console

    AT-8100 Switch Command Line User’s Guide NO LOG CONSOLE Syntax level program no log console [level ]|[program [msgtext msgtext Parameters level Specifies the severity level setting. program Specifies the management software module setting. To specify more than one module, separate the modules with commas. msgtext Specifies a text string setting.

  • Page 696: No Log Permanent

    Chapter 46: Event Log Commands NO LOG PERMANENT Syntax level program no log permanent [level ]|[program [msgtext msgtext Parameters level Specifies the severity level setting. program Specifies the management software module setting. To specify more than one module, separate the modules with commas. msgtext Specifies a text string setting.
  • Page 697 AT-8100 Switch Command Line User’s Guide OUtputID Type Status Details --------------------------------------------------------------------------------------------------------------------------- Temporary Enabled Wrap on Full. Filter: Level 4 program MAC, IP awplus# configure terminal awplus(config)# no log permanent Program mac...

  • Page 698: Show Log

    Chapter 46: Event Log Commands SHOW LOG Syntax show log Parameters None Mode Privileged Exec mode Description Use this command to display the messages in the buffered event log. The event messages are displayed from oldest to newest, one screen at a time.

  • Page 699: Table 81. Management Software Modules

    AT-8100 Switch Command Line User’s Guide Table 80. SHOW LOG Command Parameter Description Severity (continued)  Warning: The issue reported by the message may require manager attention.  Debug: Messages intended for technical support and software development. Program The module listed in Table 81 that generated the event message.
  • Page 700 Chapter 46: Event Log Commands Table 81. Management Software Modules Module Name Description Public Key Infrastructure PMIRR Port mirroring PSEC MAC address-based port security PTRUNK Static port trunking Quality of Service RADIUS RADIUS authentication protocol Real-time clock SNMP SNMP Secure Shell protocol Secure Sockets Layer protocol Spanning Tree and Rapid Spanning protocols SYSTEM...

  • Page 701: Show Log Config

    AT-8100 Switch Command Line User’s Guide SHOW LOG CONFIG Syntax show log config Parameters None Modes Privileged Exec mode Description Use this command to display the configuration of the event log. awplus# show log config Permanent log: Status ....Enable Filter: Level ....
  • Page 702 Chapter 46: Event Log Commands Table 82. SHOW LOG CONFIG Command Field Description Program The software module messages to be stored in the log. The modules are listed in Table 81 on page 699. The default is all modules. Message Text Text that identifies the messages to be stored in the log.

  • Page 703: Show Log Permanent

    AT-8100 Switch Command Line User’s Guide SHOW LOG PERMANENT Syntax show log permanent Parameters None Mode Privileged Exec mode Description Use this command to display the messages in the permanent log. The event messages are displayed from oldest to newest, one screen at a time.

  • Page 704: Show Log Permanent Tail

    Chapter 46: Event Log Commands SHOW LOG PERMANENT TAIL Syntax number show log permanent tail [ Parameters number Specifies the number of log entries to display. The range is 10 to 250 messages. The default is 10 messages. Mode Privileged Exec mode Description Use this command to display the most recent event messages in the permanent event log.

  • Page 705: Show Log Reverse

    AT-8100 Switch Command Line User’s Guide SHOW LOG REVERSE Syntax show log reverse Parameters None Mode Privileged Exec mode Description Use this command to display the event messages in the buffered log from newest to oldest. This command and the SHOW LOG command display the same messages, but in different order.

  • Page 706: Show Log Tail

    Chapter 46: Event Log Commands SHOW LOG TAIL Syntax number show log tail [ Parameter number Specifies the number of event messages to display. The range is 10 to 250 messages. The default is 10 messages. Mode Privileged Exec mode Description Use this command to display the most recent event messages in the buffered event log.

  • Page 707: Chapter 47 : Syslog Client

    Chapter 47 Syslog Client This chapter covers the following topics:  “Overview” on page 708  “Creating Syslog Server Definitions” on page 709  “Deleting Syslog Server Definitions” on page 712  “Displaying the Syslog Server Definitions” on page 713...

  • Page 708: Overview

    Chapter 47: Syslog Client Overview The switch has a syslog client. The client enables the switch to send its event messages to syslog servers on your network, for permanent storage. To store the switch’s event messages on a syslog server, you have to create a syslog server definition.

  • Page 709: Creating Syslog Server Definitions

    AT-8100 Switch Command Line User’s Guide Creating Syslog Server Definitions To configure the switch to send event messages to a syslog server, create a syslog server definition with the LOG HOST command in the Global Configuration mode. Here is the format of the command: ipaddress level program...
  • Page 710 Chapter 47: Syslog Client Table 84. Program Abbreviations Abbreviation Program ENCO Encryption keys ESTACK Enhanced stacking EVTLOG Event log FILE File system GARP GARP GVRP HTTP Web server IGMPSNOOP IGMP snooping System IP configuration LACP Link Aggregation Control Protocol LLDP LLDP and LLDP-MED MAC address table PACCESS...
  • Page 711 AT-8100 Switch Command Line User’s Guide Table 84. Program Abbreviations Abbreviation Program TACACS TACACS+ authentication protocol TELNET Telnet TFTP TFTP TIME System time and SNTP VLAN Port-based and tagged VLANs, and multiple VLAN modes WATCHDOG Watchdog timer This example of the command creates a new syslog definition for a syslog server that has the IP address 149.24.111.23.

  • Page 712: Deleting Syslog Server Definitions

    Chapter 47: Syslog Client Deleting Syslog Server Definitions To delete syslog server definitions from the switch, use the NO LOG HOST command in the Global Configuration mode. The format of the command is: ipaddress no log host To view the IP addresses of the syslog servers of the definitions, use the SHOW LOG CONFIG command.

  • Page 713: Displaying The Syslog Server Definitions

    AT-8100 Switch Command Line User’s Guide Displaying the Syslog Server Definitions To view the IP addresses of the syslog servers use the SHOW LOG CONFIG command in the Privileged Exec mode: awplus# show log config Here is an example of the information. Permanent log: Status ....
  • Page 714 Chapter 47: Syslog Client...

  • Page 715: Chapter 48 : Syslog Client Commands

    Chapter 48 Syslog Client Commands The syslog client commands are summarized in Table 85 and described in detail within the chapter. Table 85. Syslog Client Commands Command Mode Description “LOG HOST” on page 716 Global Creates syslog server definitions. Configuration “NO LOG HOST”...

  • Page 716: Log Host

    Chapter 48: Syslog Client Commands LOG HOST Syntax ipaddress level program log host [level ] [program Parameters ipaddress Specifies the IP address of a syslog server. You can specify one address. level Specifies the minimum severity level of the messages to be sent to the designated syslog server.
  • Page 717 AT-8100 Switch Command Line User’s Guide This example creates a new syslog definition for a syslog server that has the IP address 149.152.122.143. The definition sends only those messages that have a minimum severity level of 4 and that are generated by the RADIUS client (RADIUS) and static port trunks (PTRUNK): awplus>...

  • Page 718: No Log Host

    Chapter 48: Syslog Client Commands NO LOG HOST Syntax ipaddress no log host Parameters ipaddress Specifies an IP address of a syslog server. Mode Global Configuration mode Description Use this command to delete syslog server definitions from the switch. Confirmation Command “SHOW LOG CONFIG”...

  • Page 719: Show Log Config

    AT-8100 Switch Command Line User’s Guide SHOW LOG CONFIG Syntax show log config Parameters None Modes Privileged Exec mode Description Use this command to display the syslog server definitions on the switch. Here is an example of the information. Figure 138 is an example of the information displayed. Permanent log: Status ....
  • Page 720 Chapter 48: Syslog Client Commands Example This example displays the configurations of the syslog server entries: awplus# show log config...

  • Page 721: Port Trunks

    Section VI Port Trunks This section contains the following chapters:  Chapter 49, “Static Port Trunks” on page 723  Chapter 50, “Static Port Trunk Commands” on page 733  Chapter 51, “Link Aggregation Control Protocol (LACP)” on page 741 ...

  • Page 723: Chapter 49 : Static Port Trunks

    Chapter 49 Static Port Trunks This chapter covers the following topics:  “Overview” on page 724  “Creating New Static Port Trunks or Adding Ports To Existing Trunks” on page 728  “Specifying the Load Distribution Method” on page 729 ...

  • Page 724: Overview

    Chapter 49: Static Port Trunks Overview Static port trunks are groups of two to eight ports that act as single virtual links between the switch and other network devices. Static port trunks are commonly used to improve network performance by increasing the available bandwidth between the switch and other network devices and to enhance the reliability of the connections between network devices.
  • Page 725 AT-8100 Switch Command Line User’s Guide  Source IP Address (Layer 3)  Destination IP Address (Layer 3)  Source IP Address / Destination IP Address (Layer 3) The load distribution methods examine the last three bits of a packet’s MAC or IP address and compare the bits against mappings assigned to the ports in the trunk.

  • Page 726: Guidelines

    Chapter 49: Static Port Trunks For example, assume you selected source and destination MAC addresses for the load distribution method in our previous example, and that a packet for transmission over the trunk had a source MAC address that ended in 9 and a destination address that ended in 3. The binary values are: 9 = 1001 3 = 0011...
  • Page 727 For this reason, Allied Telesis recommends using this feature only between Allied Telesis network devices.

  • Page 728: Creating New Static Port Trunks Or Adding Ports To Existing Trunks

    Chapter 49: Static Port Trunks Creating New Static Port Trunks or Adding Ports To Existing Trunks The command to create new static port trunks or to add ports to existing trunks is the STATIC-CHANNEL-GROUP command. Here is the format of the command: id_number static-channel-group...

  • Page 729: Specifying The Load Distribution Method

    AT-8100 Switch Command Line User’s Guide Specifying the Load Distribution Method The load distribution method defines how the switch distributes the traffic among the ports of a trunk. The command for this is the PORT-CHANNEL LOAD-BALANCE command, in the Static Port Trunk Interface mode. The command’s format is shown here: port-channel load-balance dst-ip|dst-mac|src-dst-ip| src-dst-mac|src-ip|src-mac...

  • Page 730: Removing Ports From Static Port Trunks Or Deleting Trunks

    Chapter 49: Static Port Trunks Removing Ports from Static Port Trunks or Deleting Trunks To remove ports from a static port trunk, enter the Port Interface mode of the ports to be removed and issue the NO STATIC-CHANNEL-GROUP command. This example removes ports 4 and 5 from their current static port trunk assignment: awplus>...

  • Page 731: Displaying Static Port Trunks

    AT-8100 Switch Command Line User’s Guide Displaying Static Port Trunks To display the member ports of static port trunks, use the SHOW STATIC- CHANNEL-GROUP command in the User Exec mode or Privileged Exec mode: awplus# show static-channel-group Here is an example of the information. % Static Aggregator: sa1 % Member: port1.0.5...
  • Page 732 Chapter 49: Static Port Trunks...

  • Page 733: Chapter 50 : Static Port Trunk Commands

    Chapter 50 Static Port Trunk Commands The static port trunk commands are summarized in Table 86 and described in detail within the chapter. Table 86. Static Port Trunk Commands Command Mode Description “NO STATIC-CHANNEL-GROUP” on Port Interface Removes ports from existing static page 734 port trunks and deletes trunks from the switch.

  • Page 734: No Static-Channel-Group

    Chapter 50: Static Port Trunk Commands NO STATIC-CHANNEL-GROUP Syntax no static-channel-group Parameters None Mode Port Interface mode Description Use this command to remove ports from static port trunks and to delete trunks. To delete a trunk, remove all its ports. Caution To prevent the formation of loops in your network topology, do not remove ports from a static port trunk without first disconnecting their...

  • Page 735: Port-Channel Load-Balance

    AT-8100 Switch Command Line User’s Guide PORT-CHANNEL LOAD-BALANCE Syntax port-channel load-balance src-mac|dst-mac|src-dst-mac|src- ip|dst-ip|src-dst-ip Parameters src-mac Specifies source MAC address as the load distribution method. dst-mac Specifies destination MAC address. src-dst-mac Specifies source address/destination MAC address. src-ip Specifies source IP address. dst-ip Specifies destination IP address.
  • Page 736 Chapter 50: Static Port Trunk Commands Example This example sets the load distribution method to destination MAC address for a trunk with an ID number 4: awplus> enable awplus# configure terminal awplus(config)# interface sa4 awplus(config-if)# port-channel load-balance dst-mac...

  • Page 737: Show Static-Channel-Group

    AT-8100 Switch Command Line User’s Guide SHOW STATIC-CHANNEL-GROUP Syntax show static-channel-group Parameters None Modes User Exec mode and Privileged Exec mode Description Use this command to display the member ports of static port trunks on the switch. An example of the command is shown in Figure 141. % Static Aggregator: sa1 % Member: port1.0.5...

  • Page 738: Static-Channel-Group

    Chapter 50: Static Port Trunk Commands STATIC-CHANNEL-GROUP Syntax id_number static-channel-group Parameters id_number Specifies an ID number of a static port trunk. The range is 1 to 32. You can specify just one ID number. Mode Port Interface mode Description Use this command to create new static port trunks and to add ports to existing trunks.
  • Page 739 AT-8100 Switch Command Line User’s Guide  Ports can be members of just one static port trunk at a time. A port that is already a member of a trunk cannot be added to another trunk until it is first removed from its current trunk assignment. To remove ports from static port trunks, see “NO STATIC-CHANNEL- GROUP”...
  • Page 740 Chapter 50: Static Port Trunk Commands...

  • Page 741: Chapter 51 : Link Aggregation Control Protocol (Lacp)

    Chapter 51 Link Aggregation Control Protocol (LACP) This chapter covers the following topics:  “Overview” on page 742  “Creating New Aggregators” on page 745  “Setting the Load Distribution Method” on page 746  “Adding Ports to Aggregators” on page 747 ...

  • Page 742: Overview

    Chapter 51: Link Aggregation Control Protocol (LACP) Overview The Link Aggregation Control Protocol (LACP) is used to increase the bandwidth between the switch and other LACP-compatible devices by grouping ports together to form single virtual links. LACP trunks are similar in function to static port trunks, but they are more flexible.

  • Page 743: Base Port

    AT-8100 Switch Command Line User’s Guide Base Port The lowest numbered port in an aggregator is referred to as the base port. You cannot change the base port of an aggregator. You can neither delete it from an aggregator nor add any ports that are below it. For example, if an aggregator consists of ports 5 to 12, you cannot delete port 5 because it is the base port, and you are not allowed to add ports 1 to 4 to the aggregator.
  • Page 744 The port with the highest priority in an aggregate trunk carries broadcast packets and packets with an unknown destination.  Prior to creating an aggregate trunk between an Allied Telesis device and another vendor’s device, refer to the vendor’s documentation to determine the maximum number of active ports the device supports.

  • Page 745: Creating New Aggregators

    AT-8100 Switch Command Line User’s Guide Creating New Aggregators To create a new aggregator, move to the Port Interface mode of the aggregator’s member ports and issue the CHANNEL-GROUP command, which has this format: id_number channel-group The ID_NUMBER parameter has a range of 1 to 32. Each aggregator must be assigned a unique ID number.

  • Page 746: Setting The Load Distribution Method

    Chapter 51: Link Aggregation Control Protocol (LACP) Setting the Load Distribution Method The load distribution method determines the manner in which the switch distributes the egress packets among the active ports of an aggregator. The packets can be distributed by source MAC or IP address, destination MAC or IP address, or by both source and destination addresses.

  • Page 747: Adding Ports To Aggregators

    AT-8100 Switch Command Line User’s Guide Adding Ports to Aggregators The command to add ports to existing aggregators is the same command to create new aggregators, the CHANNEL-GROUP command in the Port Interface mode. To use the command, move to the Port Interface mode of the ports you want to add to an aggregator and issue the command.

  • Page 748: Removing Ports From Aggregators

    Chapter 51: Link Aggregation Control Protocol (LACP) Removing Ports from Aggregators To remove ports from an aggregator, use the NO CHANNEL-GROUP command, in the Port Interface mode. Move to the Port Interface mode for those ports you want to remove from an aggregator and enter the command.

  • Page 749: Deleting Aggregators

    AT-8100 Switch Command Line User’s Guide Deleting Aggregators To delete an aggregator, remove all its ports with the NO CHANNEL- GROUP command, in the Port Interface mode. Caution Do not delete an aggregator without first disconnecting the network cables from its ports. Leaving the network cables connected may result in a network loop, which can cause a broadcast storm.

  • Page 750: Displaying Aggregators

    Chapter 51: Link Aggregation Control Protocol (LACP) Displaying Aggregators There are five SHOW commands for LACP. Two of them are mentioned here. For descriptions of all the commands, refer to Chapter 52, “LACP Commands” on page 753. The first command is the SHOW ETHERCHANNEL DETAIL command in the Privileged Exec mode.
  • Page 751 AT-8100 Switch Command Line User’s Guide Here is an example of the information. System Priority: 0x0080 (32768) Mac Address: EC-CD-6D-1E-52-28 Figure 143. SHOW LACP SYS-ID Command It should be mentioned that while the system priority value is set as an integer with the LACP SYSTEM-PRIORITY command, this command displays it in hexadecimal format.
  • Page 752 Chapter 51: Link Aggregation Control Protocol (LACP)

  • Page 753: Chapter 52 : Lacp Commands

    Chapter 52 LACP Commands The LACP port trunk commands are summarized in Table 87 and described in detail within the chapter. Table 87. LACP Port Trunk Commands Command Mode Description “CHANNEL-GROUP” on page 754 Port Interface Creates new aggregators and adds ports to existing aggregators.

  • Page 754: Channel-Group

    Chapter 52: LACP Commands CHANNEL-GROUP Syntax id_number channel-group Parameters id_number Specifies the ID number of a new or an existing aggregator. The range is 1 to 32. Mode Port Interface mode Description Use this command to create new aggregators or to add ports to existing aggregators.
  • Page 755 AT-8100 Switch Command Line User’s Guide Examples These commands create a new aggregator consisting of ports 11 to 16. The ID number of the aggregator is 2. awplus> enable awplus# configure terminal awplus(config)# interface port1.0.11-port1.0.16 awplus(config-if)# channel-group 2 This example adds port 15 to an existing aggregator that has the ID number 4: awplus>...

  • Page 756: Lacp System-Priority

    Chapter 52: LACP Commands LACP SYSTEM-PRIORITY Syntax priority lacp system-priority Parameters priority Specifies the LACP system priority value for the switch. The range is 1 to 65535. Mode Global Configuration mode Description Use this command to set the LACP priority of the switch. The switch uses the LACP priority to resolve conflicts with other network devices when it creates aggregate trunks.

  • Page 757: No Channel-Group

    AT-8100 Switch Command Line User’s Guide NO CHANNEL-GROUP Syntax no channel-group Parameters None Mode Port Interface mode Description Use this command to remove ports from aggregators and to delete aggregators. To delete an aggregator, remove all its ports. You cannot remove the base port of the aggregator. Changing the base port requires deleting and recreating the aggregator.

  • Page 758: Port-Channel Load-Balance

    Chapter 52: LACP Commands PORT-CHANNEL LOAD-BALANCE Syntax src-mac|dst-mac|src-dst-mac| port-channel load-balance src-ip|dst-ip|src-dst-ip Parameters src-mac Specifies source MAC address as the load distribution method. dst-mac Specifies destination MAC address. src-dst-mac Specifies source address/destination MAC address. src-ip Specifies source IP address. dst-ip Specifies destination IP address. src-dst-ip Specifies source address/destination IP address.
  • Page 759 AT-8100 Switch Command Line User’s Guide Confirmation Command “SHOW ETHERCHANNEL DETAIL” on page 761 Example This example sets the load distribution method to source MAC address for the LACP trunk that has the ID number 22: awplus> enable awplus# configure terminal awplus(config)# interface po22 awplus(config-if)# port-channel load-balance src-mac...

  • Page 760: Show Etherchannel

    Chapter 52: LACP Commands SHOW ETHERCHANNEL Syntax id_number show etherchannel Parameters id_number Specifies the ID number of the aggregator. Mode Privileged Exec mode Description Use this command to display the ports of specific aggregators on the switch. Figure 144 illustrates the information. Aggregator #2 ..

  • Page 761: Show Etherchannel Detail

    AT-8100 Switch Command Line User’s Guide SHOW ETHERCHANNEL DETAIL Syntax show etherchannel detail Parameters None Mode Privileged Exec mode Description Use this command to display detailed information about the aggregators on the switch. Figure 145 illustrates the information. Aggregator # 1 ..po1 Mac address: (00-15-77-d8-43-60,0000) Admin Key: 0xff01 - Oper Key: 0x0101 Receive link count: 4 - Transmit link count: 4...
  • Page 762 Chapter 52: LACP Commands Example This example displays detailed information about aggregators: awplus# show etherchannel detail...

  • Page 763: Show Etherchannel Summary

    AT-8100 Switch Command Line User’s Guide SHOW ETHERCHANNEL SUMMARY Syntax show etherchannel summary Parameters None Mode Privileged Exec mode Description Use this command to display the states of the member ports of the aggregators. Figure 146 illustrates the information. Aggregator #2 ..po2 Admin Key: 0xff01 - Oper Key: 0x0101 Link: Port1.0.2 sync...

  • Page 764: Show Lacp Sys-Id

    Chapter 52: LACP Commands SHOW LACP SYS-ID Syntax show lacp sys-id Parameters None Mode Privileged Exec mode Description Use this command to display the LACP priority value and MAC address of the switch. Figure 147 provides an example of the display. System Priority: 0x0080 (32768) Mac Address: EC-CD-6D-1E-52-28 Figure 147.

  • Page 765: Show Port Etherchannel

    AT-8100 Switch Command Line User’s Guide SHOW PORT ETHERCHANNEL Syntax show port etherchannel [interface port] Parameters port Specifies the port of an aggregator. You can display more than one port at a time. Mode Privileged Exec mode Description Use this command to display the LACP port information. Figure 148 illustrates the information.
  • Page 766 Chapter 52: LACP Commands...

  • Page 767: Spanning Tree Protocols

    Section VII Spanning Tree Protocols This section contains the following chapters:  Chapter 53, “STP, RSTP and MSTP Protocols” on page 769  Chapter 54, “Spanning Tree Protocol (STP) Procedures” on page 789  Chapter 55, “STP Commands” on page 797 ...

  • Page 769: Chapter 53 : Stp, Rstp And Mstp Protocols

    Chapter 53 STP, RSTP and MSTP Protocols This chapter covers the following topics:  “Overview” on page 770  “Bridge Priority and the Root Bridge” on page 771  “Path Costs and Port Costs” on page 772  “Port Priority” on page 773 ...

  • Page 770: Overview

    Chapter 53: STP, RSTP and MSTP Protocols Overview The Spanning Tree Protocol (STP), Rapid Spanning Tree Protocol (RSTP) and Multiple Spanning Tree Protocol (MSTP) guard against the formation of loops in an Ethernet network topology. A topology has a loop when two or more nodes can transmit packets to each other over more than one data path.

  • Page 771: Bridge Priority And The Root Bridge

    AT-8100 Switch Command Line User’s Guide Bridge Priority and the Root Bridge The first task that bridges perform when a spanning tree protocol is activated on a network is the selection of a root bridge. A root bridge distributes network topology information to the other network bridges and is used by the other bridges to determine if there are redundant paths in the network.

  • Page 772: Path Costs And Port Costs

    Chapter 53: STP, RSTP and MSTP Protocols Path Costs and Port Costs After the root bridge has been selected, the bridges determine if the network contains redundant paths and, if one is found, select a preferred path while placing the redundant paths in a backup or blocking state. A bridge that has only one path between itself and the root bridge is referred to as the designated bridge.

  • Page 773: Port Priority

    AT-8100 Switch Command Line User’s Guide Port Priority If two paths have the same port cost, the bridges must select a preferred path. In some instances this can involve the use of the port priority parameter. This parameter is used as a tie breaker when two paths have the same cost.

  • Page 774: Forwarding Delay And Topology Changes

    Chapter 53: STP, RSTP and MSTP Protocols Forwarding Delay and Topology Changes If there is a change in the network topology due to a failure, removal, or addition of any active components, the active topology also changes. This may trigger a change in the state of some blocked ports. However, a change in a port state is not activated immediately.

  • Page 775: Hello Time And Bridge Protocol Data Units (Bpdu)

    AT-8100 Switch Command Line User’s Guide Hello Time and Bridge Protocol Data Units (BPDU) The bridges that are part of a spanning tree domain communicate with each other using a bridge broadcast frame that contains a special section devoted to carrying STP or RSTP information. This portion of the frame is referred to as the bridge protocol data unit (BPDU).

  • Page 776: Point-To-Point And Edge Ports

    Chapter 53: STP, RSTP and MSTP Protocols Point-to-Point and Edge Ports Part of the task of configuring RSTP or MSTP is defining the port types on the switch. This relates to the devices connected to the ports. With the port types defined, RSTP or MSTP can reconfigure a network much quicker than STP when a change in network topology is detected.
  • Page 777 AT-8100 Switch Command Line User’s Guide Figure 150. Edge Port A port can be both a point-to-point and an edge port at the same time. It operates in full-duplex and has no spanning tree devices connected to it. Figure 151 illustrates a port functioning as both a point-to-point and edge port.
  • Page 778 Chapter 53: STP, RSTP and MSTP Protocols Determining whether a bridge port is point-to-point, edge, or both, can be a bit confusing. For that reason, do not change the default values for this RSTP feature unless you have a good grasp of the concept. In most cases, the default values work well.

  • Page 779: Mixed Stp And Rstp Networks

    AT-8100 Switch Command Line User’s Guide Mixed STP and RSTP Networks RSTP IEEE 802.1w is fully compliant with STP IEEE 802.1d. A network can have both protocols. If both RSTP and STP are present in a network, they operate together to create a single spanning tree domain. Given this, if you decide to activate spanning tree on the switch, there is no reason not to use RSTP, even if the other switches are running STP.

  • Page 780: Spanning Tree And Vlans

    Chapter 53: STP, RSTP and MSTP Protocols Spanning Tree and VLANs STP and RSTP support a single-instance spanning tree that encompasses all the ports on the switch. If the ports are divided into different VLANs, the spanning tree protocol crosses the VLAN boundaries. This point can pose a problem in networks that contain multiple VLANs that span different switches and that are connected with untagged ports.

  • Page 781: Rstp And Mstp Bpdu Guard

    AT-8100 Switch Command Line User’s Guide RSTP and MSTP BPDU Guard This feature monitors the RSTP or MSTP edge ports on the switch for BPDU packets. Edge ports that receive BPDU packets are disabled by the switch. The benefit of this feature is that it prevents the use of edge ports by RSTP or MSTP devices.
  • Page 782 Chapter 53: STP, RSTP and MSTP Protocols Here are the guidelines to this feature:  BPDU guard is configured for each port and has only two possible settings: enabled or disabled. The default setting is disabled.  This feature is supported on the base ports of the switch and any fiber optic transceivers installed in the unit.

  • Page 783: Stp, Rstp, Mstp Loop Guard

    AT-8100 Switch Command Line User’s Guide STP, RSTP, MSTP Loop Guard Although spanning tree is designed to detect and prevent the formation of loops in a network topology, it is possible in certain circumstances for the protocol to inadvertently create loops. This can happen in the unlikely situation where a link between two spanning tree devices remains active when there is an cessation of BPDUs because of a hardware or software problem.
  • Page 784 Chapter 53: STP, RSTP and MSTP Protocols If you configured the SNMP community strings on the switch, an SNMP trap is sent to your management workstations to notify you of the event. However, this event does not generate an entry in the switch’s log. This feature is supported on the base ports of the switch as well as on any fiber optic transceivers installed in the unit.
  • Page 785 AT-8100 Switch Command Line User’s Guide Figure 154. Loop Guard Example 2 But if loop guard is enabled on port 14 on switch 3, the port, instead of changing to the forwarding state, stays in the blocking state, preventing the formation of the loop. Figure 155.
  • Page 786 Chapter 53: STP, RSTP and MSTP Protocols The previous example illustrates how loop guard works to maintain a loop- free topology by keeping alternate ports in the blocking state when they stop receiving BPDUs. Loop guard can also work on root and designated ports that are in the forwarding state.
  • Page 787 AT-8100 Switch Command Line User’s Guide Figure 157. Loop Guard Example 5...

  • Page 788: Stp And Rstp Root Guard

    Chapter 53: STP, RSTP and MSTP Protocols STP and RSTP Root Guard The Root Guard feature enforces the root bridge placement in a network. It ensures the port that you have configured with the Root Guard feature is a designated port. Normally, root bridge ports are all designated ports, unless two or more ports of the root bridge are connected.

  • Page 789: Chapter 54 : Spanning Tree Protocol (Stp) Procedures

    Chapter 54 Spanning Tree Protocol (STP) Procedures This chapter provides the following procedures:  “Designating STP as the Active Spanning Tree Protocol” on page 790  “Enabling the Spanning Tree Protocol” on page 791  “Setting the Switch Parameters” on page 792 ...

  • Page 790: Designating Stp As The Active Spanning Tree Protocol

    Chapter 54: Spanning Tree Protocol (STP) Procedures Designating STP as the Active Spanning Tree Protocol Before you can configure the STP parameters or enable the protocol on the switch, you have to designate STP as the active spanning tree protocol. The switch supports other spanning tree protocols in addition to STP, but only one of them can be active at a time on the device.

  • Page 791: Enabling The Spanning Tree Protocol

    AT-8100 Switch Command Line User’s Guide Enabling the Spanning Tree Protocol To enable STP on the switch, use the SPANNING-TREE STP ENABLE command in the Global Configuration mode. Here is the command: awplus> enable awplus# configure terminal awplus(config)# spanning-tree stp enable The switch immediately begins to send BPDUs from its ports to participate in the spanning tree domain.

  • Page 792: Setting The Switch Parameters

    Chapter 54: Spanning Tree Protocol (STP) Procedures Setting the Switch Parameters This table lists the STP functions that are controlled at the switch level. These commands are located in the Global Configuration mode and apply to the entire switch. Table 88. STP Switch Parameter Commands Use This Command Range Specify how long the ports remain in...
  • Page 793 AT-8100 Switch Command Line User’s Guide This example of the command sets the switch’s priority value to 8,192: awplus> enable awplus# configure terminal awplus(config)# spanning-tree priority 8192...

  • Page 794: Setting The Port Parameters

    Chapter 54: Spanning Tree Protocol (STP) Procedures Setting the Port Parameters This table lists the STP functions that are controlled at the port level. You set these parameters in the Port Interface mode of the individual ports. Table 89. STP Port Parameter Commands Use This Command Range Specify the cost of a port to the root...

  • Page 795: Disabling The Spanning Tree Protocol

    AT-8100 Switch Command Line User’s Guide Disabling the Spanning Tree Protocol To disable STP on the switch, use the NO SPANNING-TREE STP ENABLE command in the Global Configuration mode. Here is the command: awplus> enable awplus# configure terminal awplus(config)# no spanning-tree stp enable Note Before disabling the spanning tree protocol on the switch, display the STP states of the ports and disconnect the network cables from...

  • Page 796: Displaying Stp Settings

    Chapter 54: Spanning Tree Protocol (STP) Procedures Displaying STP Settings To view the STP settings on the switch, use the SHOW SPANNING-TREE in the Privileged Exec mode. The command has this format: show spanning-tree [interface port Use the INTERFACE parameter to view the settings of the specified ports. Otherwise, omit the parameter to view all the ports.

  • Page 797: Chapter 55 : Stp Commands

    Chapter 55 STP Commands The STP commands are summarized in Table 90 and described in detail within the chapter. Table 90. Spanning Tree Protocol Commands Command Mode Description “NO SPANNING-TREE STP Global Disables STP on the switch. ENABLE” on page 799 Configuration “SHOW SPANNING-TREE”...
  • Page 798 Chapter 55: STP Commands Table 90. Spanning Tree Protocol Commands (Continued) Command Mode Description “SPANNING-TREE PORTFAST Port Interface Enables the BPDU guard feature on a BPDU-GUARD” on page 809 port so that the switch monitors edge ports and disables them if they receive BPDUs.

  • Page 799: No Spanning-Tree Stp Enable

    AT-8100 Switch Command Line User’s Guide NO SPANNING-TREE STP ENABLE Syntax no spanning-tree stp enable Parameters None Mode Global Configuration mode Description Use this command to disable STP on the switch. To view the current status of STP, refer to “SHOW SPANNING-TREE” on page 800. The default setting is disabled.

  • Page 800: Show Spanning-Tree

    Chapter 55: STP Commands SHOW SPANNING-TREE Syntax port show spanning-tree [interface Parameters port Specifies a port. You can specify more than one port at a time in the command. The switch displays the STP settings for all the ports if you omit this parameter. Modes Privileged Exec mode Description...
  • Page 801 AT-8100 Switch Command Line User’s Guide Examples This command displays the STP settings for all the ports: awplus# show spanning-tree This command displays the STP settings for ports 1 and 4: awplus# show spanning-tree interface port1.0.1,port1.0.4...

  • Page 802: Spanning-Tree Forward-Time

    Chapter 55: STP Commands SPANNING-TREE FORWARD-TIME Syntax forwardtime spanning-tree forward-time Parameters forwardtime Specifies the forward time. The range is 4 to 30 seconds. The default is 15 seconds. Mode Global Configuration mode Description Use this command to set the forward time parameter on the switch. This parameter specifies how long the ports remain in the listening and learning states before they transition to the forwarding state.

  • Page 803: Spanning-Tree Guard Root

    AT-8100 Switch Command Line User’s Guide SPANNING-TREE GUARD ROOT Syntax spanning-tree guard root Parameters None Mode Port Interface mode Description Use this command to enable the Root Guard feature on the specified port. The Root Guard feature ensures that the port on which it is enabled is a designated port.

  • Page 804: Spanning-Tree Hello-Time

    Chapter 55: STP Commands SPANNING-TREE HELLO-TIME Syntax hellotime spanning-tree hello-time Parameters hellotime Specifies the hello time. The range is 1 to 10 seconds. The default is 2 seconds. Mode Global Configuration mode Description Use this command to set the hello time parameter on the switch. This parameter controls how frequently the switch sends spanning tree configuration information when it is the root bridge or is trying to become the root bridge.

  • Page 805: Spanning-Tree Max-Age

    AT-8100 Switch Command Line User’s Guide SPANNING-TREE MAX-AGE Syntax maxage spanning-tree max-age Parameters maxage Specifies the max-age parameter. The range is 6 to 40 seconds. The default is 20 seconds. Mode Global Configuration mode Description Use this command to set the maximum age parameter. This parameter determines how long bridge protocol data units (BPDUs) are stored by the switch before they are deleted.

  • Page 806: Spanning-Tree Mode Stp

    Chapter 55: STP Commands SPANNING-TREE MODE STP Syntax spanning-tree mode stp Parameters None Mode Global Configuration mode Description Use this command to designate STP as the active spanning tree protocol on the switch. You must select STP as the active spanning tree protocol before you can enable it or configure its parameters.

  • Page 807: Spanning-Tree Path-Cost

    AT-8100 Switch Command Line User’s Guide SPANNING-TREE PATH-COST Syntax path-cost spanning-tree path-cost Parameters path-cost Specifies the cost of a port to the root bridge. The range is 1 to 200000000. Mode Port Interface mode Description Use this command to specify the cost of a port to the root bridge. This cost is combined with the costs of the other ports in the path to the root bridge, to determine the total path cost.

  • Page 808: Spanning-Tree Portfast

    Chapter 55: STP Commands SPANNING-TREE PORTFAST Syntax spanning-tree portfast Parameters None Mode Port Interface mode Description Use this command to designate an edge port on the switch. Edge ports are not connected to spanning tree devices or to LANs that have spanning tree devices.

  • Page 809: Spanning-Tree Portfast Bpdu-Guard

    AT-8100 Switch Command Line User’s Guide SPANNING-TREE PORTFAST BPDU-GUARD Syntax spanning-tree portfast bpdu-guard Parameters None Mode Port Interface mode Description Use this command to enable the BPDU guard feature so that the switch monitors edge ports and disables them if they receive BPDU packets. To disable an edge port that was disabled by the BPDU guard feature, use the NO SPANNING-TREE PORTFAST BPDU-GUARD command.

  • Page 810: Spanning-Tree Priority (Bridge Priority)

    Chapter 55: STP Commands SPANNING-TREE PRIORITY (Bridge Priority) Syntax priority spanning-tree priority Parameters priority Specifies a priority number for the switch. Mode Global Configuration mode Description Use this command to assign the switch a priority number. The device that has the lowest priority number in the spanning tree domain becomes the root bridge.

  • Page 811: Spanning-Tree Priority (Port Priority)

    AT-8100 Switch Command Line User’s Guide SPANNING-TREE Priority (Port Priority) Syntax priority spanning-tree priority Parameters priority Specifies the priority value for a port. The range is 0 to 240, in increments of 16. Mode Port Interface mode Description Use this command to set the priority value of a port. This parameter is used as a tie breaker when two or more ports have equal costs to the root bridge.

  • Page 812: Spanning-Tree Stp Enable

    Chapter 55: STP Commands SPANNING-TREE STP ENABLE Syntax spanning-tree stp enable Parameters None Mode Global Configuration mode Description Use this command to enable STP on the switch. You must designate STP as the active spanning tree protocol on the switch before you can enable it or configure its parameters.

  • Page 813: Chapter 56 : Rapid Spanning Tree Protocol (Rstp) Procedures

    Chapter 56 Rapid Spanning Tree Protocol (RSTP) Procedures This chapter provides the following procedures:  “Designating RSTP as the Active Spanning Tree Protocol” on page 814  “Enabling the Rapid Spanning Tree Protocol” on page 815  “Configuring the Switch Parameters” on page 816 ...

  • Page 814: Designating Rstp As The Active Spanning Tree Protocol

    Chapter 56: Rapid Spanning Tree Protocol (RSTP) Procedures Designating RSTP as the Active Spanning Tree Protocol The first step to using RSTP on the switch is to designate it as the active spanning tree protocol. This is accomplished with the SPANNING-TREE MODE RSTP command in the Global Configuration mode.

  • Page 815: Enabling The Rapid Spanning Tree Protocol

    AT-8100 Switch Command Line User’s Guide Enabling the Rapid Spanning Tree Protocol To enable RSTP on the switch, use the SPANNING-TREE RSTP ENABLE command in the Global Configuration mode. Here is the command: awplus> enable awplus# configure terminal awplus(config)# spanning-tree rstp enable After you enter the command, the switch immediately begins to participate in the spanning tree domain.

  • Page 816: Configuring The Switch Parameters

    Chapter 56: Rapid Spanning Tree Protocol (RSTP) Procedures Configuring the Switch Parameters This table lists the RSTP parameters that are set in the Global Configuration mode and apply to all the ports on the switch. Table 91. RSTP Switch Parameters Use This Command Range Specify how long the ports remain in...

  • Page 817: Setting The Bridge Priority

    AT-8100 Switch Command Line User’s Guide This example increases the forward time to 25 seconds and the hello time to 8 seconds. The forward time controls the amount of time the ports remain in the listening and learning states, and the hello time controls how frequently the switch sends spanning tree configuration information: awplus>...
  • Page 818 Chapter 56: Rapid Spanning Tree Protocol (RSTP) Procedures To disable the BPDU guard feature on the switch, use the NO SPANNING-TREE BPDU-GUARD command in the Global Configuration mode. Here is the command: awplus> enable awplus# configure terminal awplus(config)# no spanning-tree portfast bpdu-guard...

  • Page 819: Configuring The Port Parameters

    AT-8100 Switch Command Line User’s Guide Configuring the Port Parameters This table lists the RSTP port parameters. These parameters are set on the individual ports in the Port Interface mode. Table 92. RSTP Port Parameters Use This Command Range Specify port costs. SPANNING-TREE PATH-COST path- 1 to 200000000 cost...

  • Page 820: Configuring Port Priorities

    Chapter 56: Rapid Spanning Tree Protocol (RSTP) Procedures Configuring Port If RSTP discovers a loop in the topology, but the two paths that constitute the loop have the same path cost, the spanning tree protocol uses port Priorities priorities to determine which path to make active and which to place in the blocking state.

  • Page 821: Enabling Or Disabling Rstp Loop-Guard

    AT-8100 Switch Command Line User’s Guide This example uses the NO SPANNING-TREE command to remove port 21 as an edge port: awplus> enable awplus# configure terminal awplus(config)# interface port1.0.21 awplus(config-if)# no spanning-tree portfast Enabling or The RSTP loop guard feature disables ports if they stop receiving spanning tree BPDUs from their link partners when there is no change to Disabling RSTP the link state.
  • Page 822 Chapter 56: Rapid Spanning Tree Protocol (RSTP) Procedures Edge ports that are disabled by the feature remain disabled until you manually enable them again with the NO SHUTDOWN command. As an alternative, you can activate the BPDU guard timer so that the switch automatically reactivates disabled ports after the specified period of time.

  • Page 823: Disabling The Rapid Spanning Tree Protocol

    AT-8100 Switch Command Line User’s Guide Disabling the Rapid Spanning Tree Protocol To disable RSTP on the switch, use the NO SPANNING-TREE RSTP ENABLE command in the Global Configuration mode. Here is the command: awplus> enable awplus# configure terminal awplus(config)# no spanning-tree rstp enable To view the current status of RSTP, refer to “Displaying RSTP Settings”...

  • Page 824: Displaying Rstp Settings

    Chapter 56: Rapid Spanning Tree Protocol (RSTP) Procedures Displaying RSTP Settings To view the RSTP settings on the switch, use the SHOW SPANNING- TREE in the Privileged Exec mode. The command has this format: show spanning-tree [interface port Use the INTERFACE parameter to view the settings of the specified ports. Otherwise, omit the parameter to view all the ports.

  • Page 825: Chapter 57 : Rstp Commands

    Chapter 57 RSTP Commands The RSTP commands are summarized in Table 93 and described in detail within the chapter. Table 93. Rapid Spanning Tree Protocol Commands Command Mode Description “NO SPANNING-TREE PORTFAST” Port Interface Removes ports as edge ports on the on page 827 switch.
  • Page 826 Chapter 57: RSTP Commands Table 93. Rapid Spanning Tree Protocol Commands (Continued) Command Mode Description “SPANNING-TREE LINK-TYPE” on Port Interface Designates point-to-point ports and page 839 shared ports. “SPANNING-TREE LOOP-GUARD” Port Interface Enables the BPDU loop-guard feature on page 840 on the ports.

  • Page 827: No Spanning-Tree Portfast

    AT-8100 Switch Command Line User’s Guide NO SPANNING-TREE PORTFAST Syntax no spanning-tree portfast Parameters None Mode Port Interface mode Description Use this command to remove ports as edge ports on the switch. Confirmation Command “SHOW RUNNING-CONFIG” on page 164 Example This example removes port 21 as an edge port: awplus>...

  • Page 828: No Spanning-Tree Errdisable-Timeout Enable

    Chapter 57: RSTP Commands NO SPANNING-TREE ERRDISABLE-TIMEOUT ENABLE Syntax no spanning-tree errdisable-timeout enable Parameters None Mode Global Configuration mode Description Use this command to deactivate the timer for the RSTP BPDU guard feature. When the timer is deactivated, ports that the feature disables because they receive BPDU packets remain disabled until you manually activate them again with the NO SHUTDOWN command.

  • Page 829: No Spanning-Tree Loop-Guard

    AT-8100 Switch Command Line User’s Guide NO SPANNING-TREE LOOP-GUARD Syntax no spanning-tree loop-guard Parameters None Mode Port Interface mode Description Use this command to disable the BPDU loop-guard feature on the ports. The default setting is disabled. Note Ports that are disabled by the loop-guard feature do not forward traffic again when you disable the feature.

  • Page 830: No Spanning-Tree Portfast Bpdu-Guard

    Chapter 57: RSTP Commands NO SPANNING-TREE PORTFAST BPDU-GUARD Syntax no spanning-tree portfast bpdu-guard Parameters None Mode Port Interface mode Description Use this command to disable the BPDU guard feature on a port. Note Edge ports disabled by the BPDU guard feature remain disabled until you enable them with the management software.

  • Page 831: No Spanning-Tree Rstp Enable

    AT-8100 Switch Command Line User’s Guide NO SPANNING-TREE RSTP ENABLE Syntax no spanning-tree rstp enable Parameters None Mode Global Configuration mode Description Use this command to disable RSTP on the switch. Note Before disabling the spanning tree protocol on the switch, display the RSTP states of the ports and disconnect the network cables from any ports that are in the discarding state.

  • Page 832: Show Spanning-Tree

    Chapter 57: RSTP Commands SHOW SPANNING-TREE Syntax show spanning-tree Parameters None Modes Privileged Exec mode Description Use this command to display the RSTP settings on the switch. An example of the display is shown in Figure 161. % Default: Bridge up - Spanning Tree Disabled % Default: Bridge Priority 32768 % Default: Forward Delay 15 - Hello Time 2 - Max Age 20 % Default: Root Id 8000:eccd6d4d5bf9...
  • Page 833 AT-8100 Switch Command Line User’s Guide Example This example displays the RSTP settings on the switch: awplus# show spanning-tree...

  • Page 834: Spanning-Tree Errdisable-Timeout Enable

    Chapter 57: RSTP Commands SPANNING-TREE ERRDISABLE-TIMEOUT ENABLE Syntax spanning-tree errdisable-timeout enable Parameters None Mode Global Configuration mode Description Use this command to activate the timer for the RSTP BPDU guard feature. The BPDU guard feature prevents unnecessary RSTP domain convergences by disabling edge ports if they receive BPDUs. When the timer is activated, the switch will automatically reactivate disabled ports.

  • Page 835: Spanning-Tree Errdisable-Timeout Interval

    AT-8100 Switch Command Line User’s Guide SPANNING-TREE ERRDISABLE-TIMEOUT INTERVAL Syntax interval spanning-tree errdisable-timeout interval Parameters interval Specifies the number of seconds that ports remain disabled by the RSTP BPDU guard feature. The range is 10 to 1000000 seconds. The default is 300 seconds. Mode Global Configuration mode Description...

  • Page 836: Spanning-Tree Forward-Time

    Chapter 57: RSTP Commands SPANNING-TREE FORWARD-TIME Syntax forwardtime spanning-tree forward-time Parameters forwardtime Specifies the forward time. The range is 4 to 30 seconds. The default is 15 seconds. Mode Global Configuration mode Description Use this command to set the forward time parameter to control how fast the ports change their spanning tree states when moving towards the forwarding state.

  • Page 837: Spanning-Tree Guard Root

    AT-8100 Switch Command Line User’s Guide SPANNING-TREE GUARD ROOT Syntax spanning-tree guard root Parameters None Mode Port Interface mode Description Use this command to enable the Root Guard feature on the specified port. The Root Guard feature ensures that the port on which it is enabled is a designated port.

  • Page 838: Spanning-Tree Hello-Time

    Chapter 57: RSTP Commands SPANNING-TREE HELLO-TIME Syntax hellotime spanning-tree hello-time Parameters hellotime Specifies the hello time. The range is 1 to 10 seconds. The default is 2 seconds. Mode Global Configuration mode Description Use this command to set the hello time parameter on the switch. This parameter controls how frequently the switch sends spanning tree configuration information when it is the root bridge or is trying to become the root bridge.

  • Page 839: Spanning-Tree Link-Type

    AT-8100 Switch Command Line User’s Guide SPANNING-TREE LINK-TYPE Syntax spanning-tree link-type point-to-point|shared Parameters point-to-point Allows for rapid transition of a port to the forwarding state during the convergence process of the spanning tree domain. shared Disables rapid transition of a port. You may want to set link type to shared if a port is connected to a hub with multiple switches connected to it.

  • Page 840: Spanning-Tree Loop-Guard

    Chapter 57: RSTP Commands SPANNING-TREE LOOP-GUARD Syntax spanning-tree loop-guard Parameters None Mode Port Interface mode Description Use this command to enable the BPDU loop-guard feature on the ports. If a port that has this feature activated stops receiving BPDU packets, the switch automatically disables it.

  • Page 841: Spanning-Tree Max-Age

    AT-8100 Switch Command Line User’s Guide SPANNING-TREE MAX-AGE Syntax maxage spanning-tree max-age Parameters maxage Specifies the maximum age parameter. The range is 6 to 40 seconds. The default is 20 seconds. Mode Global Configuration mode Description Use this command to set the maximum age parameter on the switch. This parameter determines how long the switch retains bridge protocol data units (BPDUs) before it deletes them.

  • Page 842: Spanning-Tree Mode Rstp

    Chapter 57: RSTP Commands SPANNING-TREE MODE RSTP Syntax spanning-tree mode rstp Parameters None Mode Global Configuration mode Description Use this command to designate RSTP as the active spanning tree protocol on the switch. After activating the protocol, you can enable or disable the spanning tree protocol and set the switch or port parameters.

  • Page 843: Spanning-Tree Path-Cost

    AT-8100 Switch Command Line User’s Guide SPANNING-TREE PATH-COST Syntax path-cost spanning-tree path-cost Parameters path-cost Specifies the cost of a port to the root bridge. The range is 1 to 200000000. Mode Port Interface mode Description Use this command to specify the cost of a port to the root bridge. This cost is combined with the costs of the other ports in the path to the root bridge, to determine the total path cost.

  • Page 844: Spanning-Tree Portfast

    Chapter 57: RSTP Commands SPANNING-TREE PORTFAST Syntax spanning-tree portfast Parameters None Mode Port Interface mode Description Use this command to designate edge ports on the switch. Edge ports are not connected to spanning tree devices or to LANs that have spanning tree devices.

  • Page 845: Spanning-Tree Portfast Bpdu-Guard

    AT-8100 Switch Command Line User’s Guide SPANNING-TREE PORTFAST BPDU-GUARD Syntax spanning-tree portfast bpdu-guard Parameters None Mode Port Interface mode Description Use this command to enable the BPDU guard feature so that the switch monitors edge ports and disables them if they receive BPDU packets. To disable an edge port that was disabled by the BPDU guard feature, use the NO SPANNING-TREE PORTFAST BPDU-GUARD command.

  • Page 846: Spanning-Tree Priority (Bridge Priority)

    Chapter 57: RSTP Commands SPANNING-TREE PRIORITY (Bridge Priority) Syntax priority spanning-tree priority Parameters priority Specifies a priority number for the switch. The range is 0 to 61440, in increments of 4096. Mode Global Configuration mode Description Use this command to assign the switch a priority number. The device that has the lowest priority number in the spanning tree domain becomes the root bridge.

  • Page 847: Spanning-Tree Priority (Port Priority)

    AT-8100 Switch Command Line User’s Guide SPANNING-TREE PRIORITY (Port Priority) Syntax priority spanning-tree priority Parameters priority Specifies the priority value for a port. The range is 0 to 240, in increments of 16. Mode Port Interface mode Description Use this command to set the priority value of a port. This parameter is used as a tie breaker when two or more ports have equal costs to the root bridge.

  • Page 848: Spanning-Tree Rstp Enable

    Chapter 57: RSTP Commands SPANNING-TREE RSTP ENABLE Syntax spanning-tree rstp enable Parameters None Mode Global Configuration mode Description Use this command to enable the Rapid Spanning Tree Protocol on the switch. You cannot enable RSTP until you have activated it with “SPANNING-TREE MODE RSTP”...

  • Page 849: Chapter 58 : Multiple Spanning Tree Protocol

    Chapter 58 Multiple Spanning Tree Protocol This chapter provides background information about the Multiple Spanning Tree Protocol (MSTP). It covers the following topics:  “Overview” on page 850  “Multiple Spanning Tree Instance (MSTI)” on page 851  “MSTI Guidelines” on page 854 ...

  • Page 850: Overview

    MSTP. If you are not familiar with spanning tree or RSTP, review “Overview” on page 770. Note Do not activate MSTP on an AT-8100 Allied Telesis Switch without first familiarizing yourself with the following concepts and guidelines. Unlike STP and RSTP, you cannot activate this spanning tree protocol on a switch without first configuring the protocol parameters.

  • Page 851: Multiple Spanning Tree Instance (Msti)

    AT-8100 Switch Command Line User’s Guide Multiple Spanning Tree Instance (MSTI) The individual spanning trees in MSTP are referred to as Multiple Spanning Tree Instances (MSTIs). An MSTI can span any number of AT-8100 Switches. The switch can support up to 15 MSTIs at a time. To create an MSTI, you first assign it a number, referred to as the MSTI ID.
  • Page 852 Chapter 58: Multiple Spanning Tree Protocol Figure 163 illustrates the same two AT-8100 Switches and the same two virtual LANs. But in this example, the two switches are running MSTP, and the two VLANs have been assigned different spanning tree instances. Now that they reside in different MSTIs, both links remain active, enabling the VLANs to forward traffic over their respective direct link.
  • Page 853 AT-8100 Switch Command Line User’s Guide Figure 164. Multiple VLANs in an MSTI In this example, because an MSTI contains more than one VLAN, the links between the VLAN parts are made with tagged, not untagged, ports so that they can carry traffic from more than one virtual LAN. Referring again to Figure 164, the tagged link in MSTI 1 is carrying traffic for both the Presales and Sales VLANs while the tagged link in MSTI 2 is carrying traffic for the Design and Engineering VLANs.

  • Page 854: Msti Guidelines

    Chapter 58: Multiple Spanning Tree Protocol MSTI Guidelines Following are several guidelines to keep in mind about MSTIs:  The AT-8100 Switch can support up to 15 spanning tree instances, including the Common and Internal Spanning Tree (CIST).  An MSTI can contain any number of VLANs. ...

  • Page 855: Vlan And Msti Associations

    AT-8100 Switch Command Line User’s Guide VLAN and MSTI Associations Part of the task to configuring MSTP involves assigning VLANs to spanning tree instances. The mapping of VLANs to MSTIs is called associations. A VLAN, either port-based or tagged, can belong to only one instance at a time, but an instance can contain any number of VLANs.

  • Page 856: Ports In Multiple Mstis

    Chapter 58: Multiple Spanning Tree Protocol Ports in Multiple MSTIs A port can be a member of more than one MSTI at a time if it is a tagged member of one or more VLANs assigned to different MSTIs. In this circumstance, a port might be have to operate in different spanning tree states simultaneously, depending on the requirements of the MSTIs.

  • Page 857: Multiple Spanning Tree Regions

    AT-8100 Switch Command Line User’s Guide Multiple Spanning Tree Regions Another important concept of MSTP is regions. An MSTP region is defined as a group of bridges that share exactly the same MSTI characteristics. These characteristics are:  Configuration name ...

  • Page 858: Table 94. Mstp Region

    Chapter 58: Multiple Spanning Tree Protocol Table 94 illustrates the concept of regions. It shows one MSTP region consisting of two AT-8100 Switches. Each switch in the region has the same configuration name and revision level. The switches also have the same five VLANs, and the VLANs are associated with the same MSTIs.

  • Page 859: Region Guidelines

    AT-8100 Switch Command Line User’s Guide Region Following are several points to remember about regions. Guidelines  A network can contain any number of regions, and a region can contain any number of AT-8100 Switches.  The AT-8100 Switch can belong to only one region at a time. ...

  • Page 860: Common And Internal Spanning Tree (Cist)

    Chapter 58: Multiple Spanning Tree Protocol Common and MSTP has a default spanning tree instance called the Common and Internal Spanning Tree (CIST). This instance has an MSTI ID of 0. Internal Spanning Tree This instance has unique features and functions that make it different from (CIST) the MSTIs that you create yourself.
  • Page 861 AT-8100 Switch Command Line User’s Guide An MSTP region can be considered as a virtual bridge. The implication is that other MSTP regions and STP and RSTP single-instance spanning trees cannot discern the topology or constitution of an MSTP region. The only bridge they are aware of is the regional root of the CIST instance.

  • Page 862: Summary Of Guidelines

    Chapter 58: Multiple Spanning Tree Protocol Summary of Guidelines Careful planning is essential for the successful implementation of MSTP. This section reviews all the rules and guidelines mentioned in earlier sections, and contains a few new ones:  The AT-8100 Switch can support up to 15 spanning tree instances, including the CIST.
  • Page 863 AT-8100 Switch Command Line User’s Guide Note The AlliedWare Plus MSTP implementation complies fully with the new IEEE 802.1s standard. Any other vendor’s fully compliant 802.1s implementation is interoperable with the AlliedWare Plus implementation.

  • Page 864: Associating Vlans To Mstis

    Chapter 58: Multiple Spanning Tree Protocol Associating VLANs to MSTIs Allied Telesis recommends that you assign all VLANs on a switch to an MSTI. You should not leave a VLAN assigned to just the CIST, including the Default_VLAN. This is to prevent the blocking of a port that should be in the forwarding state.
  • Page 865 AT-8100 Switch Command Line User’s Guide Figure 166. CIST and VLAN Guideline - Example 2 When port 4 on switch B receives a BPDU, the switch notes the port sending the packet belongs only to CIST. Therefore, switch B uses CIST in determining whether a loop exists.

  • Page 866: Connecting Vlans Across Different Regions

    Chapter 58: Multiple Spanning Tree Protocol Connecting VLANs Across Different Regions Special consideration needs to be taken into account when you connect different MSTP regions or an MSTP region and a single-instance STP or RSTP region. Unless planned properly, VLAN fragmentation can occur between the VLANS of your network.

  • Page 867: Table 95. Two Region Examples

    AT-8100 Switch Command Line User’s Guide There are several ways to address this issue. The first is to have only one MSTP region for each subnet in your network. Another approach is to group those VLANs that need to span regions into the same MSTI.

  • Page 868: Mstp Root Guard

    Chapter 58: Multiple Spanning Tree Protocol MSTP Root Guard The Root Guard feature enforces the root bridge placement in a network. It ensures the port that you have configured with the Root Guard feature is a designated port. Normally, root bridge ports are all designated ports, unless two or more ports of the root bridge are connected.

  • Page 869: Chapter 59 : Mstp Commands

    Chapter 59 MSTP Commands The MSTP commands are summarized in Table 96 and described in detail within the chapter. Table 96. Multiple Spanning Tree Protocol Commands Command Mode Description “INSTANCE MSTI-ID PRIORITY” on Interface Sets the port priority for an MST page 871 Configuration instance (MSTI).
  • Page 870 Chapter 59: MSTP Commands Table 96. Multiple Spanning Tree Protocol Commands (Continued) Command Mode Description “SPANNING-TREE MSTP ENABLE” Global Designates the MSTP mode on the on page 885 Configuration switch. “SPANNING-TREE MST Global Enters the MST Configuration mode. CONFIGURATION” on page 886 Configuration “SPANNING-TREE MST INSTANCE”...

  • Page 871: Instance Msti-Id Priority

    AT-8100 Switch Command Line User’s Guide INSTANCE MSTI-ID PRIORITY Syntax priority instance msti-id priority Parameters priority Specifies a port priority. The range is 0 to 61440, in increments of 4096. Mode Interface Configuration mode Description Use this command to set the port priority for an MST instance (MSTI). This command sets the value of the priority field contained in the port identifier.
  • Page 872 Chapter 59: MSTP Commands Table 97. MSTP Bridge Priority Value Increments (Continued) Bridge Bridge Increment Increment Priority Priority 28672 61440 Use the no command, NO INSTANCE MSTI-ID PRIORITY, to restore the default priority value of 32768. Confirmation Command “SHOW RUNNING-CONFIG” on page 164 Example This example assigns MSTI ID 3 a priority of 4096 to port 4: awplus>...

  • Page 873: Instance Msti-Id Vlan

    AT-8100 Switch Command Line User’s Guide INSTANCE MSTI-ID VLAN Syntax vidlist instance msti-id vlan Parameters Specifies a VLAN ID. vidlist Specifies a list of VLAN IDs. Mode Port Interface mode Description Use this command to permit MSTP to create an instance and associate an instance with one or more VLANs.

  • Page 874: No Spanning-Tree Errdisable-Timeout Enable

    Chapter 59: MSTP Commands NO SPANNING-TREE ERRDISABLE-TIMEOUT ENABLE Syntax spanning-tree errdisable-timeout enable Parameters None Mode Global Configuration mode Description Use this command to deactivate the timer for the MSTP BPDU guard feature. When the timer is deactivated, ports that the feature disables because they receive BPDU packets remain disabled until you manually activate them again with the NO SHUTDOWN command.

  • Page 875: No Spanning-Tree Portfast

    AT-8100 Switch Command Line User’s Guide NO SPANNING-TREE PORTFAST Syntax no spanning-tree portfast Parameters None Mode Port Interface mode Description Use this command to remove ports as edge ports on the switch. This command is equivalent to “NO SPANNING-TREE PORTFAST” on page 827.

  • Page 876: No Spanning-Tree Mstp Enable

    Chapter 59: MSTP Commands NO SPANNING-TREE MSTP ENABLE Syntax no spanning-tree mstp enable Parameters None Mode Global Configuration mode Description Use this command to disable MSTP on the switch. Note Before disabling the spanning tree protocol on the switch, display the MSTP states of the ports and disconnect the network cables from any ports that are in the discarding state.

  • Page 877: Show Spanning-Tree

    AT-8100 Switch Command Line User’s Guide SHOW SPANNING-TREE Syntax show spanning-tree Parameters None Modes Privileged Exec mode Description Use this command to display the MSTP settings on the switch. An example of the display is shown in Figure 169. % Default: Bridge up - Spanning Tree Enabled % Default: CIST Root Path Cost 0 - CIST Root Port 0 - CIST Bridge Priority 32768 % Default: Forward Delay 15 - Hello Time 2 - Max Age 20 - Max-hops 20 % Default: CIST Root Id 8000:eccd6d1e5228...

  • Page 878: Show Spanning-Tree Mst Config

    Chapter 59: MSTP Commands SHOW SPANNING-TREE MST CONFIG Syntax show spanning-tree mst config Parameters None Mode Privileged Executive Mode Description Use this command to display the MSTP configuration information for a bridge. Use the display to check that the digest is the same on this device as for all other devices in the same region.

  • Page 879: Show Spanning-Tree Mst

    AT-8100 Switch Command Line User’s Guide SHOW SPANNING-TREE MST Syntax show spanning-tree mst Parameters None Mode Privileged Executive Mode Description Use this command to display the MST to VLAN port mapping. Example This example displays the MST to VLAN port mappings: awplus>...

  • Page 880: Show Spanning-Tree Mst Instance

    Chapter 59: MSTP Commands SHOW SPANNING-TREE MST INSTANCE Syntax msti-id show spanning-tree mst instance < > Parameters instance Specifies an instance ID. The range is from 1 to 15. Mode Privileged Executive Mode Description Use this command to display detailed information for a particular instance and all switch ports associated with that instance.

  • Page 881: Spanning-Tree Errdisable-Timeout Enable

    AT-8100 Switch Command Line User’s Guide SPANNING-TREE ERRDISABLE-TIMEOUT ENABLE Syntax spanning-tree errdisable-timeout enable Parameters None Mode Global Configuration mode Description Use this command to activate the timer for the BPDU guard feature. The BPDU guard feature prevents unnecessary domain convergences by disabling edge ports if they receive BPDUs.

  • Page 882: Spanning-Tree Errdisable-Timeout Interval

    Chapter 59: MSTP Commands SPANNING-TREE ERRDISABLE-TIMEOUT INTERVAL Syntax interval spanning-tree errdisable-timeout interval Parameters interval Specifies the number of seconds that ports remain disabled by the BPDU guard feature. The range is 10 to 1000000 seconds. The default is 300 seconds. Mode Global Configuration mode Description...

  • Page 883: Spanning-Tree Guard Root

    AT-8100 Switch Command Line User’s Guide SPANNING-TREE GUARD ROOT Syntax spanning-tree guard root Parameters None Mode Port Interface mode Description Use this command to enable the Root Guard feature on the specified port. The Root Guard feature ensures that the port on which it is enabled is a designated port.

  • Page 884: Spanning-Tree Mode Mstp

    Chapter 59: MSTP Commands SPANNING-TREE MODE MSTP Syntax spanning-tree mode mstp Parameters None Mode Global Configuration mode Description Use this command to set MSTP as the spanning tree protocol mode. Confirmation Command “SHOW RUNNING-CONFIG” on page 164 Example This example sets MSTP as the spanning tree protocol mode: awplus>...

  • Page 885: Spanning-Tree Mstp Enable

    AT-8100 Switch Command Line User’s Guide SPANNING-TREE MSTP ENABLE Syntax spanning-tree mstp enable Parameters None Mode Global Configuration mode Description Use this command to designate MSTP as the active spanning tree protocol on the switch. After activating the protocol, you can enable or disable the spanning tree protocol and set the switch or port parameters.

  • Page 886: Spanning-Tree Mst Configuration

    Chapter 59: MSTP Commands SPANNING-TREE MST CONFIGURATION Syntax spanning-tree mst configuration Parameters None Mode Global Configuration mode Description Use this command to enter the MST mode. Note Only one spanning tree protocol, STP, RSTP, or MSTP, can be active on the switch. Confirmation Command “SHOW SPANNING-TREE”...

  • Page 887: Spanning-Tree Mst Instance

    AT-8100 Switch Command Line User’s Guide SPANNING-TREE MST INSTANCE Syntax instance spanning-tree mst <1-15> Parameters instance Specifies an instance ID. The range is from 1 to 15. Mode Interface Configuration mode Description Use this command to associate a Multiple Spanning Tree instance (MSTI) with a port.

  • Page 888: Spanning-Tree Path-Cost

    Chapter 59: MSTP Commands SPANNING-TREE PATH-COST Syntax path-cost spanning-tree path-cost Parameters path-cost Specifies the cost of a port to the root bridge. The range is 1 to 200000000. Mode Port Interface mode Description Use this command to specify the cost of a port to the root bridge. This cost is combined with the costs of the other ports in the path to the root bridge, to determine the total path cost.

  • Page 889: Spanning-Tree Portfast

    AT-8100 Switch Command Line User’s Guide SPANNING-TREE PORTFAST Syntax spanning-tree portfast Parameters None Mode Port Interface mode Description Use this command to designate edge ports on the switch. Edge ports are not connected to spanning tree devices or to LANs that have spanning tree devices.

  • Page 890: Spanning-Tree Portfast Bpdu-Guard

    Chapter 59: MSTP Commands SPANNING-TREE PORTFAST BPDU-GUARD Syntax spanning-tree portfast bpdu-guard Parameters None Mode Global Configuration mode Description Use this command to enable the Root Guard feature on the switch which protects the switch from receiving superior BPDUs. Use the no version of this command, NO SPANNING-TREE PORTFAST BPDU-GUARD, to disable the root guard feature on a switch.

  • Page 891: Region

    AT-8100 Switch Command Line User’s Guide REGION Syntax <region-name> region Parameters region-name Specifies the name of an MST region. Up to 32 characters. Mode MSTP Configuration mode Description Use this command to name the MSTP Region. Confirmation Command “SHOW RUNNING-CONFIG” on page 164 or “SHOW SPANNING-TREE” on page 877 Example This example names the MSTP region “santa clara county:”...

  • Page 892: Revision

    Chapter 59: MSTP Commands REVISION Syntax <revision-number> revision Parameters revision-number Specifies the revision number. The range is 0 to 255. Mode MST Configuration mode Description Use this command to specify the revision number of the current MST configuration. This value is an arbitrary value that you assign to an MST region.

  • Page 893: Virtual Lans

    Section VIII Virtual LANs This section contains the following chapters:  Chapter 60, “Port-based and Tagged VLANs” on page 895  Chapter 61, “Port-based and Tagged VLAN Commands” on page 919  Chapter 62, “GARP VLAN Registration Protocol” on page 939 ...

  • Page 895: Chapter 60 : Port-Based And Tagged Vlans

    Chapter 60 Port-based and Tagged VLANs This chapter covers the following topics:  “Overview” on page 896  “Port-based VLAN Overview” on page 898  “Tagged VLAN Overview” on page 904  “Creating VLANs” on page 909  “Adding Untagged Ports to VLANs” on page 910 ...

  • Page 896: Overview

    Chapter 60: Port-based and Tagged VLANs Overview A VLAN is a group of ports that form a logical Ethernet segment on an Ethernet switch. The ports of a VLAN form an independent traffic domain in which the traffic generated by the nodes remains within the VLAN. VLANs let you segment your network through the switch’s management software so that you can group nodes with related functions into their own separate, logical LAN segments.
  • Page 897 AT-8100 Switch Command Line User’s Guide Virtual LANs can also span more than one switch. This makes it possible to create VLANs of end nodes that are connected to switches located in different physical locations. The switch supports the following types of VLANs you can create yourself: ...

  • Page 898: Port-Based Vlan Overview

    Chapter 60: Port-based and Tagged VLANs Port-based VLAN Overview As the “Overview” on page 896 explains, a VLAN consists of a group of ports that form an independent traffic domain on one or more Ethernet switches. Traffic generated by the end nodes remain within their respective VLANs and does not cross over to the end nodes of other VLANs unless there is an interconnection device, such as a router or Layer 3 switch.

  • Page 899: Port Vlan Identifier

    AT-8100 Switch Command Line User’s Guide For example, if you had a port-based VLAN named Marketing that spanned three switches, assign the Marketing VLAN on each switch the same VID. You can assign this number manually or allow the management software to do it automatically.

  • Page 900: Guidelines To Creating A Port-Based Vlan

    Chapter 60: Port-based and Tagged VLANs Guidelines to Below are the guidelines to creating a port-based VLAN. Creating a Port-  Each port-based VLAN must be assigned a unique VID. If a based VLAN particular VLAN spans multiples switches, each part of the VLAN on the different switches should be assigned the same VID.

  • Page 901: Port-Based Example 1

    AT-8100 Switch Command Line User’s Guide Port-based Figure 172 illustrates an example of one AT-8100 switch with three port- based VLANs. (The Default VLAN is not shown in the following examples.) Example 1 Figure 172. Port-based VLAN - Example 1 The table below lists the port assignments for the Sales, Engineering, and Production VLANs on the switch.
  • Page 902 Chapter 60: Port-based and Tagged VLANs Figure 173. Port-based VLAN - Example 2...
  • Page 903 AT-8100 Switch Command Line User’s Guide The table below lists the port assignments for the Sales, Engineering, and Production VLANs on the switches: Switch Sales VLAN Engineering VLAN Production VLAN (VID 2) (VID 3) (VID 4) AT-8100 Switch Ports 1 - 6 Ports 9 - 13 Ports 17, 19 - 21 (top)

  • Page 904: Tagged Vlan Overview

    Chapter 60: Port-based and Tagged VLANs Tagged VLAN Overview The second type of VLAN is the tagged VLAN. VLAN membership in a tagged VLAN is determined by information within the frames that are received on a port. This differs from a port-based VLAN, where the PVIDs assigned to the ports determine VLAN membership.

  • Page 905: Tagged And Untagged Ports

    AT-8100 Switch Command Line User’s Guide Note For explanations of VLAN name and VLAN identifier, refer back to “VLAN Name” on page 898 and “VLAN Identifier” on page 898. Tagged and You need to specify which ports will be members of the VLAN. In the case of a tagged VLAN, it is usually a combination of both untagged ports and Untagged Ports tagged ports.

  • Page 906: Tagged Vlan Example

    Chapter 60: Port-based and Tagged VLANs Tagged VLAN Figure 174 illustrates how tagged ports can be used to interconnect IEEE 802.1q based products. Example Figure 174. Example of a Tagged VLAN...

  • Page 907: Table 98. Vlan Port Assignments

    AT-8100 Switch Command Line User’s Guide The port assignments for the VLANs are described in Table 98. Table 98. VLAN Port Assignments Switch Engineering VLAN Production VLAN Sales VLAN (VID 2) (VID 3) (VID 4) Untagged Tagged Untagged Tagged Untagged Tagged Ports Ports...
  • Page 908 Chapter 60: Port-based and Tagged VLANs This example is nearly identical to the “Port-based Example 2” on page 901. Tagged ports have been added to simplify network implementation and management. One of the tagged ports is port 2 on the top switch. This port has been made a tagged member of the three VLANs.

  • Page 909: Creating Vlans

    AT-8100 Switch Command Line User’s Guide Creating VLANs To create VLANs, use the VLAN command in the VLAN Configuration mode. You must specify a name and a VID for a new VLAN in the command. A name can have up to 20 characters. Giving the VLANs unique names make them easier to identify.

  • Page 910: Adding Untagged Ports To Vlans

    Chapter 60: Port-based and Tagged VLANs Adding Untagged Ports to VLANs To add a port to a VLAN as an untagged port, it may be necessary to first set its mode with the SWITCHPORT MODE ACCESS command in the Port Interface mode. Once a port’s mode is set to access, it functions as an untagged port.
  • Page 911 AT-8100 Switch Command Line User’s Guide This example designates ports 11 to 18 as untagged ports of a VLAN with the VID 4. The SWITCHPORT MODE ACCESS command is omitted because the example assumes the ports are already designated as untagged ports: awplus>...

  • Page 912: Adding Tagged Ports To Vlans

    Chapter 60: Port-based and Tagged VLANs Adding Tagged Ports to VLANs There are three steps to adding ports as tagged ports to VLANs: 1. Set the mode of the ports to trunk so that they function as tagged ports. This is performed with the SWITCHPORT MODE TRUNK command.
  • Page 913 AT-8100 Switch Command Line User’s Guide This example adds ports 18 to 21 as tagged members to VLANs with the VIDs 7 and 13: awplus> enable awplus# configure terminal awplus(config)# interface port1.0.18-port1.0.21 awplus(config-if)# switchport mode trunk awplus(config-if)# switchport trunk allowed vlan add 7,13 Although tagged ports are primarily intended to handle tagged packets, they may also handle untagged packets.

  • Page 914: Removing Untagged Ports From Vlans

    Chapter 60: Port-based and Tagged VLANs Removing Untagged Ports from VLANs To remove untagged ports from their current VLAN assignments and return them back to the Default VLAN, use the NO SWITCHPORT ACCESS VLAN command in the Port Interface mode. You do not specify a VLAN ID number in the command because a port can be an untagged member of just one VLAN at a time.

  • Page 915: Removing Tagged Ports From Vlans

    AT-8100 Switch Command Line User’s Guide Removing Tagged Ports from VLANs Use the SWITCHPORT TRUNK ALLOWED VLAN command to remove ports as tagged members from VLANs. This command is actually used for both adding and removing tagged ports. The format of the command when it is used to remove ports is shown here: none|remove vid switchport trunk allowed vlan...

  • Page 916: Deleting Vlans

    Chapter 60: Port-based and Tagged VLANs Deleting VLANs To delete VLANs from the switch, use the NO VLAN command in the VLAN Configuration mode. You cannot delete the Default_VLAN. The untagged ports of deleted VLANs are automatically returned back to the Default_VLAN.

  • Page 917: Displaying The Vlans

    AT-8100 Switch Command Line User’s Guide Displaying the VLANs To display the VLANs on the switch, use the SHOW VLAN ALL command in the User Exec mode and Privileged Exec mode: awplus# show vlan all An example of the information is shown in Figure 175. VLAN ID Name Type...
  • Page 918 Chapter 60: Port-based and Tagged VLANs...

  • Page 919: Chapter 61 : Port-Based And Tagged Vlan Commands

    Chapter 61 Port-based and Tagged VLAN Commands The VLAN commands are summarized in Table 99 and described in detail within the chapter. Table 99. Port-based and Tagged VLAN Commands Command Mode Description “NO SWITCHPORT ACCESS VLAN” Port Interface Removes untagged ports from on page 920 VLANs.

  • Page 920: No Switchport Access Vlan

    Chapter 61: Port-based and Tagged VLAN Commands NO SWITCHPORT ACCESS VLAN Syntax no switchport access vlan Parameters None Mode Port Interface mode Description Use this command to return untagged ports to the Default_VLAN. Note You cannot return ports to the Default_VLAN if they are set to the authenticator role for 802.1x port-based network access control.

  • Page 921: No Switchport Trunk

    AT-8100 Switch Command Line User’s Guide NO SWITCHPORT TRUNK Syntax no switchport trunk Parameters None Mode Port Interface mode Description Use this command to remove the trunk mode from ports. Ports cannot be assigned as tagged ports to VLANs once the trunk mode has been removed.

  • Page 922: No Switchport Trunk Native Vlan

    Chapter 61: Port-based and Tagged VLAN Commands NO SWITCHPORT TRUNK NATIVE VLAN Syntax no switchport trunk native vlan Parameters None Mode Port Interface mode Description Use this command to reestablish the Default_VLAN as the native VLAN of tagged ports. The native VLAN of a tagged port specifies the appropriate VLAN for ingress and egress untagged packets.

  • Page 923: No Vlan

    AT-8100 Switch Command Line User’s Guide NO VLAN Syntax no vlan Parameters Specifies the VID of the VLAN you want to delete. Mode VLAN Configuration mode Description Use this command to delete port-based or tagged VLANs from the switch. Here are the guidelines to this command: ...

  • Page 924: Show Vlan

    Chapter 61: Port-based and Tagged VLAN Commands SHOW VLAN Syntax show vlan |all Parameters Specifies the VID of the VLAN you want to display. Specifies all the VLANs on the switch to display. Modes User Exec mode and Privileged Exec mode Description Use this command to display all the tagged and untagged VLANs on the switch.
  • Page 925 AT-8100 Switch Command Line User’s Guide Table 100. SHOW VLAN Command (Continued) Parameter Description State The states of the VLANs. A VLAN has an Active state if it has at least one tagged or untagged port and an Inactive state if it does not have any ports.

  • Page 926: Switchport Access Vlan

    Chapter 61: Port-based and Tagged VLAN Commands SWITCHPORT ACCESS VLAN Syntax switchport access vlan Parameters Specifies the ID number of the VLAN to which you want to add untagged ports. You can specify only one VID. Mode Port Interface mode Description Use this command to add untagged ports to VLANs.
  • Page 927 AT-8100 Switch Command Line User’s Guide Examples This example adds ports 5 and 7 as untagged ports to a VLAN with the VID 12: awplus> enable awplus# configure terminal awplus(config)# interface port1.0.5,port1.0.7 awplus(config-if)# switchport access vlan 12 This example returns port 15 as an untagged port to the Default_VLAN, which has the VID 1: awplus>...

  • Page 928: Switchport Mode Access

    Chapter 61: Port-based and Tagged VLAN Commands SWITCHPORT MODE ACCESS Syntax switchport mode access [ingress-filter enable|disable] Parameters enable Activates ingress filtering. disable Disables ingress filtering. Mode Port Interface mode Description Use this command to designate ports as untagged ports. This is the first command to adding ports as untagged ports to VLANs.

  • Page 929: Switchport Mode Trunk

    AT-8100 Switch Command Line User’s Guide SWITCHPORT MODE TRUNK Syntax switchport mode trunk [ingress-filter enable|disable] Parameters enable Activates ingress filtering so the tagged port accepts only tagged packets that have one of its tagged VIDs. disable Disables ingress filtering so the tagged port accepts all tagged packets.
  • Page 930 Chapter 61: Port-based and Tagged VLAN Commands This example designates port 18 as a tagged port and disables ingress filtering so that it accepts all tagged packets: awplus> enable awplus# configure terminal awplus(config)# interface port1.0.18 awplus(config-if)# switchport mode trunk ingress-filter disable...

  • Page 931: Switchport Trunk Allowed Vlan

    AT-8100 Switch Command Line User’s Guide SWITCHPORT TRUNK ALLOWED VLAN Syntaxes for Adding Tagged Ports to VLANs switchport trunk allowed vlan all switchport trunk allowed vlan add switchport trunk allowed vlan except Syntaxes for Removing Tagged Ports from VLANs switchport trunk allowed vlan remove switchport trunk allowed vlan none Parameters vlan all...
  • Page 932 Chapter 61: Port-based and Tagged VLAN Commands  Ports can be tagged members of more than one VLAN at a time.  The specified VLANs must already exist. To create VLANs, see “VLAN” on page 936.  Adding a port as a tagged member of a VLAN does not change its other tagged and untagged VLAN assignments, because ports can be tagged members of more than one VLAN at a time.
  • Page 933 AT-8100 Switch Command Line User’s Guide This example adds ports 22 to 24 as tagged ports to all the VLANs, except for the VLAN with a VID of 11. The example assumes that the ports are already designated as tagged ports: awplus>...

  • Page 934: Switchport Trunk Native Vlan

    Chapter 61: Port-based and Tagged VLAN Commands SWITCHPORT TRUNK NATIVE VLAN Syntax switchport trunk native vlan |none Parameters Specifies the VID of the VLAN that will act as the default VLAN for all ingress and egress untagged packets on the tagged port. You can enter just one VID.
  • Page 935 AT-8100 Switch Command Line User’s Guide This example reestablishes the Default_VLAN as the native VLAN for tagged ports 18 and 20: awplus> enable awplus# configure terminal awplus(config)# interface port1.0.18,port1.0.20 awplus(config-if)# switchport trunk native vlan none...

  • Page 936: Vlan

    Chapter 61: Port-based and Tagged VLAN Commands VLAN Syntax name vlan [name Parameters Specifies a VLAN identifier. The range is 2 to 4094. The VID 1 is reserved for the Default_VLAN. The VID cannot be the same as the VID of an existing VLAN on the switch. You can specify more than one VID to create more than one VLAN at a time.
  • Page 937 AT-8100 Switch Command Line User’s Guide Description Use this command to create port-based and tagged VLANs. You can create just one VLAN at a time. Confirmation Command “SHOW VLAN” on page 924 Examples This example creates a new VLAN with the VID 5 and the name Engineering: awplus>...
  • Page 938 Chapter 61: Port-based and Tagged VLAN Commands...

  • Page 939: Chapter 62 : Garp Vlan Registration Protocol

    Chapter 62 GARP VLAN Registration Protocol This chapter covers the following topics:  “Overview” on page 940  “Guidelines” on page 943  “GVRP and Network Security” on page 944  “GVRP-inactive Intermediate Switches” on page 945  “Enabling GVRP on the Switch” on page 946 ...

  • Page 940: Overview

    Chapter 62: GARP VLAN Registration Protocol Overview The GARP VLAN Registration Protocol (GVRP) allows network devices to share VLAN information and to use the information to modify existing VLANs or create new VLANs, automatically. This makes it easier to manage VLANs that span more than one switch. Without GVRP, you have to manually configure your switches to ensure that the various parts of the VLANs can communicate with each other across the different switches.
  • Page 941 AT-8100 Switch Command Line User’s Guide Figure 177 provides an example of how GVRP works. Figure 177. GVRP Example The example consists of three switches. Switches #1 and #3 have the Sales VLAN, but switch #2 does not. Consequently, the end nodes of the two parts of the Sales VLANs cannot communicate with each other.
  • Page 942 Chapter 62: GARP VLAN Registration Protocol Without GVRP, you would have to manually add the Sales VLAN to switch #2. But with GVRP, the VLAN is added automatically. Here is how GVRP would resolve the problem in the example. 1. Port 1 on switch #1 sends to port 2 on switch #2 a PDU that contains the VIDs of all the VLANs on the switch, including VID 11 for the Sales VLAN.

  • Page 943: Guidelines

    VLANs and static port assignments.  The default port settings on the switch for GVRP are active, meaning that the ports participate in GVRP. Allied Telesis recommends disabling GVRP on those ports that are connected to GVRP-inactive devices, meaning devices that do not feature GVRP.

  • Page 944: Gvrp And Network Security

    Chapter 62: GARP VLAN Registration Protocol GVRP and Network Security GVRP should be used with caution because it can expose your network to unauthorized access. If a network intruder were to connect to a switch port running GVRP and transmit a bogus GVRP PDU containing VIDs of restricted VLANs, GVRP would make the port a member of the VLANs, giving the intruder access to restricted areas of your network.

  • Page 945: Gvrp-Inactive Intermediate Switches

    AT-8100 Switch Command Line User’s Guide GVRP-inactive Intermediate Switches If two GVRP-active devices are separated by a GVRP-inactive switch, the GVRP-active devices may not be able to share VLAN information. There are two issues involved. The first is whether the intermediate switch forwards the GVRP PDUs that it receives from the GVRP-active switches.

  • Page 946: Enabling Gvrp On The Switch

    Chapter 62: GARP VLAN Registration Protocol Enabling GVRP on the Switch The command for enabling GVRP on the switch is found in the Global Configuration mode. It is the GVRP ENABLE command. After the command is entered, the switch immediately begins to transmit PDUs from those ports where GVRP is enabled and to learn dynamic GVRP VLANs.

  • Page 947: Enabling Gip On The Switch

    AT-8100 Switch Command Line User’s Guide Enabling GIP on the Switch The GARP Information Propagation (GIP) component can be enabled separately from GVRP on the switch. GIP must be enabled if the switch is using GVRP. The command for activating GIP is the GVRP APPLICANT STATE ACTIVE command in the Global Configuration mode.

  • Page 948: Enabling Gvrp On The Ports

    Chapter 62: GARP VLAN Registration Protocol Enabling GVRP on the Ports To activate GVRP on the ports so that they transmit GVRP PDUs, use the GVRP REGISTRATION NORMAL command in the Port Interface mode. Because the default setting for GVRP on the ports is enabled, you should only need to use this command if you want to enable GVRP after disabling it on a port.

  • Page 949: Setting The Gvrp Timers

    AT-8100 Switch Command Line User’s Guide Setting the GVRP Timers The switch has a Join Timer, a Leave Timer, and a Leave All Timer. You should not change the timers unless you understand their functions. (Refer to the IEEE 802.1p standard for the definitions.) The timers have to be set the same on all GARP-active network devices, and the Join Timer and Leave Timer have to be set according to the following equation: Join Timer <= (2 x (Leave Timer))

  • Page 950: Disabling Gvrp Timers On The Switch

    Chapter 62: GARP VLAN Registration Protocol Disabling GVRP Timers on the Switch To disable GVRP timer configurations, use the NO GVRP TIMER commands in the Global Configuration mode. They are: no gvrp timer join no gvrp timer leave no gvrp timer leaveall Use these commands to reset GVRP timers to the default values for each individual parameter.

  • Page 951: Disabling Gvrp On The Ports

    AT-8100 Switch Command Line User’s Guide Disabling GVRP on the Ports To disable GVRP on the ports, use the GVRP REGISTRATION NONE command in the Port Interface mode. This example of the command deactivates GVRP on ports 4 and 5: awplus>...

  • Page 952: Disabling Gip On The Switch

    Chapter 62: GARP VLAN Registration Protocol Disabling GIP on the Switch You can disable the GARP Information Propagation (GIP) component separately from GVRP on the switch. GIP must be enabled if the switch is using GVRP. There is never any reason to disable GIP. Even if the switch is not performing GVRP, you can still leave GIP enabled.

  • Page 953: Disabling Gvrp On The Switch

    AT-8100 Switch Command Line User’s Guide Disabling GVRP on the Switch To disable GVRP to stop the switch from learning any further dynamic VLANs or GVRP ports, use the NO GVRP ENABLE command in the Global Configuration mode. Here is the command. awplus>...

  • Page 954: Restoring The Gvrp Default Settings

    Chapter 62: GARP VLAN Registration Protocol Restoring the GVRP Default Settings To disable GVRP and to return the timers to their default settings, use the PURGE GVRP command in the Global Configuration mode: awplus> enable awplus# configure terminal awplus(config)# purge gvrp For reference information, refer to “PURGE GVRP”...

  • Page 955: Displaying Gvrp

    AT-8100 Switch Command Line User’s Guide Displaying GVRP Although there are five commands that display GVRP information, you will probably only need the SHOW GVRP TIMER command in the Privileged Exec mode. This command displays the status of GVRP and GIP on the switch and the three timer settings.
  • Page 956 Chapter 62: GARP VLAN Registration Protocol...

  • Page 957: Chapter 63 : Garp Vlan Registration Protocol Commands

    Chapter 63 GARP VLAN Registration Protocol Commands The GARP VLAN registration protocol commands are summarized in Table 101 and described in detail within the chapter. Table 101. GARP VLAN Registration Protocol Commands Command Mode Description “CONVERT DYNAMIC VLAN” on VLAN Converts dynamic GVRP VLANs and page 959 Configuration...
  • Page 958 Chapter 63: GARP VLAN Registration Protocol Commands Table 101. GARP VLAN Registration Protocol Commands (Continued) Command Mode Description “SHOW GVRP APPLICANT” on User Exec and Displays parameters for the GIP- page 972 Privileged Exec connected ring for the GARP application: “SHOW GVRP CONFIGURATION”...

  • Page 959: Convert Dynamic Vlan

    AT-8100 Switch Command Line User’s Guide CONVERT DYNAMIC VLAN Syntax convert dynamic vlan Parameters None Mode VLAN Configuration mode Description Use this command to convert dynamic GVRP VLANs and dynamic GVRP port assignments to static VLANs and static port assignments. Example This example converts dynamic GVRP VLANs and dynamic GVRP port assignments to static VLANs and static port assignments on the switch:...

  • Page 960: Gvrp Applicant State Active

    Chapter 63: GARP VLAN Registration Protocol Commands GVRP APPLICANT STATE ACTIVE Syntax gvrp applicant state active Parameters None Mode Global Configuration mode Description Use this command to enable GIP on the switch. GIP must be enabled for GVRP to operate properly. Example This example enables GIP on the switch: awplus>...

  • Page 961: Gvrp Applicant State Normal

    AT-8100 Switch Command Line User’s Guide GVRP APPLICANT STATE NORMAL Syntax gvrp applicant state normal Parameters None Mode Global Configuration mode Description Use this command to disable GIP on the switch. Note Do not disable GIP if the switch is running GVRP. GIP is required for proper GVRP operation.

  • Page 962: Gvrp Enable

    Chapter 63: GARP VLAN Registration Protocol Commands GVRP ENABLE Syntax gvrp enable Parameters None Mode Global Configuration mode Description Use this command to enable GVRP on the switch. Example This example enables GVRP on the switch: awplus> enable awplus# configure terminal awplus(config)# gvrp enable...

  • Page 963: Gvrp Registration

    AT-8100 Switch Command Line User’s Guide GVRP REGISTRATION Syntax normal|none gvrp registration Parameters normal Enables GVRP on a port. This is the default setting. none Disables GVRP on a port. Mode Port Interface mode Description Use this command to enable or disable GVRP on a port. A port where GVRP is enabled transmits GVRP PDUs.

  • Page 964: Gvrp Timer Join

    Chapter 63: GARP VLAN Registration Protocol Commands GVRP TIMER JOIN Syntax value gvrp timer join Parameters value Specifies the Join Timer in centiseconds, which are one hundredths of a second. The range is 20 to 60 centiseconds. The default is 20 centiseconds. Mode Global Configuration mode Description...

  • Page 965: Gvrp Timer Leave

    AT-8100 Switch Command Line User’s Guide GVRP TIMER LEAVE Syntax value gvrp timer leave Parameters value Specifies the Leave Timer in centiseconds, which are one hundredths of a second. The range is 30 to 180 centiseconds. The default is 60 centiseconds. Mode Global Configuration mode Description...

  • Page 966: Gvrp Timer Leaveall

    Chapter 63: GARP VLAN Registration Protocol Commands GVRP TIMER LEAVEALL Syntax value gvrp timer leaveall Parameters value Specifies the Leave All Timer in centiseconds. The range is 500 to 3000 centiseconds. The default is 1000 centiseconds. Mode Global Configuration mode Description Use this command to set the GARP Leave All timer.

  • Page 967: No Gvrp Enable

    AT-8100 Switch Command Line User’s Guide NO GVRP ENABLE Syntax no gvrp enable Parameters None Mode Global Configuration mode Description Use this command to disable GVRP on the switch. Example This example disables GVRP on the switch: awplus> enable awplus# configure terminal awplus(config)# no gvrp enable...

  • Page 968: No Gvrp Timer Join

    Chapter 63: GARP VLAN Registration Protocol Commands NO GVRP TIMER JOIN Syntax no gvrp timer join Parameters None Mode Global Configuration mode Description Use this command to disable GVRP Join Timer configurations and return the GVRP Join Timer to its default value. This timer must only be disabled in relation to the GVRP Leave Timer according to the following equation: Join Timer <= (2 x (GVRP Leave Timer)) Note...

  • Page 969: No Gvrp Timer Leave

    AT-8100 Switch Command Line User’s Guide NO GVRP TIMER LEAVE Syntax no gvrp timer leave value Parameters None Mode Global Configuration mode Description Use this command to disable the GARP Leave Timer and return the GVRP Leave Timer to its default value. This timer must only be disabled in relation to the GVRP Join Timer according to the following equation: Join Timer <= (2 x (GVRP Leave Timer)) Note...

  • Page 970: No Gvrp Timer Leaveall

    Chapter 63: GARP VLAN Registration Protocol Commands NO GVRP TIMER LEAVEALL Syntax no gvrp timer leaveall Parameters None Mode Global Configuration mode Description Use this command to disable the GARP Leave All timer and return the GVRP Leave All timer to its default value. Note The settings for this timer must be the same on all GVRP-active network devices.

  • Page 971: Purge Gvrp

    AT-8100 Switch Command Line User’s Guide PURGE GVRP Syntax purge gvrp Parameters None Mode Global Configuration mode Description Use this command to disable GVRP on the switch and to return the timers to their default values. Example This example disables GVRP on the switch and returns the timers to their default values: awplus>...

  • Page 972: Show Gvrp Applicant

    Chapter 63: GARP VLAN Registration Protocol Commands SHOW GVRP APPLICANT Syntax show gvrp applicant Parameter None Mode Privileged Exec mode Description Use this command to display the following parameters for the GIP- connected ring for the GARP application:  GARP Application ...

  • Page 973: Show Gvrp Configuration

    AT-8100 Switch Command Line User’s Guide SHOW GVRP CONFIGURATION Syntax show gvrp configuration Parameters None Mode Privileged Exec mode Description Use this command to display the following parameters for the internal database for the GARP application. Each attribute is represented by a GID index within the GARP application.

  • Page 974: Show Gvrp Machine

    Chapter 63: GARP VLAN Registration Protocol Commands SHOW GVRP MACHINE Syntax show gvrp machine Parameter None Mode Privileged Exec mode Description Use this command to display the following parameters for the GID state machines for the GARP application. The output is shown on a per-GID index basis;...

  • Page 975: Show Gvrp Statistics

    AT-8100 Switch Command Line User’s Guide SHOW GVRP STATISTICS Syntax show gvrp statistics Parameter None Mode Privileged Exec mode Description Use this command to display the current values of the following GARP packet and message counters:  GARP application  Receive: Total GARP Packets ...
  • Page 976 Chapter 63: GARP VLAN Registration Protocol Commands  Receive GARP Messages: Empty  Transmit GARP Messages: Empty  Receive GARP Messages: Bad Message  Receive GARP Messages: Bad Attribute Example This example displays the values of GARP packet and message counters: awplus# show gvrp statistics...

  • Page 977: Show Gvrp Timer

    AT-8100 Switch Command Line User’s Guide SHOW GVRP TIMER Syntax show gvrp timer Parameter None Mode Privileged Exec mode Description Use this command to display the current values for the following GARP application parameters:  GARP application protocol  GVRP status ...
  • Page 978 Chapter 63: GARP VLAN Registration Protocol Commands...

  • Page 979: Chapter 64 : Mac Address-Based Vlans

    Chapter 64 MAC Address-based VLANs This chapter contains the following topics:  “Overview” on page 980  “Guidelines” on page 985  “General Steps” on page 986  “Creating MAC Address-based VLANs” on page 987  “Adding MAC Addresses to VLANs and Designating Egress Ports” on page 988 ...

  • Page 980: Overview

    Chapter 64: MAC Address-based VLANs Overview As explained in Chapter 60, “Port-based and Tagged VLANs” on page 895, VLANs are used to create independent LAN segments within a network and are typically employed to improve network performance or security. The AT-8100 Switch offers several different types of VLANs, including port-based, tagged, and private VLANs.

  • Page 981: Table 102. Mappings Of Mac Addresses To Egress Ports Example

    AT-8100 Switch Command Line User’s Guide Table 102. Mappings of MAC Addresses to Egress Ports Example Switch Egress MAC address End Node Port 00:30:84:54:1A:45 Workstation 1 (Port 1) 5, 6 00:30:84:C3:5A:11 Workstation 2 (Port 2) 5, 6 00:30:84:22:67:17 Workstation 3 (Port 3) 5, 6 00:30:84:78:75:1C Workstation 4 (Port 4)

  • Page 982: Table 103. Revised Example Of Mappings Of Mac Addresses To Egress Ports

    Chapter 64: MAC Address-based VLANs Table 103. Revised Example of Mappings of MAC Addresses to Egress Ports MAC Address End Node Egress Port 00:30:84:54:1A:45 Workstation 1 (Port 1) 00:30:84:C3:5A:11 Workstation 2 (Port 2) 00:30:84:22:67:17 Workstation 3 (Port 3) 00:30:84:78:75:1C Workstation 4 (Port 4) 00:30:79:7A:11:10 Server (Port 5) 00:30:42:53:10:3A...

  • Page 983: Vlans That Span Switches

    AT-8100 Switch Command Line User’s Guide  If the packet’s destination MAC address is in the MAC address table, but the port where the address was learned is not one of the VLAN’s egress ports, the switch discards the packet. VLANs that Span To create a MAC address-based VLAN that spans switches, you must replicate the MAC addresses of the VLAN nodes on all the switches where...

  • Page 984: Vlan Hierarchy

    Chapter 64: MAC Address-based VLANs Table 104. Example of a MAC Address-based VLAN Spanning Switches Switch A Switch B VLAN Name: Sales VLAN Name: Sales MAC Address Egress Ports MAC Address Egress Ports Address_1 1,3,4,5 Address_1 11,12,14,16 Address_2 Address_2 Address_3 Address_3 Address_4 Address_4...

  • Page 985: Guidelines

    AT-8100 Switch Command Line User’s Guide Guidelines Here are the guidelines to MAC address-based VLANs:  The switch can support up to a total of 4094 port-based, tagged, private, and MAC address-based VLANs.  The egress ports of a MAC address-based VLAN function as a community in that assigning a port to one MAC address implicitly defines that port as an egress port of all the addresses in the same VLAN.

  • Page 986: General Steps

    Chapter 64: MAC Address-based VLANs General Steps There are three main steps to creating a MAC address-based VLAN: 1. Use the VLAN MACADDRESS command in the VLAN Configuration mode to assign a name and a VID to the new VLAN, and to designate the VLAN as a MAC address-based VLAN.

  • Page 987: Creating Mac Address-Based Vlans

    AT-8100 Switch Command Line User’s Guide Creating MAC Address-based VLANs The VLAN MACADDRESS command in the VLAN Configuration mode is the first command to creating this type of VLAN. This command assigns a new VLAN a name and a VID. Here is the format of the command: name macaddress vlan...

  • Page 988: Adding Mac Addresses To Vlans And Designating Egress Ports

    Chapter 64: MAC Address-based VLANs Adding MAC Addresses to VLANs and Designating Egress Ports The MAC addresses and egress ports are specified with the VLAN SET MACADDRESS command in the Global Configuration mode and Port Interface mode. Enter the command in the Global Configuration mode when you want to add MAC addresses to VLANs.

  • Page 989: Removing Mac Addresses

    AT-8100 Switch Command Line User’s Guide Removing MAC Addresses To remove MAC addresses from egress ports in a MAC address-based VLAN, use the NO VLAN MACADDRESS command in the Port Interface mode. This example of the command removes the MAC address 11:8A:92:CE:76:28 from ports 6 to 8, in a VLAN that has the VID 23: awplus>...

  • Page 990: Deleting Vlans

    Chapter 64: MAC Address-based VLANs Deleting VLANs To delete MAC address-based VLANs from the switch, use the NO VLAN command in the VLAN Configuration mode. You can delete only one VLAN at a time. Here is the format of the command: no vlan This example deletes the VLAN with the VID 23: awplus>...

  • Page 991: Displaying Vlans

    AT-8100 Switch Command Line User’s Guide Displaying VLANs To display the MAC address-based VLANS on the switch, use the SHOW VLAN MACADDRESS command in the Privileged Exec mode: awplus# show vlan macaddress An example is shown in Figure 180. VLAN 5 MAC Associations: Total number of associated MAC addresses: 5 ------------------------------------------------- MAC Address...

  • Page 992: Example Of Creating A Mac Address-Based Vlan

    Chapter 64: MAC Address-based VLANs Example of Creating a MAC Address-based VLAN Here is an example of how to create this type of VLAN. This example creates the VLAN detailed in Table 103 on page 982. The example is named Sales and given the VID 21: awplus>...
  • Page 993 AT-8100 Switch Command Line User’s Guide Use the VLAN SET MACADDRESS command in the Port Interface mode to designate port 1 as an egress port of all the MAC addresses. awplus(config-if)# vlan set 21 macaddress 00:30:84:54:1a:45 awplus(config-if)# vlan set 21 macaddress 00:30:84:c3:5a:11 awplus(config-if)# vlan set 21 macaddress 00:30:84:22:67:17 awplus(config-if)# vlan set 21 macaddress 00:30:84:78:75:1c awplus(config-if)# vlan set 21 macaddress 00:30:79:7a:11:10...
  • Page 994 Chapter 64: MAC Address-based VLANs...

  • Page 995: Chapter 65 : Mac Address-Based Vlan Commands

    Chapter 65 MAC Address-based VLAN Commands The MAC address-based VLAN commands are summarized in Table 105 and described in detail within the chapter. Table 105. MAC Address-based VLAN Commands Command Mode Description “NO VLAN” on page 996 VLAN Deletes VLANs from the switch. Configuration “NO VLAN MACADDRESS (Global Global...

  • Page 996: No Vlan

    Chapter 65: MAC Address-based VLAN Commands NO VLAN Syntax no vlan Parameters Specifies the VID of the VLAN you want to delete. You can specify just one VID. Mode VLAN Configuration mode Description Use this command to delete MAC address-based VLANs from the switch. You can delete only one VLAN at a time with this command.

  • Page 997: No Vlan Macaddress (Global Configuration Mode)

    AT-8100 Switch Command Line User’s Guide NO VLAN MACADDRESS (Global Configuration Mode) Syntax mac-address no vlan macaddress|destaddress Parameters Specifies the VID of the VLAN to be modified. mac-address Specifies the MAC address to be removed from the VLAN. The MAC address must be entered in this format: xx:xx:xx:xx:xx:xx Note The MACADDRESS and DESTADDRESS keywords are equivalent.

  • Page 998: No Vlan Macaddress (Port Interface Mode)

    Chapter 65: MAC Address-based VLAN Commands NO VLAN MACADDRESS (Port Interface Mode) Syntax mac-address no vlan macaddress|destaddress Parameters Specifies the VID of the VLAN to be modified. mac-address Specifies the MAC address to be removed from the VLAN. The MAC address must be entered in this format: xx:xx:xx:xx:xx:xx Note The MACADDRESS and DESTADDRESS keywords are equivalent.
  • Page 999 AT-8100 Switch Command Line User’s Guide This example removes the MAC address 00:30:84:75:11:B2 from the egress port 11 to 14 in a VLAN with the VID 24: awplus> enable awplus# configure terminal awplus(config)# interface port1.0.11-port1.0.14 awplus(config)# no vlan 24 macaddress 00:30:84:75:11:b2...

  • Page 1000: Show Vlan Macaddress

    Chapter 65: MAC Address-based VLAN Commands SHOW VLAN MACADDRESS Syntax show vlan macaddress Parameters None Mode Privileged Exec mode Description Use this command to display the MAC addresses and the egress ports of the MAC address-based VLANs on the switch. An example is shown in Figure 181.

  • Page 1001: Table 106. Show Vlan Macaddress Command

    AT-8100 Switch Command Line User’s Guide The information is described here. Table 106. SHOW VLAN MACADDRESS Command Parameter Description VLAN VID MAC The VID of the MAC address-based Associations VLAN. Total Number of Associate Total number of MAC addresses that are MAC Addresses assigned to the VLAN.

  • Page 1002: Vlan Macaddress

    Chapter 65: MAC Address-based VLAN Commands VLAN MACADDRESS Syntax name vlan name type macaddress Parameters Specifies a VLAN identifier in the range of 2 to 4094. VID 1 is reserved for the Default_VLAN. You can specify only one VID. The VID of a VLAN should be unique from all other VLANs in a network, unless a VLAN spans multiple switches, in which case its VID should be the same on all switches on which the VLAN resides.
  • Page 1003 AT-8100 Switch Command Line User’s Guide Example This example creates a MAC address-based VLAN that has the name Sales and the VID 3: awplus> enable awplus# configure terminal awplus(config)# vlan database awplus(config-vlan)# vlan 3 name Sales type macaddress 1003...

  • Page 1004: Vlan Set Macaddress (Global Configuration Mode)

    Chapter 65: MAC Address-based VLAN Commands VLAN SET MACADDRESS (Global Configuration Mode) Syntax mac-address vlan set macaddress|destaddress Parameters Specifies the VID of the VLAN to be modified. mac-address Specifies the MAC address to be added to the VLAN. The MAC address must be entered in this format: xx:xx:xx:xx:xx:xx Note...
  • Page 1005 AT-8100 Switch Command Line User’s Guide This example adds the MAC address 00:30:84:32:76:1A to a MAC address-based VLAN with the VID 12: awplus> enable awplus# configure terminal awplus(config)# vlan set 12 macaddress 00:30:84:32:76:1a 1005...

  • Page 1006: Vlan Set Macaddress (Port Interface Mode)

    Chapter 65: MAC Address-based VLAN Commands VLAN SET MACADDRESS (Port Interface Mode) Syntax mac-address vlan set macaddress|destaddress Parameters Specifies the VID of the VLAN to be modified. mac-address Specifies the MAC address to assign to an egress port. The MAC address must be entered in this format: xx:xx:xx:xx:xx:xx Note...
  • Page 1007 AT-8100 Switch Command Line User’s Guide This example assigns the MAC address 00:30:84:75:11:B2 to ports 11 to 14 in a VLAN that has the VID 24: awplus> enable awplus# configure terminal awplus(config)# interface port1.0.1,port1.0.4 awplus(config-if)# vlan set 24 macaddress 00:30:84:75:11:b2 1007...
  • Page 1008 Chapter 65: MAC Address-based VLAN Commands 1008...

  • Page 1009: Chapter 66 : Private Port Vlans

    Chapter 66 Private Port VLANs This chapter provides the following topics:  “Overview” on page 1010  “Guidelines” on page 1012  “Creating Private VLANs” on page 1013  “Adding Host and Uplink Ports” on page 1014  “Deleting VLANs” on page 1015 ...

This manual is also suitable for:

At-8100l/8poeAt-8100s/24f-lcAt-8100s/24poeAt-8100s/16f8-lcAt-8100s/16f8-scAt-8100s/48 ... Show all

Table of Contents