Enterasys D-Series manual

Enterasys ® D-Series  Ether net Switches CLI Reference Firmware V ersion 1. 00.01.0005 or Higher P/N 9034394-01[...]

[...]

i Notice Enterasys  Networks  reserves  the  right  to  make  changes  in  specifi cations  and  other  information  contained  in  this  do cument  and  its  web  si te  without  prior  notice.  The  reader  should  in  all  case s  consult  Enterasys  [...]

ii ENTERASYS NETWORKS, INC. FIRMWARE LICENSE AGREEMENT BEFORE OPENING OR UTILIZING THE ENCLOSED PRODUCT, CAREFULLY READ THIS LICENSE AGREEMENT. This  document  is  an  agreement  (“ Agreement”)  betwee n  the  end  user  (“Y ou”)  and  Enterasys  Networks,  Inc.,  on  behalf  of  itself [...]

iii If  the  Program  is  exported  from  the  United  Stat es  pursuant  to  the  License  Ex ception  TSR  und er  the  U.S.  Export  Administration  Regulations,  in  addition  to  the  restriction  on  transfer  set  forth  in  Section  1  or  [...]

iv 10. ENFORCEMENT. You  ac knowledge  and  agree  that  any  breach  of  Sectio ns  2,  4,  or  9  of  this  Ag reement  by  You  may  cause  Enterasys  irreparable  damage  for  which  recovery  of  money  damages  would  be  inadequate,  and  that [...]

v Contents About This Guide Using This Guide ................ ................ ................ ................ ................ ............. ................ . ............... ................ xxi Structure of This Guide .......... ................ ................ ................ ................. ................ ............ .......... .....[...]

vi set prompt ..... ................ ................ ................ ............. ................. ................ ................ .. .................... 2-20 show banner motd ........ ................ ................ ............. ................. ................ ................ ......... ............. 2-21 set banner motd ......... ...[...]

vii clear config ...................... ................. ................ ................ ............. ................ ............... ........... ......... 2-46 Using and Configuring WebView . ................. ................ ................ ................ ................... ............ ........ ......... 2-47 Purpose ........... ......[...]

viii show lldp port local-info ................ ................ ................. ................ ................ ............. ........ .............. 5-18 show lldp port remote-info ......... ................ ................ ................. ............ ................. .............. ..... ...... 5-20 set lldp tx-interval ....... ........[...]

ix Setting Flow Control ........... ... ... ... .... ... ... ... .... ............ .... ... ... ... .... ... ... ... .... ... ... ... ... ............. .. ........ ................ ... 6-19 Purpose ........... ............. ................ ................ ............. ................ ................ ............. ..... .................. .....[...]

x set port protected name ................ ................ ................. ................ ............. ................ .......... ............ 6-52 show port protected name ...... ................ ................ ................ ................ ................. ................ ......... 6-52 clear port protected name .... ..............[...]

xi Purpose ........... ............. ................ ................ ............. ................ ................ ............. ..... .................. ......... 7-28 Commands ............... ................. ............. ................ ................ ................ ................ ......... ................. ...... 7-29 show newaddr[...]

xii show spantree tctr apsuppres s ...... ................ ................. ................ ................ ................ ............ ....... 8-23 set spantree tctrapsuppress ................ ................ ................ ................ ................ ................ .... ......... 8-23 clear spantree tctrapsuppres s ...............[...]

xiii show spantree nonforwardingreas on ........ ................ ............. ................ ................. ............ ............ .8 - 5 3 Chapter 9: 802.1Q VLAN Configuration VLAN Configuration Summary ........... ................ ............. ................ ................ ............. ............... ........... ........ 9-1 Port[...]

xiv Command .............. ... .... ... ............. ... ... .... ... ... ... ... .... ... ... ............. ... .... ... ... ... ... .... ... ... ........ .................. ...... 10-2 set diffserv adminmode ................ ................ ................. ................ ................ ................ ........ ........... 10-2 Creating D[...]

xv set cos state ................. ................ ............. ................ ................. ................ ............. ...... ................. 11-19 show cos state ........ ................ ................ ............. ................ ................ ................ ............ ........... .... 11-20 clear cos state . ..........[...]

xvi set igmpsnooping interfacemode .................. ................. ................ ................ ................ .............. ..... 13-3 set igmpsnooping groupmembershipi nterval .... ................ ................ ................ ............. ................ ... 13- 4 set igmpsnooping maxresponse ....... ................ ........[...]

xvii Configuring Simple Network Time Protocol (SNTP) ..... ................ ................ ................ ................ .......... .... 14-26 Purpose ........... ............. ................ ................ ............. ................ ................ ............. ..... .................. ....... 14-26 Commands ............... .......[...]

xviii show rmon filter ............... ................. ................ ............. ................ ................ ................ .. ............... 15-19 set rmon filter ............. ............. ................ ................ ................ ................ ................. ..... .................. 1 5-20 clear rmon filter ......[...]

xix clear dhcp pool dns-server .. ... ... ... .... ... ... ... ... .... ................ ............. ................ ................ ......... ........ 16-23 set dhcp pool domain-name ......................... ................. ................ ................ ................ ............ ..... 16-24 clear dhcp pool domain-name ..............[...]

xx Configuring Multiple Authentication Methods ........ ............. ................ ............. ................ ................ . .......... 17-33 About Multiple Authentication Ty pes ............... ............. ................ ................ ............. ................ .. ......... 1 7-33 Configuring Multi-User Authenticati on (U se[...]

xxi set pwa ipaddress ...... ................ ................ ................ ................. ................ ................ ....... ............. 1 7-67 set pwa protocol ........ ................ ................ ................ ................. ................ ................ ...... .............. 17-67 set pwa guestname ...... .......[...]

xxii 7-18 show snmp view O utput Details ................ ................ ............. ................ ................. ................ ...... ... 7-20 7-19 show snmp targetparams Output Det ails ..... .... ......... ................. ................ ............. ................ ...... ... 7-23 7-20 show snmp targetaddr Output Details .....[...]

Enterasys D-Series CLI Reference xxi About This Guide We l c o m e  to  the  Enterasys  Networks  D ‐ Series  CLI  Refere nce .  This  manual  explains  how  to  access  the  device’ s  Command  Line  Interface  (CLI)  and  how  to  use  it  to  configure  Enterasy[...]

Related Documents xxii About This Guide Chapter 7 ,  SNMP  Configuration ,  describes  how  to  configure  SNMP  users  and  user  groups,  access  rights,  target  addresses,  and  notification  parameters. Chapter 8 ,  Spanning  Tr e e  Configuration ,  describes  how  to [...]

Conventions Used in This Guide Enterasys D-Series CLI Reference xxiii Conventions Used in This Guide The  following  conventions  are  used  in  the  text  of  this  document: The  following  icons  are  used  in  this  guide: Getting Help For  additional  support  related  to  this [...]

Getting Help xxiv About This Guide Before  calling  Enterasys  Networks,  have  the  following  information  ready: •Y o u r  Enterasys  Networks  service  contract  number  •A  description  of  the  failure •A  description  of  any  action(s)  already  take n  to  [...]

Enterasys D-Series CLI Reference 1-1 1 Introduction This  chapter  provides  an  overview  of  the  D ‐ Series’ s  unique  features  and  functionality ,  an  overview  of  the  ta sks  that  may  be  accomplish ed  using  the  CLI  interf ace,  an  over view  of ?[...]

Factory Default Settings 1-2 Introduction • Remotely  using  We b V i e w ™ ,  Enterasys  Netw orks’  embedded  web  server  application. The  Installation  Gui de  for  your  D ‐ Series  device  provides  setup  instructions  for  connecting  a  terminal  or  modem  to[...]

Factory Default Settings Enterasys D-Series CLI Reference 1-3 Link aggregation flow regeneration Disabled. Link aggregation system priority Set to 32768 for all ports. Link aggregation outport algorithm Set to DIP-SIP . Lockout Set to disable Read-Write and Read -Only users, and to lockout the default admin (Super User) account for 15 minutes, afte[...]

Factory Default Settings 1-4 Introduction S panning Tree edge port administrative status Edge port administrative status begins with the value set to fals e initially after the device is powered up. If a S panning T r ee BDPU is not rece ived on the port within a few seconds, the status setting changes to true . S panning Tree edge port delay Enabl[...]

Using the Command Line Interface Enterasys D-Series CLI Reference 1-5 Using the Command Line Interface S t arting a CLI Session Connecting Using th e Console Port Connect  a  terminal  to  the  local  console  port  as  described  in  your  D ‐ Series  Installation  Guide .  The  startup  screen,[...]

Using the Command Line Interface 1-6 Introduction Refer  to  the  instructions  included  with  the  Te l n e t  application  for  information  about  establishing  a  Te l n e t  session. Logging In By  default,  the  D ‐ Series  switch  is  configured  with  three  user [...]

Using the Command Line Interface Enterasys D-Series CLI Reference 1-7 Figure 1-2 Samp le CLI Default s Description CLI Command Modes Each  command  description  in  this  guide  includes  a  section  entitled  “Mode”  which  states  whether  the  command  is  executable  in  Admin  (Su[...]

Using the Command Line Interface 1-8 Introduction Displaying Scrolling Screens If  the  CLI  screen  length  has  be en  set  using  the  set  length  command  as  described  on  page  3 ‐ 26 ,  CLI  output  requiring  more  than  one  screen  will  disp lay  --More-[...]

Using the Command Line Interface Enterasys D-Series CLI Reference 1-9 Basic Line Editing Commands The  CLI  supports  EMACs ‐ like  line  editing  commands.  Ta b l e 1 ‐ 2  li sts  some  commonly  used  commands.  T able 1-2 Basic Line Editing Commands Key Sequence Command Ctrl+A Move cursor to beginning [...]

Using the Command Line Interface 1-10 Introduction[...]

Enterasys D-Series CLI Reference 2-1 2 Basic Configuration At  startup,  the  D ‐ Series  switch  is  configured  wi th  many  defaul ts  and  standard  features.  This  chapter  describes  how  to  customize  basic  system  settings  to  adapt  to  you r  wo rk  env[...]

Setting User Accounts and Passwords 2-2 Basic Configuration Setting User Account s and Passwords Purpose To  change  the  switch’ s  defaul t  user  login  and  passw ord  settings,  and  to  add  new  user  accounts  and  passwords. Commands T able 2-2 Optional CLI Setup Commands T ask CLI comma[...]

show system login Enterasys D-Series CLI Reference 2-3 show system login Use  this  command  to  display  user  login  account  information. Synt ax show system login Parameters None. Default s None. Mode Switch  command,  super  user . Example This  example  shows  how  to  display  login  acco[...]

set system login 2-4 Basic Configuration set system login Use  this  command  to  create  a  new  user  login  account,  or  to  disable  or  enable  an  exi sting  account.  The  D ‐ Series  switch  supports  up  to  16  user  accounts,  incl uding  the  admin[...]

set password Enterasys D-Series CLI Reference 2-5 Mode Switch  command,  super  user . Example This  example  shows  how  to  remove  the  “netops”  user  account: D2(su)->clear system login netops set p assword Use  this  command  to  change  system  default  passwords  or  to ?[...]

set system password length 2-6 Basic Configuration Please enter new password: ******** Please re-enter new password: ****** ** Password changed. D2(su)-> set system p assword length Use  this  command  to  set  the  minimum  user  login  password  length. Synt ax set system password length characters Parameters Defa[...]

set system password history Enterasys D-Series CLI Reference 2-7 Example This  example  shows  how  to  set  the  system  passw ord  age  time  to  45  days: D2(su)->set system password aging 45 set system p assword history Use  this  command  to  set  the  number  of  previously [...]

set system lockout 2-8 Basic Configuration Example This  example  shows  how  to  display  user  lockout  settings.  In  this  case,  switch  defaults  have  not  been  changed: D2(su)->show system lockout Lockout attempts: 3 Lockout time: 15 minutes. Ta b l e 2 ‐ 3  provides  an  exp[...]

Setting Basic Switch Properties Enterasys D-Series CLI Reference 2-9 Setting Basic Switch Properties Purpose To  display  and  set  the  system  IP  address  and  other  basic  system  (switch)  properties. Commands For information about... Refer to p age... show ip address 2-10 set ip address 2-10 clear ip ad[...]

show ip address 2-10 Basic Configuration show ip address Use  this  command  to  display  the  system  IP  address  and  subnet  mask. Synt ax show ip address Parameters None. Default s None. Mode Switch  command,  read ‐ only . Example This  example  shows  how  to  display  the  system[...]

clear ip address Enterasys D-Series CLI Reference 2-11 Mode Switch  command,  read ‐ write. Usage Pa r a m te r s  must  be  entered  in  the  order  shown  (host  IP ,  then  mask,  then  gatew a y)  for  the  command  to  be  accepted.  Example This  example  shows  how [...]

set ip protocol 2-12 Basic Configuration Mode Switch  command,  read ‐ only . Example This  example  shows  how  to  display  the  method  used  to  acquire  a  netw ork  IP  address: D2(su)->show ip protocol System IP address acquisition method : dhcp set ip protocol Use  this  command [...]

show system Enterasys D-Series CLI Reference 2-13 Mode Switch  command,  read ‐ only . Example This  example  shows  how  to  display  system  information: D2(su)->show system System contact: System location: System name: PWR1-A Status P WR1-B Status ---------- - --------- Ok N ot Installed and/or Not Operating PWR2-[...]

show system hardware 2-14 Basic Configuration show system hardware Use  this  command  to  display  the  system’ s  hardware  c onfiguration. Synt ax show system hardware Parameters None. Default s None. Mode Switch  command,  read ‐ only . Example This  example  shows  how  to  display  the  s[...]

show system enhancedbuffermode Enterasys D-Series CLI Reference 2-15 Mode Switch  command,  read ‐ only . Examples This  example  shows  how  to  display  the  system’ s  CPU  utilization: D2(ro)->show system utilization cpu Total CPU Utilization: Switch CPU 5 sec 1 min 5 min ---------------------------------[...]

set system enhancedbuffermode 2-16 Basic Configuration Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  display  enhanced  buffer  mode  status: D2(su)->show system enhancedbuffermo de enable Optimized system buffer distribution Disable set system enhancedbuffermode Use  this  c[...]

set time Enterasys D-Series CLI Reference 2-17 Mode Switch  command,  read ‐ only . Example This  example  shows  how  to  display  the  current  time.  The  output  shows  the  day  of  the  week ,  month,  day ,  and  the  time  of  day  in  hours,  minutes, [...]

set summertim e 2-18 Basic Configuration Mode Switch  command,  read ‐ only . Example This  example  shows  how  to  display  daylight  savings  time  settings: D2(su)->show summertime Summertime is disabled and set to '' Start : SUN APR 04 02:00:00 2004 End : SUN OCT 31 02:00:00 2004 Offset: 60 minut[...]

set summertime rec urring Enterasys D-Series CLI Reference 2-19 Default s If  an  offset  is  not  spe cified,  none  will  be  applied. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  set  a  daylight  savings  time  start  date  of  April  4, [...]

clear summertim e 2-20 Basic Configuration Default s If  an  offset  is  not  spe cified,  none  will  be  applied. Mode Switch  command,  read ‐ write. Example This  example  shows  how  set  daylight  savings  time  to  recur  starting  on  the  fi rst  Sunday  of [...]

show banner motd Enterasys D-Series CLI Reference 2-21 Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  set  the  command  prompt  to  Switch  1: D2(su)->set prompt “Switch 1” Switch 1(su)-> show banner mot d Use  this  command  to  show  th[...]

clear banner motd 2-22 Basic Configuration Parameters Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  set  the  message  of  the  day  banner  to  read:  “O  Knights  of  Ni,  you  are  just  and  fair ,  and  we  will ?[...]

set system name Enterasys D-Series CLI Reference 2-23 Parameters None. Default s None. Mode Switch  command,  read ‐ only . Example This  example  shows  how  to  display  ver si on  information.  Pl ease  note  that  you  may  see  different  information  displayed,  depending  on  t[...]

set system location 2-24 Basic Configuration Default s If  string  is  not  specif ied,  the  system  name  will  be  cleared. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  set  the  system  name  to  Information  Systems: D2(su)->set system name[...]

set width Enterasys D-Series CLI Reference 2-25 Parameters Default s If  string  is  not  specif ied,  the  contact  name  will  be  cleared. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  set  the  system  contact  stri ng: D2(su)->set system contact ?[...]

set length 2-26 Basic Configuration set length Use  this  command  to  set  the  number  of  lines  the  CLI  will  display .  This  command  is  persistent  (written  to  NV ‐ RAM). Synt ax set length screenlength Parameters Default s None. Mode Switch  command,  read ‐ write. Exam[...]

set logout Enterasys D-Series CLI Reference 2-27 set logout Use  this  command  to  set  the  time  (in  minutes)  an  idle  console  or  Te l n e t  CLI  session  will  remain  connected  before  timing  out. Synt ax set logout timeout Parameters Default s None. Mode Switch  command[...]

set console baud 2-28 Basic Configuration ------ ------- ---- ---------- - ----- 9600 Disable 8 1 n one set console baud Use  this  command  to  set  the  console  port  baud  rate. Synt ax set console baud rate Parameters Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  [...]

Downloading a Firmware Image Enterasys D-Series CLI Reference 2-29 Downloading from a TFTP Server To  perform  a  TFTP  download,  proceed  as  follows: 1. If  you  have  not  already  done  so,  set  the  switch’ s  IP  address  using  the  set  ip  address  command  as ?[...]

Downloading a Firmware Image 2-30 Basic Configuration 7 - 57600 8 - 115200 0 - no change 4. T ype  8  to  set  the  switch  baud  rate  to  115200.  The  following  message  displays :  Setting baud rate to 115200, you mus t change your terminal baud rate. 5. Set  the  terminal  baud  rate  t[...]

Reviewing and Selecting a Boot Firmware Image Enterasys D-Series CLI Reference 2-31 2. Load  you r  previous  ve rs i on  of  cod e  on  the  device,  as  described  in  “ Downloading  a  Firmware  Image ”  (page 2 ‐ 28). 3. Set  this  older  ver s io n  of  code  to  be [...]

set boot system 2-32 Basic Configuration set boot system Use  this  command  to  set  the  firmware  image  the  switch  loads  at  startup.  Synt ax set boot system filename Parameters Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  set  th[...]

set telnet Enterasys D-Series CLI Reference 2-33 Default s None. Mode Switch  command,  read ‐ only . Example This  example  shows  how  to  display  Te l n e t  status: D2(su)->show telnet Telnet inbound is currently: ENABLED Telnet outbound is currently: ENABLE D set telnet Use  this  command  to  enabl[...]

Managing Switch Configuration and Files 2-34 Basic Configuration Parameters Default s If  not  specified,  the  default  port  number  23  will  be  use d. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  start  a  Te l n e t  session  to  a  host  [...]

show snmp persistmode Enterasys D-Series CLI Reference 2-35 Commands show snmp persistmode Use  this  command  to  display  the  configuration  persistence  mode  setting. Synt ax show snmp persistmode Parameters None. Default s None. Mode Switch  command,  read ‐ only . Usage By  default,  the  mo de [...]

set snmp persistmode 2-36 Basic Configuration Example This  example  shows  how  to  display  the  configuration  persistence  mode  setting.  In  this  case,  persistence  mode  is  set  to  “manual”,  which  means  configur ation  changes  are  not  being  automa[...]

dir Enterasys D-Series CLI Reference 2-37 Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  save  the  run ning  configuration: D2(su)->save config dir Use  this  command  to  list  configuration  and  image  files  stored  in  the  file  system. Syn[...]

show file 2-38 Basic Configuration current.log 901 29 show file Use  this  command  to  display  the  contents  of  a  file. Synt ax show file filename Parameters Default s None. Mode Switch  command,  read ‐ only . Example This  example  shows  how  to  display  a  text  file  named [...]

configure Enterasys D-Series CLI Reference 2-39 Parameters Default s By  default,  show  config  will  display  all  non ‐ default  configuration  information  for  all  facilities. Mode Switch  command,  read ‐ only . Usage The  separate  facilities  that  can  be  displayed  by ?[...]

copy 2-40 Basic Configuration Parameters Default s If  append  is  not  spec ified,  the  current  running  configuration  will  be  replaced  wi th  the  contents  of  the  configuration  file,  which  will  require  an  automated  reset  of  the  chassis. Mode Switch[...]

delete Enterasys D-Series CLI Reference 2-41 delete Use  this  command  to  remove  an  image  or  a  CLI  configuration  file  from  the  switch. Synt ax delete filename Parameters Default s None. Mode Switch  command,  read ‐ write. Usage Use  the  dir  command  ( page  2 ‐ 37 ) ?[...]

set tftp timeout 2-42 Basic Configuration Example This  example  shows  the  output  of  this  command. D2(ro)->show tftp settings TFTP packet timeout (seconds): 2 TFTP max retry: 5 set t ftp timeout Use  this  command  to  configure  how  long  TFTP  will  wait  for  a  reply  of  e[...]

set tftp retry Enterasys D-Series CLI Reference 2-43 Example This  example  shows  how  to  clear  the  timeout  va l u e  to  the  default  of  2  seconds. D2(rw)-> clear tftp timeout set t ftp retry Use  this  command  to  configure  how  many  times  TFTP  will  resend ?[...]

Clearing and Closing the CLI 2-44 Basic Configuration Clearing and Closing the CLI Purpose To  clear  the  CLI  screen  or  to  close  you r  CLI  session. Commands cls (clear screen) Use  this  command  to  clear  the  screen  for  the  current  CLI  session. Synt ax cls Parameters Non[...]

Resetting the Switch Enterasys D-Series CLI Reference 2-45 Mode Switch  command,  read ‐ only . Usage By  default,  switch  timeout  occurs  after  15  minutes  of  user  inactivity ,  automatically  closing  yo u r  CLI  session.  Use  the  set  logout  command  ( page  2 ?[...]

clear config 2-46 Basic Configuration Do you want to continue (y/n) [n]? clear config Use  this  command  to  clear  the  user ‐ defined  configuration  parameters.  Synt ax clear config [ all ] Parameters Default s If  all  is  not  specified,  stacking  configuration  parameters  will  not ?[...]

Using and Configuring WebView Enterasys D-Series CLI Reference 2-47 Using and Configuring W ebV iew Purpose By  default,  We b V i e w  (The  Enterasys  Networks  embedded  web  server  fo r  switch  configurat ion  and  management  tasks)  is  enabled  on  TCP  port  number  80  on [...]

set webview 2-48 Basic Configuration set webview Use  this  command  to  enable  or  disable  We b V i e w  on  the  switch. Synt ax set webview { enable | disable } Parameters Default s None. Mode Switch  command,  read ‐ write. Usage It  is  good  practice  for  security  reasons  to  [...]

set ssl Enterasys D-Series CLI Reference 2-49 set ssl Use  this  command  to  enable  or  disable  the  use  of  We b V i e w  over  SSL  port  443.  By  defaul t,  SSL  is  disabled  on  the  swi tch.  This  command  can  also  be  used  to  rei nitialize [...]

set ssl 2-50 Basic Configuration[...]

Enterasys D-Series CLI Reference 3-1 3 Activating Licensed Features In  order  to  enable  the  D2  advanced  features,  such  as  Po l i c y ,  yo u  must  purchase  a  license.  If  you  have  purchased  a  li cense,  you  can  proceed  to  activate  you r  licens[...]

show license 3-2 Activating Licensed Featu res Usage When  you  execu te  the  set  license  command,  you  will  be  prompted  to  accept  the  license  agreement.  If  you  do  not  accept  the  license  agreement,  the  licensed  feature  will  not  be  ena[...]

clear license Enterasys D-Series CLI Reference 3-3 Parameters Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  clear  a  licensed  feature: D2(rw)->clear license featureId D2Po licy featureID  feature The  name  of  the  feature  being  cleared.[...]

clear license 3-4 Activating Licensed Featu res[...]

Enterasys D-Series CLI Reference 4-1 4 Configuring System Power and PoE The  commands  in  this  chapter  allow  you  to  review  and  set  system  power  and  PoE  parameters,  including  the  power  av ailable  to  the  system,  the  usage  threshold  for  each  m[...]

set inlinepower threshold 4-2 Configuring System Power and PoE Example This  example  shows  how  to  display  system  pow er  properties: D2(su)->show inlinepower Detection Mode : auto Unit Status Power(W) Consumption(W) U sage(%) Threshold(%) Trap ---- ------ -------- --------- ----- -------- ------------ ---- 1 auto 48[...]

show port inlinepower Enterasys D-Series CLI Reference 4-3 Example This  example  shows  how  to  enable  inline  power  trap  messaging  on  module  1: D2(su)->set inlinepower trap enable 1 show port inlinepower Use  this  command  to  display  all  ports  supporting  Po E .  Synt a[...]

set port inlinepower 4-4 Configuring System Power and PoE Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  enable  Po E  on  port  fe.3.1  with  critical  priority: D2(su)->set port inlinepower fe . 3.1 admin auto priority critical[...]

Enterasys D-Series CLI Reference 5-1 5 Discovery Protocol Configuration This  chapter  descri bes  how  to  configure  discovery  protocols. Configuring CDP Purpose To  review  and  configure  the  Enter asys  CDP  discovery  protocol.  This  protocol  is  used  to  discov er  networ[...]

show cdp 5-2 Discovery Protocol C onfiguration show cd p Use  this  command  to  display  the  status  of  the  CDP  discov ery  protocol  and  message  interval  on  one  or  more  ports. Synt ax show cdp [ port-string ] Parameters Default s If  port ‐ string  is  not  specif i[...]

set cdp state Enterasys D-Series CLI Reference 5-3 set cd p st ate Use  this  command  to  enable  or  disable  the  CDP  discov ery  protocol  on  one  or  more  ports. Synt ax set cdp state { auto | disable | enab le } [port-string] Parameters Default s If  port ‐ string  is  not  specif [...]

set cdp auth 5-4 Discovery Protocol C onfiguration set cd p auth Use  this  command  to  set  a  global  CDP  authentication  code. Synt ax set cdp auth auth-code Parameters Default s None. Mode Switch  command,  read ‐ write. Usage The  authentication  code  va l u e  determines  a  switch’ s [...]

set cdp hold-time Enterasys D-Series CLI Reference 5-5 Example This  example  shows  how  to  set  the  CDP  interv al  frequency  to  15  seconds: D2(su)->set cdp interval 15 set cd p hold-time Use  this  command  to  set  the  hold  time  va l ue  for  CDP  discovery  prot[...]

show neighbors 5-6 Discovery Protocol C onfiguration Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  reset  the  CDP  state  to  auto ‐ enabled: D2(su)->clear cdp state show neighbors This  command  displays  Neighbor  Discov ery  information  for  either ?[...]

Configuring Cisco Discovery Protocol Enterasys D-Series CLI Reference 5-7 Configuring Cisco Discovery Protocol Purpose To  review  and  configure  the  Cisco  discovery  protocol.  Disc overy  protoc ols  are  used  to  discov er  network  topology .  When  enabled,  they  allow  Cisc o ?[...]

show ciscodp port info 5-8 Discovery Protocol C onfiguration Device ID : 001188554A60 Last Change : WED NOV 08 13:19:56 20 06 Ta b l e 5 ‐ 2  provides  an  explanation  of  the  command  output. show ciscod p port info Use  this  command  to  display  summary  information  about  the  Cisco  disc[...]

set ciscodp status Enterasys D-Series CLI Reference 5-9 set ciscod p st atus Use  this  command  to  enable  or  disable  the  Cisco  discov ery  protocol  globally  on  the  switch. Synt ax set ciscodp state { auto | disable | enable } Parameters Default s None. Mode Switch  command,  read ‐ write.[...]

set ciscodp holdtime 5-10 Discovery Protocol Configuration Parameters Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  set  the  Cisco  DP  timer  to  120  seconds.  D2(su)->set ciscodp timer 120 set ciscod p hold time Use  this  command  to  se[...]

set ciscodp port Enterasys D-Series CLI Reference 5-11 Parameters Default s •S t a t u s :  ena bled •V o i c e  VLAN:  none •T r u s t  mode:  trusted •C o S  va lu e :  0 Mode Switch  mode,  read ‐ write. Usage The  following  points  describe  how  the  Cisco  DP  exten ded  trust ?[...]

clear ciscodp 5-12 Discovery Protocol Configuration •I f  the  switch  port  is  configured  to  a  Cisco  DP  trust  state  of  untrusted  ( trusted  no ),  this  setting  is  communicated  to  the  Cisco  IP  phone  instructing  it  to  ove rwrite  the  80[...]

Configuring Link Layer Disc overy Protocol and LLDP-MED Enterasys D-Series CLI Reference 5-13 Examples This  example  shows  how  to  clear  all  the  Cisco  DP  parameters  back  to  the  default  settings. D2(rw)->clear ciscodp This  example  shows  how  to  clear  the  Cisco ?[...]

Configuring Link Layer Disc overy Protocol and LLDP-MED 5-14 Discovery Protocol Configuration Configuration T asks The  commands  included  in  this  implementation  allow  you  to  perform  the  f ollowing  conf iguration  tasks: For information about... Refer to p age... show lldp 5-15 show lldp port status [...]

show lldp Enterasys D-Series CLI Reference 5-15 show lld p Use  this  command  to  display  LLDP  configuration  information. Synt ax show lldp Parameters None. Default s None. Mode Switch  command,  read ‐ only . Example This  example  shows  how  to  display  LLDP  configuration  information. D[...]

show lldp port trap 5-16 Discovery Protocol Configuration Example This  example  shows  how  to  display  LLDP  port  status  information  for  all  ports. D2(ro)->show lldp port status Tx-Enabled Ports : ge.1.1-60; g e.2.1-24; ge.3.1-30; ge.4.1-12 Rx-Enabled Ports : ge.1.1-60; g e.2.1-24; ge.3.1-30; ge.4.1-12[...]

show lldp port location-info Enterasys D-Series CLI Reference 5-17 Parameters Default s If  port ‐ string  is  not  specif ied,  TL V  configurat ion  information  will  be  display ed  for  all  ports. Mode Switch  command,  read ‐ only . Example This  example  shows  how  to  display[...]

show lldp port local-info 5-18 Discovery Protocol Configuration Ports Type Location -------- ------------- ----------------------- -- ge.1.1 ELIN 123456789 0 ge.1.2 ELIN 123456789 0 ge.1.3 ELIN 123456789 0 show lld p port local-info Use  this  command  to  display  the  local  system  information  stored  for  one ?[...]

show lldp port local-info Enterasys D-Series CLI Reference 5-19 PoE Device : PSE device PoE Power Source : prim ary PoE MDI Supported/Enabled : yes/ yes PoE Pair Controllable/Used : fals e/spare PoE Power Class : 2 PoE Power Limit (mW) : 1540 0 PoE Power Priority : high Ta b l e 5 ‐ 4  describes  the  information  displayed  by [...]

show lldp port remote-info 5-20 Discovery Protocol Configuration show lld p port remote-info Use  this  command  to  display  the  remote  system  information  stored  for  a  remote  device  connected  to  a  local  port.  Yo u  can  use  this  information  to  detect  m[...]

show lldp port remote-info Enterasys D-Series CLI Reference 5-21 Example This  example  shows  how  to  display  the  remote  system  information  stored  for  port  ge .3.1.  The  remote  system  information  was  received  from  an  IP  phone,  which  is  an  LLDP ?[...]

set lldp tx-interval 5-22 Discovery Protocol Configuration set lld p tx-interval Use  this  command  to  set  the  time,  in  seconds,  betw een  successive  LLDP  frame  transmissions  initiated  by  changes  in  the  LLDP  local  sy stem  information. Synt ax set lldp tx-interval f[...]

set lldp trap-interval Enterasys D-Series CLI Reference 5-23 set lld p trap-interval Use  this  command  to  set  the  minimum  interval  betw een  LLDP  notifications  se nt  by  this  device.  LLDP  notifications  are  se nt  when  a  remote  system  change  has  been  [...]

set lldp port status 5-24 Discovery Protocol Configuration Example This  example  sets  the  numbe r  of  fast  start  LLDPDUs  to  be  sent  to  4. D2(rw)->set lldp med-fast-repeat 4 set lld p port st atus Use  this  command  to  enable  or  disable  transmitting  and  processing[...]

set lldp port med-trap Enterasys D-Series CLI Reference 5-25 Default s None. Mode Switch  command,  read ‐ write. Example This  example  enables  transmitting  LLDP  traps  on  ports  ge .1.1  through  ge .1.6. D2(rw)->set lldp port trap enable ge .1.1-6 set lld p port med-trap Use  this  command  t[...]

set lldp port tx-tlv 5-26 Discovery Protocol Configuration Parameters all Adds  all  optional  TL Vs  to  transmitte d  LLDPDUs. port ‐ desc Po r t  Description  optional  basic  LLDP  TL V .  Va l u e  sent  is  ifDescr  object  defined  in  RFC  2863. sys ‐ name Syst em  Name  [...]

clear lldp Enterasys D-Series CLI Reference 5-27 Default s None. Mode Switch  command,  read ‐ write. Example This  example  configures  the  management  address,  MED  capability ,  and  MED  location  identification  TL Vs  to  be  sent  in  LLDPDUs  by  port  ge .1.1. D2(rw)-[...]

clear lldp port trap 5-28 Discovery Protocol Configuration Synt ax clear lldp port status port-string Parameters Default s None. Mode Switch  command,  read ‐ write. Example This  example  returns  port  ge .1.1  to  the  default  state  of  enabled  for  both  transmitting  and  processing  r[...]

clear lldp port tx-tlv Enterasys D-Series CLI Reference 5-29 Parameters Default s None. Mode Switch  command,  read ‐ write. Example This  example  returns  port  ge .1.1  to  the  default  LLDP ‐ MED  trap  state  of  disabled. D2(rw)->clear lldp port med-trap ge. 1.1 clear lld p port tx-tlv Use [...]

clear lldp port tx-tlv 5-30 Discovery Protocol Configuration Default s None. Mode Switch  command,  read ‐ write. Example This  example  disa bles  the  management  address,  MED  capability ,  and  MED  location  identification  TL Vs  from  being  sent  in  LLDPDUs  by  port  ge [...]

Enterasys D-Series CLI Reference 6-1 6 Port Configuration This  chapter  descri bes  the  Po r t  Configuration  set  of  commands  and  how  to  use  them. Port Configuration Summary Port String Synt ax Used in the CLI Commands  requiring  a  port ‐ strin g  parameter  use  the  followi[...]

Port Configuration Summary 6-2 Port Conf iguration Port Slot/Unit Parameters Used in the CLI The  “unit”  parameter  is  often  used  interchangeably  wi th  “module”  in  the  standalone  switch  CLI  to  indicate  a  module  slot  location.  Examples This  example  shows ?[...]

Reviewing Port Status Enterasys D-Series CLI Reference 6-3 Example This  example  shows  how  to  configure  por t  ge.2.1  in  the  D2G124 ‐ 12  to  operate  with  a  100BASE ‐ FX  transceiver  installed.  First,  the  port  status  is  shown  as  operating  as  a[...]

show port 6-4 Port Conf iguration show port Use  this  command  to  display  whether  or  not  one  or  more  ports  are  enabled  for  switching . Synt ax show port [ port-string ] Parameters Default s If  port ‐ string  is  not  specif ied,  operational  status  information  f[...]

show port counters Enterasys D-Series CLI Reference 6-5 (truncated) Status Status ------------ -------------- ------ - ------- -------- ------- ----------- -- fe .3.14 up up N/A N/A BaseT RJ45 Ta b l e 6 ‐ 6  provides  an  explanation  of  the  command  output. show port counters Use  this  command  to  display ?[...]

show port counters 6-6 Port Conf iguration Examples This  example  shows  how  to  display  all  counter  statistics,  including  MIB2  network  traffic  and  traffic  through  the  device  for  fe .3.1: D2(su)->show port counters fe .3.1 Port: fe .3.1 MIB2 Interface: 1 No counter disconti[...]

Disabling / Enabling and Naming Ports Enterasys D-Series CLI Reference 6-7 Disabling / Enabling and Naming Port s Purpose To  disable  and  re ‐ enable  one  or  more  ports,  and  to  assign  an  alias  to  a  port.  By  def ault,  all  ports  are  enabled  at  device  start[...]

show port alias 6-8 Port Conf iguration Parameters Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  enable  fe.1.3: D2(su)->set port enable fe .1.3 show port alias Use  this  command  to  display  the  alias  name  for  one  or  more  po rts.[...]

set port alias Enterasys D-Series CLI Reference 6-9 Parameters Default s If  name  is  not  specified,  the  alias  assigned  to  the  port  will  be  cleared. Mode Switch  command,  read ‐ write. Examples This  example  shows  how  to  assign  the  alias  “A d m i n ”  t[...]

Setting Speed and Duplex Mode 6-10 Port Configur ation Setting S peed and Duplex Mode Purpose To  review  and  set  the  operational  speed  in  Mbps  and  the  default  duplex  mode:  Half ,  for  half  duplex,  or  Full ,  for  full  duplex  for  one  or  more  ports[...]

set port speed Enterasys D-Series CLI Reference 6-11 set port speed Use  this  command  to  set  the  default  speed  of  one  or  more  ports.  Th is  setting  only  takes  effect  on  ports  that  hav e  auto ‐ negotiation  disabled. Synt ax set port speed port-string { 10 | 1[...]

set port duplex 6-12 Port Configur ation Example This  example  shows  how  to  display  the  default  duplex  setting  for  Ethernet  port  14  in  slot 3: D2(su)->show port duplex ge.3.14 default duplex mode is full on port ge.3.14. set port duplex Use  this  command  to  set  the [...]

Enabling / Disabling Jumbo Frame Support Enterasys D-Series CLI Reference 6-13 Enabling / Disabling Jumbo Frame Support Purpose To  review ,  enable,  and  disable  jumbo  frame  support  on  one  or  more  ports.  This  allows  Gigabit  Ethernet  ports  to  transmit  frames  up  to [...]

set port jumbo 6-14 Port Configur ation set port jumbo Use  this  command  to  enable  or  disable  jumbo  frame  support  on  one  or  more  ports. Synt ax set port jumbo { enable | disable }[ po rt-string] Parameters Default s If  port ‐ string  is  not  specif ied,  jumbo  frame  s[...]

Setting Auto-Negotiation and Advertised Ability Enterasys D-Series CLI Reference 6-15 Setting Auto-Negotiation and Advertised Ability Purpose To  review ,  disable  or  enable  auto ‐ negotiation,  and  to  configure  port  adv ertisement  for  speed  and  duplex. During  auto ‐ negotiation,  the [...]

set port negotiation 6-16 Port Configur ation Example This  example  shows  how  to  display  auto ‐ negotiation  status  for  1 ‐ Gigabit  Ethernet  port  14  in  sl ot 3: D2(su)->show port negotiation ge.3.1 4 auto-negotiation is enabled on port ge.3.14. set port negotiation Use  this  comman[...]

set port advertise Enterasys D-Series CLI Reference 6-17 Example This  example  shows  how  to  display  adv ertisement  status  for  Gigabit  ports  13  and  14:  D2(su)->show port advertise ge.1.13- 14 ge.1.13 capability advertise d remote ------------------------------------ ------------- 10BASE-T yes[...]

clear port advertise 6-18 Port Configur ation Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  configure  port  1  to  advertise  1000BASE ‐ T  full  duplex:  D2(su)->set port advertise ge.1.1 10 00tfd clear port advertise Use  this  command  to  configure ?[...]

Setting Flow Control Enterasys D-Series CLI Reference 6-19 Setting Flow Control Purpose To  review ,  enable  or  disable  por t  flow  control.  Flow  control  is  used  to  manage  the  transmis sion  between  tw o  devices  as  specified  by  IEEE 802.3x  to  prevent  rec[...]

set flowcontrol 6-20 Port Configur ation Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  enable  flow  control: D2(su)->set flowcontrol enable[...]

Setting Port Link Traps and Link Flap Detection Enterasys D-Series CLI Reference 6-21 Setting Port Link T rap s and Link Flap Detection Purpose To  disable  or  re ‐ enable  link  traps,  display  link  trap  status,  and  to  configure  the  link  flapping  detection  function.  By  defaul[...]

set port trap 6-22 Port Configur ation Default s If  port ‐ string  is  not  specif ied,  the  trap  status  for  all  ports  wi ll  be  display ed. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  display  link  trap  status  for  fe.3.1  t[...]

show linkflap Enterasys D-Series CLI Reference 6-23 Parameters Default s •I f  not  specified,  information  about  all  link  flap  detection  settings  will  be  display ed. •I f  port ‐ string  is  not  specif ied,  information  for  all  ports  will  be  displayed. Mode [...]

show linkflap 6-24 Port Configur ation Examples This  example  shows  how  to  display  the  global  status  of  the  link  trap  detection  function: D2(rw)->show linkflap globalstate Linkflap feature globally disabled This  example  shows  how  to  display  ports  disabled  by ?[...]

set linkflap globalstate Enterasys D-Series CLI Reference 6-25 set linkflap globalst ate Use  this  command  to  globally  enable  or  disable  the  link  flap  detection  function.  Synt ax set linkflap globalstate { disable | enable } Parameters Default s By  default,  the  function  is  disab[...]

set linkflap interval 6-26 Port Configur ation Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  enable  the  link  trap  monitoring  on  all  ports. D2(rw)->set linkflap portstate enabl e set linkflap interval Use  this  command  to  set  the  time  inter[...]

clear linkflap action Enterasys D-Series CLI Reference 6-27 Default s None. Mode Switch  mode,  read ‐ write. Example This  example  shows  how  to  set  the  link  flap  violation  action  on  port  fe.1.4  to  generating  a  Syslog  entry . D2(rw)->set linkflap action fe .1 .4 gensy[...]

set linkflap downtime 6-28 Port Configur ation Parameters Default s None. Mode Switch  mode,  read ‐ write. Example This  example  shows  how  to  set  the  link  flap  threshold  on  port  fe.1.4  to  5. D2(rw)->set linkflap threshold fe .1.4 5 set linkflap downtime Use  this  command  [...]

clear linkflap Enterasys D-Series CLI Reference 6-29 Parameters Default s If  port ‐ string  is  not  specif ied,  all  ports  di sabled  by  a  link  flap  violation  will  be  ma de  operational. Mode Switch  mode,  read ‐ write. Example This  example  shows  how  to  make ?[...]

Configuring Broadcast Suppression 6-30 Port Configur ation Configuring Broadcast Suppression Purpose To  review  and  set  the  broadcast  suppression  threshold  for  one  or  more  ports.  This  fe ature  limits  the  numbe r  of  received  broadcast  frames  the  swit ch  wi[...]

set port broadcast Enterasys D-Series CLI Reference 6-31 set port broadcast Use  this  command  to  set  the  broadcast  suppression  threshold,  in  packets  per  se cond,  on  one  or  more  ports.  This  sets  a  threshold  on  the  broadcast  traffic  that  is  [...]

clear port broadcast 6-32 Port Configur ation Default s None. Mode Switch  command,  read ‐ write. Example This  example  clears  the  broadcast  threshold  limit  to  14881  pps  for  ports  1  through  5: D2(su)->clear port broadcast ge.1.1- 5 threshold[...]

Port Mirroring Enterasys D-Series CLI Reference 6-33 Port Mirroring The  D ‐ Series  device  allows  you  to  mirror  (or  redirect)  the  traffic  being  switched  on  a  port  for  the  purposes  of  netw ork  traffic  analysis  and  connection  assu rance.  When  [...]

set port mirroring 6-34 Port Configur ation Default s None. Mode Switch  command,  read ‐ only . Example This  example  shows  how  to  display  port  mirroring  information.  In  this  case,  fe.1.4  is  configured  as  a  source  port  and  fe.1.1 1  is  a  target  an[...]

clear port mirroring Enterasys D-Series CLI Reference 6-35 Usage Note  that  LAG  ports  and  their  underlying  physical  ports ,  as  described  in  “ Link  Aggregation  Control  Protocol  (LACP) ”  on  page  6 ‐ 36,  cannot  be  mir rored. Example This  example  shows [...]

Link Aggregation Control Protocol (LACP) 6-36 Port Configur ation Link Aggregation Control Protocol (LACP) Using  multiple  links  simultaneously  to  increase  bandwidth  is  a  desirable  switch  feature,  which  can  be  accomplished  if  both  sides  agree  on  a  set  of  [...]

Link Aggregation Control Protocol (LACP) Enterasys D-Series CLI Reference 6-37 •A  means  of  identifying  the  set  of  capabi lities  associated  wi th  each  port  and  with  each  aggregator ,  as  understood  by  a  given  device. •A  means  of  identifying  a  L[...]

Link Aggregation Control Protocol (LACP) 6-38 Port Configur ation is,  will  block  redundant  paths).  For  information  about  build ing  static  aggregations,  refer  to  set  lacp  static  ( page 6 ‐ 42 ). Each  D ‐ Series  modu le  provides  six  virtual  link  aggregator[...]

show lacp Enterasys D-Series CLI Reference 6-39 show lacp Use  this  command  to  display  information  about  one  or  more  aggregator  ports.  Synt ax show lacp [ port-string ] Parameters Default s If  port ‐ string  is  not  specif ied,  link  aggregation  information  for  all ?[...]

set lacp 6-40 Port Configur ation set lacp Use  this  command  to  disable  or  enable  the  Link  Aggregation  Control  Protocol  (LACP)  on  the  device. Synt ax set lacp {disable | enable} Parameters Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  ho[...]

set lacp asyspr i Enterasys D-Series CLI Reference 6-41 set lacp asyspri Use  this  command  to  set  the  LACP  system  priority .  Synt ax set lacp asyspri value Parameters Default s None. Mode Switch  command,  read ‐ write. Usage LACP  uses  this  va l u e  to  determine  aggregation  prec[...]

clear lacp 6-42 Port Configur ation Usage LACP  will  use  this  va lu e  to  form  an  oper  key .  Only  underlying  physical  ports  with  oper  keys  matching  th ose  of  their  aggregators  will  be  allowed  to  aggregate.  The  default  admin  key  [...]

clear lacp static Enterasys D-Series CLI Reference 6-43 Default s If  not  specified,  a  key  will  be  assigned  according  to  the  specified  aggregator .  For  example  a  key  of  4  wou ld  be  assigned  to  lag.0.4 .  Mode Switch  command,  read ‐ write. Example[...]

set lacp singleportlag 6-44 Port Configur ation set lacp singleportlag Use  this  command  to  enable  or  disable  the  formation  of  single  port  LAGs.  Synt ax set lacp singleportlag { enable | dis able } Parameters Default s None. Mode Switch  command,  read ‐ write. Usage When  single  por[...]

show port lacp Enterasys D-Series CLI Reference 6-45 Example This  example  shows  how  to  reset  the  single  port  LAG  function  back  to  disabled:  D2(su)->clear lacp singleportlag show port lacp Use  this  command  to  display  link  aggregation  informatio n  for  one ?[...]

set port lacp 6-46 Port Configur ation Port Instance: fe .1.12 ActorPort: 1411 PartnerAdminPort: 1411 ActorSystemPriority: 32768 PartnerOperPort: 1411 ActorPortPriority: 32768 PartnerAdminSystemPriority: 32768 ActorAdminKey: 32768 PartnerOperSystemPriority: 32768 ActorOperKey: 32768 PartnerAdminPortPriority: 32768 ActorAdminState: -----GlA PartnerO[...]

set port lacp Enterasys D-Series CLI Reference 6-47 Default s At  least  one  parameter  must  be  entered  per  port ‐ string. If  enable  or  disable  are  not  specified,  port(s)  will  be  enabled  with  the  LACP  parameters  entered. Mode Switch  command,  read ‐ [...]

clear port lacp 6-48 Port Configur ation Usage LACP  commands  and  parameters  beginning  with  an  “a”  (such  as  aadminkey )  set  actor  val u e s .  Corresponding  commands  and  parameters  beginning  with  a  “p”  (such  as  padminkey )  set  corresponding[...]

clear port lacp Enterasys D-Series CLI Reference 6-49 Default s None. Mode Switch  command,  read ‐ write. Usage If  you  set  a  port  to  LACP  passiv e  using  the  command  clear  port  lacp  port  < por t ‐ string >  aadminstate  lacpactive ,  the  command  clear  p[...]

Configuring Protected Ports 6-50 Port Configur ation Configuring Protected Port s The  Protected  Por t  feature  is  used  to  prevent  por ts  from  forw arding  traffic  to  each  other ,  even  when  they  are  on  the  same  VLAN.  Por t s  may  be  designated  as[...]

show port protected Enterasys D-Series CLI Reference 6-51 Example This  example  shows  how  to  assign  ports  ge .1.1  through  ge .1.3  to  protected  port  group  1:  D2(rw)->set port protected ge.1.1-3 1 show port protected Use  this  command  to  display  information  about [...]

set port protected name 6-52 Port Configur ation Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  clear  protected  ports  ge .1.1  through  ge .1.3: D2(rw)->clear port protected ge.1.1- 3 set port protected name Use  this  command  to  assign  a  name  to  [...]

clear port protected name Enterasys D-Series CLI Reference 6-53 Example This  example  shows  how  to  show  the  name  of  protected  port  group  1:  D2(ro)->show port protected name 1 Group ID Group Name ----------------------------- 1 group1 clear port protected name Use  this  command  to  [...]

clear port protected name 6-54 Port Configur ation[...]

Enterasys D-Series CLI Reference 7-1 7 SNMP Configuration This  chapter  descri bes  the  Simple  Network  Management  Protocol  (SNMP)  set  of  commands  and  how  to  use  them. SNMP Configuration Summary SNMP  is  an  application ‐ layer  protocol  that  facilitates  the [...]

SNMP Configuration Summary 7-2 SNMP Configuration •S N M P  network  management  applications,  such  as  the  Enterasys  Ne tSight  application,  whic h  communicate  with  agents  to  get  statistics  and  alerts  from  the  managed  devices.  SNMPv3 SNMPv3  is  an  i[...]

Reviewing SNMP Statistics Enterasys D-Series CLI Reference 7-3 Using SNMP Context s to Access S pecific MIBs By  default,  when  operating  from  the  switch  CLI,  D ‐ Series  devices  allow  access  to  all  SNMP  MIBs  or  contexts.  A  context  is  a  collection  of  MIB [...]

show snmp engineid 7-4 SNMP Configuration Commands show snmp engineid Use  this  command  to  display  the  SNMP  local  engine  ID.  This  is  the  SNMP  v3  engine’ s  administratively  unique  identifier .  Synt ax show snmp engineid Parameters None. Default s None. Mode Switch  comma[...]

show snmp counters Enterasys D-Series CLI Reference 7-5 show snmp counters Use  this  command  to  display  SNMP  traffic  counter  val u e s . Synt ax show snmp counters Parameters None. Default s None. Mode Switch  command,  read ‐ only . Example This  example  shows  how  to  display  SNMP  co[...]

show snmp counters 7-6 SNMP Configuration usmStatsUnknownEngineIDs = 0 usmStatsWrongDigests = 0 usmStatsDecryptionErrors = 0 Ta b l e 7 ‐ 14  provides  an  explanation  of  the  command  output. T able 7-14 show snmp counters Out put Det ails Output Field What It Displays... snmpInPkts Number of messages delivered to the SNMP[...]

show snmp counters Enterasys D-Series CLI Reference 7-7 snmpOutBadV alues Number of SNMP PDUs generat ed by the SNMP protocol entity with the value of the error-status field as "badV alue." snmpOutGenErrs N umber of SNMP PDUs generated by the SNMP protocol entity with the value of the error-status field as "genErr ." snmpOutGetR[...]

Configuring SNMP Users, Groups, and Communities 7-8 SNMP Configuration Configuring SNMP Users, Group s, and Communities Purpose To  review  and  configure  SNMP  users,  groups,  and  v1  and  v2  communities.  These  are  defined  as  follows: •U s e r  —  A  person  registered  in[...]

set snmp user Enterasys D-Series CLI Reference 7-9 If  user  is  not  specified,  information  about  all  SNMP  users  will  be  disp layed. If  remote  is  not  specified ,  user  information  about  the  local  SNMP  engine  will  be  displayed. If  not  specifie[...]

clear snmp user 7-10 SNMP Configuration Parameters Default s If  remote  is  not  specified ,  the  user  will  be  registered  for  the  local  SNMP  engine. If  authenticat ion  is  not  specified,  no  authentication  wi ll  be  applied. If  privacy  is  not  specif[...]

show snmp group Enterasys D-Series CLI Reference 7-11 Example This  example  shows  how  to  remove  the  SNMP  user  named  “bill ” : D2(su)->clear snmp user bill show snmp group Use  this  command  to  display  an  SNMP  group  configuration.  An  SNMP  group  is  a  c[...]

set snmp group 7-12 SNMP Configuration Ta b l e 7 ‐ 16  provides  an  explanation  of  the  command  output. set snmp group Use  this  command  to  create  an  SNMP  group.  This  associates  SNMPv3  users  to  a  group  that  shares  common  access  privileges. Synt ax[...]

show snmp community Enterasys D-Series CLI Reference 7-13 Parameters Default s If not specified, settings related t o all security models will be cleared. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  clear  all  se ttings  assigned  to  the  “pu blic”  user  within ?[...]

set snmp community 7-14 SNMP Configuration set snmp community Use  this  command  to  configure  an  SNMP  community  group. Synt ax set snmp community community [ securi tyname securityname ] [ context context ] [ transport transport ] [ volatile | no nvolatile ] Parameters Default s If  securityname  is  not  s[...]

Configuring SNMP Access Rights Enterasys D-Series CLI Reference 7-15 Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  delete  the  community  name  “vip.” D2(su)->clear snmp community vip Configuring SNMP Access Right s Purpose To  review  and  configure ?[...]

show snmp access 7-16 SNMP Configuration Default s If  groupname  is  not  specified,  access  information  for  all  SNMP  groups  will  be  displayed. If  security ‐ mode l  is  not  specified,  access  information  for  all  SNMP  versions  wil l  be  display ed. If [...]

set snmp access Enterasys D-Series CLI Reference 7-17 set snmp access Use  this  command  to  set  an  SNMP  access  configuration.  Synt ax set snmp access groupname security-m odel { v1 | v2c | usm } [ noauthentication | authentication | privacy ] [ context c ontext ] [ exact | prefix ] [ read read ] [ write write ] [ n[...]

clear snmp access 7-18 SNMP Configuration Default s If  security  lev el  is  not  specif ied,  no  authentication  will  be  applied. If  context  is  not  specified,  access  will  be  enabled  for  the  de fault  context.  If  context  is  specified  without  a ?[...]

Configuring SNMP MIB Views Enterasys D-Series CLI Reference 7-19 Example This  example  shows  how  to  clear  SNMP  ve rs i on  3  access  for  the  “mis ‐ group”  via  the  authentication  protocol: D2(su)->clear snmp access mis-group security-model usm authentication Configuring SNMP MIB V[...]

show snmp cont ext 7-20 SNMP Configuration Example This  example  shows  how  to  display  SNMP  MIB  view  configuration  information: D2(su)->show snmp view --- SNMP MIB View information --- View Name = All Subtree OID = 1 Subtree mask = View Type = included Storage type = nonVolatile Row status = active View Name[...]

set snmp view Enterasys D-Series CLI Reference 7-21 Mode Switch  command,  read ‐ only . Usage An  SNMP  context  is  a  collection  of  management  information  that  can  be  accessed  by  an  SNMP  agent  or  entity .  The  default  context  allows  al l  SNMP  ag[...]

clear snmp view 7-22 SNMP Configuration clear snmp view Use  this  command  to  delete  an  SNMP v3  MIB  view . Synt ax clear snmp view viewname subtree Parameters Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  delete  SNMP  MIB  view  “publi [...]

show snmp targetparams Enterasys D-Series CLI Reference 7-23 Parameters Default s If  targetPara ms  is  not  specified,  entries  associated  with  all  target  parameters  will  be  displayed. If  not  specified,  entries  of  all  storage  types  will  be  display ed. Mode Swit[...]

set snmp targetparams 7-24 SNMP Configuration set snmp t argetp arams Use  this  command  to  set  SNMP  target  parameters,  a  named  set  of  security/authorization  criteria  used  to  generate  a  message  to  a  target.  Synt ax set snmp targetparams paramsname user user securi[...]

Configuring SNMP Target Addresses Enterasys D-Series CLI Reference 7-25 Parameters Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  clear  SNMP  target  parameters  named  “v1ExampleParams”: D2(su)->clear snmp targetparams v1Ex ampleParams Configuring SNMP T arg[...]

set snmp targetaddr 7-26 SNMP Configuration If  not  specified,  entries  of  all  storage  types  will  be  display ed  for  a  target  address. Mode Switch  command,  read ‐ only . Example This  example  shows  how  to  display  SNMP  target  address  infor mation: D2(su[...]

set snmp targetaddr Enterasys D-Series CLI Reference 7-27 Parameters Default s If  not  specified,  udpport  will  be  set  to  162 . If  not  specified,  mask  will  be  set  to  255.255.255.255 If  not  specified,  timeout  will  be  set  to  1500 . If  not  specified, [...]

clear snmp targetaddr 7-28 SNMP Configuration clear snmp t argetaddr Use  this  command  to  delete  an  SNMP  target  address  entry . Synt ax clear snmp targetaddr targetAddr Parameters Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  clear  SNMP  t[...]

show newaddrtrap Enterasys D-Series CLI Reference 7-29 Commands show newaddrtrap Use  this  comman d  to  display  the  global  and  port ‐ specif ic  status  of  the  SNMP  new  MAC  addresses  trap  function. Synt ax show newaddrtrap [ port-string ] Parameters Default s If  port ‐ string ?[...]

set newaddrtrap 7-30 SNMP Configuration ge.1.1 disabled ge.1.2 disabled ge.1.3 disabled ge.1.4 disabled ge.1.5 disabled set newaddrtrap Use  this  command  to  enable  or  disable  SNMP  trap  messaging,  globally  or  on  one  or  mor e  ports,  when  new  source  MAC  addresses  ar[...]

set snmp notify Enterasys D-Series CLI Reference 7-31 Parameters Default s If  a  notify  name  is  not  specified,  all  entries  will  be  displayed. If  volatile ,  no nvolatile ,  or  read ‐ only  are  not  s pecified,  all  storage  type  entries  will  be  di splayed[...]

clear snmp notify 7-32 SNMP Configuration command’ s  tag  parameter  can  be  used  to  bind  each  entry  to  a  target  address  using  the  set  snmp  targetaddr  command  (“ set  snmp  targetaddr ”  on  page 7 ‐ 26). Synt ax set snmp notify notify tag tag [ trap | [...]

show snmp notifyfilter Enterasys D-Series CLI Reference 7-33 Example This  example  shows  how  to  clear  the  SNMP  notify  configuration  fo r  “hello”: D2(su)->clear snmp notify hello show snmp notifyfilter Use  this  command  to  display  SNMP  notify  filter  information,  ide[...]

set snmp notifyfilter 7-34 SNMP Configuration set snmp notifyfilter Use  this  command  to  create  an  SN MP  notify  filter  configuration.  This  identifies  which  management  targets  should  NOT  receive  notification  messages,  which  is  useful  for  fine ‐ tuning ?[...]

show snmp notifypr ofile Enterasys D-Series CLI Reference 7-35 Parameters Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  delete  the  SNMP  notify  filter  “pilot1”: D2(su)->clear snmp notifyfilter pilo t1 subtree 1.3.6 show snmp notifyprofile Use  this [...]

set snmp notifyprofile 7-36 SNMP Configuration Row status = active set snmp notifyprofile Use  this  command  to  create  an  SN MP  notify  filter  profile  configuration.  This  associ ates  a  notificatio n  filter ,  created  with  the  set  snmp  notifyfilter  command  (“ s[...]

Creating a Basic SNMP Trap Configuration Enterasys D-Series CLI Reference 7-37 Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  delete  SNMP  notify  profile  “area51”: D2(su)->clear snmp notifyprofile are a51 targetparam v3ExampleParams Creating a Basic SNMP T rap Configuration T[...]

Creating a Basic SNMP Trap Configuration 7-38 SNMP Configuration Example This  example  shows  how  to:  • Create  an  SNMP  community  called  mgmt . • Configure  a  trap  notification  called  TrapSink .  This  trap  notification  will  be  sent  with  the  community  [...]

Enterasys D-Series CLI Reference 8-1 8 Spanning T ree Configuration This  chapter  describe s  the  Spanning  Tr e e  Configuration  set  of  commands  and  how  to  use  them. Sp anning T ree Configuration Summary Overview: Single, Rapid, and Mult iple S p anning T ree Protocols The  IEEE  802.1D [...]

Spanning Tree Configuration Summary 8-2 Spannin g Tr ee Configuration blocking  for  all  traffic  flowing  between  the  tw o  switches.  The  blocking  links  are  effectively  used  only  if  the  forw arding  link  goes  down.  MSTP  assigns  each  VLAN  present  o[...]

Configuring Spanning Tree Bridge Parameters Enterasys D-Series CLI Reference 8-3 learning  and  the  priorit y  vect or  is  wor s e  than  that  already  held  by  the  port.  If  a  disputed  BPDU  is  receiv ed,  the  port  is  forced  to  the  li stening  state. ?[...]

Configuring Spanning Tree Bridge Parameters 8-4 Spannin g Tr ee Configuration Commands For information about... Refer to p age... show spantree stat s 8-5 set spantree 8-7 show spantree version 8-7 set spantree version 8-8 clear spantree version 8-8 show spantree bpdu-forwarding 8-9 set spantree bpdu-forwarding 8-9 show spantree bridgeprioritymode [...]

show spantree stats Enterasys D-Series CLI Reference 8-5 show sp antree st at s Use  this  command  to  display  Spanning  Tr e e  information  for  one  or  more  ports. Synt ax show spantree stats [ port port-string ] [ sid sid ] [ ac tive ] Parameters Default s If  port ‐ string  is  not  specif [...]

show spantree stats 8-6 Spannin g Tr ee Configuration Example This  example  shows  how  to  display  the  device’ s  Spanning  Tr e e  configuration: D2(su)->show spantree stats Spanning tree status - enabl ed Spanning tree instance - 0 Designated Root MacAddr - 00-e0 -63-9d-c1-c8 Designated Root Priority - 0 Des[...]

set spantree Enterasys D-Series CLI Reference 8-7 set sp antree Use  this  command  to  globally  enable  or  disable  the  Spanning  Tr e e  protocol  on  the  switch. Synt ax set spantree { disable | enable } Parameters Default s None. Mode Switch  command,  read ‐ write. Example This  example [...]

set spantree version 8-8 Spannin g Tr ee Configuration Mode Switch  command,  read ‐ only . Example This  example  shows  how  to  display  Spanning  Tr e e  ver si o n  information  for  the  device: D2(su)->show spantree version Force Version is mstp set sp antree version Use  this  command [...]

show spantree bpdu-forwarding Enterasys D-Series CLI Reference 8-9 Parameters None. Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  reset  the  Spanning  Tr e e  version: D2(su)->clear spantree version show sp antree bpdu-forwarding Use this command to disp lay the Sp[...]

show spantree bridgeprioritymode 8-10 Spanning Tree Configura tion Default s By  default  BP DU  forw arding  is  disabled . Mode Switch  command,  read ‐ write. Usage The  Spanning  Tr e e  protocol  must  be  disabled  ( set  spantree  disable )  for  this  feature  to  take  eff[...]

clear spantree bridgeprioritymode Enterasys D-Series CLI Reference 8-11 Parameters Default s None Mode Switch  command,  read ‐ write. Usage The  mode  affects  the  range  of  priority  val u e s  used  to  determine  whi ch  device  is  selected  as  the  Spanning  Tr e e  root  [...]

show spantree mstilist 8-12 Spanning Tree Configura tion show sp antree mstilist Use  this  command  to  display  a  list  of  Multiple  Spanning  Tr e e  (MST)  instances  configured  on  the  device. Synt ax show spantree mstilist Parameters None. Default s None. Mode Switch  command,  read ?[...]

clear spantree msti Enterasys D-Series CLI Reference 8-13 clear sp antree msti Use  this  command  to  delete  one  or  more  Multiple  Spanning  Tr e e  instances. Synt ax clear spantree msti [ sid sid ] Parameters Default s If  sid  is  not  specifie d,  all  MST  instances  will  be [...]

set spantree mstmap 8-14 Spanning Tree Configura tion set sp antree mstmap Use  this  command  to  map  one  or  more  filtering  database  IDs  (FIDs)  to  a  SID.  Since  VLANs  are  mapped  to  FIDs,  this  essentially  maps  one  or  more  VLAN  IDs  to  a[...]

show spantree vlanlist Enterasys D-Series CLI Reference 8-15 D2(su)->clear spantree mstmap 2 show sp antree vlanlist Use  this  command  to  display  the  Spanning  Tr e e  ID(s)  assigne d  to  one  or  more  VLANs. Synt ax show spantree vlanlist [ vlan-list ] Parameters Default s If  not  specifi[...]

set spantree mstcfgid 8-16 Spanning Tree Configura tion MAC  address)  have  no t  been  changed.  For  information  on  using  the  set  spantree  mstcf gid  command  to  change  these  settings,  refer  to  “ set  spantree  mstcfgid ”  on  page 8 ‐ 16: D2(su)->sho[...]

set spantree priority Enterasys D-Series CLI Reference 8-17 Example This  example  shows  how  to  reset  the  MST  configuration  identifier  elements  to  default  val u e s : D2(su)->clear spantree mstcfgid set sp antree priority Use  this  command  to  set  the  device’ s  Spannin[...]

set spantree hello 8-18 Spanning Tree Configura tion Default s If  sid  is  not  specifie d,  priority  will  be  reset  on  Spanning  Tr e e  0. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  reset  the  bridge  priority  on  SID  1: D2(su)-&g[...]

set spantree maxage Enterasys D-Series CLI Reference 8-19 Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  globally  reset  the  Spanning  Tr e e  hello  time: D2(su)->clear spantree hello set sp antree maxage Use  this  command  to  set  the  bridge  maxim [...]

set spantree fwddelay 8-20 Spanning Tree Configura tion Parameters None. Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  globally  reset  the  maximum  aging  time: D2(su)->clear spantree maxage set sp antree fwddelay Use  this  command  to  set  the[...]

clear spantree fwddelay Enterasys D-Series CLI Reference 8-21 clear sp antree fwddelay Use  this  command  to  reset  the  Spanning  Tr e e  forward  delay  to  the  defaul t  setting  of  15  seconds.  Synt ax clear spantree fwddelay Parameters None. Default s None. Mode Switch  command,  re[...]

set spantree backuproot 8-22 Spanning Tree Configura tion set sp antree backuproot Use  this  command  to  enable  or  disable  the  Spanning  Tr e e  backup  root  function  on  the  switch.  Synt ax set spantree backuproot sid {disable | enable} Parameters Default s None. Mode Switch  command, ?[...]

show spantree tctrapsuppress Enterasys D-Series CLI Reference 8-23 Example This  example  shows  how  to  reset  the  backup  root  function  to  disabled  on  SID  2: D2(rw)->clear spantree backuproot 2 show sp antree tctrap suppress Use  this  command  to  display  the  status  of [...]

clear spantree tctrapsuppress 8-24 Spanning Tree Configura tion Usage By  default,  RSTP  non ‐ edge  (bridge)  ports  that  transition  to  forw arding  or  blocking  cause  the  switch  to  issue  a  topology  change  trap.  When  topology  change  trap  suppression  [...]

show spantree spanguard Enterasys D-Series CLI Reference 8-25 Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  reset  the  protocol  state  migration  machine  on  port  20: D2(su)->set spantree protomigration ge.1.20 show sp antree sp anguard Use  this [...]

clear spantree spanguard 8-26 Spanning Tree Configura tion Mode Switch  command,  read ‐ write. Usage SpanGuard  is  designed  to  disable,  or  lock  out  an  “edge”  port  when  an  unexpected  BPDU  is  receiv ed.  The  port  can  be  configured  to  be  re ‐ e[...]

show spantree spanguardtimeout Enterasys D-Series CLI Reference 8-27 show sp antree spanguard timeout Use  this  command  to  display  the  Spanning  Tr e e  SpanGuard  timeout  setting. Synt ax show spantree spanguardtimeout Parameters None. Default s None. Mode Switch  command,  read ‐ only . Example This [...]

clear spantree spanguardtimeout 8-28 Spanning Tree Configura tion clear sp antree spanguard timeout Use  this  command  to  reset  the  Spanning  Tr e e  SpanGuard  timeout  to  the  default  val u e  of  300  seconds. Synt ax clear spantree spanguardtimeout Parameters None. Default s None. Mode Switc[...]

clear / set spantree spanguardlock Enterasys D-Series CLI Reference 8-29 clear / set sp antree spanguardlock Use  either  of  these  commands  to  unlock  one  or  more  ports  locked  by  the  Spanning  Tr e e  SpanGuard  function.  When  SpanGuard  is  enabled,  it  locks  po[...]

set spantree spanguardtrapenable 8-30 Spanning Tree Configura tion set sp antree sp anguard trapenable Use  this  command  to  enable  or  disable  the  sending  of  an  SNMP  trap  message  when  SpanGuard  has  locked  a  port. Synt ax set spantree spanguardtrapenable { di sable | enable } [...]

show spantree legacypathcost Enterasys D-Series CLI Reference 8-31 show sp antree legacyp athcost Use  this  command  to  display  the  default  Spanning  Tr e e  path  cost  setting. Synt ax show spantree legacypathcost Parameters None. Default s None. Mode Switch  command,  read ‐ only . Example This  e[...]

clear spantree legacypathcost 8-32 Spanning Tree Configura tion clear sp antree legacyp athcost Use  this  command  to  set  the  Spanning  Tr e e  default  va l ue  for  legacy  path  cost  to  802.1t  va l ue s . Synt ax clear spantree legacypathcost Default s None. Mode Switch  command,  read[...]

Configuring Spanning Tree Port Parameters Enterasys D-Series CLI Reference 8-33 Configuring S p anning T ree Port Parameters Purpose To  display  and  set  Spanning  Tr e e  port  parameters. Commands set sp antree port admin Use  this  command  to  disable  or  enable  the  Spanning  Tr e e  algor[...]

clear spantree portadmin 8-34 Spanning Tree Configura tion Example This  example  shows  how  to  disable  Spanning  Tr e e  on  fe.1 .5: D2(rw)->set spantree portadmin fe .1.5 disable clear sp antree port admin Use  this  command  to  reset  the  default  Spanning  Tr e e  admin  status ?[...]

show spantree portpr i Enterasys D-Series CLI Reference 8-35 Example This  example  shows  how  to  display  port  admin  status  for  ge .1.1: D2(ro)->show spantree portadmin port ge.1.1 Port ge.1.1 has portadmin set to ena bled show sp antree portpri Use  this  command  to  show  the  Spanning ?[...]

clear spantree portpri 8-36 Spanning Tree Configura tion Parameters Default s If  sid  is  not  specifie d,  port  priority  will  be  set  for  Spanning  Tr e e  0. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  set  the  priority  of  fe.1.3 [...]

show spantree adminpathcost Enterasys D-Series CLI Reference 8-37 show sp antree adminpathcost Use  this  command  to  display  the  admin  path  cost  for  a  port  on  one  or  more  Spanning  Tr e e s .  Synt ax show spantree adminpathcost [ port po rt-string ] [ sid sid ] Parameters Default [...]

clear spantree adminpathcost 8-38 Spanning Tree Configura tion Example This  example  shows  how  to  set  the  admin  path  cost  to  200  for  fe.3 .2  on  SID  1: D2(su)->set spantree adminpathcost fe .3.2 200 si d 1 clear sp antree adminp athcost Use  this  command  to  reset  th[...]

set spantree adminedge Enterasys D-Series CLI Reference 8-39 Mode Switch  command,  read ‐ only . Example This  example  shows  how  to  display  the  edge  port  status  for  fe.3.2: D2(su)->show spantree adminedge port fe .3.2 Port fe .3.2 has a Port Admin Edge of Edg e-Port set sp antree adminedge Use [...]

clear spantree adminedge 8-40 Spanning Tree Configura tion Parameters Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  reset  fe.1.11  as  a  non ‐ edge  por t: D2(su)->clear spantree adminedge fe .1.11 port ‐ string Specifies  port(s)  on  which  to[...]

Configuring Spannin g Tree Loop Protect Parameters Enterasys D-Series CLI Reference 8-41 Configuring S p anning T ree Loop Protect Parameters Purpose To  display  and  set  Spanning  Tr e e  Loop  Protect  parameters,  including  the  global  parameters  of  Loop  Protect  threshold,  window ,  [...]

set spantree lp 8-42 Spanning Tree Configura tion set sp antree lp Use  this  command  to  enable  or  disable  the  Loop  Protect  feature  per  port  and  optionally ,  per  SID.  The  Loop  Protect  feature  is  disabled  by  default.  See  “Loop  Protect”  o[...]

clear spantree lp Enterasys D-Series CLI Reference 8-43 Default s If  no  port ‐ string  is  specified,  status  is  displayed  for  all  ports. If  no  SID  is  specified,  SID  0  is  assumed.  Mode Switch  command,  read ‐ only . Example This  example  shows  how  to [...]

clear spantree lplock 8-44 Spanning Tree Configura tion Parameters Default s If  no  port ‐ string  is  specified,  status  is  displayed  for  all  ports. If  no  SID  is  specified,  SID  0  is  assumed.  Mode Switch  command,  read ‐ only . Example This  example  shows  [...]

set spantree lpcapablepartner Enterasys D-Series CLI Reference 8-45 set sp antree lpcapablep artner Use  this  command  to  specify  per  port  whether  the  link  partner  is  Loop  Protect  capable.  Se e  “Loop  Protect”  on  page 2.  for  more  information.  Synt ax set sp[...]

clear spantree lpcapablepartner 8-46 Spanning Tree Configura tion Default s If  no  port ‐ string  is  specified,  Loop  Protect  capability  for  link  partners  is  display ed  for  all  ports. Mode Switch  command,  read ‐ only . Example This  example  shows  how  to  display [...]

show spantree lpthreshold Enterasys D-Series CLI Reference 8-47 Default s None.  The  default  ev ent  threshold  is  3. Mode Switch  command,  read ‐ write. Usage The  LoopPr otect  event  threshold  is  a  global  intege r  var ia b l e  that  provides  protection  in  the  case [...]

set spantree lpwindow 8-48 Spanning Tree Configura tion Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  reset  the  Loop  Protect  ev ent  threshold  to  the  default  of  3: D2(rw)->clear spantree lpthreshold set sp antree lpwindow Use  this  [...]

clear spantree lpwindow Enterasys D-Series CLI Reference 8-49 Parameters None. Default s None.  Mode Switch  command,  read ‐ only . Example This  example  shows  how  to  display  the  current  Loop  Protect  window  val u e : D2(rw)->show spantree lpwindow The Loop Protect event window is set to 120 [...]

show spantree lptrapenable 8-50 Spanning Tree Configura tion Default s None.  Mode Switch  command,  read ‐ write. Usage Loop  Protect  traps  are  sent  when  a  Loop  Protect  ev ent  occurs,  that  is,  when  a  port  goes  to  listening  due  to  not  receiving  BPD[...]

set spantree disputedbpduthreshold Enterasys D-Series CLI Reference 8-51 Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  reset  the  Loop  Protect  ev ent  notification  state  to  the  default  of  disabled.  D2(rw)->clear spantree lptrapenabl[...]

show spantree disputedbpduthreshold 8-52 Spanning Tree Configura tion Example This  example  shows  how  to  set  the  disputed  BPDU  threshold  va l u e  to  5: D2(rw)->set spantree disputedbpduthr eshold 5 show sp antree disputedbp duthreshold Use  this  command  to  display  the  current [...]

show spantree nonforwardingreason Enterasys D-Series CLI Reference 8-53 show sp antree nonforwardingreason Use  this  command  to  display  the  reason  for  placing  a  port  in  a  non ‐ forw arding  state  du e  to  an  exceptional  condition.  Synt ax show spantree nonforwardingreaso[...]

show spantree nonforwardingreason 8-54 Spanning Tree Configura tion[...]

Enterasys D-Series CLI Reference 9-1 9 802.1Q VLAN Configuration This  chapter  descri bes  the  D ‐ Series  system’ s  capabilities  to  implement  802.1Q  virtual  LANs  (VLANs).  VLAN Configuration Summary Vi rt u a l  LANs  allow  the  netw ork  administrator  to  partition  net[...]

Viewing VLANs 9-2 802.1Q VLAN Configuration If  the  D ‐ Series  device  is  to  be  configured  for  multiple  VLANs,  it  may  be  desirable  to  configure  a  management ‐ only  VLAN.  This  allows  a  station  connected  to  th e  management  VLAN  to [...]

show vlan Enterasys D-Series CLI Reference 9-3 Command show vlan Use  this  command  to  display  all  information  related  to  one  or  more  VLANs. Synt ax show vlan [ static ] [ vlan-list ] [ portinfo [ vlan vlan-list | vlan-name ] [ port port- string ]] Parameters Default s If  no  options  ar e [...]

show vlan 9-4 802.1Q VLAN Configuration T able 9-25 show vlan Output Det ails Output Fi eld What It Disp la y s. .. VLAN VLAN ID. NAME Name assigned to the VLAN. S tatus Whether it is enabled or disabled . VLAN T ype Whether i t is perman ent (static) or dynamic . Egress Ports Ports configured to transmit frames for this VLAN. Forbidden Egress Port[...]

Creating and Naming Static VLANs Enterasys D-Series CLI Reference 9-5 Creating and Naming St atic VLANs Purpose To  create  a  new  static  VLAN,  or  to  enable  or  disable  exist ing  VLAN(s). Commands set vlan Use  this  command  to  create  a  new  static  IEEE  802.1 Q  VLAN, ?[...]

set vlan name 9-6 802.1Q VLAN Configuration set vlan name Use  this  command  to  set  or  change  the  ASCII  name  for  a  new  or  existing  VLAN.  Synt ax set vlan name vlan-list vlan-name Parameters Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows ?[...]

clear vlan name Enterasys D-Series CLI Reference 9-7 clear vlan name Use  this  command  to  remove  the  name  of  a  VLAN  from  the  VLAN  list. Synt ax clear vlan name vlan-list Parameters Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  cle[...]

Assigning Port VLAN IDs ( PVIDs) and Ingress Filtering 9-8 802.1Q VLAN Configuration Assigning Port VLAN IDs (PVIDs) and Ingress Filtering Purpose To  assign  default  VLAN  IDs  to  untagged  frames  on  one  or  more  ports,  to  configure  VLAN  ingress  filtering  and  constraints,  an[...]

set port vlan Enterasys D-Series CLI Reference 9-9 fe .2.5 is set to 1 fe .2.6 is set to 1 set port vlan Use  this  command  to  configure  the  PVID  (port  VLAN  identifier)  for  one  or  more  ports.  Synt ax set port vlan port-string pvid [ modi fy-egress | no-modify-egress ] Parameters Default s No[...]

show port ingress filter 9-10 802.1Q VLAN Configuration Parameters Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  reset  ports  fe.1.3  throu gh  11  to  a  VLAN ID  of  1  (Host  VLAN): D2(su)->clear port vlan fe .1.3-11 show port ingress filter[...]

set port ingress filter Enterasys D-Series CLI Reference 9 -11 set port ingress filter Use  this  command  to  discard  all  frames  received  with  a  VLAN  ID  that  don’ t  match  the  port’ s  VLAN  egress  list.  Synt ax set port ingress-filter port-string {disable | enable} Param[...]

set port discard 9-12 802.1Q VLAN Configuration Mode Switch  command,  read ‐ only . Example This  example  shows  how  to  display  the  frame  discard  mode  for  fe. 2.7.  In  this  case,  the  port  has  been  set  to  discar d  all  tagged  frames: D2(su)->show [...]

Configuring the VLAN Egress List Enterasys D-Series CLI Reference 9 -13 Configuring the VLAN Egress List Purpose To  assign  or  re move  ports  on  the  egress  list  of  a  particular  VLAN.  This  determines  which  ports  on  the  switch  will  be  eligible  to  transmit ?[...]

set vlan forbidden 9-14 802.1Q VLAN Configuration Mode Switch  command,  read ‐ write.  Example This  example  shows  you  how  to  show  VLAN  egr ess  information  for  fe.1.1  through  3.  In  this  case,  all  three  ports  are  allow ed  to  transmit  VLAN  1[...]

set vlan egress Enterasys D-Series CLI Reference 9 -15 set vlan egress Use  this  command  to  add  ports  to  the  VLAN  egress  list  for  the  device,  or  to  prevent  one  or  mor e  ports  from  participating  in  a  VLAN.  Th is  determines  which  ports ?[...]

show vlan dynamicegress 9-16 802.1Q VLAN Configuration Synt ax clear vlan egress vlan-list port-string [ for bidden ] Parameters Default s If  forbidden  is  not  specified,  tagged  and  untagged  settings  will  be  cleared. Mode Switch  command,  read ‐ write. Examples This  example  shows  how ?[...]

set vlan dynamicegress Enterasys D-Series CLI Reference 9 -17 Example This  example  shows  how  to  display  the  dynamic  egress  status  for  VLANs  50 ‐ 55: D2(rw)->show vlan dynamicegress 50-5 5 VLAN 50 is disabled VLAN 51 is disabled VLAN 52 is disabled VLAN 53 is enabled VLAN 54 is enabled VLAN 55 is [...]

Setting the Host VLAN 9-18 802.1Q VLAN Configuration Setting the Host VLAN Purpose To  configure  a  host  VLAN  that  only  select  devices  are  allow ed  to  access.  This  se cures  the  host  port  for  management ‐ only  tasks.  Commands show host vlan Use  this  command ?[...]

clear host vlan Enterasys D-Series CLI Reference 9 -19 Parameters Default s None. Mode Switch  command,  read ‐ write. Usage The  host  VLAN  should  be  a  secure  VLAN  whe re  only  designated  users  ar e  allowed  access.  Fo r  example,  a  host  VLAN  could  be  specif[...]

Enabling/Disabling GVRP (GARP VLAN Registration Protocol) 9-20 802.1Q VLAN Configuration Enabling/Disabling GVRP (GARP VLAN Registration Protocol) About GARP VLAN Registration Prot ocol (GVRP) The  following  sections  describe  the  device  operation  when  its  ports  are  operating  under  the  Generic ?[...]

Enabling/Disabling GVRP (GARP VLAN Registration Protocol) Enterasys D-Series CLI Reference 9 -21 Figure 9-1 Example of VLAN Propagation via GVRP Purpose To  dynamically  create  VLANs  acr oss  a  switched  netw ork.  The  GVRP  command  set  is  used  to  display  GVRP  conf iguration  informat[...]

show gvrp 9-22 802.1Q VLAN Configuration show gvrp Use  this  command  to  display  GVRP  configuration  information. Synt ax show gvrp [ port-string ] Parameters Default s If  port ‐ string  is  not  specif ied,  GVRP  configuration  information  will  be  displayed  for  all  ports [...]

set gvrp Enterasys D-Series CLI Reference 9 -23 Example This  example  shows  how  to  display  GARP  timer  information  on  ports  1  through  10  in  slot  1: D2(su)->show garp timer fe .1.1-10 Port based GARP Configuration: (Tim er units are centiseconds) Port Number Join Leave Leaveall -------[...]

clear gvrp 9-24 802.1Q VLAN Configuration Mode Switch  command,  read ‐ write. Examples This  example  shows  how  to  enable  GVRP  globally  on  the  device: D2(su)->set gvrp enable This  example  shows  how  to  disable  GVRP  globally  on  the  device: D2(su)->set gvrp di[...]

set garp timer Enterasys D-Series CLI Reference 9 -25 Default s None. Mode Switch  command,  read ‐ write. Usage The  setting  of  these  timers  is  critical  and  should  only  be  changed  by  personnel  familiar  with  the  802.1Q  standards  documentation,  which  is  no[...]

set garp timer 9-26 802.1Q VLAN Configuration[...]

Enterasys D-Series CLI Reference 10-1 10 Dif ferentiated Services Configuration This  chapter  descri bes  the  Differentiated  Services  (Diffserv)  set  of  commands  and  how  to  use  them.  D ‐ Series  devi ces  support  Diffserv  po licy ‐ base d  provisioning  of  netw ork[...]

Globally Enabling or Disabling Diffserv 10-2 Differentiated Services Configu ration Globally Enabling or Disabling Diffserv Purpose To  globally  enable  or  disable  Diffserv  on  the  device. Command set diffserv adminmode Use  this  command  to  globally  enable  or  disable  Diffserv  on  th[...]

Creating Diffserv Classes and Matching Conditions Enterasys D-Series CLI Reference 10-3 Creating Diffserv Classes and Matching Conditions Purpose To  review ,  create,  and  configure  Diffserv  classes  and  match ing  conditions. Commands show diffserv info Use  this  command  to  display  general  Dif[...]

show diffserv class 10-4 Differentiated Services Configu ration show diffserv class Use  this  command  to  display  information  about  Diffserv  classes. Synt ax show diffserv class { summary | detai led classname } Parameters Default s None. Mode Switch  command,  read ‐ only . Example This  example  shows ?[...]

set diffserv class delete Enterasys D-Series CLI Reference 10-5 Example This  example  shows  how  to  create  a  Diffserv  class  called  “admin”:  D2(rw)->set diffserv class create al l admin set diffserv class delete Use  this  command  to  delete  a  Diffserv  class  and  remove[...]

set diffserv class match 10-6 Differentiated Services Configu ration Parameters every  classname Matches  all  packets  to  a  specific  class. dstmac  |  scrmac  classname  macaddr  macmask Matches  to  a  specific  class  based  on  dest ination  or  source  MAC  address. dstip [...]

set diffserv class match Enterasys D-Series CLI Reference 10-7 Default s None. Mode Switch  command,  read ‐ write. Usage Any  policy  that  is  applied  must  be  com posed  of  rules  that  come  from  only  one  of  the  foll owing  four  groups. •L a y e r  3: – Destination[...]

set diffserv class rename 10-8 Differentiated Services Configu ration – Destination  IP  addre ss  ( dstip ) –V L A N  ID  ( vlan) Yo u  cannot  create  and  add  a  class  to  a  policy  before  adding  any  rules  (match  conditions)  to  the  class.  Once  a  class[...]

Configuring Diffserv Poli cies and Assigning Classes Enterasys D-Series CLI Reference 10-9 Example This  example  shows  how  to  rename  the  Diffserv  “a dmin”  class  to  “system”: D2(rw)->set diffserv class rename ad min system Configuring Diffserv Policies and Assigning Classes Purpose To  review [...]

set diffserv policy create 10-10 Differentiated Services Config uration Example This  example  shows  how  to  display  a  summary  of  Diffserv  policy  information.  In  this  case,  there  is  one  policy  named  “admin”,  to  which  members  of  the  “admin” ?[...]

set diffserv policy class Enterasys D-Series CLI Reference 10-11 Mode Switch  command,  read ‐ write. Usage In  order  to  delete  a  policy  you  must  first  remove  the  service  port(s)  assigned  to  the  po licy  using  the  set  diffserv  service  remove  command ?[...]

set diffserv policy police style simple 10-12 Differentiated Services Config uration Parameters Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  mark  packets  matching  the  “admin”  policy  in  the  “system”  class  for  DSCP  expedited ?[...]

set diffserv policy police action conform Enterasys D-Series CLI Reference 10-13 set diffserv policy police action conform Use  this  command  to  configure  traffic  policing  actions  for  pac kets  that  conform  to  associated  Diffserv  classifications. Synt ax set diffserv policy police action co n[...]

set diffserv policy rename 10-14 Differentiated Services Config uration Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  set  the  policying  action  to  dr op  for  packets  not  conforming  to  the  Diffserv  policy  “admin,”  class [...]

show diffserv service info Enterasys D-Series CLI Reference 10-15 Commands show diffserv service info Use  this  command  to  display  information  about  Diffserv  service  ports. Synt ax show diffserv service info { summary | detailed port-string } { in } Parameters Default s None. Mode Switch  command,  read ‐ [...]

set diffserv service 10-16 Differentiated Services Config uration Parameters Default s None. Mode Switch  command,  read ‐ only . Example This  example  shows  how  to  display  a  detailed  incoming  traffic  statistics  about  servic e  port  ge.1.1:  D2(rw)->show diffserv service stats deta[...]

DiffServ Configuration Examples Enterasys D-Series CLI Reference 10-17 DiffServ Configuration Examples Ty p i c a l l y ,  yo u  wo u ld  use  the  Diffserv  command  set  to  complete  configuration  tasks  in  the  following  order: 1. Enable  DiffServ . 2. Create  a  Class. 3. Create  one [...]

DiffServ Configuration Examples 10-18 Differentiated Services Config uration[...]

Enterasys D-Series CLI Reference 11-1 11 Policy Classification Configuration This  chapter  descri bes  the  Po l i c y  Classification  set  of  commands  an d  how  to  use  them. Policy Classification Configuration Summary D ‐ Series  devi ces  support  policy  profile ‐ based  provisioni[...]

show policy profile 11-2 Policy Classifica tion Configuration Commands show policy profile Use  this  command  to  display  policy  profil e  information.  Synt ax show policy profile { all | profile-i ndex [ consecutive-pids ] [ -verbose ]} Parameters Default s If  optional  parameters  are  not  specified, ?[...]

set policy profile Enterasys D-Series CLI Reference 11-3 :IPDest(13) ,IPFrag(14),UDPSrcPort(15), :UDPDestPor t(16),TCPSrcPort(17),TCPDestPort(18), :ICMPType(1 9),Unknown(20),IPTOS(21), :IPProto(22 ),Unknown(23),Unknown(24), :Ether(25), Unknown(26),VLANTag(27), :Unknown(28 ),Unknown(29),Unknown(30), :port(31) Admin Profile Usage : none Oper Profile [...]

clear policy profile 11-4 Policy Classifica tion Configuration Parameters Default s If  optional  parameters  are  not  specified,  none  will  be  applied. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  create  a  policy  profile  1  named  “netadmin[...]

clear policy profile Enterasys D-Series CLI Reference 11-5 Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  delete  policy  profile  8:  D2(su)->clear policy profile 8[...]

Configuring Clas sification Rules 11-6 Policy Classifica tion Configuration Configuring Classification Rules Purpose To  review ,  create,  assign,  and  unassign  classification  rules  to  policy  profiles.  This  maps  user  profiles  to  protocol ‐ based  frame  filt ering  policies. Co[...]

show policy rule Enterasys D-Series CLI Reference 11-7 Default s If  verbose  is  not  s pecified,  summary  informat ion  will  be  display ed. Mode Switch  command,  read ‐ only . Example This  example  shows  how  to  display  policy  classification  information  for  Ethernet  [...]

show policy capability 11-8 Policy Classifica tion Configuration |admin|Port |ge.1.1 |16|ge.1.1 | A|NV| | 1|?| |admin|Port |ge.1.2 |16|ge.1.2 | A|NV| | 1|?| |admin|Port |ge.1.3 |16|ge.1.3 | A|NV| | 1|?| |admin|Port |ge.1.4 |16|ge.1.4 | A|NV| | 1|?| |admin|Port |ge.1.5 |16|ge.1.5 | A|NV| | 1|?| |admin|Port |ge.1.6 |16|ge.1.6 | A|NV| | 1|?| |admin|Po[...]

show policy capability Enterasys D-Series CLI Reference 11-9 Mode Switch  command,  read ‐ only . Usage Use  this  command  to  display  de tailed  policy  classification  capabilities  supported  by  you r  D ‐ Series  device.  The  output  of  this  command  shows  a  table [...]

set policy ru le 11-10 Policy Classification Configur ation |Ether II packet type | | | X | X | X | X | | | | |LLC DSAP/SSAP/CTRL | | | | | | | | | | |VLAN tag | | | | | | | | | | |Replace tci | | | | | | | | | | |Port string | X | X | X | X | X | X | | | | ==================================== ========================= set policy rule Use  this [...]

set policy rule Enterasys D-Series CLI Reference 11-11 Default s None. Mode Switch  command,  read ‐ write. Usage Ta b l e 1 1 ‐ 30  provides  the  set  policy  rule  data  val u e s  that  can  be  entered  for  a  particular  classification  type,  and  the  mask  bits  that[...]

clear policy rule 11-12 Policy Classification Configur ation Examples This  example  shows  how  to  use  Ta b l e 1 1 ‐ 30  to  assign  a  rule  to  policy  profile  3  that  will  filter  Ethernet  II  Ty p e  1526  frames  to  VLAN  7: D2(su)->set policy rule 3 ether[...]

clear policy rule Enterasys D-Series CLI Reference 11-13 Parameters The  following  parameters  apply  to  deleting  an  admin  rule. The  following  parameters  apply  to  deleting  a  classification  rule. Default s When  applicable,  data  and  mask  must  be  specified  for[...]

clear policy all-rules 11-14 Policy Classification Configur ation clear policy all-rules Use  this  command  to  remove  all  policy  classification  rules . Synt ax clear policy all-rules Parameters None. Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  remov[...]

Assigning Ports to Policy Profiles Enterasys D-Series CLI Reference 11-15 Assigning Port s to Policy Profiles Purpose To  assign  and  unassign  ports  to  policy  profiles. Commands set policy port Use  this  command  to  assign  ports  to  a  policy  profile. Synt ax set policy port port-string prof[...]

clear policy port 11-16 Policy Classification Configur ation clear policy port Use  this  command  to  remove  a  poli cy  profile  from  one  or  more  po rts. Synt ax clear policy port port-string profil e-index Parameters Default s None. Mode Switch  command,  read ‐ write. Example This  example [...]

Configuring Policy Class of Service (CoS) Enterasys D-Series CLI Reference 11-17 Configuring Policy Class of Service (CoS) The  D ‐ Series  supports  Class  of  Service  (CoS),  wh ich  allows  you  to  assign  mission ‐ cr itical  data  to  a  higher  priority  through  the  device ?[...]

Configuring Policy Clas s of Service (CoS) 11-18 Policy Classification Configur ation ------------------------------------ ---------------------------------- Port Group Name :Users Port Group :1 Port Type :0 Assigned Ports : fe ge.1.1-46 ------------------------------------ ---------------------------------- Port Group Name :Uplink Port Group :2 Po[...]

set cos state Enterasys D-Series CLI Reference 11-19 4. In  the  CoS  settings  table,  configure  a  CoS  setting  for  CoS  index  1,  which  has  a  priority  of  0.  We  enter  the  IRL  refere nce,  created  in  the  previous  step. D2(su)->set cos settings [...]

show cos state 11-20 Policy Classification Configur ation Parameters Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  enable  Class  of  Service:  D2(rw)->set cos state enable show cos st ate Use  this  command  to  display  the  Class  of  Serv[...]

set cos settings Enterasys D-Series CLI Reference 11-21 Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  clear  the  CoS  state  back  to  its  default  setting  of  disabled:  D2(su)->clear cos state set cos settings Use  this  command  t[...]

clear cos settin g s 11-22 Policy Classification Configur ation •T o S This  va l u e  can  be  set  per  class  of  service,  but  is  not  required.  When  a  frame  is  assigned  to  a  class  of  service  for  which  this  va l u e  is  configured,  the [...]

set cos port-config Enterasys D-Series CLI Reference 11-23 Parameters Default s If  not  specified,  all  CoS  entries  will  be  display ed. Mode Switch  command,  read ‐ only . Example This  example  shows  how  to  show  all  CoS  settings: D2(su)->show cos settings CoS Index Priority To[...]

show cos port-config 11-24 Policy Classification Configur ation Default s None. Mode Switch  command,  read ‐ write. Usage CoS  IRL  port  groups  are  identified  by  group  number  and  the  type  of  ports  in  the  group,  in  the  form  of  group#.port ‐ type .  The ?[...]

clear cos port-config Enterasys D-Series CLI Reference 11-25 Default s The  show  cos  port ‐ config  command  by  itsel f  will  show  all  Po r t  Groups. Mode Switch  command,  read ‐ only . Example This  example  shows  all  inbound  rate  limiting  port  groups.  Note  th[...]

set cos port-resource 11-26 Policy Classification Configur ation Default s None. Mode Switch  command,  read ‐ write. Usage The  default  port  group  0.0  cannot  be  deleted. Example This  example  deletes  all  Por t  Groups  except  for  the  Default  gro up  0.0: D2(su)->clear co[...]

show cos port-resource Enterasys D-Series CLI Reference 11-27 Usage CoS  port  resources  are  where  actual  physical  rate  limiters  are  configured.  Resources  map  directly  to  the  number  of  rate  limiters  supported  by  the  port  type.  (P ort  type  0 [...]

clear cos port-resource 11-28 Policy Classification Configur ation Group Index Resource Type Unit Ra te Rate Limit Type Action ----------- -------- ---- ---- ----- ----- --------------- ------ 2.0 1 irl kbps 10000 drop none clear cos port-resource Use  this  command  to  set  the  inbound  rate  limit  in  Kbps. Synt a[...]

show cos referenc e Enterasys D-Series CLI Reference 11-29 Parameters Default s None. Mode Switch  command,  read ‐ write. Usage The  CoS  refere nce  table  maps  the  user ‐ defined  IRL  references  found  in  the  CoS  settings  table  (see  “ set  cos  settings ”  on  pa[...]

clear cos reference 11-30 Policy Classification Configur ation Parameters Default s If  irl  is  not  specified,  all  CoS  reference  information  is  display ed. If  a  specific  port  group  is  not  specified,  information  for  all  port  groups  is  display ed. Mode Switc[...]

show cos unit Enterasys D-Series CLI Reference 11-31 Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  clear  the  CoS  inbound  rate  limiting  reference  configuration  for  all  groups: D2(su)->clear cos reference irl all show cos unit Use  this [...]

show cos port-type 11-32 Policy Classification Configur ation Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  clear  the  CoS  configuratio n  for  all  entries  except  entries  0 ‐ 7: D2(su)->clear cos all-entries show cos port-type Use  this [...]

Enterasys D-Series CLI Reference 12-1 12 Port Priority and Rate Limiting Configuration This  chapter  describes  the  Po r t  Priority  and  Rate  Lim iting  set  of  commands  and  how  to  use  them.  Port Priority Configuration Summary The  D ‐ Series  device  supports  Class  o[...]

show port priority 12-2 Port Priority and Rate Limiting Configura tion •D i s p l a y  the  current  traffic  class  m apping ‐ to ‐ priority  of  each  port. •S e t  each  port  to  transmit  frames  according  to  802.1D  (802.1p)  priority  set  in  the  frame  header .[...]

clear port priority Enterasys D-Series CLI Reference 12-3 Synt ax set port priority port-string priori ty Parameters Default s None. Mode Switch  command,  read ‐ write. Usage The  set  port  priority  command  will  not  change  the  802.1p  priority  tag  on  tagged  traffic  with  a  def[...]

Configuring Priority to Transmit Queue Mapping 12-4 Port Priority and Rate Limiting Configura tion Example This  example  shows  how  to  reset  fe.1.11  to  the  default  priority: D2(rw)->clear port priority fe .1 .11 Configuring Priority to T ransmit Queue Mapping Purpose To  perform  the  following: •[...]

set port priority-queue Enterasys D-Series CLI Reference 12-5 Example This  example  shows  how  to  dis play  priority  queue  information  for  ge .1.1.  In  this  case,  frames  with  a  priority  of  0  are  associated  wi th  transmit  queue  1;  frames  with  [...]

clear port priority-queue 12-6 Port Priority and Rate Limiting Configura tion clear port priority-queue Use  this  command  to  reset  port  priority  queue  setting s  back  to  defaults  for  one  or  more  ports. Synt ax clear port priority-queue port-strin g Parameters Default s None. Mode Switch [...]

set port txq Enterasys D-Series CLI Reference 12-7 Parameters Default s If  the  port ‐ string  is  not  specified,  the  QoS  setting  of  all  physical  ports  will  be  displayed. Mode Switch  command,  read ‐ only . Example This  example  shows  how  to  display  the  c[...]

clear port txq 12-8 Port Priority and Rate Limiting Configura tion Usage Queues  can  be  set  for  strict  priority  (SP)  or  weig h te d  round ‐ robin  (WRR).  If  set  for  WRR  mode,  wei gh ts  may  be  assigned  to  those  queues  with  this  command.  We i g[...]

clear port txq Enterasys D-Series CLI Reference 12-9 Example This  example  shows  how  to  clear  transmit  queue  va l u e s  on  ge .1.1:  D2(su)->clear port txq ge.1.1[...]

Configuring Port Traffic Rate Limiting 12-10 Port Priority and Ra te Limiting Configuration Configuring Port T raffic Rate Limiting Purpose To  limit  the  rate  of  inbound  tra ffic  on  the  D ‐ Series  device  on  a  per  port/priority  basis.  The  allow able  range  for  the  ra[...]

show port ratelimit Enterasys D-Series CLI Reference 12-11 Example This  example  shows  how  to  display  the  current  rate  li miting  information  for  fe.2.1: D2(su)-> show port ratelimit fe.2.1 Global Ratelimiting status is disabl ed. Port Threshold Priority Number Index (kB/s) Ac tion Direction List Sta[...]

set port ratelimit 12-12 Port Priority and Ra te Limiting Configuration set port ratelimit Use  this  command  to  configure  the  traffic  rate  limiting  status  and  threshold  (in  kilobytes  per  second)  for  one  or  more  ports. Synt ax set port ratelimit { disable | enable } | por[...]

clear port ratelimit Enterasys D-Series CLI Reference 12-13 clear port ratelimit Use  this  command  to  clear  rate  limiting  parameters  for  one  or  more  ports. Synt ax clear port ratelimit port-string [ in dex ] Parameters Default s If  not  specified,  all  index  entries  will  be ?[...]

clear port ratelimit 12-14 Port Priority and Ra te Limiting Configuration[...]

Enterasys D-Series CLI Reference 13-1 13 IGMP Configuration This  chapter  descri bes  the  IGMP  Configuration  set  of  commands  and  how  to  use  them.  IGMP Overview About IP Multicast Group Management The  Internet  Group  Management  Protocol  (IGMP)  runs  between  hosts [...]

Configuring IGMP at Layer 2 13-2 IGMP Config uration multicast  switch/router  it  passes  through  to  ensure  that  traffic  is  only  passed  to  the  hosts  that  subscribed  to  this  service. Configuring IGMP at Layer 2 Purpose To  configure  IGMP  snooping  fr om  the ?[...]

set igmpsnooping adminmode Enterasys D-Series CLI Reference 13-3 the  system,  refer  to  “ set  igmpsnooping  adminmode ”  on  page 13 ‐ 3.  For  information  on  enabling  IGMP  on  one  or  more  ports ,  refer  to  “ set  igmpsnooping  interfacemode ”  on  page[...]

set igmpsnooping groupmembershipinterval 13-4 IGMP Config uration Parameters Default s None. Mode Switch  command,  read ‐ write. Usage In  order  for  IGMP  snooping  to  be  enabled  on  one  or  all  ports,  it  must  be  globally  enabled  on  the  device  using  the  [...]

set igmpsnooping maxresponse Enterasys D-Series CLI Reference 13-5 Example This  example  shows  how  to  set  the  IGMP  group  member ship  interv al  to  250  seconds: D2(su)->set igmpsnooping groupmember shipinterval 250 set igmp snooping maxresponse Use  this  command  to  configure  the[...]

set igmpsnooping add-static 13-6 IGMP Config uration Default s None. Mode Switch  command,  read ‐ write. Usage This  timer  is  for  expiring  the  switch  from  the  multicast  database.  If  the  timer  expires,  and  the  only  address  left  is  the  multicast  switch[...]

set igmpsnooping remove-static Enterasys D-Series CLI Reference 13-7 set igmp snooping remove-st atic This  command  deletes  a  static  IGMP  entry  or  removes  one  or  mor e  new  ports  from  an  existing  entry . Synt ax set igmpsnooping remove-static group vlan-list [ modify ] [ port-string [...]

show igmpsnooping mfdb 13-8 IGMP Config uration Example This  example  displays  the  static  IGMP  ports  for  VLAN  20. D2(su)->show igmpsnooping static 20 ------------------------------------ ----------------------------------------- --- Vlan Id = 20 Static Multicast Group Addr ess = 233.11.22.33 Type = IGMP IGMP Po[...]

clear igmpsnooping Enterasys D-Series CLI Reference 13-9 Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  clear  all  IGMP  snooping  entries: D2(su)->clear igmpsnooping Are you sure you want to clear all I GMP snooping entries? (y/n) y IGMP Snooping Entries Cleared.[...]

clear igmpsnooping 13-10 IGMP Configuration[...]

Enterasys D-Series CLI Reference 14-1 14 Logging and Network Management This  chapter  descri bes  switch ‐ related  logging  and  netw ork  management  commands  and  how  to  use  them.  Configuring System Logging Purpose To  display  and  configure  system  logging,  including  Sys[...]

show logging ser ver 14-2 Logging and Network Manageme nt show logging server Use  this  command  to  display  the  Syslog  configuration  for  a  particul ar  serv er . Synt ax show logging server [ index] Parameters Default s If  index  is  not  specif ied,  all  Sy slog  serv er  informati[...]

set logging server Enterasys D-Series CLI Reference 14-3 set logging server Use  this  command  to  configure  a  Syslog  server . Synt ax s et logging server index [ ip-addr ip-addr ] [ facility facility ] [ severity severity ] [ descr descr ] [ port por t] [ state { en able | disable }] Parameters Default s If  ip ‐ addr[...]

clear logging server 14-4 Logging and Network Manageme nt Example This  command  shows  how  to  enable  a  Syslog  serv er  configuration  for  index  1,  IP  address  134.141.89.113,  facility  local4,  severity  lev el  3  on  port  514: D2(su)->set logging server 1 ip-addr [...]

set logging default Enterasys D-Series CLI Reference 14-5 Example This  command  shows  how  to  display  the  Syslog  serv er  default  val u e s.  For  an  expla nation  of  the  command  output,  refer  back  to  Ta b l e 1 4 ‐ 32  on  page 14 ‐ 2. D2(su)->show logging d[...]

clear logging default 14-6 Logging and Network Manageme nt clear logging default Use  this  command  to  reset  logg ing  default  va lu e s . Synt ax clear logging default {[ facility ] [ severity ] [ port ]} Parameters Default s At  least  one  optional  parameter  must  be  enter ed. All  three  op[...]

set logging application Enterasys D-Series CLI Reference 14-7 Mode Switch  command,  read ‐ only . Example This  example  shows  how  to  display  system  logging  information  pertaining  to  the  SNMP  application. D2(ro)->show logging application SNM P Application Current Severity Level ---------[...]

clear logging application 14-8 Logging and Network Manageme nt Default s If  level  is  not  specified,  none  will  be  applied. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  set  the  sev erity  leve l  for  SNMP  to  4  so  that  error  [...]

show logging local Enterasys D-Series CLI Reference 14-9 Parameters Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  reset  the  logging  severity  lev el  to  6  for  SNMP . D2(rw)->clear logging application SN MP show logging local Use  this  comman[...]

clear logging local 14-10 Logging and Network Manage ment Parameters Default s None. Mode Switch  command,  read ‐ write. Example This  command  shows  how  to  enable  logging  to  the  console  and  disable  logging  to  a  persistent  file: D2(su)->set logging local console en able file [...]

show logging buffer Enterasys D-Series CLI Reference 14-11 Default s None. Mode Switch  command,  read ‐ only . Example This  example  shows  a  porti on  of  the  information  display ed  with  the  show  logging  buffer  command: D2(su)->show logging buffer <165>Sep 4 07:43:09 10.42.71.13[...]

Monitoring Network Events and Status 14-12 Logging and Network Manage ment Monitoring Network Event s and St atus Purpose To  display  switch  ev ents  and  command  history ,  to  set  the  size  of  the  histo ry  buffer ,  and  to  display  and  disconnect  current  user  sessions[...]

show history Enterasys D-Series CLI Reference 14-13 show history Use  this  command  to  display  the  size  (in  lines)  of  the  history  buffer . Synt ax show history Parameters None. Default s None. Mode Switch  command,  read ‐ only . Example This  example  shows  how  to  display  [...]

ping 14-14 Logging and Network Manage ment ping Use  this  command  to  send  ICMP  echo ‐ request  packets  to  another  node  on  the  netw ork  from  the  switch  CLI.  Synt ax ping host Parameters Default s None. Mode Switch  command,  read ‐ write.  Examples This  example ?[...]

disconnect Enterasys D-Series CLI Reference 14-15 D2(su)->show users Session User Location -------- ----- ------------------- ------- * telnet rw 134.141.192.119 telnet rw 134.141.192.18 disconnect Use  this  command  to  close  an  active  console  port  or  Te l n e t  session  from  the  switch  CL[...]

Managing Switch Network Addresses and Routes 14-16 Logging and Network Manage ment Managing Switch Network Addresses and Routes Purpose To  display  or  delete  switch  ARP  table  entries,  and  to  display  MAC  address  information. Commands show arp Use  this  command  to  display  the  s[...]

set arp Enterasys D-Series CLI Reference 14-17 Example This  example  shows  how  to  display  the  ARP  table:  D2(su)->show arp LINK LEVEL ARP TABLE IP Address Phys Address Flags Interface ------------------------------------ ----------------- 10.20.1.1 00-00-5e-00-01-1 S host 134.142.21.194 00-00-5e-00-01-1 S host 1[...]

clear arp 14-18 Logging and Network Manage ment clear arp Use  this  command  to  delete  a  specific  entry  or  all  entries  from  the  switch’ s  ARP  tab le. Synt ax clear arp { ip-address | all } Parameters Default s None. Mode Switch  command,  read ‐ write. Example This  example  [...]

show mac Enterasys D-Series CLI Reference 14-19 Default s If  not  specified,  waittime  will  be  set  to  5  seconds. If  not  specified,  first ‐ tt l  will  be  set  to  1  second. If  not  specified,  max ‐ ttl  will  be  set  to  30  seconds. If  not  s[...]

show mac agetime 14-20 Logging and Network Manage ment Default s If  no  parameters  are  specified,  all  MAC  addresses  for  the  device  will  be  display ed. Mode Switch  command,  read ‐ only . Example This  example  shows  how  to  display  MAC  addre ss  information  [...]

set mac agetime Enterasys D-Series CLI Reference 14-21 Default s None. Mode Switch  command,  read ‐ only . Example This  example  shows  how  to  display  the  MAC  timeout  period: D2(su)->show mac agetime Aging time: 300 seconds set mac agetime Use  This  command  to  set  the  timeout  [...]

set mac algorithm 14-22 Logging and Network Manage ment Mode Switch  command,  read ‐ only . Example This  example  shows  how  to  reset  the  MAC  timeout  period  to  the  default  val u e  of  300  seconds. D2(su)->clear mac agetime set mac algorithm Use  this  command  to  [...]

clear mac algorithm Enterasys D-Series CLI Reference 14-23 Parameters None. Default s None. Mode Switch  command,  read ‐ only . Example This  example  shows  the  output  of  this  command. D2(su)->show mac algorithm Mac hashing algorithm is mac-crc16-u pperbits. clear mac algorithm Use  this  command  to ?[...]

clear mac address 14-24 Logging and Network Manage ment Parameters Default s If  no  port ‐ string  is  defined,  the  command  will  apply  to  all  ports. Mode Switch  command,  read ‐ write. Example This  example  configures  multicast  MAC  address  01 ‐ 01 ‐ 22 ‐ 33 ‐ 44 ‐ [...]

show mac unreserved-flood Enterasys D-Series CLI Reference 14-25 show mac unreserved-flood Use  this  command  to  display  the  state  of  multicast  flood  protection. Synt ax show mac unreserved-flood Parameters None. Default s None. Mode Switch  command,  read ‐ write. Example This  example  displays [...]

Configuring Simple Network Time Protocol (SNTP) 14-26 Logging and Network Manage ment Example This  example  enables  multicast  flood  protection. D2(su)->set mac unreserved-flood ena ble Configuring Simple Network T ime Protocol (SNTP) Purpose To  configure  the  Simple  Network  Time  Protocol  (SNTP),  [...]

show sntp Enterasys D-Series CLI Reference 14-27 Default s None. Mode Switch  command,  read ‐ only . Example This  example  shows  how  to  display  SNTP  client  settings: D2(su)->show sntp SNTP Version: 3 Current Time: TUE SEP 09 16:13:33 20 03 Timezone: 'EST', offset from UTC is -4 hours and 0 minute[...]

set sntp clien t 14-28 Logging and Network Manage ment set sntp client Use  this  command  to  set  the  SNTP  operation  mode. Synt ax set sntp client { broadcast | unicast | disab le } Parameters Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  enable  SN[...]

set sntp server Enterasys D-Series CLI Reference 14-29 Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  clear  the  SNTP  client’ s  operational  mode: D2(su)->clear sntp client set sntp server Use  this  command  to  add  a  serv er  from  which  the ?[...]

set sntp poll-interval 14-30 Logging and Network Manage ment Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  remov e  the  serv er  at  IP  address  10.21.1.100 from  the  SNTP  serv er  list: D2(su)->clear sntp server 10.21.1.10 0 set sntp poll-interval Use  thi[...]

set sntp poll-retry Enterasys D-Series CLI Reference 14-31 Example This  example  shows  how  to  clear  the  SNTP  poll  interval: D2(su)->clear sntp poll-interval set sntp poll-retry Use  this  command  to  set  the  number  of  poll  retries  to  a  unicast  SNTP  serv er . [...]

set sntp poll-timeout 14-32 Logging and Network Manage ment set sntp poll-timeout Use  this  command  to  set  the  poll  timeout  (in  seconds)  for  a  response  to  a  unicast  SNTP  request. Synt ax set sntp poll-timeout timeout Parameters Default s None. Mode Switch  command,  read ‐ w[...]

set timezone Enterasys D-Series CLI Reference 14-33 Parameters Default s If  you  enter  a  timezone  name  without  specifying  an  offset  in  hours  and  minutes,  the  default  is  an  offset  from  UTC  of  0  hours  and  0  minutes. Mode Switch  command,  read[...]

Configuring Node Aliases 14-34 Logging and Network Manage ment Configuring Node Aliases Purpose To  review ,  disable,  and  re ‐ enable  node  (port)  alias  functionality ,  which determines  what  network  protocols  are  running  on  one  or  more  ports. Commands show nodealias config [...]

set nodealias Enterasys D-Series CLI Reference 14-35 set nodealias Use  this  command  to  enable  or  disable  a  node  alias  agent  on  one  or  more  ports,  or  set  the  maximum  number  of  alias  entries  per  port. Synt ax set nodealias { enable | disable | ma xentr[...]

clear nodealias config 14-36 Logging and Network Manage ment Parameters Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  reset  the  node  alias  configuration  on  fe .1.3 : D2(su)->clear nodealias config fe .1.3 port ‐ string Specifies  the  port(s) [...]

Enterasys D-Series CLI Reference 15-1 15 RMON Configuration This  chapter  descri bes  the  commands  used  to  configure  RMON  on  a  D ‐ Series  switch. RMON Monitoring Group Functions RMON  (Remote  Network  Monitoring)  provides  comprehensiv e  network  fault  diagnosis,  planni[...]

RMON Monitoring Group Functions 15-2 RMON Configuration History Records periodic st atistical samples from a network. Samp le period, number of samples and item(s) sampled. “ show rmon history ” on page 15-6 “ set rmon history ” on page 15-7 “ clear rmon history ” on page 15-7 Alarm Periodically gathers statistical samples from variable[...]

Statistics Group Commands Enterasys D-Series CLI Reference 15-3 S t atistics Group Commands Purpose To  display ,  configure,  and  clea r  RMON  statistics. Commands show rmon st ats Use  this  command  to  display  RMON  statistics  measured  for  one  or  more  ports.  Synt ax show rmon st[...]

set rmon stats 15-4 RMON Configuration Multicast Pkts = 0 128 - 25 5 Octets = 0 CRC Errors = 0 256 - 51 1 Octets = 0 Undersize Pkts = 0 512 - 102 3 Octets = 0 Oversize Pkts = 0 1024 - 151 8 Octets = 0 Fragments = 0 Ta b l e 1 5 ‐ 40  provides  an  explanation  of  the  command  output. set rmon st at s Use  this  comman[...]

clear rmon stats Enterasys D-Series CLI Reference 15-5 Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  delete  RMON  statistics  entry  2: D2(rw)->clear rmon stats 2[...]

History Group Commands 15-6 RMON Configuration History Group Commands Purpose To  display ,  configure,  and  clea r  RMON  history  properties  and  statistics. Commands show rmon history Use  this  command  to  display  RMON  history  properties  and  statistics.  The  RMON  history ?[...]

set rmon history Enterasys D-Series CLI Reference 15-7 Sample 2779 Interval Start: 1 days 0 hours 2 minutes 22 seconds Drop Events = 0 Undersiz e Pkts = 0 Octets = 0 Oversize Pkts = 0 Packets = 0 Fragment s = 0 Broadcast Pkts = 0 Jabbers = 0 Multicast Pkts = 0 Collisio ns = 0 CRC Align Errors = 0 Utilizat ion(%) = 0 set rmon history Use  this ?[...]

clear rmon history 15-8 RMON Configuration Parameters Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  delete  RMON  history  entry  1: D2(rw)->clear rmon history 1 index ‐ list Specifies  one  or  more  history  entries  to  be  delete d, [...]

Alarm Group Commands Enterasys D-Series CLI Reference 15-9 Alarm Group Commands Purpose To  display ,  configure,  and  clea r  RMON  alarm  entries  and  properties. Commands show rmon alarm Use  this  command  to  display  RMON  alarm  entrie s.  The  RMON  alarm  group  periodically [...]

set rmon alarm properties 15-10 RMON Configuration set rmon alarm properties Use  this  command  to  configure  an  RMON  alarm  entr y ,  or  to  create  a  new  alarm  entry  with  an  unused  alarm  index  number .  Synt ax set rmon alarm properties index [ int erval interval ] [ [...]

set rmon alarm status Enterasys D-Series CLI Reference 15-11 Default s interval ‐ 3600  seconds type ‐  absolute startup ‐ rising rthresh ‐  0 fthresh ‐ 0 revent ‐ 0 fevent ‐ 0 owner ‐ monitor Mode Switch  command,  read ‐ write. Example This  example  shows  how ?[...]

clear rmon alarm 15-12 RMON Configuration Parameters Default s None. Mode Switch  command,  read ‐ write. Usage An  RMON  alarm  entry  can  be  created  using  this  command,  configured  using  the  set  rmon  alarm  properties  command  (“ set  rmon  alarm  properties ” ?[...]

Event Group Commands Enterasys D-Series CLI Reference 15-13 Event Group Commands Purpose To  display  and  clear  RMON  ev ents,  and  to  configure  RMON  ev ent  properties. Commands show rmon event Use  this  command  to  display  RMON  event  entry  properties. Synt ax show rmon event [ i[...]

set rmon event properties 15-14 RMON Configuration set rmon event properties Use  this  command  to  configure  an  RMON  event  entry ,  or  to  create  a  new  eve nt  entry  with  an  unused  event  index  number .  Synt ax set rmon event properties index [ description description[...]

set rmon event status Enterasys D-Series CLI Reference 15-15 Example This  example  shows  how  to  create  and  enable  an  RMON  event  entry  called  “STP  topology  change”  that  will  send  both  a  log  entry  and  an  SNMP  trap  message  to  the  [...]

clear rmon event 15-16 RMON Configuration Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  clear  RMON  event  1: D2(rw)->clear rmon event 1[...]

Filter Group Commands Enterasys D-Series CLI Reference 15-17 Filter Group Commands The  packet  capture  and  filter  function  is  di sabled  by  default.  Only  one  interface  can  be  configured  for  capturing  and  filtering  at  a  time.  When  packet  capture  is [...]

set rmon channel 15-18 RMON Configuration Example This  example  shows  how  to  display  RMON  channel  information  for  fe .2.12: D2(rw)->show rmon channel fe .2.12 Port fe .2.12 Channel index= 628 EntryStatus= valid ------------------------------------ ---------------------- Control off Accept Type matched OnEve[...]

clear rmon channel Enterasys D-Series CLI Reference 15-19 Example This  example  shows  how  to  create  an  RMON  channel  entry: D2(rw)->set rmon channel 54313 fe .2.12 accept failed control on descripti on "capture all" clear rmon channel Use  this  command  to  clear  an  RMON  channe[...]

set rmon filter 15-20 RMON Configuration D2(rw)->show rmon filter Index= 55508 Channel Index= 628 EntryStatus= valid ------------------------------------ ---------------------- Data Offset 0 PktSta tus 0 PktStatusMask 0 PktSta tusNotMask 0 Owner ETS,NAC-D ----------------------------- Data ff ff ff ff ff ff ----------------------------- DataMask[...]

clear rmon filter Enterasys D-Series CLI Reference 15-21 Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  create  RMON  filter  1  and  apply  it  to  channel  9: D2(rw)->set rmon filter 1 9 offset 3 0 data 0a154305 dmask ffffffff clear rmon filter Use  this  comm[...]

Packet Capture Commands 15-22 RMON Configuration Packet Capture Commands Note  that  packet  capture  filter  is  sampling  only  and  does  not  guarantee  receipt  of  back ‐ to ‐ back  packets. Purpose To  display  RMON  capture  entries,  configure,  enable,  or  disable ?[...]

set rmon capture Enterasys D-Series CLI Reference 15-23 Owner monitor captureEntry= 1 Buff.control= 28062 ------------------------------------ -------- Pkt ID 9 Pkt time 1 days 0 hours 51 minutes 15 seconds Pkt Length 93 Pkt status 0 Data: 00 00 5e 00 01 01 00 01 f4 00 7d ce 08 00 45 00 00 4b b4 b9 00 00 40 11 32 5c 0a 15 43 05 86 8d bf e5 00 a1 0e[...]

clear rmon capture 15-24 RMON Configuration Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  create  RMON  capture  entry  1  to  “listen”  on  channel  628: D2(rw)->set rmon capture 1 628 clear rmon capture Use  this  command  to  clears  an  RMON[...]

Enterasys D-Series CLI Reference 16-1 16 DHCP Server Configuration This  chapter  descri bes  the  commands  to  configure  the  IPv4  DHCP  serv er  functionality  on  a  D ‐ Series  switch. DHCP Overview Dynamic  Host  Configuration  Protocol  (DHCP)  for  IPv4  is  a  netw[...]

DHCP Overview 16-2 DHCP Server Configura tion • Boot  file •D H C P  options  as  defined  by  RFC  2132 Configuring a DHCP Server For  DHCP  to  function  on  D ‐ Series  systems,  the  system  has  to  “know  about”  the  IP  netw ork  for  which  the  DHCP ?[...]

Configuring General DHCP Server Parameters Enterasys D-Series CLI Reference 16-3 Configuring General DH CP Server Parame ters Purpose To  configure  DHCP  server  parameters,  and  to  display  and  clear  address  binding  information,  server  statistics,  and  conflict  information. Commands set[...]

set dhcp bootp 16-4 DHCP Server Configura tion Example This  example  enables  DHCP  server  functionality . D2(rw)->set dhcp enable set dhcp bootp Use  this  command  to  enable  or  disable  automatic  address  allocation  for  BOOTP  clients.  By  default,  address  allocation [...]

show dhcp conflict Enterasys D-Series CLI Reference 16-5 Example This  example  enables  DHCP  conflict  logging.  D2(rw)->set dhcp conflict logging show dhcp conflict Use  this  command  to  display  conflict  information,  for  one  address  or  al l  addresses. Synt ax show dhcp conflict [[...]

set dhcp exclude 16-6 DHCP Server Configura tion Default s None. Mode Switch  command,  read ‐ write. Examples This  example  disables  DHCP  conflict  logging.  D2(rw)->clear dhcp conflict logging This  example  clears  the  conflict  information  for  the  IP  address  192.0.0.2. D2(rw)-&[...]

clear dhcp exclude Enterasys D-Series CLI Reference 16-7 clear dhcp exclude Use  this  command  to  clear  the  configured  IP  addresses  that  the  DHCP  serv er  sh ould  not  assign  to  DHCP  clients. Synt ax clear dhcp exclude low-ipaddr [ high- ipaddr ] Parameters Default s None. Mode Swi[...]

clear dhcp ping 16-8 DHCP Server Configura tion clear dhcp ping Use  this  command  to  reset  the  number  of  ping  packets  sent  by  the  DHCP  server  back  to  the  default  val u e  of  2. Synt ax clear dhcp ping packets Parameters None. Default s None. Mode Switch  command, ?[...]

clear dhcp binding Enterasys D-Series CLI Reference 16-9 192.0.0.13 00:33:44:56:22:37 infinite Manual 192.0.0.14   00:33:44:56: 22:38 infinite Manual clear dhcp binding Use  this  command  to  clear  (delete)  one  or  all  DHCP  address  bindings. Synt ax cle[...]

clear dhcp server st atistics 16-10 DHCP Server Configur ation Messages Received ---------- ---------- DHCP DISCOVER 382 DHCP REQUEST 3855 DHCP DECLINE 0 DHCP RELEASE 67 DHCP INFORM 1 Messages Sent ---------- ------ DHCP OFFER 381 DHCP ACK 727 DHCP NACK 2 clear dhcp server st atistics Use  this  command  to  clear  all  DHCP  s[...]

Configuring IP Address Pools Enterasys D-Series CLI Reference 16-11 Configuring IP Address Pools Manual Pool Configuration Considerations •T h e  subnet  of  the  IP  address  being  is sued  should  be  on  the  same  subnet  as  the  ingres s  interface  (that  is,  the  subnet  [...]

set dhcp pool 16-12 DHCP Server Configur ation set dhcp pool Use  this  command  to  create  and  assign  a  name  to  a  DHCP  serv er  pool  of  addres ses.  Up  to  16  address  pools  may  be  configured  on  a  D ‐ Series.  Not e  that  entering  this ?[...]

clear dhcp pool Enterasys D-Series CLI Reference 16-13 clear dhcp pool Use  this  command  to  delete  a  DHCP  server  pool  of  addresses.  Synt ax clear dhcp pool poolname Parameters Default s None. Mode Switch  command,  read ‐ write. Example This  example  deletes  the  address  pool  [...]

clear dhcp pool network 16-14 DHCP Server Configur ation Examples This  example  configures  the  IP  subnet  172.20.28.0  with  a  prefix  length  of  24  for  the  aut omatic  DHCP  pool  named  “auto1.”  Alternativ ely ,  the  mask  could  hav e  been  specified ?[...]

clear dhcp pool hardware-addr ess Enterasys D-Series CLI Reference 16-15 Default s If  no  type  is  specified,  Ethernet  is  assumed. Mode Switch  command,  read ‐ write. Example This  example  specifies  0001.f401.2710  as  the  Ethernet  MAC  address  for  the  manual  address [...]

clear dhcp pool host 16-16 DHCP Server Configur ation Default s If  a  mask  or  prefix  is  not  specified,  the  class  A,  B,  or  C  natural  mask  will  be  used. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  configure  the  minimum[...]

clear dhcp pool client-identifier Enterasys D-Series CLI Reference 16-17 Parameters Default s None. Mode Switch  command,  read ‐ write. Usage The  client  identifier  is  formed  by  conca tenating  the  media  type  and  the  MAC  address.  For  example,  if  the  client  hardw are [...]

set dhcp pool client-name 16-18 DHCP Server Configur ation set dhcp pool client-name Use  this  command  to  assign  a  name  to  a  DHCP  client  when  creating  an  address  pool  for  manual  binding. Synt ax set dhcp pool poolname client-name n ame Parameters Default s None. Mode Switch  [...]

set dhcp pool bootfile Enterasys D-Series CLI Reference 16-19 set dhcp pool boot file Use  this  command  to  specify  a  default  boot  image  for  the  DHCP  clients  who  wil l  be  serv ed  by  the  address  pool  being  configured. Synt ax set dhcp pool poolname bootfile file na[...]

set dhcp pool next- server 16-20 DHCP Server Configur ation set dhcp pool next-server Use  this  command  to  specify  the  file  server  from  which  the  de fault  boot  image  is  to  be  loaded  by  the  client.  Synt ax set dhcp pool poolname next-server i p-address Parameters Defa[...]

set dhcp pool lease Enterasys D-Series CLI Reference 16-21 set dhcp pool lease Use  this  command  to  specify  the  duration  of  the  lease  for  an  IP  address  assigned  by  the  DHCP  server  from  the  ad dress  pool  being  configured. Synt ax set dhcp pool poolname lea[...]

set dhcp pool default-rou ter 16-22 DHCP Server Configur ation Mode Switch  command,  read ‐ write. Example This  example  restores  the  default  le ase  duration  of  one  day  for  address  pool  “a uto1.”  D2(rw)->clear dhcp pool auto1 lease set dhcp pool default-router Use  this  c[...]

set dhcp pool dns-server Enterasys D-Series CLI Reference 16-23 Mode Switch  command,  read ‐ write. Example This  example  removes  the  default  router  from  the  addres s  pool  “auto1.” D2(rw)->clear dhcp pool auto1 defaul t-router set dhcp pool dns-server Use  this  command  to  specify[...]

set dhcp pool domain- name 16-24 DHCP Server Configur ation Mode Switch  command,  read ‐ write. Example This  example  removes  the  DNS  serv er  list  from  the  address  pool  “a uto1.” D2(rw)->clear dhcp pool auto1 dns-se rver set dhcp pool domain-name Use  this  command  to  specify [...]

set dhcp pool netbios-name-server Enterasys D-Series CLI Reference 16-25 Mode Switch  command,  read ‐ write. Example This  example  removes  the  domain  name  from  the  address  pool  “auto1.” D2(rw)->clear dhcp pool auto1 domain -name set dhcp pool netbios-name-server Use  this  command  to [...]

set dhcp pool netbio s-node-type 16-26 DHCP Server Configur ation Mode Switch  command,  read ‐ write. Example This  example  removes  the  NetBIOS  name  serv er  lis t  from  the  address  pool  auto1. D2(rw)->clear dhcp pool auto1 netbio s-name-server set dhcp pool netbios-node-type Use  this [...]

set dhcp pool option Enterasys D-Series CLI Reference 16-27 Default s None. Mode Switch  command,  read ‐ write. Example This  example  removes  the  NetBIOS  node  type  from  the  address  pool  “auto1.” D2(rw)->clear dhcp pool auto1 netbio s-node-type set dhcp pool option Use  this  command ?[...]

clear dhcp pool option 16-28 DHCP Server Configur ation clear dhcp pool option Use  this  command  to  remove  a  DHCP  option  from  the  address  pool  being  configured. Synt ax clear dhcp pool poolname option code Parameters Default s None. Mode Switch  command,  read ‐ write. Example This  exam[...]

show dhcp pool configuration Enterasys D-Series CLI Reference 16-29 Network 192.0.0.0 255.255.255.0 Lease Time 1 days 0 hrs 0 mins Default Routers 192.0.0.1 Pool: static1 Pool Type Manual Client Name appsvr1 Client Identifier 01:00:01:f4:01:27:10 Host 10.1.1.1 255.0.0.0 Lease Time infinite Option 19 hex 01 Pool: static2 Pool Type Manual Hardware Ad[...]

show dhcp pool configuration 16-30 DHCP Server Configur ation[...]

Enterasys D-Series CLI Reference 17-1 17 Security Configuration This  chapter  descri bes  the  Security  Configuration  set  of  commands  and  how  to  use  them. Overview of Security Methods The  following  security  methods  are  av ailable  for  controlling  which  users  are[...]

Overview of Security Methods 17-2 Security Con figuration on  using  CLI  commands  to  configure  802 .1X,  refer  to  “ Configuring  802.1X  Authentication ”  on  page 17 ‐ 11. •M A C  Authentication  –  provides  a  mechanism  for  administrators  to  securely  authen[...]

Configuring RADIUS Enterasys D-Series CLI Reference 17-3 configured  on  the  switch,  the  swi tch  then  dynamically  applies  the  policy  profile  to  the  physical  port  the  user/device  is  authenticati ng  on.  Filter-ID Attribute Format s Enterasys  Netw orks  supports ?[...]

show radius 17-4 Security Con figuration show radius Use  this  command  to  display  the  current  RADIUS  client/server  configuration. Synt ax show radius [ status | retries | timeout | server [ in dex | all] ] Parameters Default s If  no  parameters  are  specified,  all  RA DIUS  configuration ?[...]

set radius Enterasys D-Series CLI Reference 17-5 set radius Use  this  command  to  enable,  disable,  or  configure  RADIUS  authentication. Synt ax set radius { enable | disable } | { retries number-of-retries } | { timeout timeout } | { server index ip-address port [ secre t-value ] [ realm { management-access | any | [...]

set radius 17-6 Security Con figuration Default s If  secr et ‐ value  is  not  specified,  none  will  be  applied. If  realm  is  not  specified,  the  any  access  realm  will  be  used. Mode Switch  command,  read ‐ write. Usage The  D ‐ Series  device  allows  up [...]

clear radius Enterasys D-Series CLI Reference 17-7 This  example  shows  how  to  force  any  management ‐ access  to  the  switch  (T elnet,  web ,  SS H)  to  authenticate  through  a  RADIUS  serv er .  The  all  parameter  at  the  end  of  the  command  me[...]

set radius accounting 17-8 Security Con figuration Parameters Mode Switch  command,  read ‐ only . Default s If  no  parameters  are  specified,  all  RA DIUS  accounting  configuration  information  will  be  display ed. Example This  example  shows  how  to  display  RADIUS  account[...]

clear radius accounting Enterasys D-Series CLI Reference 17-9 Mode Switch  command,  read ‐ write. Default s None. Examples This  example  shows  how  to  enable  the  RADIUS  accounting  client  for  authenticating  with  the  accounting  server  at  IP  address  10.2.4.12,  UDP ?[...]

clear radius accounting 17-10 Securit y Configuration Default s None. Example This  example  shows  how  to  reset  the  RADIUS  accounting  timeout  to  5  seconds.  D2(su)->clear radius accounting time out[...]

Configuring 802.1X Authentication Enterasys D-Series CLI Reference 17-11 Configuring 802.1X Authentication Purpose To  review  and  configure  802.1X  authenti cation  for  one  or  more  ports  us ing  EAPOL  (Extensible  Authentication  Protocol).  802.1X  controls  network  access  by ?[...]

show dot1x 17-12 Securit y Configuration If  port ‐ string  is  not  specif ied,  information  for  all  ports  will  be  displayed. Mode Switch  command,  read ‐ only . Examples This  example  shows  how  to  display  802.1X  status:  D2(su)->show dot1x DOT1X is disabled. This ?[...]

show dot1x auth-config Enterasys D-Series CLI Reference 17-13 show dot1x auth-config Use  this  command  to  display  802.1X  authentication  configuration  settings  for  one  or  more  ports. Synt ax show dot1x auth-config [ authcontroll ed-portcontrol ] [ maxreq ] [ quietperiod ] [ reauthenabled ] [ reauthp[...]

set dot1x 17-14 Securit y Configuration Port : 1 Auth-Config PAE state: Initialize Backend auth state: Initialize Admin controlled directions: Both Oper controlled directions: Both Auth controlled port status: Authorized Auth controlled port control: Auto Quiet period: 60 Transmission period: 30 Supplicant timeout: 30 Server timeout: 30 Maximum req[...]

set dot1x auth-config Enterasys D-Series CLI Reference 17-15 set dot1x auth-config Use  this  command  to  configure  802.1X  authentica tion. Synt ax set dot1x auth-config {[ authcontroll ed-portcontrol { auto | forced-auth | forced-unauth }] [ maxreq value ] [ quietperiod value ] [ reauthenabled { false | true }] [ reauthperiod [...]

clear dot1x auth-config 17-16 Securit y Configuration Examples This  example  shows  how  to  enable  reauthenti cation  control  on  ports  fe.1.1 ‐ 3: D2(su)->set dot1x auth-config reauth enabled true fe .1.1-3 This  example  shows  how  to  set  the  802.1X  quiet  period  to  1[...]

show eapol Enterasys D-Series CLI Reference 17-17 This  example  shows  how  to  reset  the  802.1X  quiet  period  to  60  seconds  on  ports  fe.1.1 ‐ 3: D2(su)->clear dot1x auth-config quie tperiod fe .1.1-3 show eapol Use  this  command  to  display  EAPOL  status  or  se[...]

show eapol 17-18 Securit y Configuration T able 17-43 show eapol Output Det ails Output Fi eld What It Disp la y s. .. Port Port designa tion. For a detailed description of possible port-string values, refer to “ Port S tring Synt ax Used in the C LI ” on page 6-1. Authentication St ate Current EAPOL authentication state for each po rt. Possibl[...]

set eapol Enterasys D-Series CLI Reference 17-19 set eapol Use  this  command  to  enable  or  disable  EAPOL  port ‐ based  user  authentication  with  the  RADIUS  server  and  to  set  the  authentication  mode  for  one  or  more  ports . Synt ax set eapol [ enable | d[...]

clear eapol 17-20 Securit y Configuration Parameters Default s If  auth ‐ mode  is  not  specif ied,  all  EAPOL  settings  will  be  cleared. If  port ‐ string  is  not  specif ied,  settings  will  be  cleared  for  all  ports. Mode Switch  command,  read ‐ write. Example [...]

Configuring MAC Authentication Enterasys D-Series CLI Reference 17-21 Configuring MAC Authentication Purpose To  review ,  disable,  enable  and  configure  MAC  authentication.  This  authentica tion  method  allows  the  device  to  authentica te  source  MAC  addresses  in  an  excha[...]

show macauthentication 17-22 Securit y Configuration Parameters Default s If  port ‐ string  is  not  specif ied,  MAC  authentication  informatio n  will  be  display ed  for  all  ports. Mode Switch  command,  read ‐ only . Example This  example  shows  how  to  display  MAC  a[...]

show macauthentication session Enterasys D-Series CLI Reference 17-23 show macauthentication session Use  this  command  to  display  the  active  MAC  authe nticated  se ssions. Synt ax show macauthentication session Parameters None. Default s If  port ‐ string  is  not  specif ied,  MAC  sessio n [...]

set macauthentication 17-24 Securit y Configuration set macauthentication Use  this  command  to  globally  enable  or  disable  MAC  authentica tion. Synt ax set macauthentication { enable | disa ble } Parameters Mode Switch  command,  read ‐ write. Default s None. Example This  example  shows  how  t[...]

clear macauthentication password Enterasys D-Series CLI Reference 17-25 Example This  example  shows  how  to  set  the  MAC  authentication  password  to  “macauth”: D2(su)->set macauthentication passwo rd macauth clear macauthentication p assword Use  this  command  to  clear  the  MAC [...]

set macauthentication portinitialize 17-26 Securit y Configuration Usage Enabling  port(s)  for  MAC  authentication  requires  globally  enabling  MAC  authentication  on  the  switch  as  described  in  “ set  macauthentication ”  on  page 17 ‐ 24,  and  then  enabling  it[...]

clear macauthentication portquietperiod Enterasys D-Series CLI Reference 17-27 Default s None. Mode Switch  command,  read ‐ write. Example This  example  sets  port  1  to  wai t  5  seconds  after  a  failed  authentication  attempt  before  a  new  attempt  can  be  made: D2(su)[...]

set macauthentication reauthenticat ion 17-28 Securit y Configuration Mode Switch  command,  read ‐ write. Default s None. Example This  example  shows  how  to  force  the  MAC  authentication  session  for  address  00 ‐ 60 ‐ 97 ‐ b5 ‐ 4c ‐ 07 to  re ‐ initialize: D2(su)->set macauthen[...]

set macauthentication macreauthenticate Enterasys D-Series CLI Reference 17-29 Parameters Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  force  ge .2.1  though  5  to  reauthenticate: D2(su)->set macauthentication portre authentication ge.2.1-5 set macauthenticati[...]

clear macauthentication reauthperiod 17-30 Securit y Configuration Parameters Default s None. Mode Switch  command,  read ‐ write. Usage Changing  the  Reauth  Pe r i o d  with  the  set  macauthentication  reauthperiod  command  does  not  affect  current  sessions.  New  sessions  will ?[...]

set macauthentication significant-bits Enterasys D-Series CLI Reference 17-31 set macauthentication significant-bit s Use  this  command  to  set  the  number  of  significant  bits  of  the  MAC  address  to  use  for  authentication. Synt ax set macauthentication significant-bi ts number Paramete[...]

clear macauthentication significant-bits 17-32 Securit y Configuration Mode Switch  command,  read ‐ write. Example This  example  resets  the  MAC  authentication  significant  bits  to  48. D2(su)->clear macauthentication sign ificant-bits[...]

Configuring Multiple Authentication Methods Enterasys D-Series CLI Reference 17-33 Configuring Multiple Authentication Methods About Multiple Authentication T ypes When  enabled,  multiple  authentication  types  allow  users  to  authenticate  using  more  than  one  method  on  the  same  port. ?[...]

show multiauth 17-34 Securit y Configuration show multiauth Use  this  command  to  display  multiple  authenticati on  system  configuration. Synt ax show multiauth Parameters None. Default s None. Mode Switch  command,  read ‐ only . Example This  example  shows  how  to  display  multiple  aut[...]

set multiauth mode Enterasys D-Series CLI Reference 17-35 set multiauth mode Use  this  command  to  set  the  system  authentication  mode  to  allow  multi ple  authenticators  simultaneously  (802.1x,  PW A,  and  MAC  Authentica tion)  on  a  single  port,  or  to  stric[...]

set multiauth precedence 17-36 Securit y Configuration Example This  example  shows  how  to  clear  the  system  authentication  mode : D2(rw)->clear multiauth mode set multiauth precedence Use  this  command  to  set  the  system’ s  multi ple  authentication  administrative  precedenc[...]

show multiauth port Enterasys D-Series CLI Reference 17-37 Example This  example  shows  how  to  clear  the  multiple  authenti cation  precedence: D2(rw)->clear multiauth precedence show multiauth port Use  this  command  to  display  multiple  authenticati on  properties  for  one  or ?[...]

clear multiauth port 17-38 Securit y Configuration Parameters Default s None. Mode Switch  command,  read ‐ write. Examples This  example  shows  how  to  set  the  port  multipl e  authenticati on  mode  to  required  on  ge .3.14: D2(rw)->set multiauth port mode auth -reqd ge.3.14 This  exam[...]

show multiauth station Enterasys D-Series CLI Reference 17-39 Mode Switch  command,  read ‐ write. Examples This  example  shows  how  to  clear  the  port  mult iple  authentication  mode  on  port  ge .3.1 4: D2(rw)->clear multiauth port mode ge .3.14 This  example  shows  how  to  [...]

show multiauth idle-timeout 17-40 Securit y Configuration Parameters Default s If  no  options  are  specified,  multiple  au thentication  session  entries  will  be  displayed  for  all  sessions,  authentication  types,  MAC  addresses,  and  ports. Mode Switch  command,  read ‐[...]

set multiauth idle-timeout Enterasys D-Series CLI Reference 17-41 Example This  example  shows  how  to  display  timeout  val u e s  for  an  idle  session  for  all  authentication  types. D2(su)->show multiauth idle-timeout Authentication type Timeout (sec) ------------------- ------------- dot1x 0[...]

clear multiauth idle-timeout 17-42 Securit y Configuration clear multiauth idle-timeout Use  this  command  to  re set  th e  maximum  number  of  consecutiv e  seconds  an  authenticated  sessi on  may  be  idle  before  termination  of  the  session  to  its  default  va l[...]

set multiauth session-timeout Enterasys D-Series CLI Reference 17-43 Example This  example  displays  the  session  timeout  val u es  for  all  authentication  methods. D2(su)->show multiauth session-timeo ut Authentication type Timeout (sec) ------------------- ------------- dot1x 0 pwa 0 mac 0 set multiauth sessi[...]

clear multiauth session-timeout 17-44 Securit y Configuration clear multiauth session-timeout Use  this  command  to  re set  th e  maximum  number  of  consecutiv e  seconds  an  authenticated  sessi on  may  last  before  termination  of  the  sessi on  to  its  default  val [...]

Configuring VLAN Authorization (RFC 3580) Enterasys D-Series CLI Reference 17-45 Configuring VLAN Authorization (RFC 3580) Purpose RFC  3580  T unnel  Attributes  provide  a  mechanism  to  contain  an  802.1X  authentica ted  or  a  MAC  authenticated  user  to  a  VLAN  regardless  of[...]

set policy maptable response 17-46 Securit y Configuration multiauth  port  command  (page  17 ‐ 37)  to  set  the  number  of  RFC  3580  users  (numusers )  allowed  per  Gigabit  port.  Up  to  two  users  can  be  configured  per  Gigabit  port.  Synt ax show [...]

set vlanauthorization Enterasys D-Series CLI Reference 17-47 When  a  user  successfully  authenticates  to  the  network,  the  RADI US  serv er  returns  an  Access ‐ Accept  frame.  This  frame  can  have  many  attributes,  two  of  whi ch  are  a  Filter  ID [...]

set vlanauthorization egress 17-48 Securit y Configuration set vlanauthorization egress Controls  the  modification  of  the  current  VLAN  egress  list  of  802.1x  authenticated  ports  for  the  VLANs  returned  in  the  RADIUS  authorization  filter  id  string. Synt ax set v[...]

show vlanauthorization Enterasys D-Series CLI Reference 17-49 Mode Switch  command,  read ‐ write. Example This  example  show  how  to  clear  VLAN  authorization  for  all  ports  on  slots  3,  4,  and  5: D2(rw)->clear vlanauthorization ge.3 -5.* show vlanauthorization Displays  the [...]

show vlanauthorization 17-50 Securit y Configuration authenticated ma c address If authentication has succeeded, displays the MAC addre ss assig ned for egress. vlan id If authentication has succeeded, displays the assig ned VLAN id for ing ress. T able 17-46 show vlanauthorization Ou tput Det ails (Continued) Output Fi eld What It Disp la y s. ..[...]

Configuring MAC Locking Enterasys D-Series CLI Reference 17-51 Configuring MAC Locking This  feature  locks  a  MAC  address  to  one  or  more  ports,  preventing  connection  of  unauthorized  devices  through  the  port(s).  When  source  MAC  addresses  are  receiv ed  o[...]

show maclock 17-52 Securit y Configuration show maclock Use  this  command  to  display  the  status  of  MAC  locking  on  one  or  more  port s. Synt ax show maclock [ port-string ] Parameters Default s If  port ‐ string  is  not  specif ied,  MAC  locking  status  will  be ?[...]

show maclock stations Enterasys D-Series CLI Reference 17-53 show maclock st ations Use  this  command  to  display  MAC  locking  information  about  end  stations  connected  to  the  switch. Synt ax show maclock stations [firstarrival | static] [ port-string ] Parameters Default s If  no  parameter[...]

set maclock enable 17-54 Securit y Configuration set maclock enable Use  this  command  to  enable  MAC  locking  globally  or  on  one  or  more  ports.  Synt ax set  maclock  enable  [ port ‐ string ] Parameters Default s If  port ‐ string  is  not  specif ied,  MAC  locking[...]

set maclock disable Enterasys D-Series CLI Reference 17-55 set maclock disable Use  this  command  to  disable  MAC  locking  globally  or  on  one  or  more  ports.  Synt ax set maclock disable [ port-string ] Parameters Default s If  port ‐ string  is  not  specif ied,  MAC  locking ?[...]

clear maclock 17-56 Securit y Configuration Mode Switch  command,  read ‐ write. Usage Configuring  a  port  for  MAC  locking  requires  globally  enabling  it  on  the  swi tch  first  using  the  set  maclock  enable  command  as  described  in  “ set  maclock  [...]

set maclock static Enterasys D-Series CLI Reference 17-57 Example This  example  shows  how  to  remove  a  MAC  from  the  list  of  static  MACs  allow ed  to  communicate  on  port  ge .3.2:  D2(rw)->clear maclock 0e-03-ef-d8-44 -55 ge.3.2 set maclock st atic Use  this  command[...]

set maclock firs tarrival 17-58 Securit y Configuration Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  reset  the  number  of  allow able  static  MACs  on  fe.2.3:  D2(rw)->clear maclock static fe . 2.3 set maclock first arrival Use  this  command  to  re[...]

clear maclock firs tarrival Enterasys D-Series CLI Reference 17-59 clear maclock first arrival Use  this  command  to  reset  the  number  of  first  arrival  MAC  address es  allowed  per  port  to  the  default  val u e  of  6 00.  Synt ax clear maclock firstarrival port-stri ng Param[...]

clear maclock agefirstarrival 17-60 Securit y Configuration Example This  example  enables  first  arrival  ag ing  on  port  ge .1.1. D2(su)-> set maclock agefirstarrival ge.1.1 enable clear maclock agefirst arrival Use  this  command  to  reset  first  arriv a l  aging  on  one  or  more[...]

set maclock trap Enterasys D-Series CLI Reference 17-61 Usage If  there  are  more  first  arrival  MACs  than  the  allow ed  maximum  static  MACs,  then  only  the  latest  first  arriv al  MACs  wil l  be  mov ed  to  static  entries.  For  example,  if  you [...]

Configuring Port Web Authentication (PWA) 17-62 Securit y Configuration Configuring Port W eb Authentication (PW A) About PW A PW A  provides  a  wa y  of  authenticating  users  before  allowing  general  access  to  the  netw ork  To  log  on  using  PW A ,  the  user  makes  a [...]

show pwa Enterasys D-Series CLI Reference 17-63 show pwa Use  this  command  to  display  port  web  authentication  information  for  one  or  more  ports. Synt ax show pwa [ port-string ] Parameters Default s If  port ‐ string  is  not  specif ied,  PW A  information  w ill  be  [...]

set pwa 17-64 Securit y Configuration set pwa Use  this  command  to  enable  or  disable  port  web  authentication. Synt ax set pwa { enable | disable } Parameters Default s None. Mode Switch  command,  read ‐ write. PW A Enhanced Mode Whether PWA enhanced mode is enabled or disabled. Default state of disabled c[...]

show pwa banner Enterasys D-Series CLI Reference 17-65 Example This  example  shows  how  to  enable  port  web  authentication:  D2(su)->set pwa enable show pwa banner Use  this  command  to  display  the  port  web  a uthentication  login  banner  string. Synt ax show pwa banner Param[...]

clear pwa banner 17-66 Securit y Configuration clear pwa banner Use  this  command  to  reset  the  PW A  log in  banner  to  a  blank  string. Synt ax clear pwa banner Parameters None. Default s None. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  reset  the[...]

set pwa ipaddress Enterasys D-Series CLI Reference 17-67 set pwa ip address Use  this  command  to  set  the  PW A  IP  address.  This  is  the  IP  addres s  of  the  end  statio n  from  which  PW A  will  prevent  network  access  until  the  user  is  authent[...]

set pwa guestname 17-68 Securit y Configuration set pwa guestname Use  this  command  to  set  a  guest  user  name  for  PW A  netw orking.  PW A  will  use  this  name  to  grant  network  access  to  guests  without  established  login  names  and  passw ords. Sy[...]

set pwa guestpassword Enterasys D-Series CLI Reference 17-69 set pwa guestp assword Use  this  command  to  set  the  guest  user  password  for  PW A  networking.  Synt ax set pwa guestpassword Parameters None. Default s None. Mode Switch  command,  read ‐ write. Usage PW A  will  use  this  [...]

set pwa initialize 17-70 Securit y Configuration Usage PW A  will  use  a  guest  passw ord  and  guest  user  name  to  grant  network  access  with  default  policy  privileges  to  users  without  establishe d  login  names  and  passwords. Example This  example  sh[...]

set pwa maxrequest Enterasys D-Series CLI Reference 17-71 Default s If  port ‐ string  is  not  specif ied,  quiet  period  will  be  set  for  all  ports. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  set  the  PW A  quiet  period  to  30 ?[...]

show pwa session 17-72 Securit y Configuration Parameters Default s If  port ‐ string  is  not  specif ied,  PW A  will  enabled  on  all  ports. Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  enable  PW A  on  ports  1 ‐ 22: D2(su)->set pwa portcon[...]

set pwa enhancedmode Enterasys D-Series CLI Reference 17-73 set pwa enhancedmode This  command  enables  PW A  URL  redirection.  The  switch  intercepts  all  HTTP  packets  on  port  80  from  the  end  user ,  and  sends  the  end  user  a  refresh  page  destined ?[...]

Configuring Secure Shell (SSH) 17-74 Securit y Configuration Configuring Secure Shell (SSH) Purpose To  review ,  enable,  disable,  and  configure  the  Secure  Shell  (SSH)  protocol,  which  provides  secure  Te l n e t .  Commands show ssh st atus Use  this  command  to  display  the ?[...]

set ssh hostkey Enterasys D-Series CLI Reference 17-75 Parameters Default s None.  Mode Switch  command,  read ‐ write. Example This  example  shows  how  to  disable  SSH: D2(su)->set ssh disable set ssh hostkey Use  this  command  to  set  or  reinitialize  new  SSH  authenticati on  k[...]

set ssh hostkey 17-76 Securit y Configuration[...]

Index-1 Index Numerics 802.1D 8-1 802.1p 11 -1 7 , 12-1 802.1Q 9-1 802.1s 8-1 802.1w 8-1 802.1x 17-5 , 17-19 A Advertised Ability 6-15 Alias node 14-34 Authentication EAPOL 17-19 MAC 17-21 Port web 17-62 RADIUS server 17-5 , 17-8 SSH 17-75 Auto-negotiation 6-15 B banner motd 2-21 Baud Rate 2-28 Broadcast suppression, enabling on ports 6-30 C CDP Di[...]

Index- 2 profiles 11 -1 , 11 -1 7 Port Mirroring 6-33 Port Priority configuring 12-1 Port String syntax used in the CLI 6-1 Port Trunking 6-36 Port web authenti cation configuring 17-62 Port(s) alias 6-8 assignment scheme 6-1 auto-negotiation and adverti s ed ability 6-15 broadcast suppression 6-30 counters, reviewing statistics 6-5 duplex mode, se[...]