HP (Hewlett-Packard) 445942-001 manuel d'utilisation

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199

Aller à la page of

Un bon manuel d’utilisation

Les règles imposent au revendeur l'obligation de fournir à l'acheteur, avec des marchandises, le manuel d’utilisation HP (Hewlett-Packard) 445942-001. Le manque du manuel d’utilisation ou les informations incorrectes fournies au consommateur sont à la base d'une plainte pour non-conformité du dispositif avec le contrat. Conformément à la loi, l’inclusion du manuel d’utilisation sous une forme autre que le papier est autorisée, ce qui est souvent utilisé récemment, en incluant la forme graphique ou électronique du manuel HP (Hewlett-Packard) 445942-001 ou les vidéos d'instruction pour les utilisateurs. La condition est son caractère lisible et compréhensible.

Qu'est ce que le manuel d’utilisation?

Le mot vient du latin "Instructio", à savoir organiser. Ainsi, le manuel d’utilisation HP (Hewlett-Packard) 445942-001 décrit les étapes de la procédure. Le but du manuel d’utilisation est d’instruire, de faciliter le démarrage, l'utilisation de l'équipement ou l'exécution des actions spécifiques. Le manuel d’utilisation est une collection d'informations sur l'objet/service, une indice.

Malheureusement, peu d'utilisateurs prennent le temps de lire le manuel d’utilisation, et un bon manuel permet non seulement d’apprendre à connaître un certain nombre de fonctionnalités supplémentaires du dispositif acheté, mais aussi éviter la majorité des défaillances.

Donc, ce qui devrait contenir le manuel parfait?

Tout d'abord, le manuel d’utilisation HP (Hewlett-Packard) 445942-001 devrait contenir:
- informations sur les caractéristiques techniques du dispositif HP (Hewlett-Packard) 445942-001
- nom du fabricant et année de fabrication HP (Hewlett-Packard) 445942-001
- instructions d'utilisation, de réglage et d’entretien de l'équipement HP (Hewlett-Packard) 445942-001
- signes de sécurité et attestations confirmant la conformité avec les normes pertinentes

Pourquoi nous ne lisons pas les manuels d’utilisation?

Habituellement, cela est dû au manque de temps et de certitude quant à la fonctionnalité spécifique de l'équipement acheté. Malheureusement, la connexion et le démarrage HP (Hewlett-Packard) 445942-001 ne suffisent pas. Le manuel d’utilisation contient un certain nombre de lignes directrices concernant les fonctionnalités spécifiques, la sécurité, les méthodes d'entretien (même les moyens qui doivent être utilisés), les défauts possibles HP (Hewlett-Packard) 445942-001 et les moyens de résoudre des problèmes communs lors de l'utilisation. Enfin, le manuel contient les coordonnées du service HP (Hewlett-Packard) en l'absence de l'efficacité des solutions proposées. Actuellement, les manuels d’utilisation sous la forme d'animations intéressantes et de vidéos pédagogiques qui sont meilleurs que la brochure, sont très populaires. Ce type de manuel permet à l'utilisateur de voir toute la vidéo d'instruction sans sauter les spécifications et les descriptions techniques compliquées HP (Hewlett-Packard) 445942-001, comme c’est le cas pour la version papier.

Pourquoi lire le manuel d’utilisation?

Tout d'abord, il contient la réponse sur la structure, les possibilités du dispositif HP (Hewlett-Packard) 445942-001, l'utilisation de divers accessoires et une gamme d'informations pour profiter pleinement de toutes les fonctionnalités et commodités.

Après un achat réussi de l’équipement/dispositif, prenez un moment pour vous familiariser avec toutes les parties du manuel d'utilisation HP (Hewlett-Packard) 445942-001. À l'heure actuelle, ils sont soigneusement préparés et traduits pour qu'ils soient non seulement compréhensibles pour les utilisateurs, mais pour qu’ils remplissent leur fonction de base de l'information et d’aide.

Table des matières du manuel d’utilisation

  • Page 1

    HP 1 0Gb Ether net BL -c S w itc h IS CLI R ef er ence Gui de Part number: 445942-001 Third Edition: June 2007[...]

  • Page 2

    2 Legal notices © 2007 Hewlett-Packard Development Company, L.P. The information contained here in is subject to change without no tice. The only warranties for HP products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty[...]

  • Page 3

    Contents 3 Contents ISCLI reference Introduction ................................................................................................................... ........................ 9 Additional references .......................................................................................................... ................... 9 Connect[...]

  • Page 4

    Contents 4 Common Internal Spanning Tree information ...................................................................................... 41 Trunk group in formation ........................................................................................................ ........... 43 VLAN info rmation ............................................[...]

  • Page 5

    Contents 5 ICMP stat istics ................................................................................................................ ................ 83 TCP stat istics ................................................................................................................. .................. 84 UDP stat istics .....................[...]

  • Page 6

    Contents 6 802.1x Port co nfigurat ion ...................................................................................................... ... 128 Rapid Spanning Tree Protocol / Multiple Spanning Tree Protocol co nfigura tion .................................... 129 Common Internal Spanning Tree co nfiguration ...................................[...]

  • Page 7

    Contents 7 Access Control configuration ................................................................................................... ............ 171 Access Control List configuration .............................................................................................. ....... 171 ACL Ethernet Filter configuration ..................[...]

  • Page 8

    Contents 8 Panic co mmand .................................................................................................................. .......... 197 Unscheduled sy stem dumps ....................................................................................................... .......... 197 Index[...]

  • Page 9

    ISCLI reference 9 I SC L I re f e re n c e Introduction The HP 10Gb Ethernet BL-c Switch is ready to perfor m basic switching functions right out of the box. Some of the more advanced features, however, require so me administrative configuration before they can be used effectively. This guide provides a command reference for the HP 10GbE switch. Th[...]

  • Page 10

    ISCLI reference 10 Establishing a console connection To establish a console connecti on with the switch, you need: • A null modem cable with a female DB-9 connector (See the HP 10Gb Ethernet BL-c Switch User Guide for more information .) • An ASCII terminal or a computer running terminal emulation software set to the parameters shown in the tab[...]

  • Page 11

    ISCLI reference 11 Establishing a Telnet connection A Telnet connection offer s the convenience of accessing the HP 10GbE switch fro m any workstation connected to the network. Telnet provides the same options for user, operator, and administrator access as those available through the console port. By defa ult, Telnet is enabled on the switch. The [...]

  • Page 12

    ISCLI reference 12 The following SSH clients are support ed: • SSH 3.0.1 for Linux (freeware) • SecureCRT® 4.1.8 (VanDy ke Technologies, Inc.) • OpenSSH_3.9 for Linux (FC 3) • FedoraCore 3 for SCP commands • PuTTY Release 0.58 (Simon Tatham) for Windows NOTE: The HP 10GbE switch implem entation of SSH is based on versions 1.5 and 2.0, an[...]

  • Page 13

    ISCLI reference 13 Table 2 User acces s levels User account Description and tasks performed User The User has no direct responsibility for sw itch management. He or she can view all switch status information and statistics, but cannot make any configuration changes to the switch. The user account is enabled by default, and the default pa ssword is [...]

  • Page 14

    ISCLI reference 14 Typographical conventions The following table describes the typogra phic styles used in this guide: Table 3 Typographical conventions Typeface or symbol Meaning angle brackets < > Indicate a variable to enter based on the de scription inside the brackets. Do not type the brackets as you enter the command. Example: If the co[...]

  • Page 15

    ISCLI basics 15 IS CL I b as ics Introduction The ISCLI is used for view ing switch information and statistics. In addition, the administrator can use the CLI for performing all levels of swit ch configuration. This chapter describes the ISCLI Command Modes, and provides a list of commands and shortcuts that typically are from all the comma nd mode[...]

  • Page 16

    ISCLI basics 16 The following table describe s the ISCLI command modes. Table 4 ISCLI Command Modes Command Mode/Prompt Command used to enter or exit. User EXEC Switch> Default mode, entered automatically • exit —Exit • logout —Exit Privileged EXEC Switch# • enable —Enter Privileged EXEC mode, from User EXEC mode • disable —Exit [...]

  • Page 17

    ISCLI basics 17 Global commands Some basic commands are recognized throughout th e ISCLI hierarchy. These commands are usef ul for obtaining online Help, navigating th rough the interface, and saving co nfiguration changes. To get help about a specific command, type the command, followed by help . The following table descri bes the global commands.[...]

  • Page 18

    ISCLI basics 18 Command line interface shortcuts The following short cuts allow you to enter commands q uickly and easily. Command abbreviation Most commands can be abbreviated by entering the fi rst characters that distinguish the command from the others in the same mode. For example, consider the follo wing full command: Switch(config)# spanning-[...]

  • Page 19

    Information Commands 19 Inf or mati o n Co mmands Introduction You can view configuration information for the switch in the ISCLI. This chapter discusses how to us e the ISCLI to display switch information. The following table describes general information commands. Table 6 Information commands Command Usage show sys-info Displays system informatio[...]

  • Page 20

    Information Commands 20 Table 6 Information commands Command Usage show information-dump Dumps all switch information available (10K or more, depending on your configuration). If you want to capture dump data to a file, set your communication software on your workstation to capture sessi on data prior to issuing the dump commands. Command mode: All[...]

  • Page 21

    Information Commands 21 SNMPv3 Information commands SNMP version 3 (SNMPv3) is an extensible SNMP Fra mework that supplements the SNMPv2 Framework by supporting the following: • a new SNMP message format • security for messages • access control • remote configuration of SNMP parameters For more details on the SNMPv3 architectur e, see RFC22[...]

  • Page 22

    Information Commands 22 SNMPv3 USM User Table information The following command displays SNMPv3 user inform ation: show snmp-server v3 user Command mode: All The User-based Security Model (USM) in SNMPv3 provid es security se rvices such as authentication and privacy of messages. This security model makes use of a defined set of user id entities di[...]

  • Page 23

    Information Commands 23 The following table describes the SNMPv3 View Table information. Table 10 View Table parameters Field Description View Name Displays the name of the view. Subtree Displays the MIB subtree as an OID string. A view subtree is the set of all MIB object instances which have a commo n Object Identifier prefix to their names. Mask[...]

  • Page 24

    Information Commands 24 SNMPv3 Group Table information The following command displays SNMPv3 group information: show snmp-server v3 group Command mode: All Sec Model User Name Group Name ---------- ----------------------------- ------------------------------- snmpv1 v1v2only v1v2grp usm adminmd5 admingrp usm adminsha admingrp A group is a combinati[...]

  • Page 25

    Information Commands 25 SNMPv3 Target Address Table information The following command displays SN MPv3 target address information: show snmp-server v3 target-address Command mode: All Name Transport Addr Port Taglist Params ---------- --------------- ---- ---------- --------------- trap1 47.81.25.66 162 v1v2trap v1v2param This command displays the [...]

  • Page 26

    Information Commands 26 Table 15 Target Parameters Table information Field Description Sec Model Displays the security model used when generating SNMP messages using this entry. The system may choose to return an inconsistentValue error if an attempt is made to set this variable to a value for a security model which the system does not support. Sec[...]

  • Page 27

    Information Commands 27 SNMPv3 dump The following command displays SNMPv3 information: show snmp-server v3 Command mode: All Engine ID = 80:00:07:50:03:00:0F:6A:F8:EF:00 usmUser Table: User Name Protocol -------------------------------- -------------------------------- admin NO AUTH, NO PRIVACY adminmd5 HMAC_MD5, DES PRIVACY adminsha HMAC_SHA, DES [...]

  • Page 28

    Information Commands 28 System information The following command displa ys system information: show sys-info Command mode: All System Information at 6:56:22 Thu Jan 11, 2007 Time zone: America/US/Pacific HP 10 Gb Ethernet Blade Switch sysName: sysLocation: RackId: Default RUID RackName: Default Rack Name EnclosureSerialNumber: -none- EnclosureName:[...]

  • Page 29

    Information Commands 29 Show recent syslog messages The following command displays system log messages: show logging messages Command mode: All Date Time Severity level Message ---- ---- ----------------- ------- Jul 8 17:25:41 NOTICE system: link up on port 1 Jul 8 17:25:41 NOTICE system: link up on port 8 Jul 8 17:25:41 NOTICE system: link up on [...]

  • Page 30

    Information Commands 30 System user information The following command d isplays user status information : show access user Command mode: All except User EXEC Usernames: user - enabled oper - disabled admin - Always Enabled Current User ID table: 1: name tech1 , ena, cos user , password valid, online 2: name tech2 , ena, cos user , password valid, o[...]

  • Page 31

    Information Commands 31 Layer 2 information The following table describes the Layer 2 Information co mmands. The following sections provide more detailed information and commands. Table 18 Layer 2 information commands Command Usage show mac-address-table Displays Forwarding Database Information. Command mode: All show lacp information Displays a su[...]

  • Page 32

    Information Commands 32 Table 18 Layer 2 information commands Command Usage show vlan information Displays VLAN configuration information, inclu ding: • VLAN Number • VLAN Name • Status • Port membership of the VLAN Command mode: All show layer2 Dumps all switch information available from Layer 2 memory (10K or more, depending on your confi[...]

  • Page 33

    Information Commands 33 Show all FDB information The following command displays Forwarding Database information: show mac-address-table Command mode: All MAC address VLAN Port Trnk State ----------------- ---- ---- ---- ----- 00:02:01:00:00:00 300 1 TRK 00:02:01:00:00:01 300 20 FWD 00:02:01:00:00:02 300 20 FWD 00:02:01:00:00:03 300 20 FWD 00:02:01:[...]

  • Page 34

    Information Commands 34 LACP dump The following command disp lays LACP information: show lacp information Command mode: All >> LACP# dump port lacp adminkey operkey selected prio attached trunk aggr ---------------------------------------------------------------------- 1 off 1 1 n 32768 -- -- 2 off 2 2 n 32768 -- -- 3 off 3 3 n 32768 -- -- 4 [...]

  • Page 35

    Information Commands 35 802.1x information The following command displays 802.1x information: show dot1x information Command mode: All System capability : Authenticator System status : disabled Protocol version : 1 Authenticator Backend Port Auth Mode Auth Status PAE State Auth State ---- ------------ ------------ -------------- ---------- 1 force-[...]

  • Page 36

    Information Commands 36 Table 21 802.1x information Field Description Authenticator PAE State Displays the Authenticator Port Access Entity State. The PAE state can be one of the following: • initialize • disconnected • connecting • authenticating • authenticated • aborting • held • forceAuth Backend Auth State Displays the Backend [...]

  • Page 37

    Information Commands 37 Spanning Tree information The following table describes the Spanning Tree Protocol (STP) information commands. Table 22 STP information commands Command Usage show spanning-tree stp < 1-128 > Displays information about the spanning tree group. Command mode: All show spanning-tree stp < 1-128 > bridge Displays STP[...]

  • Page 38

    Information Commands 38 You can also refer to the following port-specifi c STP information: • Port number and priority • Cost • State • Port Fast Forwarding state • Designated bridge • Designated port The following table descri bes the STP parameters. Table 23 STP parameters Parameter Description Current Root Shows information about the[...]

  • Page 39

    Information Commands 39 Rapid Spanning Tree and Multiple Spanning Tree information The following command displa ys RSTP/M STP information: show spanning-tree stp < 1-128 > information Command mode: All ------------------------------------------------------------------ upfast disabled, update 40 ------------------------------------------------[...]

  • Page 40

    Information Commands 40 You can also refer to the following port-specifi c RSTP information: • Port number and priority • Cost • State • Role • Designated bridge and port • Link type The following table describes the STP parameters in RSTP or MSTP mode. Table 24 Rapid Spanning Tree par ameter descriptions Parameter Description Current R[...]

  • Page 41

    Information Commands 41 Table 24 Rapid Spanning Tree par ameter descriptions Parameter Description Role Shows the current role of this port in the Sp anning Tree. The port role can be one of the following: Designated ( DESG ), Root ( ROOT ), Alternate ( ALTN ), Backup ( BKUP ), Master ( MAST ), or Unknown ( UNK ). Designated bridge Shows informatio[...]

  • Page 42

    Information Commands 42 In addition to seeing if Common Internal Spanning Tr ee (CIST) is enabled or disabled, you can view the following CIST bridge infor mation: • Status of Uplink Fast ( upfast ) • CIST root • CIST regional root • Priority • Maximum age value • Forwarding delay • Hops You can also refer to the following port-specif[...]

  • Page 43

    Information Commands 43 Table 25 Common Internal Spanning Tr ee parameter descriptions Parameter Description Role Shows the current role of this port in the Spanning Tree. The port role can be one of the following: Designated ( DESG ), Root ( ROOT ), Alternate ( ALTN ), Backup ( BKUP ), Master ( MAST ). Designated Bridge Shows information about the[...]

  • Page 44

    Information Commands 44 VLAN information The following table describes th e VLAN information co mmands. Table 26 VLAN information commands Command Usage show vlan Displays VLAN information Command mode: All show vlan information Displays VLAN inf ormation, incl uding spanning tree assignment. Command mode: All The following command disp lays VLAN i[...]

  • Page 45

    Information Commands 45 Layer 3 information The following table describes basic Layer 3 Information commands. The following sections provide more detailed information and commands. Table 27 Layer 3 information commands Command Usage show ip route Displays all routes configured in the switch. Command mode: All except User EXEC show ip information Di[...]

  • Page 46

    Information Commands 46 Route information Using the commands listed below, you can display all or a portion of the IP routes current ly held in the switch. Table 28 Route Information commands Command Usage show ip route address < IP address > Displays a single route by destination IP address. Command mode: All except User EXEC show ip route g[...]

  • Page 47

    Information Commands 47 The following table describes the Type parameter. Table 29 IP Routing Type information Field Description indirect The next hop to the host or subnet destinatio n will be forwarded through a router at the Gateway address. direct Packets will be delivered to a destination host or subnet attached to the switch. local Indicates [...]

  • Page 48

    Information Commands 48 ARP information The Address Resolution Protocol (ARP) information includes IP address and MAC address of each entry, address status flags, VLAN, and port for the address, and port referencing information. The following table describe s the Address Resolution Protocol comman ds. Table 31 ARP information Command Usage show ip [...]

  • Page 49

    Information Commands 49 ARP address list information The following command displays ARP address list information: show ip arp reply Command mode: All except User EXEC IP address IP mask MAC address VLAN Flags --------------- --------------- ----------------- ---- ----- 205.178.18.66 255.255.255.255 00:70:cf:03:20:04 P 205.178.50.1 255.255.255.255 0[...]

  • Page 50

    Information Commands 50 OSPF general information The following command displays general OSPF inform ation: show ip ospf general-information Command mode: All except User EXEC OSPF Version 2 Router ID: 10.10.10.1 Started at 1663 and the process uptime is 4626 Area Border Router: yes, AS Boundary Router: no LS types supported are 6 External LSA count[...]

  • Page 51

    Information Commands 51 OSPF Database information The following table describes the OS PF Database information commands. Table 34 OSPF Database information commands Command Usage show ip ospf database advertising- router < router ID > Takes advertising router as a pa rameter. Displays all the Link State Advertisements (LSAs) in the LS databas[...]

  • Page 52

    Information Commands 52 Table 34 OSPF Database information commands Command Usage show ip ospf database summary [ advertising-router < router ID > | linkstate-id < A.B.C.D > | self] Displays the network summary (t ype 3) LSAs with detailed information of each field of the LSAs. Command mode: All except User EXEC show ip ospf database Di[...]

  • Page 53

    Information Commands 53 Routing Information Protocol The following table describes th e Routing Information Pr otocol (RIP) information commands. Table 35 RIP information commands Command Usage show ip rip routes Displays RIP routes. Command mode: All except User EXEC show ip rip interface [< 1-249 >] Displays RIP interface information. Comma[...]

  • Page 54

    Information Commands 54 IP information The following command displa ys Layer 3 information: show layer3 information Command mode: All IP information: Interface information: 1: 10.80.23.243 255.255.254.0 10.80.23.255, vlan 1, up 250: 10.20.7.144 255.255.0.0 10.20.255.255, vlan 4095, up Default gateway information: metric strict 1: 10.80.22.1, vlan a[...]

  • Page 55

    Information Commands 55 IGMP multicast group information The following table describes the comman ds used to display information about IGMP groups learned by the switch. Table 36 IGMP Multicast Group commands Command Usage show ip igmp groups address < IP address > Displays a single IGMP multic ast group by its IP address. Command mode: All e[...]

  • Page 56

    Information Commands 56 IGMP multicast router information The following table describes the comman ds used to display information about multicast routers learned through IGMP Snooping. Table 37 IGMP Multicast Router information commands Command Usage show ip igmp mrouter vlan < 1-4094 > Displays information for all multicast groups on a singl[...]

  • Page 57

    Information Commands 57 VRRP information Virtual Router Redundan cy Protocol (VRRP) support on HP 10GbE switch provides redundancy between routers in a LAN. This is accomplished by configurin g the same virtual router IP address and ID number on each participating VRRP-capable routing device. One of the virtual routers is then elected as the master[...]

  • Page 58

    Information Commands 58 802.1p information The following command displays 802.1p information: show qos transmit-queue information Command mode: All Current priority to COS queue information: Priority COSq Weight -------- ---- ------ 0 0 1 1 0 1 2 0 1 3 0 1 4 1 2 5 1 2 6 1 2 7 1 2 Current port priority information: Port Priority COSq Weight ----- --[...]

  • Page 59

    Information Commands 59 ACL information The following table describes the comman ds used to display information about Access C ontrol Lists and Groups. Table 40 ACL information commands Command Usage show access-control list < 1-384 > Displays information about the selected ACL. Command mode: All except User EXEC show access-control group <[...]

  • Page 60

    Information Commands 60 RMON Information The following command displays general RMON in formation: show rmon Command mode: All RMON history information The following command displays RMON history inform ation: show rmon history Command mode: All RMON History group configuration: Index IFOID Interval Rbnum Gbnum ----- ------------------------------ [...]

  • Page 61

    Information Commands 61 RMON alarm information The following command displays RMON alarm information: show rmon alarm Command mode: All RMON Alarm group configuration: Index Interval Type rLimit fLimit rEvtIdx fEvtIdx last value ----- -------- ---- -------- -------- ------- ------- ---------- 1 30 abs 10 0 1 0 0 2 900 abs 0 10 0 2 0 3 300 abs 10 20[...]

  • Page 62

    Information Commands 62 Table 42 RMON Alarm Information Command Usage rEvtIdx Displays the rising alarm event index that is triggered when a rising threshold is crossed. fEvtIdx Displays the falling alarm event index that is triggered when a falling threshold is crossed. Last value Displays the last sampled value. OID Displays the MIB Object Identi[...]

  • Page 63

    Information Commands 63 Link status information The following command displays link information: show interface link Command mode: All except User EXEC ------------------------------------------------------------------ Port Speed Duplex Flow Ctrl Link ---- ----- -------- --TX-----RX-- ------ 1 10000 full yes yes down 2 10000 full yes yes down 3 100[...]

  • Page 64

    Information Commands 64 Port information The following command displays port information: show interface information Command mode: All except User EXEC Port Tag RMON PVID NAME VLAN(s) ---- --- ---- ---- -------------- ------------------------------- 1 n d 1 Downlink1 1 2 n d 1 Downlink2 1 3 n d 1 Downlink3 1 4 n d 1 Downlink4 1 5 n d 1 Downlink5 1 [...]

  • Page 65

    Information Commands 65 Logical Port to GEA Port mapping The following command displays information about GEA ports: show geaport Command mode: All Logical Port GEA Port(0-based) GEA Unit ------------ ----------------- --------- 1 2 0 2 4 0 3 6 0 4 8 0 5 10 0 6 12 0 7 14 0 8 16 0 9 3 0 10 5 0 11 7 0 12 9 0 13 11 0 14 13 0 15 15 0 16 17 0 17 255 0 1[...]

  • Page 66

    Information Commands 66 Uplink Failure Detection information The following command displays Uplink Failure Detecti on (UFD) information: show ufd Command mode: All except User EXEC Uplink Failure Detection: Enabled LtM status: Down Member STG STG State Link Status --------- --- ------------ ----------- port 20 down 1 DISABLED 10 DISABLED * 15 DISAB[...]

  • Page 67

    Statistics Commands 67 S tatisti c s C ommands Introduction You can view switch perfor mance statistics in the us er, operator, and administrator command modes. This chapter discusses how to use the IS C LI to display switch statistics. The following table describes ge neral Stat istics commands. Table 44 Statistics comma nds Command Usage show lay[...]

  • Page 68

    Statistics Commands 68 Port Statistics The following table describes the Port Statistics comma nds. The following sections p rovide more detailed information and commands. Table 45 Port Statistics co mmands Command Usage show interface port < port number > dot1x counters Displays IEEE 802.1x statistics for the port. Command mode: All show int[...]

  • Page 69

    Statistics Commands 69 802.1x statistics Use the following command to display the 802.1x au thenticator statistics of the selected port: show interface port < port number > dot1x counters Command mode: All Authenticator Statistics: eapolFramesRx = 0 eapolFramesTx = 0 eapolStartFramesRx = 0 eapolLogoffFramesRx = 0 eapolRespIdFramesRx = 0 eapol[...]

  • Page 70

    Statistics Commands 70 Table 46 802.1x statistics for port Statistics Description authEntersAuthenticating Total number of times that the state machine transitions from CONNECTING to AUTHENTICATING, as a result of an EAPResponse / Identity message being received from the Supplicant. authSuccessesWhileAuthenticating Total number of times that the st[...]

  • Page 71

    Statistics Commands 71 Table 46 802.1x statistics for port Statistics Description backendNonNakResponsesFrom Supplicant Total number of times that the state machine receives a response from the Supplicant to an initial EAP-Request, and the response is something other than EAP-NAK. In dicates that the Supplicant can respond to the Authenticators cho[...]

  • Page 72

    Statistics Commands 72 Table 47 Bridging statis tics for port Statistics Description dot1TpLearnedEntryDiscards The total number of Forwarding Data base entries, which have been or would have been learned, but have been discarded due to a lack of space to store them in the Forwarding Database. If this counter is increasing, it i ndi cates that the [...]

  • Page 73

    Statistics Commands 73 Table 48 Ethernet statistics for port Statistics Description dot3StatsFCSErrors A count of frames received on a particular interface that are an integral number of octets in length but do not pass the Frame Check Sequence (FCS) check. The count represented by an instance of this object is increme nted when the frameCheckError[...]

  • Page 74

    Statistics Commands 74 Table 48 Ethernet statistics for port Statistics Description dot3StatsFrameTooLongs A count of frames received on a particular interface that exceeds the maximum permitted frame size. The count represented by an instance of this object is increme nted when the frameTooLong status is returned by the MAC service to the LLC (or [...]

  • Page 75

    Statistics Commands 75 Table 49 Interface statistics for port Statistics Description MulticastPkts—IfHCIn The total number of packets, delivered by this sublayer. These are the packets that higher-level protocols requested to be tr ansmitted, and which were addressed to a multicast address at this sublayer, in cluding those that were discarded or[...]

  • Page 76

    Statistics Commands 76 Internet Protocol (IP) statistics Use the following command to display the interfac e protocol statisti cs of the selected port: show interface port < port number > ip-counters Command mode: All GEA IP statistics for port 1: ipInReceives : 0 ipInHeaderError: 0 ipInDiscards : 0 The following table describes the Intern et[...]

  • Page 77

    Statistics Commands 77 Layer 2 statistics The following table describes the Layer 2 statistics commands. The followin g sections provide more detailed information and commands. Table 52 Layer 2 Statisti cs commands Command Usage show mac-address-table counters Displays the Forwarding Database st atistics. Command mode: All show interface port < [...]

  • Page 78

    Statistics Commands 78 LACP statistics Use the following command to display Link Aggr egatio n Control Protocol (LACP) statistics: show interface port < port number > lacp counters Command mode: All Valid LACPDUs received - 0 Valid Marker PDUs received - 0 Valid Marker Rsp PDUs received - 0 Unknown version/TLV type - 0 Illegal subtype receive[...]

  • Page 79

    Statistics Commands 79 Layer 3 statistics The following table describes basic Layer 3 statistics commands. The following sections provide more detailed information and commands. Table 54 Layer 3 Statisti cs commands Command Usage show ip counters Displays IP statistics. Command mode: All except User EXEC clear ip counters Clears IP statistics. Use [...]

  • Page 80

    Statistics Commands 80 Table 54 Layer 3 Statisti cs commands Command Usage show ip rip counters Displays Routing Information Protocol (RIP) statistics. Command mode: All above Priv EXEC clear ip rip counters Clears Routing Information Protocol (RIP) statist ics. Command mode: All above Priv EXEC show ip gea Displays GEA statistics. Command mode: Al[...]

  • Page 81

    Statistics Commands 81 Table 55 IP statistics Statistics Description ipInDiscards The number of input IP datagrams for wh ich no problems were encountered to prevent their continued processing, but whic h were discarded (for example, for lack of buffer space). This counter does not include any datagrams disc arded while awaiting re-assembly. ipInDe[...]

  • Page 82

    Statistics Commands 82 ARP statistics The following command displays Addre ss Resolution Protocol stati stics. show ip arp counters Command mode: All except User EXEC ARP statistics: arpEntriesCur: 2 arpEntriesHighWater: 4 arpEntriesMax: 4095 The following table describe s the Address Resol ution Protocol (ARP) statistics: Table 57 ARP statistics S[...]

  • Page 83

    Statistics Commands 83 ICMP statistics The following command displays ICMP statisti cs: show ip icmp counters Command mode: All except User EXEC ICMP statistics: icmpInMsgs: 245802 icmpInErrors: 1393 icmpInDestUnreachs: 41 icmpInTimeExcds: 0 icmpInParmProbs: 0 icmpInSrcQuenchs: 0 icmpInRedirects: 0 icmpInEchos: 18 icmpInEchoReps: 244350 icmpInTimes[...]

  • Page 84

    Statistics Commands 84 Table 59 ICMP statistics Statistics Description icmpOutErrors The number of ICMP messages that this switch did not send due to problems discovered within ICMP such as a lack of bu ffer. This value should not inclu de errors discovered outside the ICMP layer such as th e inability of IP to route the resultant datagram. In some[...]

  • Page 85

    Statistics Commands 85 Table 60 TCP statistics Statistics Description tcpRtoMin The minimum value permitted by a TCP implem entation for the retransmission timeout, measured in milliseconds. More refined semantic s for objects of this type depend upon the algorithm used to determine the retransmission timeout. In particular, when the timeout algori[...]

  • Page 86

    Statistics Commands 86 UDP statistics The following command displays UDP statistics: show ip udp counters Command mode: All except User EXEC UDP statistics: udpInDatagrams: 54 udpOutDatagrams: 43 udpInErrors: 0 udpNoPorts: 1578077 The following table describes the User Dat agram Protocol (UDP) statistics: Table 61 UDP statistics Statistics Descript[...]

  • Page 87

    Statistics Commands 87 Table 62 IGMP statistics Statistic Description rxIgmpGrpSpecificQueries Total number of Membership Query packets received from sp ecific groups Total number of Group Source Specific Queries (GSSQ ) received rxIgmpLeaves Total number of Leave requests received rxIgmpReports Total number of Membership Reports received txIgmpRep[...]

  • Page 88

    Statistics Commands 88 OSPF global statistics The following command displays OSPF global statisti cs: show ip ospf counters general Command mode: All except User EXEC OSPF stats ---------- Rx/Tx Stats: Rx Tx -------- -------- Pkts 0 0 hello 23 518 database 4 12 ls requests 3 1 ls acks 7 7 ls updates 9 7 Nbr change stats: Intf change Stats: hello 2 [...]

  • Page 89

    Statistics Commands 89 Table 64 OSPF global statistics Statistic Description Tx Database The sum total of all Database Description pa ckets transmitted on all OSPF areas and interfaces. Rx ls Requests The sum total of all Link State Request packet s received on all OSPF areas and interfaces. Tx ls Requests The sum total of all Link State Request pa[...]

  • Page 90

    Statistics Commands 90 Table 64 OSPF global statistics Statistic Description n1way The sum total number of Hello pack ets received from neighbors, in which this router is not mentioned across all OSPF interfaces and areas. rst_ad The sum total number of times the Neighbor adjacency has been reset across all OPSF areas and interfaces. down The total[...]

  • Page 91

    Statistics Commands 91 VRRP statistics Virtual Router Redundancy Protocol (VRRP) support on the HP 10GbE switch provides redundancy between routers in a LAN. This is accomplished by configuring the same virtual router IP address and ID number on each participating VRRP-capable routing device. One of the virtual routers is then ele cted as the maste[...]

  • Page 92

    Statistics Commands 92 RIP statistics The following command displays RIP statistics: show ip rip counters Command mode: All except User EXEC RIP ALL STATS INFORMATION: RIP packets received = 12 RIP packets sent = 75 RIP request received = 0 RIP response received = 12 RIP request sent = 3 RIP response sent = 72 RIP route timeout = 0 RIP bad size pac[...]

  • Page 93

    Statistics Commands 93 Management Processor statistics The following table describes the MP -spe cific Statistics commands. The follo wing sections provide more detailed information and commands. Table 67 MP-specific S tatistics commands Command Usage show mp packet Displays packet statistics, to check for leads and load. Command mode: All show mp [...]

  • Page 94

    Statistics Commands 94 Table 68 MP specific packet statistics Field Description smalls Total number of packet allocations with size less than 128 bytes from the packet buffer pool by the TCP/IP protocol stack. smalls hi-watermark The highest number of packet allocation with size less than 128 bytes from the pack et buffer pool by the TCP/IP protoco[...]

  • Page 95

    Statistics Commands 95 UDP statistics The following command displays UDP statistics: show mp udp-block Command mode: All except User EXEC All UDP allocated control blocks: 161: listen The following table describes the User Datagram Protocol (UDP) control block (UCB) statisti cs shown in this example: Table 70 UDP statistics Description Example Stat[...]

  • Page 96

    Statistics Commands 96 SNMP statistics The following command displays SNMP statistics: show snmp-server counters Command mode: All except User EXEC SNMP statistics: snmpInPkts: 54 snmpInBadVersions: 0 snmpInBadC'tyNames: 0 snmpInBadC'tyUses: 0 snmpInASNParseErrs: 0 snmpEnableAuthTraps: 0 snmpOutPkts: 54 snmpInBadTypes: 0 snmpInTooBigs: 0 [...]

  • Page 97

    Statistics Commands 97 Table 72 SNMP statistics Statistics Description snmpOutPkts The total number of SNMP messages whic h were passed from the SNMP protocol entity to the transport service. snmpInBadTypes The total number of SNMP message s which failed ASN.1 parsing. snmpInTooBigs The total number of SNMP Protocol Data Unit s (PDUs) that were del[...]

  • Page 98

    Statistics Commands 98 Table 72 SNMP statistics Statistics Description snmpOutGetRequests The total number of SNMP Get-Request Prot ocol Data Units (PDUs), which ha ve been generated by the SNMP protocol entity. snmpOutGetNexts The total number of SNMP Get-Next Protoc ol Data Units (PDUs), which have been generated by the SNMP protocol entity. snmp[...]

  • Page 99

    Statistics Commands 99 Table 73 NTP statistics Statistics Description Primary Server • Requests Sent —The total number of NTP re quests the switch sent to the primary NTP server to synchronize time. • Responses Received —The total number of NTP responses received from the primary NTP server. • Updates —The total number of times the swit[...]

  • Page 100

    Statistics Commands 100 Statistics dump The following command dumps swit ch statistics: show counters Use the dump command to dump all switch statistics av ailable (40K or more, depending on your configuration). This data can be u sed to tune or debug switch performanc e. If you want to capture dump data to a file, set yo ur communication soft ware[...]

  • Page 101

    Configuration Commands 101 C onf i gur ation C o mmands Introduction The Configuration commands are available only from an administrator login. They include commands for configuring every aspect o f the HP 10GbE switch . Changes can be saved to non-volatile memory (NVRAM). The following table describes the basic Configurati on commands. The followi[...]

  • Page 102

    Configuration Commands 102 System configuration These commands allow you to configure switch manage ment parameters such as user and administrator privilege mode passwords, browser-based manage ment settings, and management access list. The following table describes the System Configuration commands. Table 76 System Configuration commands Command U[...]

  • Page 103

    Configuration Commands 103 Table 76 System Configuration commands Command Usage [no] enable < string > Allows administrators to assign the Privilege EXEC password. The password will be required to enter Privilege EXEC mode. The default value is disabled . Command mode: Global configura tion show system Displays the current system parameters. [...]

  • Page 104

    Configuration Commands 104 Table 77 Syslog Configuration comman ds Com mand Desc rip tio n [no] logging log {< feature >} Displays a list of features for which syslog mes sages can be generated. You can choose to enable/disable specific features or enable/disable syslog on all available features. Features include: • cfg • cli • console [...]

  • Page 105

    Configuration Commands 105 Secure Shell Server configuration Telnet traffic on the network is not secure. These commands enable Secure Shell (SSH) acce ss from any SSH client. The SSH program securely logs into another computer over a network and executes commands in a secure environment. All data using SSH is encrypted. NOTE: See the HP 10Gb Ether[...]

  • Page 106

    Configuration Commands 106 Table 78 SSHD Configuration commands Com mand Desc rip tio n no ssh enable Disables the SSH server. This is the default for the SSH server. Command mode: Global configura tion show ssh Displays the current SSH server configuration. Command mode: All RADIUS server configuration NOTE: See the HP 10Gb Ethernet BL-c Switch Ap[...]

  • Page 107

    Configuration Commands 107 Table 79 RADIUS Server Configuration commands Com mand Desc rip tio n no radius-server enable Disables the RADIUS server. This is the default. Command mode: Global configuration show radius-server Displays the current RADIUS server parameters. Command mode: All IMPORTANT: If RADIUS is enabled, you must login usin g RADIUS[...]

  • Page 108

    Configuration Commands 108 Table 80 TACACS+ Server Configuration commands Com mand Desc rip tio n tacacs-server port < TCP port number > Enter the number of the TCP port to be configured, between 1 and 65000. The d efault is 49. Command mode: Global configuration tacacs-server retransmit < 1-3 > Sets the number of failed au thentication[...]

  • Page 109

    Configuration Commands 109 and use the administrator password to log into the swit ch. The switch allows this only if TACACS + servers are not available. NTP server configuration These commands enable you to synchroni ze the switch clock to a Network Time Pr otocol (NTP) server. By default, this option is disabled. The following table describes the[...]

  • Page 110

    Configuration Commands 110 System SNMP configuration The switch software supports SNMP-based netw ork management. In SNMP model of network management, a management station (client/mana ger) accesses a set of variables known as MIBs (Management Information Base) provided by th e managed device (agent). If you are running an SNMP network management s[...]

  • Page 111

    Configuration Commands 111 Table 82 System SNMP Configuration commands Com mand Desc rip tio n snmp-server timeout < 1-30 > Sets the timeout value for the SNMP state machine. The range is 1-30 minutes. The default value is 5 minutes. Command mode: Global configura tion [no] snmp-server authentication-trap enable Enables or disables the use of[...]

  • Page 112

    Configuration Commands 112 Table 83 SNMPv3 Configuration commands Com mand Desc rip tio n snmp-server group < 1-16 > Configures an SNMP group. A group maps the user name to the access group names and their access rights needed to access SNMP management objects. A group defines the access rights assign ed to all names that belong to a particul[...]

  • Page 113

    Configuration Commands 113 User Security Model configuration You can make use of a defined set of user identities using this Securi ty Model. An SNMP engine must have the knowledge of applicable attributes of a user. These commands help you create a user security mode l entry for an authorized user. You need to provide a security name to create the[...]

  • Page 114

    Configuration Commands 114 SNMPv3 View configuration The following table describes the SN MPv3 View Configuration commands. Table 85 SNMPv3 View Configuration commands Com mand Desc rip tio n snmp-server view < 1-128 > name < 1-32 characters > Defines the name for a family of view subtrees up to a maximum of 32 characters. Command mode:[...]

  • Page 115

    Configuration Commands 115 Table 86 View-based Access Control Configuration commands Com mand Desc rip tio n snmp-server access < 1-32 > level {noAuthNoPriv|authNo- Priv|authPriv} Defines the minimum level of security required to gain access rights. The level noAuthNoPriv means that the SNMP message will be sent without authentication and wit[...]

  • Page 116

    Configuration Commands 116 Table 87 SNMPv3 Group Configuration commands Com mand Desc rip tio n show snmp-server group < 1-16 > Displays the current vacmSecurityToGroup configuration . Command mode: All SNMPv3 Community Table configuration These commands are used f or configuring the communit y t able entry. The configured entry is stored in [...]

  • Page 117

    Configuration Commands 117 Table 89 SNMPv3 Target Address Table Configuration commands Com mand Desc rip tio n snmp-server target-address < 1-16 > name < 1-32 characters > address < transport IP address > Configures a transport address IP that can be used in the generation of SNMP traps. Command mode: Global configuration snmp-ser[...]

  • Page 118

    Configuration Commands 118 Table 90 SNMPv3 Target Parameter s Table Configuration comman ds Com mand Desc rip tio n snmp-server target-parameters < 1-16 > level {noAuthNo- Priv|authNoPriv|authPriv} Selects the level of security to be used when generating the SNMP messages using this entry. The level noAuthNoPriv means that the SNMP message wi[...]

  • Page 119

    Configuration Commands 119 System Access configuration The following table describes the Sy stem Access Configuration commands. Table 92 System Access Configuration commands Com mand Desc rip tio n [no] access http enable Enables or disables HTTP (Web) access to the Browser-based Interface. It is enabled by default. Command mode: Global configura t[...]

  • Page 120

    Configuration Commands 120 Table 93 Management Networks Configuration commands Com mand Desc rip tio n clear access management-network Clears the management network definitions. Command mode: All except User EXEC User Access Control configuration The following table describes the User A ccess Control commands. Table 94 User Access Control Configura[...]

  • Page 121

    Configuration Commands 121 Table 95 User ID Configuration commands Com mand Desc rip tio n access user <1-10> password <1-128 characters> Sets the user password of up to 128 characters maximum. Command mode: Global configuration access user <1-10> enable Enables the user ID. Command mode: Global configuration no access user <1-[...]

  • Page 122

    Configuration Commands 122 HTTPS Access configuration The following table describes the HT TPS Access Configuration comma nds. Table 96 HTTPS Access Configuration commands Com mand Desc rip tio n [no] access https enable Enables or disables BBI access (Web acce ss) using HTTPS. The default value is disabled . Command mode: Global configuration acce[...]

  • Page 123

    Configuration Commands 123 Port configuration Use the port configuration commands to configur e settings for individual switch ports. NOTE: Port 17 is reserved for switch ma nagement. The following table describes the Port Config uration commands. The following sections provide more detailed information and commands. Table 97 Port Configuration com[...]

  • Page 124

    Configuration Commands 124 Table 97 Port Configuration commands Com mand Desc rip tio n shutdown Disables the port. To temporarily di sable a port without changing its configuration attributes, see the “Temporarily disabling a port” section later in this chapter. Command mode: Interface port show interface port { <port number> } Displays [...]

  • Page 125

    Configuration Commands 125 Table 98 Gigabit Link Conf iguration commands Com mand Desc rip tio n no flowcontrol Sets the flow control to none. Command mode: Interface port [no] auto Enables or disables auto-negotiation for the port. All downlink and uplink ports are fixed at 10000 Mbp s, and cannot be set to auto-negotiate. Command mode: Interface [...]

  • Page 126

    Configuration Commands 126 Layer 2 configuration The following table describes the La yer 2 Conf iguration commands. The following sections provide more detailed information and commands. Table 100 Layer 2 Configuration comma nds Com mand Desc rip tio n vlan { <1-4094> } Enter VLAN configuration mode. Command mode: Global configura tion [no] [...]

  • Page 127

    Configuration Commands 127 802.1x Global configuration The global 802.1x commands allow yo u to configure para meters that affect all ports in the switch (except management port 17). The following table descri bes the 802.1x Gl obal Configuration commands. Table 102 802.1x Global Configuration commands Com mand Desc rip tio n dot1x mode {[force-una[...]

  • Page 128

    Configuration Commands 128 Table 102 802.1x Global Configuration commands Com mand Desc rip tio n show dot1x Displays current global 802.1x pa rameters. Command mode: All 802.1x Port configuration The 802.1x port commands allow you to configure parameter s that affect the selected port in the switch. These settings override the global 802.1x parame[...]

  • Page 129

    Configuration Commands 129 Table 103 802.1x Port Configuration commands Com mand Desc rip tio n dot1x re-authentication-interval {< 1-604800 >} Sets the time, in seconds, the authenticator waits before re- authenticating a supplicant (client) when periodic re-authentication is enabled. The default va lue is 3600 seconds. Command mode: Interfa[...]

  • Page 130

    Configuration Commands 130 Table 104 Multiple Spanning Tree Configuration commands Com mand Desc rip tio n spanning-tree mstp maximum-hop <4-60> Configures the maximum number of bridge hops a packet may to traverse before it is dropped. The range is from 4 to 60 hops. The default is 20. Command mode: Global configura tion spanning-tree mode {[...]

  • Page 131

    Configuration Commands 131 Common Internal Spanning Tree configuration The Common Internal Spanning Tree (CIST) provides compatibility with different MSTP regions and with devices running different Spanning Tree instances. It is equi valent to Spanning Tree Group 0. The following table describes the command s used to configure CIST commands. Table [...]

  • Page 132

    Configuration Commands 132 Table 106 CIST Bridge Configuration commands Com mand Desc rip tio n spanning-tree mstp cist- bridge forward-delay { <4-30> } Configures the CIST bridge forward delay parameter. The forward delay parameter specifies the amount of time that a bridge port has to wait before it changes from the listening state to the l[...]

  • Page 133

    Configuration Commands 133 Table 107 CIST Port Configuration commands Com mand Desc rip tio n spanning-tree mstp cist hello { <1-10> } Configures the CIST port Hello time. The Hello time specifies how often the root bridge transmits a configura tion bridge protocol da ta unit (BPDU). Any bridge that is not the root bridge uses the root bridge[...]

  • Page 134

    Configuration Commands 134 Spanning Tree configuration The switch supports the IEEE 802.1d Spanning Tree Pr otocol (STP) and Cisco proprietary PVS T and PVST+ protocols. You can configure up to 127 spanning tr ee groups on the switch (STG 128 is reserved for switch management). Spanning Tr ee is turned on by default. NOTE: When RSTP is turned on, o[...]

  • Page 135

    Configuration Commands 135 Bridge Spanning Tree configuration Spanning tree bridge parameters can be configur ed for each Spanning Tree Group. ST P bridge parameters include: • Bridge priority • Bridge hello time • Bridge maximum age • Forwarding delay • Current bridge configuratio n The following table describes the Bridge Spanning Tree [...]

  • Page 136

    Configuration Commands 136 When configuring STP bridge parameters, the following formulas must be used: • 2*( fwd -1) ≥ mxage • 2*( hello +1) ≤ mxage Spanning Tree port configuration The default config uration for STP/PVST+ is off for downlink ports (1-16) and the management port (17), and on for uplink ports (18-21). The default conf igur [...]

  • Page 137

    Configuration Commands 137 Table 110 Spanning Tree Port Configuration commands Com mand Desc rip tio n [no] spanning-tree stp { <1-128> } edge Enables or disables this port as an edge port. An edge port is not connected to a bridge, and can begin forwarding traffic as soon as the link is up. Configure server po rts as edge ports (enabled). Th[...]

  • Page 138

    Configuration Commands 138 Table 112 Static FDB Configuration commands Com mand Desc rip tio n mac-address-table static all [ <interface>|<VLAN>|<port> ] Clears specified static FDB entries from the forwarding database, as follows: • Interface • MAC address • VLAN Command mode: Global configuration Trunk configuration Trunk [...]

  • Page 139

    Configuration Commands 139 Layer 2 IP Trunk Hash configuration Trunk hash parameter s are set globally for the HP 10GbE swit ch. You can enable one or two parameters, to configure any of the follo wing valid combinations: • SMAC (source MAC only) • DMAC (destination MAC only) • SIP (source IP only) • DIP (destination IP only) • SIP + DIP [...]

  • Page 140

    Configuration Commands 140 Link Aggregation Control Protocol configuration The following table describes th e LACP Configuration commands. Table 115 LACP Configuration commands Com mand Desc rip tio n lacp system-priority {< 1-65535 >} Defines the priority value (1 through 65 535) for the switch. Lower numbers provide higher priority. The def[...]

  • Page 141

    Configuration Commands 141 VLAN configuration The commands in this section configure V LAN attributes , change the status of the VLAN, delete the VLAN, and change the port membership of the VLAN. By default, the VLANs are disabled except VLAN 1, which is always enabled. The switch supports a maximum of 1,000 VLANs. VLAN 4095 is reserved for switch [...]

  • Page 142

    Configuration Commands 142 Layer 3 configuration The following table describes basic Layer 3 Configuration commands. The foll owing s ections provide more detailed information and commands. Table 118 L3 Configuration commands Com mand Desc rip tio n interface ip { <1-250> } Enter IP Interface mode. Command mode: Global configura tion route-ma[...]

  • Page 143

    Configuration Commands 143 Table 119 IP Interface Configuration co mmands Com mand Desc rip tio n no enable Disables this IP interface. Command mode: Interface IP no interface ip { <1-250> } Removes this IP interface. Command mode: Global configura tion show interface ip { <1-250> } Displays the current interface settings. Command mode:[...]

  • Page 144

    Configuration Commands 144 IP Static Route configuration The following table describes the Stat ic Route Config uration commands. Table 121 Static Route Configuration commands Com mand Desc rip tio n ip route < IP subnet > < IP netmask > < IP nexthop > [< IP interface (1-250) >] Adds a static route. You will be prompted to e[...]

  • Page 145

    Configuration Commands 145 Static ARP configuration Static ARP entries are permanent in the ARP cache and do not age out like the ARP entries that are learnt dynamically. Static ARP entries enable the sw itch to reach the hosts without sending an ARP broadcast request to the network. Static ARPs are also useful to communicate with devices that do n[...]

  • Page 146

    Configuration Commands 146 IP Forwarding configuration The following table describes the IP Forwarding Configuration commands. Table 124 IP Forwarding Configuration commands Com mand Desc rip tio n [no] ip routing direct-broadcasts Enables or disables forwarding directed broadcasts. This command is disabled by def ault. Command mode: Global configu[...]

  • Page 147

    Configuration Commands 147 Route Map configuration Routing maps control and modify ro uting information. The map number < 1-32 > represents the routing map you wish to configure. The following table describes the basic Route Map Configuration commands. The following secti ons provide more detailed information and commands. Table 126 Route Map[...]

  • Page 148

    Configuration Commands 148 IP Access List configuration The route map number < 1-32 > and the access list number < 1-8 > represent the IP access list you wish to configure. The following table describes th e IP Access List Configuration comman ds. Table 127 IP Access List Configuration commands Com mand Desc rip tio n [no] access-list &[...]

  • Page 149

    Configuration Commands 149 RIP Interface configuration The RIP command s are used for configurin g Routing Info rmation Protocol parameters. This opt ion is turned off by default. NOTE: Do not configure RIP versi on 1 parameters if your routing equipment us es RIP version 2. The following table describes the RIP Interface Config ur ation commands. [...]

  • Page 150

    Configuration Commands 150 Table 129 RIP Interface Conf iguration commands Com mand Desc rip tio n ip rip authentication key {< password >} Configures the authentication key password. Command mode: Interface IP ip rip enable Enables this RIP interface. Command mode: Interface IP no ip rip enable Disables this RIP interface. Command mode: Inte[...]

  • Page 151

    Configuration Commands 151 Open Shortest Path First configuration The following table describes the basic Open Shortest Path First (OSPF) commands. The following sections provide more detailed information and commands. Table 131 OSPF Configuration commands Com mand Desc rip tio n router ospf Enter Router OSPF configuration mode. Command mode: Route[...]

  • Page 152

    Configuration Commands 152 OSFP Area Index configu ration The following table describes the Ar ea Index Configuration command s. Table 132 OSPF Area Index Configuration commands Com mand Desc rip tio n area < 0-2 > area-id < A.B.C.D > Defines the area ID of the OSPF area number. Command mode: Router O SPF area < 0-2 > type {transi[...]

  • Page 153

    Configuration Commands 153 Table 132 OSPF Area Index Configuration commands Com mand Desc rip tio n show ip ospf area < 0-2 > Displays the current OSPF configuration. Command mode: All except User EXEC OSPF Summary Range configuration The following table describe s the OSPF Summary Range Configuration commands. Table 133 OSPF Summary Range Co[...]

  • Page 154

    Configuration Commands 154 OSPF Interface configuration The following table descri bes the OSPF Interface Configuration commands. Table 134 OSPF Interface Conf iguration commands Com mand Desc rip tio n ip ospf area < 0-2 > Configures the OSPF area index. Command mode: Interface IP ip ospf priority < 0-255 > Configures the assigned prio[...]

  • Page 155

    Configuration Commands 155 OSPF Virtual Link configuration The following table describe s the OSPF Virtual Link Config uration commands. Table 135 OSPF Virt ual Link Configu ration c ommands Com mand Desc rip tio n area-virtual-link < 1-3 > area < 0-2 > Configures the OSPF area index. Command mode: Router O SPF area-virtual-link < 1-[...]

  • Page 156

    Configuration Commands 156 OSPF Host Entry configuration The following table descri bes the OSPF Host Entry Configuration commands. Table 136 OSPF Host Entry Configuration commands Com mand Desc rip tio n host < 1-128 > address < IP address > Configures the base IP ad dress for the host entry. Command mode: Router O SPF host < 1-128 [...]

  • Page 157

    Configuration Commands 157 OSPF MD5 Key configuration The following table descri bes the OSPF MD5 Key Configuration commands. Table 138 OSPF MD5 Key Configuration commands Com mand Desc rip tio n message-digest-key < 1-255 > md5-key < key string > Sets the authentication key for this OSPF packet. Command mode: Router O SPF no message-di[...]

  • Page 158

    Configuration Commands 158 Table 139 IGMP Snooping commands Com mand Desc rip tio n [no] ip igmp snoop flood Configures the switch to flood unregistered IP multicast reports to all ports. Command mode: Global configurat ion [no] ip igmp snoop aggregate Enables or disables IGMP Membership Report aggregation. Command mode: Global configuration ip igm[...]

  • Page 159

    Configuration Commands 159 Table 140 IGMPv3 Snooping commands Com mand Desc rip tio n [no] ip igmp snoop igmpv3 exclude Enables or disables snooping on IGMPv3 Exclude Reports. When disabled, the switch ignores Exclude Reports. The default value is enabled . Command mode: Global c onfiguration ip igmp snoop igmpv3 enable Enables IGMP version 3. The [...]

  • Page 160

    Configuration Commands 160 IGMP static multicast router configuration The following table describes the Static Mu lticast Router C onfiguration co mmands. NOTE: When you configure a static multicast ro uter on a VLAN, th e process of learning multicast routers is disabled for that VLAN. Table 141 IGMP Static Multicast Router commands Com mand Desc [...]

  • Page 161

    Configuration Commands 161 IGMP filter definition The following table describes the IG MP Filter Definition commands. Table 143 IGMP Filter Definition commands Com mand Desc rip tio n ip igmp profile <1-16> range <IP multicast address> <IP multicast address> Configures the range of IP multic ast addresses for this filter. Enter th[...]

  • Page 162

    Configuration Commands 162 Domain Name System configuration The Domain Name System (DNS) Configuration co mmands are used for defining the primary and secondary DNS servers on your loca l network, and for setting th e defa ult domain name served by the switch services. DNS parameters must be con figured prior to using hostname parameters with the p[...]

  • Page 163

    Configuration Commands 163 Virtual Router Redundancy Protocol configuration Virtual Router Redundancy Protocol (VRRP) support on the HP 10GbE switch provides redundancy between routers in a LAN. This is accomplished by configuring the same virtual router IP address and ID number on each participating VRRP-capable routing device . One of the virtual[...]

  • Page 164

    Configuration Commands 164 VRRP Virtual Router configuration Virtual Router command s are used for configurin g virtual routers for this switch. A virtual router i s defined by its virtual router ID and an IP address. On each VRRP-capable rou ting device participating in redundancy for this virtual router, a virtual router wi ll be configured to sh[...]

  • Page 165

    Configuration Commands 165 Table 148 Virtual Router Config uration commands Com mand Desc rip tio n [no] virtual-router < 1-250 > preemption Enables or disables master preemption. When enabled, if this virtual router is in backup mode but has a higher priority than the current master, this virtual router will preempt the lower pr iority maste[...]

  • Page 166

    Configuration Commands 166 Table 149 Virtual Router Priority T racking Configuration commands Com mand Desc rip tio n [no] virtual-router < 1-250 > track interfaces When enabled, the priority for this vi rtual router will be increased for each other IP interface active on this switch. An IP interface is consi dered active when there is at lea[...]

  • Page 167

    Configuration Commands 167 Table 150 Virtual Router G roup Configuration command s Com mand Desc rip tio n group advertisement < 1-255 > Defines the time interval between VRRP master advertisements. This can be any integer between 1 and 255 seconds. The d efault is 1. Command mode: Router VRRP [no] group preemption Enables or disables master [...]

  • Page 168

    Configuration Commands 168 VRRP Interface configuration These commands are used f or configuring VRRP authent i cation parameters for the IP interfaces used with the virtual routers. The interf ace number represents the IP interface on which auth entication parameters must be configured. The following table descri bes the VRRP Interface Configurati[...]

  • Page 169

    Configuration Commands 169 NOTE: These priority tracking options only define in crement values. These options do not affect the VRRP master router el ection process until op tions under VRRP Virtual Router Pr iority Tracking are enabled.[...]

  • Page 170

    Configuration Commands 170 Quality of Service configuration Use the Quality of Service (QoS) commands to configure the IEEE 802.1p priority value of in coming packets. This allows you to different iate between various types of traffi c, and provide different priority levels. QoS 802.1p configuration This feature provides the HP 10GbE switch the cap[...]

  • Page 171

    Configuration Commands 171 Access Control configuration Use these commands to create Access Control Lists (ACLs) and ACL Groups. ACL s define matching criteria used for IP filtering and Qual ity of Service functions. Access Control List configuration These commands allow you to define f iltering criteria for each Access Control L ist (ACL). The fol[...]

  • Page 172

    Configuration Commands 172 Table 156 Ethernet Filter Configuration commands Com mand Desc rip tio n access-control list < 1-384 > ethernet ethernet-type {ARP|IP|IPv6|MPLS| RARP|any|0xXXXX} Defines the Ethernet type for this ACL. Command mode: Global configuration access-control list < 1-384 > ethernet priority < 0-7 > Defines the [...]

  • Page 173

    Configuration Commands 173 ACL TCP/UDP Filter configuration These commands allow you to define TCP/UDP matchi ng crit eria for an ACL. The following table describes the TCP/UDP Filter Configuration commands. Table 158 TCP/UDP Filter Configuration commands Com mand Desc rip tio n access-control list < 1-384 > tcp- udp source-port < 1-65535 [...]

  • Page 174

    Configuration Commands 174 ACL Packet Format configuration The following table describes the Pack et Format Configuration commands. Table 159 Packet Format Configuration commands Com mand Desc rip tio n access-control list < 1 - 384 > packet-format ethernet {ethertype2|snap|llc} Defines the Ethernet format for the ACL. Command mode: Global co[...]

  • Page 175

    Configuration Commands 175 ACL Re-mark configuration You can choose to re-mark IP header data for the se lected ACL. You can configure differ ent re-mark values, based on whether packets fall within the AC L Mete ring profile, or out of the ACL Metering profile. The following table describes the AC L Re-mark Configuration commands. Table 161 ACL Re[...]

  • Page 176

    Configuration Commands 176 Re-Mark Update User Priority configuration The following table describe s the Update User Priority Configuration commands. Table 163 ACL Update User Priority Configuration commands Com mand Desc rip tio n access-control list < 1-384 > re-mark in-profile dot1p < 0-7 > Defines 802.1p value. The value is the p ri[...]

  • Page 177

    Configuration Commands 177 ACL Group configuration These commands allow you to compile one or more AC Ls into an ACL Group. Once you create an ACL Group, you can assign the ACL Group to one or more ports. The following table describes the AC L Group Configuration command s. Table 165 ACL Group Conf ig uration commands Com mand Desc rip tio n access[...]

  • Page 178

    Configuration Commands 178 Remote Monitoring configuration Remote Monito ring (R MON) allo ws you to monitor traffic flowing through the switch. The RMON MIB is described in RFC 1757. The following table describes the basic RMON Configuration commands. The following sections provide more detailed commands. Table 166 RMON commands Com mand Desc rip [...]

  • Page 179

    Configuration Commands 179 RMON event configuration The following table describes the RMON Event commands. Table 168 RMON Event commands Com mand Desc rip tio n rmon event <1-65535> description <1-127 characters> Enter a text string to describe the event. The description can have a maximum of 127 characters. Command mode: Global configu[...]

  • Page 180

    Configuration Commands 180 RMON alarm configuration The Alarm RMON group can track rising or falling va lues for a MIB object. The MIB object must be a counter, gauge, integer, or time interval. Each alarm index must co rrespond to an event index that triggers once the alarm threshold is crossed. The following table describes the RMON Alarm command[...]

  • Page 181

    Configuration Commands 181 Table 169 RMON Alarm commands Com mand Desc rip tio n rmon alarm <1-65535> owner <1-127 characte rs > Enter a text string that identifies the person or entity that uses this alarm index. The owner can have a maximum of 127 characters. Command mode: Global configuration no rmon alarm <1-65535> Deletes thi[...]

  • Page 182

    Configuration Commands 182 Port-based port mirroring The following table describes the port-based Port Mirroring Con figuration commands. Table 171 Port Mirroring Config uration commands Com mand Desc rip tio n port-mirroring monitor-port <port number> mirroring-port <port number> {in|out|both} Adds the port to be mirrored. This command[...]

  • Page 183

    Configuration Commands 183 Failure Detection Pair configuration Use these commands to configure a Fail ure Detection Pair , which consists of one Link to Monitor (LtM) and one Link to Disable (LtD). When the switch detects a f a ilure on the LtM, it automatic ally disables the ports in the LtD. The following table describes the Fail ure Detection P[...]

  • Page 184

    Configuration Commands 184 Link to Disable configuration The following table describes the Link to Disable (LtD) commands. The LtD can consist of any mix of downlink ports (ports 1-16) and trunk grou ps that c ontain only downlink ports. Table 175 Link to Disable commands Com mand Desc rip tio n ufd fdp ltd port <port number> Adds a port to t[...]

  • Page 185

    Configuration Commands 185 Saving the active switch configuration When the copy running-global configuration {tftp|ftp} command is used, the active configuration commands of the switch will be uploaded to the specified script co nfiguration file on the FTP/TFTP serv er. To start the switch conf iguration upload, at the prompt, enter: Switch(config)[...]

  • Page 186

    Operations Commands 186 Oper ations C ommands Introduction Operations-level command s are used for making immediate and temporary changes to switch configuration. Operations commands ar e used for bringing ports temporar ily in and out of service. These commands are available only from an administrator and operator login. The following table descri[...]

  • Page 187

    Operations Commands 187 Operations-level port 802.1x options Operations-level port 802.1x options are used to tem porarily set 802.1x parameters for a port. Table 178 Operations-Level Port 802.1x commands Com mand Desc rip tio n interface port < port number > dot1x init Re-initializes the 802.1x access-control parameters for the p ort. The fo[...]

  • Page 188

    Boot Options 188 Boot Opti ons Introduction You must be logged in to the switch as the adm inistrator to use the Boot Options commands. The Boot Options allow you to perform the follo wing functions: • Select a switch software image to be us ed when the switch is next reloaded. • Select a configuration block to be used when the switch is next r[...]

  • Page 189

    Boot Options 189 When the above requirements are met, use the foll owing procedure to download the new software to the HP 10GbE switch . 1. In Privileged EXEC mode, enter: Switch# copy tftp {<image1|image2|boot-image>} -or- Switch# copy ftp {<image1|image2|boot-image>} 2. Enter the port type to use for the file transfer: Port type: [&qu[...]

  • Page 190

    Boot Options 190 Selecting a software image to run You can select which software image ( image1 or image2 ) you want to run in switch memory for the next reboot. 1. In Global Configuration mode, enter: Router(config)# boot image {image1|image2} 2. Enter the name of the image you want the switch to us e upon the next boot. The system informs you of [...]

  • Page 191

    Boot Options 191 Selecting a configuration block When you make configura tion changes to the switch, yo u must save the change s so that they are retained beyond the next time the switch is reset. When you execute a save operation ( copy running-config startup-config ), your new configuration changes are placed in the active configuration block. Th[...]

  • Page 192

    Maintenance Commands 192 Maintenance C ommands Introduction The Maintenance commands are used for debugging pu rposes, enabling you to generate a technical support dump of the critical state information in the switch, and to clear entries in the Forwarding Database and the Address Resolution Protocol (ARP) and routing tables. These commands are ava[...]

  • Page 193

    Maintenance Commands 193 Forwarding Database maintenance The Forwarding Database (FDB) Manipulation commands can be used to view information and to delete a MAC address from the Forwarding Database or clear th e entire Forwarding Database. This is helpful in identifying problems associated with MAC address learning an d packet forwarding decisions.[...]

  • Page 194

    Maintenance Commands 194 Table 182 Miscellaneous Debug commands Command Usage debug mp-snap Displays the management processor snap (o r post-mortem) trace buffer. This buffer contains information traced at the time that a reset occurred. Command mode: All except User EXEC clear flash-config Deletes all flash configuration blocks. The next time the [...]

  • Page 195

    Maintenance Commands 195 Table 184 IGMP Snooping Maintenan ce commands Command Usage show ip igmp groups interface <port number> Shows IGMP Multicast groups on a single port. Command mode: All except User EXEC show ip igmp groups Shows all IGMP Multicast groups. Command mode: All except User EXEC clear ip igmp snoop Clears IGMP Multicast data[...]

  • Page 196

    Maintenance Commands 196 To access dump information, at the prompt, enter: Switch# show flash-dump-uuencode The dump information is displayed on your screen and, if you have configured your communication software to do so, captured to a file. If the dump region is empty, the following displays: No FLASH dump available. FTP/TFTP system dump put Use [...]

  • Page 197

    Maintenance Commands 197 Panic command The panic command causes the switch to dump st ate information immediately to flash memory and reboot. To select panic, at the prompt, enter: >> Switch# debug panic A FLASH dump already exists. Confirm replacing existing dump and reboot [y/n]: Enter y to confirm the command: Confirm dump and reboot [y/n][...]

  • Page 198

    Index 198 Inde x 8 802.1x information, 35 802.1x statistics, 69 A abbreviating commands, 18 access control, user, 116 active configuration block, 101, 191 active switch conf iguration: gtcfg, 185; ptcfg, 185; restoring, 185 Address Resolution Protocol (ARP): address list, 194 Address Resolution Protocol (ARP) Menu, 48 aging: STP information, 38, 40[...]

  • Page 199

    Index 199 O online help, 17 operating mode, configur ation, 124 Operations-level port options, 186, 187 ospf: interface, 151; Not-So-Stubby Area, 152; stub area, 152; transit area, 152 P panic: command, 197; switch, 192 ping command, 17 port configuration, 123 port mirroring, configuration, 181 port number, 63 port speed, 19, 63 port trunking confi[...]