DGS-3200-10 CLI Manual
Contents
1. 39 1 enable disable mac based access control Purpose Used to enable or disable MAC Based Access Control Format enable mac based access control disable mac based access control Description The enable mac based access control command will enable the MAC Based Access Control function The disable mac based access control command will disable the MAC Based Access Control function Parameters None Restrictions You must have administrator privileges Examples To enable MAC based Acces Control 291 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4 enable mac based access control Command enable mac based access control Success DGS 3200 10 4 39 2 config mac based access control Purpose Used to configure the parameter of the MAC Based Access Control Format config mac based access control ports lt portlist gt all state enable disable method local radius password lt passwd 16 gt guest_vian ports lt portlist gt Description The config mac_based_access_control command allows you to configure the MAC Based Access Control setting Parameters Parameters Description ports A range of ports to enable or disable the mac_based_access_control function state Specify specific port state method Specify which authenticated method password In RADIUS mode the switch communicate with a RADIUS se2. 318 43 JWAC COMMANDS 321 23 HNABEE DISABEE At 43 2 ENABLE DISABLE JWAC REDIRECT 43 3 ENABLE DISABLE JWAC FORCIBLE LOGOUT 43 4 ENABLE DISABLE JWAC FORCIBLE LOGOUT 43 5 ENABLE DISABLE JWAC QUARANTINE SERVER MONITOR eee enne nnennrennn nnne trennen ttes tesis enitn sete rn een ense tesa teen 324 43 6 CONFIG JWAC QUARANTINE SERVER ERROR TIMEOUT cccccsccscssscsscsssessccsececcssessscsecsesessessceascessessesscesecesceesessesscsascesseesessens 325 43S T CONFIG JWAG REDES da 43 8 CONFIG JWAC VIRTUAL IP csccscssesscsssscescsseeecssesecseeaeeeeseees 43 9 CONFIG IWAC QUARANTINE SERVER URL 43 10 CONFIG JWAC CLEAR QUARANTINE SERVER URL 43 T ECONFIGJWAG UPDATE SERVER s ter Gr t ERE TOR REOR qase E t I UR YI D EE Red 43 12 CONFIG JWAC SWITCH HTTP PORT ccsccssssesscssesccssesccsessseccssesecssesscsssacccenscsecssesecasaesscsaesecssesecasesecsssaseccsaesccasenecateaeeseaeenenee 235 I3 CONFIGJWAC PORT eene rt er REPRE NER REED ERRANT NEP EE FUR REST AS EERAEUR RAS 43 14 CONFIG JWAC RADIUS _PROTOCOL cccsssssesssseescssesscssesceseuacsccssesecasesscassacecensesecsssecasaessesaesecssesecssesecasaceucssesecasenecateaeceeacenenes 43 15 CREATE JWAC USER cococconococnnononnonncnnonos 43 16 DELETE JWAC USER 43 17 SHOW JWAC USER 43 1 8 DEEETEJWACHHOST ttes aaa asa 43 19 SHOW TWA CS 23 20
3. eee eee ee ee eee eee eo en sente seen etae ne seen eE sen eee en et aee enses eS seen eE ene seen ete ense en ena 260 32 1 CONFIG CPU PROTECTION 32 2 SHOW SAFEGUARD ENGINE 33DHCP RELAY COMMAND L ST 55 ores senta cout aive roni ote Prio Iran snusbanessoveussnessgecossnsnvessenseesesdonsvasosudseonsansanessensbedesdeaendsoesses 263 FIL DHEP RELAY eerte rete ee ECCE EUR De EE aa 33 2 CONFIG DHCP RELAY ADD ccccsccesssssesscssccsssessssscssecesccssesscsscessessesscesscesscssesssuascsssessesssesscessessesssascsaccesesssessceascesssssesssasensesssees 33 3 CONFIG DHCP RELAY DELETE 33 4 CONFIG DHCP RELAY OPTION 82 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 33 5 ENABLE DHCP RELA VA a s 33 6 DISABLE DHCP_RELAY FIT DRA ai cies 34 MODIFY BANNER AND PROMPT ssccosscsssscsccsssssscsssccecsscscsccscnssacecsscncescassccscnssacacsscncsscacsccncnssacaceccncesacscessnseacacescecescaces 269 SAO IAN CIAO eee nennen enne tnenns enne tnse tesis eins tese tese sese th sete EENES PESEE ESPES ESEESE SEREEN ESEESE EE SEESE EEEn esenee eree 269 34 2 CONFIG COMMAND PROMPT tere eee te noL reine onere re it 270 35 SMTP CLIENT LOG ENHANCEMENT COMMAND LIST scsccssscssssssccsssssscsssssecsssossccocessacssescecescacscceseseasscsseacacences 272 359 IuENABEESMTP Ze A A A ina Rie 272 3522 DISABLE A EM 273 39353 SHOW MP m etti euin a SO 273 33 4 CONFIG MM d
4. Restrictions You must have administrator privileges Example To create a link aggregation group DGS 3200 10 4 create link aggregation group id 1 type lacp Command create link aggregation group id 1 type lacp 109 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Success DES 3028P 4f 14 2 delete link aggregation group id Purpose Used to delete a previously configured link aggregation group Format delete link aggregation group id value 1 5 Description The delete link aggregation group id command is used to delete a previously configured link aggregation group Parameter Parameters Description group id The specifies the group ID The group number identifies each of the groups The switch allows up to five link aggregation groups to be configured Restrictions You must have administrator privileges Example To delete link aggregation group DGS 3200 10 4fdelete link aggregation group id 3 Command delete link aggregation group id 3 Success DGS 3200 10 4f 14 3 config link aggregation Purpose Used to configure a previously created link aggregation group Format config link aggregation group id value master port port ports lt portlist gt state enabled disabled Description The config link_aggregation command allows you to configure a link aggregation group that was created with the create link_aggregati
5. v6 address permit Specifies the packets that match the access profile are permitted by the switch priority Specifies the packets that match the access profile change priority by the switch replace priorit Specifies the packets that match the access profile change the 802 1p priority tag y_with field by the switch replace dscp Specifies the packets that match the access profile change the DSCP value by with the switch deny Specifies the packets that match the access profile are filtered by the switch user _defined_ Specifies the value of frame value offset Specifies the offset of frame time_range Specifies name of this time range entry Restrictions You must have administrator privileges Example To configure a CPU access list entry DGS 3200 10 4 config cpu access_profile profile_id 101 add access_id 1 ip vlan default source_ip 20 2 2 3 destination_ip 10 1 1 252 dscp 3 icmp type 11 code 32 port 1 deny Command config cpu access_profile profile_id 101 add access_id 1 ip vlan default source_ip 20 2 2 3 destination_ip 10 1 1 252 dscp 3 icmp type 11 code 32 port 1 deny Success DGS 3200 10 4 255 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 31 4 enable cpu interface filtering Purpose Used to enable CPU interface filtering control Format enable cpu_interface_flitering Description Configure parameters of CPU interface filtering control such as admin state The de
6. Parameters Parameters Description ipaddr Input the TFTP server IP address certfilename The desired certificate file name path_filename Certificate file path in respect to the TFTP server root path Input characters with a maximum of 64 octets keyfilename The private key file name which accompanies the certificate path_filename Private key file path in respect to the TFTP server root path Input characters with a maximum of 64 octets Restrictions You must have administrator privilege Examples To download a certificate from a TFTP server DGS 3200 10 4 download ssl certificate 10 55 47 1 certfilename cert der keyfilename pkey der Command download ssl certificate 10 55 47 1 certfilename cert der keyfilename pkey der Success DGS 3200 10 4 245 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 30 3 enable ssl Purpose Used to enable the SSL feature and ciphersuites Format enable ssl ciphersuite RSA with RC4 128 MD5 RSA with 3DES EDE CBC SHA DHE DSS with 3DES EDE CBC SHA RSA EXPORT with RC4 40 MD5 Description This command enables the SSL status and its individual ciphersuites Using the enable ssl command will enable the SSL feature which means SSLv3 and TLSv1 Each ciphersuite must be enabled by this command Parameters Parameters Description ciphersuite For configuring a cipher suite combination RSA with RC4 128 MD5 Indica
7. Purpose Used to create a new SNMP group or a table that maps SNMP users to SNMP views Format create snmp group groupname 32 v1 v2c v3 noauth nopriv auth nopriv auth priv read view view name 32 notify view view name 32 notify view view name 32 gt Description The create snmp group command creates a new SNMP group Parameter Parameters Description groupname The name of the group v1 the least secure of the possible security models v2c the second least secure of the possible security models v3 the most secure of the possible Specifies authentication of a packet noauth_nopriv neither support packet authentication nor encrypting auth_nopriv Support packet authentication auth_priv Support packet authentication and encrypting view_name View name A MIB view Restrictions You must have administrator privileges Example DGS 3200 10 44create snmp group D Link group v3 auth priv read view CommunityView 44 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual write view CommunityView notify view CommunityView Command create snmp group D Link group v3 auth priv read view CommunityView wri te view CommunityView notify view CommunityView Success DGS 3200 10 44 4 14 delete snmp group Purpose Used to remove a SNMP group Format delete snmp group lt groupname 32 gt Description The delete snmp group command removes a SNMP group Pa
8. Restrictions You must have administrator privileges Examples To configure the 802 1p default priority settings on the switch DGS 3200 10 44config 802 1p default priority all 5 Command config 802 1p default priority all 5 Success DGS 3200 10 4f 284 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 36 10 show 802 1p default_priority Purpose Used to display the current default priority settings on the switch Format show 802 1p default priority lt portlist gt Description The show 802 1p default_priority command displays the current default priority settings on the switch Parameters Parameters Description portlist Specified a range of ports to be displayed If no parameter is specified the system will display all ports with 802 1p default_priority Restrictions None Examples To display 802 1p default priority DGS 3200 10 4 show 802 1p default priority Command show 802 1p default priority Port Priority 1 0 2 0 3 0 4 0 5 0 6 0 7 0 8 0 9 0 10 0 DGS 3200 10 44 285 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 3 37 TELNET CLIENT COMMAND LIST telnet lt ipaddr gt tcp port 1 value 0 65535 gt 37 1 telnet Purpose Used to login a host that supports Telnet Format telnet lt ipaddr gt tcp port 1 value 0 65535 gt Description The telnet command logins a host
9. 59 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 6 8 disable rmon Purpose Used to disable RMON on the switch Format disable rmon Description The disable rmon command disables RMON on the switch Parameter None Restrictions You must have administrator privileges Example To disable RMON on the switch DGS 3200 10 4 disable rmon Command disable rmon success DGS 3200 10 4f 6 9 enable snmp traps Purpose Used to enable SNMP trap support Format enable snmp traps Description The enable snmp traps command is used to enable SNMP trap support on the switch Parameter None Restrictions You must have administrator privileges Example To enable SNMP trap support DGS 3200 10 4fenable snmp traps 60 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Command enable snmp traps Success DGS 3200 10 4f 6 10 disable snmp traps Purpose Used to disable SNMP trap support on the switch Format disable snmp traps Description The disable snmp traps command is used to disable SNMP trap support on the switch Parameter None Restrictions You must have administrator privileges Example To prevent SNMP traps from being sent from the switch DGS 3200 10 4 disable snmp traps Command disable snmp traps Success DGS 3200 10 4f 6 11 enable snmp authenticate traps Purpose Used to enable SNMP authentica
10. candidates Specifies the candidate devices members Specifies the member devices group Specifies other group devices neighbor Specifies other neighbor devices Restrictions You must have administrator privilege Examples To show the self information in detail DGS 3200 10 4fshow sim Command show sim SIM Version VER 1 Firmware Version Build 1 00 B02 Device Name MAC Address 00 35 26 11 11 00 Capabilities L3 Platform DGS 3200 10 Fast Ethernet Switch SIM State Enabled Role State Commander Discovery Interval 60 sec Hold Time 180 sec DGS 3200 10 4 To show the candidate information in summary if a user specifies a candidate ID it would show information in detail DGS 3200 10 4 show sim candidate Command show sim candidate ID MAC Address Platform Hold Firmware Device Name Capability Time Version 1 00 01 02 03 04 00 DGS 3200 10 L2 Switch 40 1 00 B01 aaaaaaaaaaaaaaaa bbbbbbbbbbbbbbb 2 00 55 55 00 55 00 DES 3326SR L3 Switch 140 4 00 B15 default master Total Entries 2 DGS 3200 10 4 To show the member information in summary if a user specifies a member ID it will show information in detail DGS 3200 10 4 show sim member Command show sim member ID MAC Address Platform Hold Firmware Device Name Capability Time Version 1 00 01 02 03 04 00 DGS 3200 10 L2 Switch 40 1 00 B01 aaaaaaaaaaaaaaaa bbbbbbbbbbbbbbb 224 DGS 3200 10 Lay
11. 93 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 3 64 Disabled Disabled Disabled drop 0 5 4 64 Disabled Disabled Disabled drop 0 5 5 64 Disabled Disabled Disabled drop 0 5 6 64 Disabled Disabled Disabled drop 0 5 7 64 Disabled Disabled Disabled drop 0 5 8 64 Disabled Disabled Disabled drop 0 5 Total Entries 208 DGS 3200 10 4 Chapter 11 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual MIRROR CONFIGURATION COMMANDS 11 MIRROR CONFIGURATION COMMAND LIST config mirror port lt port gt add delete source ports lt portlist gt rx tx both enable mirror disable mirror show mirror 11 1 config mirror port Purpose Used to configure a mirror port a source port pair on the switch Traffic from any source port to a target port can be mirrored for real time analysis A logic analyzer or an RMON probe can then be attached to study the traffic crossing the source port in a completely unobtrusive manner When mirroring port traffic note that the target port must be configured in the same VLAN and be operating at the same speed as the source port If the target port is operating at a lower speed the source port will be forced to drop its operating speed to match that of the target port Format config mirror port port add delete source ports lt portlist gt rx tx both Description The config mirror command allows a range of ports to have all of their tr
12. DGS 3200 10 4 show utilization ports Command show utilization ports Port TX sec RX sec Util 1 0 0 0 2 0 0 0 3 0 0 0 4 0 0 0 5 0 0 0 6 0 0 0 7 0 0 0 8 0 0 0 To display the CPU utilization DGS 3200 10 4 show utilization cpu Command show utilization cpu CPU utilization Five seconds 20 One minute 10 Five minutes 70 Success DGS 3200 10 4f 8 4 clear counters Purpose Used to clear the switch s statistics counters Format clear counters ports lt portlist gt Description The clear counters command clears the switch s statistics counters Parameter Parameters Description portlist Specifies a range of ports to be configured The beginning and end of the port list range are separated by a dash If no parameter is specified the system will count all of the ports Restrictions You must have administrator privileges 74 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Example To clear the switch s statistics counters DGS 3200 10 4 clear counters ports 7 9 Command clear counters ports 7 9 Success DGS 3200 10 4f 8 5 clear log Purpose Used to clear the switch s history log Format clear log Description The clear log command clears the switch s history log Parameters None Restrictions You must have administrator privileges Examples To clear the switch s history log DGS 3200 10 4 clear l
13. Parameters Description ports A range of member ports to show the status 315 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Restrictions You must have administrator privileges Examples To show WAC DGS 3200 10 4 show wac Command show wac Web Base Access Control State Enable Method RADIUS Vlan Name default Success DGS 3200 10 4 To show WAC ports DGS 3200 10 4 show wac ports 1 8 Command show wac ports 1 8 Port State 1 Enable 2 Enable 3 Enable 4 Enable 5 Enable 6 Enable 7 Enable 8 Enable Success DGS 3200 10 4 41 8 show wac user Purpose Used to display Web authentication user accounts Format show wac user Description The show wac user command allows you to display Web authentication accounts 316 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Parameters Restrictions You must have administrator privileges Example To show Web authentication user accounts DGS 3200 10 4 show wac user Command show wac user Current Accounts Username Vlan name 12 3 default Success DGS 3200 10 4 317 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 42 System Message Text 42 SYSTEM MESSAGE TEXT The system shows the warning message text after applying the settings entering an invalid value or response for other action o Message Remark Success
14. DGS 3200 10 4 16 13 create 802 1x guest_vlan Purpose Used to assign a static VLAN to be a guest VLAN Format create 802 1x guest_vlan lt vlan_name 32 gt Description The create 802 1x guest_vlan command will assign a static VLAN to be a guest VLAN 131 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Parameter Parameters Description vlan_name 32 Specify the static VLAN to be a guest VLAN Restrictions You must have administrator privileges The specific VLAN which is assigned to a guest VLAN must already exist The specific VLAN which is assigned to the guest VLAN can t be deleted Example DGS 3200 10 44 create 802 1x guest vlan guestVLAN Command create 802 1x guest vlan guestVLAN Success DGS 3200 10 4f 16 14 delete 802 1x guest vlan Purpose Used to delete a guest VLAN configuration Format delete 802 1x guest vlan vlan name 32 gt Description The delete 802 1x guest vlan command will delete a guest VLAN setting but not delete the static VLAN Parameter Parameters Description vlan name 32 The guest VLAN name Restrictions You must have administrator privileges All ports which are enabled as guest VLAN will return to the original VLAN after the guest VLAN is deleted Example DGS 3200 10 44 delete 802 1x guest vlan guestVLAN Command delete 802 1x guest vlan guestVLAN Success DGS 3200 10 4 132 DGS 3200
15. DGS 3200 10 4f DGS 3200 10 4 config 802 1x auth parameter ports 1 1 1 20 direction both Command config 802 1x auth parameter ports 1 1 1 20 direction both 16 10 config 802 1x auth mode Purpose Used to configure 802 1x authentication mode Format config 802 1x auth mode port based mac based Description The config 802 1x auth mode command configures the authentication mode Parameters Parameters Description 129 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual port_based Configure the authentication as port based mode mac_based Configure the authentication as MAC based mode Restrictions You must have administrator privileges Examples To configure the authentication mode DGS 3200 10 4 config 802 1x auth mode port based Command config 802 1x auth mode port based Success DGS 3200 10 4f 16 11 config 802 1x init Purpose Used to initialize the authentication state machine of some or all ports Format config 802 1x init port based ports portlist all Jmac based ports lt portlist gt all mac address lt macaddr gt Description The config 802 1x init command used to initialize the authentication state machine of some or all Parameters Parameters Description port_based Configure the authentication as port based mode mac_based Configure the authentication as MAC based mode portlist Spec
16. D6S 3200 10 4H8config ipif System ipaddress 10 24 22 100 255 0 0 0 Command config ipif System ipaddress 10 24 22 100 8 Success DGS 3200 16 4 _ In the above example the Switch was assigned an IP address of 10 24 22 100 with a subnet mask of 255 0 0 0 The system message Success indicates that the command was executed successfully The Switch can now be configured and managed via Telnet SNMP MIB browser and the CLI or via the Web based management agent using the above IP address to connect to the Switch There are a number of helpful features included in the CLI Entering the command will display a list of all of the top level commands clear arptable clear attack_log clear eee clear log clear port_security_entry port config 802 1p default_priority config 802 1p user_priority config 802 1 auth mode config 802 1x auth_parameter ports config 802 1x auth_protocol config 802 1x capability ports config 802 1x guest_vlan ports config 802 1x init config 802 1x reauth config access_profile profile_id config account config address_binding ip_mac ipaddress config address_bindin mac MIES E ESE A Quit SPACE Next Pa nee y Next Entry B All When entering a command without its required parameters the CLI will prompt you with a Next possible completions message 12 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual D6S 3200 10 48config account Command config account Next possible completions
17. DGS 3200 10 4 4 2 delete snmp user Purpose Used to remove a user from an SNMP group and delete the associated group in SNMP group 35 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Format delete snmp user lt SNMP_name 32 gt Description The delete snmp user command removes a user from a SNMP group and deletes the associated group in SNMP group Parameter Parameters Description username The name of the user on the host that connects to the agent The range is 1 to 32 Restrictions You must have administrator privileges Example DGS 3200 10 4 delete snmp user dlink Command delete snmp user dlink Success DGS 3200 10 4f 4 3 show snmp user Purpose Used to display information on each SNMP username in the group username table Format show snmp user Description The show snmp user command displays information on each SNMP username in the group username table Parameter None Restrictions You must have administrator privileges Example DGS 3200 10 4 show snmp user Command show snmp user Username Group Name SNMP Version Auth Protocol PrivProtocol initial initial V3 None None 36 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Total Entries 1 DGS 3200 10 4f 4 4 show snmp groups Purpose Used to display the names of groups on the switch and the security model level and the status of the different views F
18. 27 14 create authen server_group Purpose Used to create a user defined authentication server group Format create authen server_group lt string 15 gt Description Create a user defined authentication server group The maximum supported number of server groups including built in server groups is eight Each group consists of eight server hosts as maximum Parameters Parameters Description string 15 The user defined server group name Restrictions You must have administrator privilege Examples To create a user defined authentication server group DGS 3200 10 4 create authen server group mix 1 Command create authen server group mix 1 Success DGS 3200 10 4 27 15 config authen server_group Purpose Used to add or remove an authentication server host to or from the specified server group 211 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Format config authen server_group tacacs xtacacs tacacs radius lt string 15 gt add delete server_host lt ipaddr gt protocol tacacs xtacacs tacacs radius Description Add or remove an authentication server host to or from the specified server group Built in server group tacacs xtacacs tacacs and radius accept the server host with the same protocol only but user defined server group can accept server hosts with different protocols The server host must be created first by usi
19. D Link Building Networks for People IRODUCT MODEL DGS 3200 10 PI H MAN 23ED SWI H JILGAB THER MIANAGED WITCH DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual iBTUO 10 1 1 ACCESSING THE SWITCH VIA THE SERIAL PORT sssccsssseescssesscsssscescssesccssesecaseseceeuacscessesecasesecassaececsseateaeecsaesecasesecateaeceesasenenaees 10 T Z SETTING THES WITCH SIP ADDRESS a RUE Re 11 1 3 COMMAND SYNTAX SYMBOLS a E aa a T a E aare seas shes sss Ibat eA E a a EiS 15 TA TEINESEDITING KEY S lil 15 2 BASIC SWITCH COMMAND LIST encnconccninsonsonoosonsonoosonsoneoonsoneosononeosonconensonsononsononensononorsonrnorsonernorsonsrnorsoncrnorsonrnorsonornorsonsrnoss 16 2S CRBATEACCOUND S E b E a A IRA CIE 16 2 2 ENABLE DISABLE PASSWORD ENCRYPTION etre E EROS AVETE ENTRE RE TVAE VR ECKE EVO RENE VR EN V dd 17 2 3 CONFIG ACGOUN etie tiber ete nettes RR NE 2 4 SHOW ACCOUNT 5 rtt tete tette tete ee te etit le da tov n victae e e DI E 2 DELETE ACCOUNT 52 Ateste deidad diia iaa ted eI dO I 2 6 SHOW SESSION 2 7 SHOW SWITCH 2 8 SHOW SERIAL PORT 2 0 GONFIG SERA PORT sess 5 Steht o ann HO HEIDE RR RD HE EO ROI 271 Q ENABER CEIPAGING aaa 22 T DISABEE CEIPAGING a in ORS 22 QENABEB TELNET de a 2 13 DISABLE TELNET 2 14 ENABLE WEB B IGCONFIG PORTS 23 5 dd a T E aaa oh e te BT ER I I i BEE OB A RIN e O 3 2 SHOW PORTS eter E ad
20. Fail Invalid IP address Invalid subnet mask Invalid gateway address All changes are saved Invalid MAC address No more MAC Based VLANs can be added 10 No more MAC addresses can be added 11 Invalid VLAN Description 12 The entry does not exist 13 Duplicate IP address Enter a unique IP address 14 Invalid metrics 15 Flow Control is not Enabled 16 Spanning tree group name cannot be empty 17 The IP interface must be deleted first 18 The system interface is not in manual mode 19 The VLAN already has a IP Interface 20 The specified IGMP snooping entry cannot be olona Aion modified 21 You have more than 255 IGMP snooping entries 22 IGMP state in the VLAN is disabled or current VID is invalid 23 The external module port is not exist 24 You must select at least one port member 25 Target mirror port can t be set in the trunk please change it first 26 Invalid port or width setting 27 Untagged ports overlapped 28 Invalid VLAN name 29 Invalid duplicate VLAN ID 30 Incorrect aging time specified The value must be from 300 to 1000000 31 The specified entry is not found 32 All changes applied BUT trunk member follows master 318 DGS 3200 10 Layer 2 Gigab
21. Parameters Description profile_id Specifies the index of the access list profile Restrictions None Example To display the current access list table DGS 3200 10 4 show access profile Command show access profile Access Profile Table Total Unused Rule Entries 199 Total Used Rule Entries 1 Access Profile ID 100 Type Ethernet Owner ACL MASK Option VLAN Source MAC Destination MAC 802 1P Ethernet Type EESE ES PE do S 00 00 00 FF FF FF Unused Entries 200 Access Profile ID 101 Type IP Owner ACL MASK Option VLAN Source IP MASK Dst IP MASK DSCP ICMP 2555255525542955 2904 290 20000 Access ID 1 Mode Permit RX Rate 64Kbps no_limit Ports se gil default 2105 2 12 9 O 1 1 0 3 Unused Entries 199 DGS 3200 10 4f 151 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 17 5 config time_range Purpose Used to configure the range of time to activate a function on the switch Format config time_range lt range_name 32 gt hours start_time lt hh mm ss gt end_time lt hh mm ss gt weekdays lt daylist gt delete Description This command defines a specific range of time to activate a function on the Switch by specifying which time range in a day and which days in a week are covered in the time range Note that the specified time range is based on SNTP time or configured time If this time is not available then the time range
22. 8 8 disable syslog Purpose Used to disable syslog sending a message Format disable syslog Description The disable syslog command disables syslog sending a message Parameters None Restrictions You must have administrator privileges Examples To disable syslog sending a message DGS 3200 10 4 disable syslog Command disable syslog Success DGS 3200 10 4f 8 9 show syslog Purpose Used to display the syslog protocol global state Format show syslog Description The show syslog command displays the syslog protocol global state Parameters None Restrictions None TT DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Examples To display the syslog protocol global state DGS 3200 10 4f Syslog Global State DGS 3200 10 4 show syslog Command show syslog Enabled 8 10 config syslog host Purpose Used to configure the syslog host configurations Format config syslog host all lt index 1 4 gt severity informational warning all facility local0 local1 local2 local3 local4 local5 local6 local udp port lt udp_port_number gt ipaddress lt ipaddr gt state enable disable Description The config syslog command configures the syslog host configurations Parameters Parameters Description Host index 1 4 gt Host index or all hosts severity Three level supported in
23. DGS 3200 10 4 show 802 1x user Command show 802 1x user Index UserName Total Entries 2 125 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4 16 6 config 802 1x auth_protocol Purpose Used to cofig the 802 1x auth protocol Format config 802 1x auth protocol local 1 radius eap 4 Description The config 802 1x auth protocol command config the 802 1x auth protocol Parameters Parameters Description local Specifies the auth protocol as local radius eap Specifies the auth protocol as RADIUS EAP Restrictions You must have administrator privilege Examples To config the 802 1x RADIUS EAP DGS 3200 10 4 config 802 1x auth protocol radius eap Command config 802 1x auth protocol radius eap Success DGS 3200 10 4f 16 7 show 802 1x Purpose Used to display the 802 1x state or configurations Format show 802 1x auth state auth configuration ports lt portlist gt Description The show 802 1x command displays the 802 1x state or configurations Parameters Parameters Description auth state Used to display 802 1x authentication state machine of some or all ports auth configuration Used to display 802 1x configurations of some or all ports 126 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual portlist Specifies a range of ports to be displayed Restrictions None Ex
24. Examples To configure an SSL cache timeout value of 60 DGS 3200 10 4 config ssl cachetimeout 60 Commands config ssl cachetimeout 60 Success DGS 3200 10 4 249 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 31 CPU interface Filtering COMMANDS 31 CPU interface filtering Software ACL COMMAND LIST create cpu access_profile profile_id lt value 1 n gt ethernet vian source_mac lt macmask gt destination mac lt macmask gt 802 1p ethernet_type yl ip vlan source ip mask lt netmask gt destination ip mask lt netmask gt dscp icmp type code igmp type tcp src port mask hex 0x0 Oxffff dst port mask hex 0x0 Oxffff gt flag mask all urg ack psh rst syn fin 3 udp src port mask hex 0x0 Oxffff dst port mask hex 0x0 Oxffff gt protocol id mask 0x0 0Oxff user define mask hex 0x0 Oxffffffff gt lt hex Ox0 Oxffffffff2 hex 0x0 Oxffffffff gt lt hex OxO Oxffffffff2 hex 0xO Oxffffffff yl packet content mask offset 0 15 hex 0x0 0xffffffff gt lt hex 0x0 Oxffffffff gt lt hex Ox0 Oxffffffff2 hex OxO Oxffffffff offset 16 31 hex 0x0 Oxffffffff gt lt hex OxO Oxffffffff2 hex OxO0 Oxffffffff2 hex OxO Oxffffffff offset 32 47 hex 0x0 Oxffffffff gt lt hex OxO Oxffffffff2 hex OxO0 Oxffffffff hex OxO Oxffffffff offset 48 63 hex 0x0 Oxffffffff gt lt hex OxO Oxffffffff2 hex OxO0 Oxfff
25. The lt value gt is the number of broadcast multicast packets per second received by the switch that will trigger the storm traffic control measure Must be an unsigned integer time_interval The sampling interval of received packet counts The possible value will be 5 30 seconds This parameter is meaningless for dropping packets is selected as action countdown Timer for shutdown mode When a port enters a shutdown RX state and if this times out the port will shut down the port forever The default is 0 minutes 0 is the disable forever state Restrictions You must have administrator privileges Examples To configure traffic control and state DGS 3200 10 4 config traffic control 1 12 broadcast enable action shutdown threshold 1 time_interval 10 Command config traffic control 1 12 broadcast enable action shutdown threshold 1 10 time_interval 10 Success DGS 3200 10 4f 10 2 Config traffic trap Purpose Used to configure a traffic control trap Format config traffic trap none storm occurred storm cleared both Description This command configures whethers storm control notification will be generated or not while traffic storm events are detected by a SW traffic storm control mechanism Note A traffic control trap is active only when the control action is configured as shutdown If the control action is drop there will no traps issue while storm event is detected Par
26. To create a TACACS authentication server host its listening port number is 15555 and the timeout value is 10 seconds DGS 3200 10 4 create authen server_host 10 1 1 222 protocol tacacs port 15555 time out 10 Command create authen server host 10 1 1 222 protocol tacacs port 15555 timeou t 10 Success DGS 3200 10 4 27 19 config authen server_host Purpose Used to configure an authentication server host Format config authen server host lt ipaddr gt protocol tacacs xtacacs tacacs radius port int 1 65535 gt key key string 254 none timeout int 1 255 retransmit int 1 255 gt Description Configure an authentication server host Parameters Parameters Description server host lt ipaddr gt The server host s IP address protocol tacacs The server host s authentication protocol protocol xtacacs The server host s authentication protocol protocol tacacs The server host s authentication protocol protocol radius The server host s authentication protocol port int 1 65535 gt The port number of the authentication protocol for the server host The default value for TACACS XTACACS TACACSt is 49 The default value for RADIUS is 1812 215 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual key key string 254 gt The key for TACACS and RADIUS authenticaiton If the value is null no encryption will apply This value is meanin
27. destination ip Specifies an IP destination address dscp Specifies the value of DSCP the value can be configured from 0 to 63 icmp Specifies that the rule applies to ICMP traffic type Specifies the ICMP packet type code Specifies the ICMP packet code igmp Specifies that the rule applies to IGMP traffic type Specifies the IGMP packet type tcp src port Specifies that the rule applies to the range of TCP source ports dst port Specifies the range of the TCP destination port range flag Specifies the TCP flag fields Udp src port Specifies the range of the TCP source port range dst port Specifies the range of the TCP destination port mask protocod id Specifies that the rule applies to the value of IP protocol ID traffic user define Specifies the L4 part value packet conten offset 0 15 Specifies value for packet bytes 0 15 t Offset 16 31 Specifies value for packet bytes 16 31 Offset 32 47 Specifies value for packet bytes 32 47 offset 48 63 Specifies value for packet bytes 48 63 Offset 64 79 Specifies value for packet bytes 64 79 class Specifies IPv6 class value flowlabel Specifies IPv6 flow label value source ipv6 Specifies IPv6 source IP value destination ip Specifies IPv6 destionation IP value v6 permit Specifies the packets that match the access profile are permitted by the switch deny Specifies the packets that ma
28. end mth 1 12 e time end time hh mm gt offset 30 60 90 120 show time 22 1 config sntp Purpose Configure SNTP Format config sntp primary lt ipaddr gt secondary lt ipaddr gt poll interval int 30 99999 gt Description The config sntp command changes SNTP configurations 174 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Parameter Parameters Description primary The SNTP primary server IP address secondary The SNTP secondary server IP address poll interval The polling interval range is between 30 and 99999 seconds Restrictions You must have administrator privileges Example To configure SNTP DGS 3200 10 4 config sntp primary 10 1 1 1 secondary 10 1 1 2 poll interval 30 Command config sntp primary 10 1 1 1 secondary 10 1 1 2 poll interval 30 Success DGS 3200 10 4f 22 2 show sntp Purpose Display SNTP configuration Format show sntp Description The show sntp command displays the current SNTP time source and configuration Parameter None Restrictions You must have administrator privileges Example To show SNTP DGS 3200 10 4fshow sntp Command show sntp Current Time Scource System Clock SNTP Disabled SNTP Primary Server o0 Lo gol SNTP Secondary Server 10 1 1 2 SNTP Poll Interval 30 sec DGS 3200 10 4f 175 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Ma
29. lt username gt DGS 3200 10 4H In this case the command config account was entered with the parameter username The CLI will then prompt to enter the lt username gt with the message Next possible completions Every command in the CLI has this feature and complex commands have several layers of parameter prompting In addition after typing any given command plus one space users can see all of the next possible sub commands in sequential order by repeatedly pressing the Tab key To re enter the previous command at the command prompt press the up arrow cursor key The previous command will appear at the command prompt D6S 3200 10 4ttconfig account Command config account Next possible completions lt username gt D6S 3200 10 4ttconfig account_ In the above example the command config account was entered without the required parameter lt username gt the CLI returned the Next possible completions lt username gt prompt The up arrow cursor control key was pressed to re enter the previous command config account at the command prompt Now the appropriate username can be entered and the config account command re executed All commands in the CLI function in this way In addition the syntax of the help prompts are the same as presented in this manual angle brackets lt gt indicate a numerical value or character string braces indicate optional parameters or a choice of parameters and brackets in
30. members lt mslist gt all 28 1 enable sim Purpose Used to enable single IP management Format enable sim Description The enable sim command configures the single IP management on the switch as enable Parameters None Restrictions You must have administrator privilege Examples To enable single IP management 222 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4fenable sim Command enable sim Success DGS 3200 10 4 28 2 disable sim Purpose Used to disable single IP management on the switch Format disable sim Description The disable sim command configures the single IP management on the switch as disable Parameters None Restrictions You must have administrator privilege Examples To disable single IP management DGS 3200 10 4 disable Command disable sim Success DGS 3200 10 4 28 3 show sim Purpose Used to display the current information of the specific sorts of devices Format show sim candidates lt candidate_id 1 100 gt members lt member_id 1 32 gt group commander_mac lt macaddr gt neighbor Description The show sim command displays the information of the specific sorts of devices including of self candidate member group and neighbor Parameters Parameters Description 223 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual
31. 2 11 disable clipaging Purpose Used to disable pause the scrolling of the console screen when the show command displays more than one page Format disable clipaging Description The disable clipaging command disables pausing of the screen display when show command output reaches the end of the page The default setting is enabled Parameter None Restrictions You must have administrator privileges Example To disable pausing of the screen display when show command output reaches the end of the page DGS 3200 10 44disable clipaging Command disable clipaging Success DGS 3200 10 4 24 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 2 12 enable telnet Purpose The switch allows you manage the switch via Telnet based management software Use the command to enable Telnet and configure a port number Format enable telnet lt tcp_port_number 1 65535 gt Description The enable telnet command enables Telnet and configures port number Parameter Parameters Description tcp_port_number The TCP port number TCP ports are numbered between 1 and 65535 The well known TCP port for the Telnet protocol is 23 Restrictions You must have administrator privileges Example To enable Telnet and configure a port number DGS 3200 10 4 enable telnet 23 Command enable telnet 23 Success DGS 3200 10 4 2 13 disable telnet Purpose The switch allows you
32. 23LACP CONFIGURATION COMMAND LIST config lacp_ports lt portlist gt mode active passive show lacp_ports lt portlist gt 23 1 config lacp_ports Purpose Configure current mode of LACP of port Format config lacp ports lt portlist gt mode active passive Description The config lacp command config per port LACP mode Parameter Parameters Description portlist Specified a range of ports to be configured mode active passive If no parameter is specified the system will display current LACP and all port status Restrictions You must have administrator privileges Example To config port LACP mode DGS 3200 10 4 config lacp port 1 10 mode active Command config lacp port 1 10 mode active Success DGS 3200 10 4f 180 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 23 2 show lacp_ports Purpose Show current mode of LACP of port s Format show lacp_ports lt portlist gt Description The display per port LACP mode Parameter Parameters Description portlist Specified a range of ports to be configured If no parameter is specified the system will display current LACP and all port status Restrictions None Example To show port LACP mode DGS 3200 10 4fshow lacp_ports Command show lacp_ports Port Activity Active Active Active Active tive Active Active Active Active FO DOAN DO BF WN HE m
33. Command show vlan ports 6 VLAN ID Untagged Tagged Forbidden DGS 3200 10 4f Dynamic 105 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual show gvrp Purpose Used to display the GVRP status for a port list on the switch Format show gvrp lt portlist gt show port_vlan lt portlist gt Description The show gvrp command displays the GVRP status for a port list on the switch The show port_vlan command provides the same display as show gvrp Parameter Parameters Description portlist Specifies a range of ports to be displayed If no parameter is specified the system will display GVRP information for all ports Restrictions None Example To display the 802 1q port setting DGS 3200 10 4 show gvrp Command show gvrp Global GVRP Enabled Port PVID GVRP Ingress Checking Acceptable Frame Type 1 2 Enabled Enabled Only VLAN tagged frames 2 2 Enabled Enabled Only VLAN tagged frames 3 2 Enabled Enabled Only VLAN tagged frames 4 2 Enabled Enabled Only VLAN tagged frames 5 2 Enabled Enabled Only VLAN tagged frames 6 1 Disabled Enabled All Frames Total Entries 6 DGS 3200 10 4 106 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 13 BASIC IP COMMANDS For Layer 2 13 BASIC IP COMMAND LIST For Layer 2 config ipif System ipaddress lt network_address gt vlan lt vlan_name gt state enable disable bootp
34. If there are multi instances on this bridge the parameters of the port on different instances will be shown Parameters Parameters Description ports Shows parameters of the designated port numbers which are distinguished from the parameters of the bridge portlist One of the CLI Value Types restricts the input value and format 233 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual of the ports Restrictions None Examples To show STP ports DGS 3200 10 4 show stp ports Command show stp ports MSTP Port Information Port Index ee a Hello Time 25 ES Port STP enabled External PathCost Auto 200000 Edge Port No No P2P False No Port RestrictedRole False Port RestrictedTCN False Port Forward BPDU Enabled Msti Designated Bridge Internal PathCost Prio Status Role 0 N A 200000 128 Disabled Disabled 2 N A 200000 128 Disabled Disabled DGS 3200 10 4 29 4 show stp mst_config_id Purpose Used to show the MST Configuration Identification as defined in 802 1 s 13 7 Format show stp mst_config_id Description Show the three elements of the MST configuration Identification including Configuration Name Revision Level and the MST configuration Table The default Configuration name is the MAC address of the bridge Parameters Parameters Description mst_config_id If two bridges have the same three elements in mst_config_id that means they
35. macaddr The MAC address that will be added or deleted to the forwarding table portlist Specifies a range of ports to be configured UnitID port number Restrictions You must have administrator privileges Examples To add multicast MAC forwarding DGS 3200 10 4 config multicast_fdb default 01 00 5E 00 00 00 add 1 5 Command config multicast_fdb default 01 00 5E 00 00 00 add 1 5 Success DGS 3200 10 4f 9 4 config fdb aging time Purpose Used to configure the switch s MAC address aging time Format config fdb aging time sec 10 875 gt Description The config fdb aging time command is used to set the age out timer for the switch s dynamic unicast MAC address forwarding tables Parameters Parameters Description aging time Specifies the time in seconds that a dynamically learned MAC address will remain in the switch s MAC address forwarding table without being accessed before being dropped from the database 85 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual The range of the value is 10 to 875 Restrictions You must have administrator privileges Examples To configure MAC address aging time DGS 3200 10 4 config fdb aging time 300 Command config fdb aging time 300 Success DGS 3200 10 4 9 5 config multicast vlan filtering mode Purpose Used to configure the the multicast packet filtering mode for VLANs Format config multicas
36. radiusAuthClientRoundTripTime radiusAuthClientAccessRequests radiusAuthClientAccessRetransmissions radiusAuthClientAccessAccepts radiusAuthClientAccessRejects radiusAuthClientMalformedAccessResponses radiusAuthClientBadAuthenticators radiusAuthClientPendingRequests radiusAuthClientTimeouts 0 X 0 0 0 0 0 radiusAuthClientAccessChallenges 0 0 0 0 0 radiusAuthClientUnknownTypes 0 0 radiusAuthClientPacketsDropped radiusAuthClient gt radiusAuthClientInvalidServerAddresses 0 radiusAuthClientIdentifier D Link radiusAuthServerEntry gt radiusAuthServerIndex 3 radiusAuthServerAddress radiusAuthClientServerPortNumber radiusAuthClientRoundTripTime radiusAuthClientAccessRequests radiusAuthClientAccessRetransmissions radiusAuthClientAccessAccepts radiusAuthClientAccessRejects radiusAuthClientAccessChallenges radiusAuthClientMalformedAccessResponses radiusAuthClientBadAuthenticators radiusAuthClientPendingRequests radiusAuthClientTimeouts radiusAuthClientUnknownTypes 2 0 0 0 90 Ca cuoc vo x x radiusAuthClientPacketsDropped DGS 3200 10 4 16 25 show acct_client Purpose Used to display account client information Format show acct_client Description The show acct_client command displays account client information Parameters None 141 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Restrictions None Examples To display acco
37. retransmit int 1 255 gt config radius delete server index 1 3 gt config radius server index 1 3 ipaddress server ip key lt passwd 32 gt auth port udp port number acct port udp port number timeout int 1 255 gt retransmit int 1 255 show radius show auth statistics ports auth portlist show auth diagnostics ports auth portlist show auth session statistics ports auth portlist show auth client show acct client 122 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 16 1 enable 802 1x Purpose Used to enable the 802 1x function Format enable 802 1x Description The enable 802 1x command enables 802 1x function Parameters None Restrictions You must have administrator privileges Examples To enable the 802 1x function DGS 3200 10 4 enable 802 1x Command enable 802 1x Success DGS 3200 10 4 16 2 disable 802 1x Purpose Used to disable the 802 1x function Format disable 802 1x Description The disable 802 1x command disables the 802 1x function Parameters None Restrictions You must have administrator privileges Examples To disable the 802 1x function DGS 3200 10 4 disable 802 1x 123 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Command disable 802 1x Success DGS 3200 10 4 16 3 create 80
38. 10 4 5 255 255 destination_ip_mask 255 255 255 0 dscp icmp 255 destination_ip_mask 255 255 255 0 dscp icmp Success DGS 3200 10 4f DGS 3200 10 4 create access profile profile id 100 ethernet vlan source mac FF F Command create access profile profile id 100 ethernet vlan source mac FF FF FF DGS 3200 10 4fcreate access profile profile id 101 ip vlan source ip mask 255 25 Command create access profile profile id 101 ip vlan source ip mask 255 255 255 17 2 delete access profile Purpose Used to delete access list rules Format delete access profile profile id value 1 200 all Description The delete access profile command deletes access list rules Parameter Parameters Description profile id Specifies the index of access list profile all Specifies the whole access list profile to delete Restrictions You must have administrator privileges The Switch supports a maximum of 200 access entries The delete access profile command can only delete the profile which is created by the ACL module Example To delete access list rules DGS 3200 10 4 delete access profile profile id 10 Command delete access profile profile id 10 Success DGS 3200 10 4f 148 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 17 3 config access profile Purpose Used to configure access list entry Format config access profile profile id lt value 1 200 gt add access
39. 10 Layer 2 Gigabit Managed Switch CLI Manual 16 15 Config 802 1x guest vlan Purpose Used to configure a guest VLAN setting Format config 802 1x guest vlan ports lt portlist gt all state enable disable Description The config guest vlan command will config a guest VLAN setting Parameter Parameters Description ports A range of ports to enable or disable the guest VLAN function state Specify the guest VLAN port state of the configured ports enable join to the guest VLAN disable remove from guest VLAN Restrictions You must have administrator privileges If the specific port state is changed from the enabled state to the disabled state this port will move to its original VLAN Example DGS 3200 10 4 config 802 1x guest vlan ports 1 8 stat nabl Command config 802 1x guest vlan ports 1 8 stat nabl Warning GVRP of the ports were disable Success DGS 3200 10 4f 16 16 Show 802 1x guest vlan Purpose Used to show the guest VLAN setting Format show 802 1x guest vlan Description The show guest vlan command allows you to show the information of a guest VLAN 133 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Parameter None Restrictions None Example DGS 3200 10 4 show 802 1x guest_vlan Command show 802 1x guest_vlan Guest Vlan Setting Guest vlan guest Enable guest vlan ports 1 10 DGS 3200 10 4f 16 17 config r
40. 16 12 CONFIG 802 EX REA UT 0 E 16 13 CREATE 802 1X GUEST_VLAN 16 14 DELETE 802 1X GUEST_VLAN 16 15 CONFIG SO2 1X GUEST VLAN 5 5 erit te teretes ie etc et svevessela sasecnseavestebasela vaatevevactucu ss sutseas tasbenssseeetaeess 16516 SHOW 802 IX GUEST VLAN iaa 1621 T CONFIG RADIUS ADD EEE EEE Do enn aoc tera UID NOT 16518 GONEIG RADIUS DELETE eee EAR E ERREUR A PERS 16 19 CONFIG RADIUS 16 20 SHOW RADIUS ee 16 21 SHOW AUTH STATISTICS 16 22 SHOW AUTH DIAGNOSTICS eret REOR REEF RR ERR RN ERE E REV V AREE oe 16 23 SHOW AUTH SESSION STATISTICS cscccssssscsssscesessesscscesscosssecscssesccssesecassseccensesccssesscasssecsesacsccnsesecaseaeceesaseccasesecasenecaesaeeneneees 139 16 24 SHOW AUTH CLIENT Recette ete teret doe ie dead 140 16 25 SHOW ACGT CEIENT idad Rena NH HE 141 17 XONUUUO 144 T7 CREATE ACCESS PROFILE eter RET aes bares ete e arae tat ute te t e m p RR ERE ERR RUOE 1 2 DEPETEACCESS PROEIEE n een ete nau ete aman LLLI aate A TIA CONFIG ACCESS PROFILE a ITA SHOW ACCESS PROFILE caos TIS CONFIG TIME RANGE asa 17 6 SHOW TIME RANGE 17 7 CREATE CPU ACCESS PROFILE 17 8 DELETE CPU ACCESS PROFILE 17 9 CONFIG CPU ACCESS PROFILE 17 10 SHOW CPU ACCESS PROFILE 17 11 ENABLE DISABLE CPU INTERFACE FILTERING cccccsssssssscssscssecssesscsccesecssesscseecesesssesscsaccesssus
41. 18 1 1 7 40 9 show mld snooping mrouter ports Purpose Used to display the currently configured router ports on the switch Format show mld snooping mrouter ports vlan vlan name 32 static dynamic Description The show mld snooping mrouter ports command displays the currently configured router ports on the Switch 308 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Parameters Parameters Description vlan_name The name of the VLAN on which the router port resides static Displays router ports that have been statically configured dynamic Displays router ports that have been dynamically configured forbidden Displays forbidden router ports that have been statically configured If no parameter is specified the system will display all currently configured router ports on the switch Restrictions None Example To display the router ports DGS 3200 10 4 show mld_snooping mrouter_ports Command show mld_snooping mrouter_ports VLAN Name default Static mrouter port od 10 Dynamic mrouter port Forbidden mrouter port VLAN Name vlan2 Static mrouter port Dynamic mrouter port Forbidden mrouter port Total Entries 2 DGS 3200 10 4 40 10 show mld_snooping source list Purpose Used to display the current MLD snooping group source_list configuration on the switch Format show mld snooping source list vlan lt vlan_name 32 gt group lt ip
42. 29 0 ENABEESTP 3 56 ERREUR ECON wa tote Ra e e am t REO OI BRA alee ots i tea TO A RR tt 20 TO DISABEBSTP A004 oo n uA d 29211 CONFIG STP VERSI N cra PAI PAEONIA EASAN A IlO A A BAE io d tite Rmi RI RRs 29 13 CONFIG STP 29 14 CONFIG STP PORTS 29 15 CONFIG STP MST_PORTS 30 SSL COMMAND 244 SOHNSHOW SSL CERTIFICATE a cee atte ne 244 30 2 DOWNLOAD SSL CERTIFICATE TE RUNS 245 30 3 ENABLE SSL 30 4 DISABLE SSL 30 5 SHOW SSL sss 30 6 SHOW SSL CACHETIMEOUT ie 248 30 7 CONFIG SSL CACHETIMEOUNT troie c er E re ic eter ede eae ERE bei e PR Eve PL CERE Eo 249 31 CPU INTERFACE FILTERING SOFTWARE ACL COMMAND LIST reete eerte enters nnnnta tonta tonan tnn 250 31 1 CREATE CPU ACCESS PROFILE 31 2 DELETE CPU ACCESS PROFILE 31 3 CONFIG CPU ACCESS PROFILE 31 4 ENABLE CPU INTERFACE FILTERING ccccsscssssssecscseecssccssessccsecsescssesscsscssccssesssuascsssessessssscessessessseascsascssesusesscsaseasesusesseaseaseessees 256 31 5 DISABLE CPU INTERFACE FILTERING c cccssssscosscuscessevesosecesvencovsevsscesvensoscsvseessconsovssoseveesensovteosevonecneevsevvasonsonesveensavesecneveneosesvae 256 31 6 SHOW CPU ACCESS PROFILE ccccescsssssscssscssssssesscssecsssssessccseceesessesscsscessessesscsscsesessessssscsaseesesssessceescasesssessceascessessesssaseesesssees 257 32 SAFEGUARD ENGINE COMMAND L ST
43. 29 2 show stp instance Purpose Used to show each instance parameters settings Format show stp instance lt value 0 15 gt Description This command displays each instance parameters settings Value means the instance ID if there is no input of this value all instances will be shown Parameters 232 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Parameters Description instance MSTP instance ID Instance O represents the default instance CIST The bridge supports a total 16 Instance 0 15 at most Restrictions None Examples To show STP instances DGS 3200 10 4 show stp instance Command show stp instance STP Instance Settings Instance Type t o QIST Instance Status Enabled Instance Priority 32768 bridge priority 32768 sys ID ext lt 0 STP Instance Operational Status Designated Root Bridge 32768 00 22 22 22 22 00 External Root Cost Ea 0 Regional Root Bridge 32768 00 22 22 22 22 00 Internal Root Cost 240 Designated Bridge 32768 00 22 22 22 22 00 Root Port None Max Age 20 Forward Delay t T5 Last Topology Change 2430 Topology Changes Count O0 DGS 3200 10 4 29 3 show stp ports Purpose Used to show port information including parameter settings and operational values Format show stp ports lt portlist gt Description This command displays each port s parameter settings If the portlist is not input all ports will be shown
44. 4f 36 5 show scheduling Purpose Used to display the current traffic scheduling parameters in use on the switch Format show scheduling Description The show scheduling command displays the current traffic scheduling parameters in use on the switch Parameters None Restrictions None Examples To display the traffic scheduling parameters for each COS queue take four hardware priority queues for example DGS 3200 10 44 show scheduling Command show scheduling QOS Output Scheduling 281 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Class ID MAX Packets Class 0 1 Class 1 2 Class 2 3 Class 3 4 Class 4 5 Class 5 6 Class 6 7 DGS 3200 10 4f 36 6 show scheduling mechanism Purpose Used to show the traffic scheduling mechanism Format show scheduling mechanism Description The show scheduling mechanism command display the traffic scheduling mechanism Parameters None Restrictions None Examples To show the scheduling mechanism DGS 3200 10 44 show scheduling mechanism Command show scheduling mechanism Success DGS 3200 10 4f 36 7 config 802 1p user priority Purpose Used to map the 802 1p user priority of an incoming packet to one of the four hardware queues available on the switch Format config 802 1p user priority priority 0 7 class id 0 6 gt 282 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Descri
45. 7 Frame Size Type Frame Counts Frames sec 64 572 27 65 127 151 5 128 255 39 0 256 511 65 0 512 1023 7 0 1024 1518 0 0 Unicast RX 4 0 ulticast RX 162 1 Broadcast RX 568 31 Frame Type Total Total sec RX Bytes 81207 2237 RX Frames 734 32 TX Bytes 8432 0 TX Frames 100 0 DGS 3200 10 8 2 show error ports Purpose Used to display the error statistics for a range of ports Format show errors ports lt portlist gt Description The show error ports command displays the error statistics for a range of ports Parameter Parameters Description portlist Specifies a range of ports to be displayed 72 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Restrictions None Example To display the errors of the port 3 DGS 3200 10 4fshow error ports 3 Command show error ports 3 Port number 3 RX Frames TX Frames CRC Error 0 Excessive Deferral 0 Undersize 0 CRC Error 0 Oversize 0 Late Collision 0 Fragment 0 Excessive Collision 0 Jabber 0 Single Collision 0 Drop Pkts 0 Collision 0 8 3 show utilization Purpose Used to display real time port utilization statistics Format show utilization cpu ports lt portlist gt Description The show utilization command displays real time CPU or port utilization statistics Parameter None Restrictions None Example To display the ports utilization 73 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual
46. Broadcast traffic control mode strict DGS 3200 10 4 Note The safeguard engine current status has two modes exhausted and normal mode 262 Chapter DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 33 DHCP relay commands 33 DHCP relay command list config dhcp_relay hops lt value 1 16 gt time lt sec 0 65535 gt config dhcp relay add delete ipif lt ipif_ name 12 gt lt ipaddr gt config dhcp_relay option_82 state enable disable check enable disable policy replace drop keep enable dhcp _relay disable dhcp _ relay show dhcp _ relay ipif lt ipif_name 12 gt Note 1 The DHCP relay commands include all the commands defined in the BOOTP relay command section chapter 30 If this DHCP relay command set is supported in your system the BOOTP relay commands can be ignored 2 The system supporting DHCP relay will accept BOOTP relay commands in the config file but not allow input from the console screen and these BOOTP relay commands setting from the config file will be saved as DHCP relay commands while the save command is performed 33 1 config dhcp relay Purpose Used to configure the DHCP relay feature of the switch Format config dhcp_relay hops lt value 1 16 gt time lt sec 0 65535 gt Description The config dhcp_relay command configures the DHCP relay feature of the switch Parameters Parameters Description hop
47. Description The show ssh user command displays SSH user information Parameters None Restrictions None Examples To show user information about SSH configuration 196 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4 show ssh user Command show ssh user Current Accounts Username Authenticaiton test publickey Total Entries 1 DGS 3200 10 4 26 7 config ssh server Purpose Used to configure the SSH server Format config ssh server maxsession int 1 8 gt contimeout lt sec 120 600 gt authfail lt int 2 20 gt rekey 10min 30min 60min never Description The config ssh server command configures SSH server general information Parameters Parameters Description int 1 8 Specifies SSH server max session at the same time sec 120 600 Specifies SSH server connection timeout int 2 20 Specifies user max fail attempts 10 30 60 min Specifies time to re generate session key never Do not re generate session key Restrictions You must have administrator privilege Examples To configure an SSH server max session of 3 DGS 3200 10 4 config ssh server maxsession 3 Command config ssh server maxsession 3 Success DGS 3200 10 4 197 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 26 8 enable ssh Purpose Used to enable the SSH server Format enable ssh server Description The enable ssh comman
48. Enabled AES256 Enabled arcfour Enabled blowfish Enabled cast128 Enabled twofish128 Enabled 193 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual twofish192 Enabled twofish256 Enabled Data Integrity Algorithm MD5 Enabled SHAT Enabled Public Key Algorithm RSA Enabled DSA Enabled DGS 3200 10 4 26 3 config ssh authmode Purpose Used to update user authentication for SSH configuration Format config ssh authmode password publickey hostbased enable disable Description The config ssh user command updates the SSH user information Parameters Parameters Description password Specifies user authentication method publickey Specifies user authentication method hostbased Specifies user authentication method enable Enable user authentication method disable Disable user authentication method Restrictions You must have administrator privilege Examples To config the SSH user authentication method DGS 3200 10 4 config ssh authmode publickey enable Command config ssh authmode publickey enable Success DGS 3200 10 4 194 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 26 4 show ssh authmode Purpose Used to show user authentication method Format show ssh authmode Description The show ssh authmode command displays the user authentication method Parameters None Restrictions None Example
49. FF FF FF FF FF Local Broadcast Total Entries 3 DGS 3200 10 4 21 6 clear arptable Purpose Usedt to remove dynamic entries in the ARP table Format clear arptable 172 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Description The clear arptable command removes dynamic entries in the ARP table Static ARP entries are not affected Parameters None Restrictions You must have administrator privileges Examples To remove the dynamic entries in the ARP table DGS 3200 10 4 clear arptable Command clear arptable Success DGS 3200 10 4f 173 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 22 TIME AND SNTP COMMANDS 22 TIME AND SNTP COMMAND LIST config sntp primary lt ipaddr gt secondary lt ipaddr gt poll interval int 30 99999 show sntp enable sntp disable sntp config time date ddmmmyyyy gt time hh mm ss gt config time zone operator hour gmt hour 0 13 min minute 0 59 config dst disable repeating s week start week 1 4 last s wday start day sun sat gt s mth start mth 1 12 s time start time hh mm gt e week end week 1 4 last gt e wday end day sun sat gt e mth end mth 1 12 e time end time hh mm gt offset 30 60 90 120 annual s date start date 1 31 gt s mth start mth 1 12 s time start time hh mm gt e date end date 1 31 e mth
50. ID Version Size B Update Time From User 1 1 00B009 1955238 2000 01 01 00 02 54 10 90 90 1 R 2 0 00 B08 1915569 2000 01 01 18 00 15 10 90 90 1 R means boot up firmware means firmware update through Serial Port RS232 means firmware update through TELNET means firmware update through SNMP means firmware update through WEB SH means firmware update through SSH I H M means firmware update through Single IP Management DGS 3200 10 4f 7 6 show config information Purpose Displays the configuration or configuration information Format show config current config config in nvram config id 1 2 information 67 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Description None Parameter None Restrictions You must have administrator privileges Example To show the configuration information DGS 3200 10 4 show config information Command show config information 1 1 00B009 9569 2000 01 01 00 32 59 Local save R Anonymous 2 1 00B008 10717 2000 01 01 00 15 38 172 18 211 130 R Anonymous means the current active configuration means configuration update through Serial Port RS232 means configuration update through TELNET means configuration update through SNMP means configuration update through SSH R T S W means configuration update through WEB SSH SIM means configuration update through Single IP Management DGS 3200 10 4 ID Ve
51. Managed Switch CLI Manual 2 19 login Purpose Used to log in to the switch Format login Description The login command log in to the switch Parameter None Restrictions None Example DGS 3200 10 4 login Command login UserName 2 20 logout Purpose Used to log out of the switch Format logout Description When you are finished using the facility use the logout command to logout Parameter None Restrictions None Example DGS 3200 10 4 logout Command logout DGS 3200 10 4 Logout Ck Ckckckckckckckckck 30 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter SWITCH PORT COMMANDS 3 SWITCH PORT COMMAND LIST config ports lt portlist gt all medium_type fiber copper speed auto 10 half 10 full 100 half 100 full 1000 full master 1 slave 2 flow control enable disable learning enable disable state enable disable description desc 32 clear description show ports lt portlist gt description err disabled 3 1 config ports Purpose Used to configure the switch port settings Format config ports portlist all medium type fiber copper speed auto 10 half 10 full 100 half 100 full 1000 full master 1 slave 2 flow control enable disable learning enable disable state enable disable description desc 32 clear description Descri
52. SHOW JWAC HOST tetreitice t er ERE aiii 23 2 OA NS SN 44 SYSTEM SEVERITY COMMAND LlST ooconconinaononoononsonsononsoneonorsoneononsonernonsoncononsoneononsonconononeononsoneononsoneononsencosonsencononsencosonoss 337 44 1 CONFIG SYSTEM SEVERITY ccccccccssssscesscssccssecssesecssccssesssesecsesessessssscssscssesssaecassessessseascsesessesssuascescessesscsascaeseesesscsascusessessenaees 337 44 2 SHOW SYSTEM SEVERITY AS A dev ee E eer 338 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 1 Introduction Overview 1 Introduction The Switch can be managed through the Switch s serial port Telnet or the Web based management agent The Command Line Interface CLI can be used to configure and manage the Switch via the serial port or Telnet interfaces This manual provides a reference for all of the commands contained in the CLI Every command will be introduced in terms of purpose format description parameters and examples Configuration and management of the Switch via the Web based management agent are discussed in the User Manual For detailed information on installing hardware please also refer to the User Manual 1 1 Accessing the Switch via the Serial Port The Switch s serial port s default settings are as follows e 115200 baud e no parity e 8data bits e 1stop bit A computer running a terminal emulation program capable of emulating a VT 100 terminal and a serial port configured as above is then c
53. Safeguard engine commands 32 Safeguard engine command list config safeguard_enginef state enable disable utilization rising lt 20 100 gt falling lt 20 100 gt trap_log enable disable mode strict fuzzy show safeguard_engine 32 1 config cpu_protection Purpose Config CPU protection control for the system Format config safeguard engine state enable disable utilization rising lt 20 100 gt falling lt 20 100 gt trap log enable disable mode strict fuzzy Description Use this command to config CPU protection control for the system Parameters Parameters Description state Configure the CPU protection state to enable or disable trap log Configure the state of CPU protection related trap log mechanism to enable or disable If set to enable trap and log will be active while the CPU protection current mode is changed If set to disable current mode change will not trigger trap and log events mode Determines the controlling method of broadcast traffic Here are two modes strict and fuzzy In strict the Switch will stop receiving all ARP not to me packets the protocol address of target in ARP packet is the Switch itself That means no matter what reasons cause the high CPU utilization may not caused by ARP storm the Switch reluctantly processes any ARP not to me packets in exhausted mode In fuzzy mode the Switch will adjust the bandwidth dynamically depend on some reason
54. TRAP RECEIVER DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual I 4DELETE SNMP TRAP RECEIVER de 5 5 CONFIG SNMP COMMUNITY 5 6 CONFIG SNMP TRAP_RECEIVER Da TF SHOW SNMP 5 aci 6 NETWORK MANAGEMENT COMMAND LIST encnconconioaononeonorsoneononsoneononsoneonorsonconononeonononeononsoncononsonconeononseneosonsoncononsoncosonos 55 62 1SCREATE TRUSTED HOST E aes 6 2 DELETE TRUSTED_HOST 6 3 SHOW TRUSTED HOST 6 4 CONFIG SNMP SYSTEM NAME 6 5 CONBEIG SNMP SYSTEM LOCATION ioa ORA EF ER ES HAS ERE EET EVER ERREUR VU RAE YANG 6 6 CONFIG SNMP SYSTEM CONTACT ccccssssscsssscescssesscssesscsesscecensesccssesscasssescensesccnsesscassecsesaesccnsesecasssecsesaescensesecasenecaesaeeeenaeaecaeenecates OST ENABLEE RMON a o te tente tween un te m atn ette itte e tenete fete n DI dtd O SIDISABEE RMON sorteado be iotmienenibeni dinde iei ettenes ioa ndun ot 6 9 ENABLE SNMP TRAPS 6 10 DISABLE SNMP TRAPS 6 11 ENABLE SNMP AUTHENTICATE_TRAPS 6 12 DISABLE SNMP AUTHENTICATE_TRAPS ccscesscssesscssscssccssesccsecseccssesscsscsscessesssuascessessessseaeceesessesscsaecsssessessceascesseuseessaecasecesessens 62 7 UTILITY UUUUP 63 8 1 SHOWPACKET PAR ad da 71 9 2 SHOW ERROR PORTS iso e 72 SHOW UTA ZA TION A a eR RR ts 94 CEEAR COUNTERS Guerin eh UM EE LA tA MA LESS ERU A Re Nono VIE CIERRE 8 6 SHOW LOG 8 7 ENABL
55. address 01 00 5E 00 00 02 Reports AERE Port Member X VLAN Name default ulticast group 224 0 0 9 120 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual MAC address 01 00 5E 00 00 09 Reports ei Port Member 355 Total Entries s 2 DGS 3200 10 4 15 9 show router_ports Purpose Used to display the currently configured router ports on the switch Format show router ports vlan lt vlan_name 32 gt static dynamic forbidden Description The show router_ports command displays the currently configured router ports on the switch Parameters Parameters Description vlan_name The name of the VLAN on which the router port resides static Displays router ports that have been statically configured dynamic Displays router ports that have been dynamically configued forbidden Displays forbidden router ports that have been statically configured If no parameter is specified the system will display all currently configured router ports on the switch Restrictions None Examples To display the router ports DGS 3200 10 4 show router_ports Command show router_ports VLAN Name default Static router port e de Dynamic router port Forbidden router port VLAN Name vlan2 Static router port Dynamic router port Forbidden router port Total Entries 2 DGS 3200 10 4f 121 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 1
56. command changes time zone settings 177 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Parameter Parameters Description operator operator of time zone positive negative hour hour of time zone min minute of time zone Restrictions You must have administrator privileges Example To configure the time zone DGS 3200 10 4 config time_zone operator hour 2 min 30 Command config time_zone operator hour 2 min 30 success DGS 3200 10 4 22 7 config dst Purpose Configure Daylight Saving Time of the device Format config dst disable repeating s week lt start_week 1 4 last gt s day lt start_weekday sun sat gt s mth lt start_mth 1 12 gt s time start time hh mm gt e week end week 1 4 last gt e day end weekday sun sat gt e mth end mth 1 12 gt e time end time hh mm offset 30 60 90 120 annual s date start date 1 31 s mth start mth 1 12 s time start time hh mm gt e date end date 1 31 e mth end mth 1 12 gt e time end time hh mms offset 30 60 90 120 1 Description The config dst command changes Daylight Saving Time settings Parameter Parameters Description disable Disable the DST of the switch repeating Set the DST to repeating mode annual Set the DST to annual mode S week e week Configure the start end week number of DST s day e day Configure the st
57. config account config arp aging time config arpentry config bandwidth control config command history DGS 3200 10 4 20 2 show command history Purpose Used to display command history Format show command_history Description The show command_history command displays command history Parameter None Restrictions None Example To display command history DGS 3200 10 4 show command history Command show command_history show traffic_segmentation 1 6 config traffic_segmentation 1 6 forward_list 7 8 config radius delete 1 config radius add 1 10 48 74 121 key dlink default config 802 1x reauth port_based ports all config 802 1x init port_based ports all config 802 1x auth_mode port_based config 802 1x auth_parameter ports 1 50 direction both 166 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual config 802 1x capability ports 1 5 authenticator show 802 1x auth configuration ports 1 show 802 1x auth state ports 1 5 enable 802 1x show 802 1x auth state ports 1 5 show igmp snooping enable igmp snooping DGS 3200 10 4f 20 3 Dir Purpose Used to display all commands Note This command had been used by file system commands to display files in system User can use to display all commands Format dir Description The dir command displays all commands Parameter None Restrictions None Example To display all commands DGS 320
58. config greeting message Purpose Used to configure the greeting message or banner Format config greeting_message default Description Users may enter this command to modify the login banner Parameter Parameters Description default Adding this parameter to the config greeting_message command will return the greeting message banner to its original factory default entry Restrictions 1 When users issue the reset command the modified banner will remain in tact Yet issuing the reset system will return the banner to its original default value 2 The maximum character capacity for the banner is 6 80 6 Lines and 80 characters per line 3 In the following example Ctrl W will save the modified banner only to the DRAM Users must enter the save command to save this entry to the FLASH memory 4 You must have administrator privileges Example To edit the banner DGS 3200 10 128 config greeting message Command config greeting message 269 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Banner Editor This is a DGS 3200 10 switch lt Function Key gt lt Control Key gt Ctrl4C Quit without save left right Ctrl W Save and quit up down Move cursor Ctrl D Delete line Ctrl X Erase all setting Ctrl L Reload original setting Success DGS 3200 10 128 Response messages 1 Success When users input a valid greeting message and the
59. create fdb default 00 00 00 00 01 02 port 5 Command create fdb default 00 00 00 00 01 02 port 5 Success DGS 3200 10 4 9 2 create multicast fdb Purpose Used to create a static entry to the multicast MAC address forwarding table database Format create multicast fdb vlan name 32 lt macaddr gt Description The create multicast fdb command will make an entry into the switch s multicast MAC address forwarding database Parameters Parameters Description vlan name The name of the VLAN on which the MAC address resides The maximum length is 32 macaddr The multicast MAC address to be added to the static forwarding table Restrictions You must have administrator privileges Examples To create multicast MAC forwarding DGS 3200 10 44 create multicast fdb default 01 00 5E 00 00 00 Command create multicast fdb default 01 00 5E 00 00 00 Success DGS 3200 10 4f DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 9 3 config multicast_fdb Purpose Used to configure the switch s multicast MAC address forwarding database Format config multicast_fdb lt vlan_name 32 gt lt macaddr gt add delete lt portlist gt Description The config multicast_fdb command configures the multicast MAC address forwarding table Parameters Parameters Description vlan_name The name of the VLAN on which the MAC address resides The maximum name length is 32
60. delete the router ports portlist Specifies a range of ports to be configured Restrictions You must have administrator privileges Example To set up static router ports 304 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4 config mld_snooping mrouter_ports_forbidden default add 1 10 Command config mld_snooping mrouter_ports_forbidden default add 1 10 Success DGS 3200 10 4 40 5 enable mld_snooping Purpose Used to enable MLD snooping on the switch Format enable mld snooping Description The enable mld snooping command allows you to enable MLD snooping on the switch Parameters None Restrictions You must have administrator privileges Example To enable MLD snooping on the switch DGS 3200 10 4 enable mld snooping Command enable mld snooping Success DGS 3200 10 4 40 6 disable mld_snooping Purpose Used to disable MLD snooping on the switch Format disable mld snooping Description The disable mld snooping command disables MLD snooping on the switch MLD snooping can be disabled only if IPv6 multicast routing is not being used Disabling MLD snooping allows all MLD and IPvG multicast traffic to flood within a given IPv6 interface Parameters None 305 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Restrictions You must have administrator privileges Example To disable MLD snooping on the switch DGS 3200 10 4 d
61. dhcp show ipif 13 1 config ipif System Purpose Used to configure the System IP interface Format config ipif System vlan vlan name ipaddress lt network_address gt state enable disable bootp dhcp Description The config ipif System command configures System IP interface Parameters Parameters Description vlan_name The name of the VLAN corresponding to the System IP interface network_address The IP address and netmask of th IP interface to be created You can specify the address and mask information using the traditional format for example 10 1 2 3 255 0 0 0 or in CIDR format 10 1 2 3 16 state Allows you to enable or disable the IP interface bootp Allows the selection of the BOOTP protocol for the assignment of an IP address to the switch s System IP interface dhcp Allows the selection of the DHCP protocol for the assignment of an IP address to the switch s System Restrictions You must have administrator privileges 107 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Examples To configure the System IP interface DGS 3200 10 4 config ipif System vlan vl Command config ipif System vlan vl Success DGS 3200 10 4f 13 2 show ipif Purpose Used to display IP interface settings Format show ipif Description The show ipif command displays IP interface settings Parameters None Restrictions None Examples To display
62. enable IGMP snooping on the switch DGS 3200 10 4 enable igmp_snooping Command enable igmp_snooping success DGS 3200 10 4 15 6 disable igmp_snooping Purpose Used to disable IGMP snooping on the switch Format disable igmp_snooping Description The disable igmp_snooping command disables IGMP snooping on the switch IGMP snooping can be disabled only if IP multicast routing is not being used Disabling IGMP snooping allows all IGMP and IP multicast traffic to flood within a given IP interface Parameters None Restrictions You must have administrator privileges Examples To disable IGMP snooping on the switch 118 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4 disable igmp_snooping Command disable igmp_snooping Success DGS 3200 10 4 15 7 show igmp_snooping Purpose Used to show the current status of IGMP snooping on the switch Format show igmp_snooping vlan lt vlan_name 32 gt Description The show igmp_snooping command will display the current IGMP snooping configuration on the switch Parameters Parameters Description vlan_name The name of the VLAN for which you want to view the IGMP snooping configuration If no parameter is specified the system will display all current IGMP snooping configuration Restrictions None Examples To show IGMP snooping DGS 3200 10 4 show igmp_snooping Command show igmp_
63. enable stp Purpose Used to enable STP globally Format enable sip Description Although it is possible to modify to allow a user to enable STP per instance CIST should be enabled first before enabling other instances The current chip design dictates that when a user enables the CIST all MSTIS will be enabled automatically if FORCE VERSION is set to MSTP 3 and there is at least one VLAN mapped to this instance Parameters None Restrictions You must have administrator privilege Examples To enable STP DGS 3200 10 4 enable stp Command enable stp Success DGS 3200 10 4 29 10 disable stp Purpose Used to disable STP globally Format disable stp Description To disable STP functionality in every existing instance 238 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Parameters None Restrictions You must have administrator privilege Examples To disable STP DGS 3200 10 4 disable stp Command disable stp Success DGS 3200 10 4 29 11 config stp version Purpose Used to enable STP globally Format config stp version mstp rstp stp Description If version is configured as STP or RSTP all currently running MSTIs should be disabled If the version is configured as MSTP the current chip design is enabled for all available MSTIs assuming that CIST is enabled Parameters Parameters Description version To decide to run under w
64. gt Priority 1 gt Class 3 Priorit gt gt Class 0 gt lt Class 1 gt gt lt Class 2 gt 2 Priority 3 4 5 lt Class 2 gt 6 7 Priorit gt lt Class 3 gt gt lt Class 3 gt Priorit y y y Priority y y Priorit DGS 3200 10 4f 36 9 config 802 1p default priority Purpose Used to configure the 802 1p default priority settings on the switch If an untagged packet is received by the switch the priority configured with this command will be written to the packet s priority field Format config 802 1p default priority lt portlist gt all priority 0 7 Description The config 802 1p default priority command allows you to specify default priority handling of untagged packets received by the switch The priority value entered with this command will be used to determine which of the four hardware priority queues the packet is forwarded to Parameters Parameters Description portlist This specifies a range of ports for which the default priority is to be configured That is a range of ports for which all untagged packets received will be assigned the priority specified below The beginning and end of the port list range are separated by a dash all Specifies that the command applies to all ports on the switch priority The priority value 0 to 7 you want to assign to untagged packets received by the switch or a range of ports on the switch
65. have administrator privileges Examples DGS 3200 10 4 create syslog host 1 severiry all facility local0 Command create syslog host 1 severiry all facility local0 Success DGS 3200 10 4f 8 12 delete syslog host Purpose Used to delete the syslog host s Format delete syslog host index 1 4 all Description The delete syslog host command deletes the syslog host s Parameters Parameters Description host index 1 4 all Host index or all hosts Restrictions You must have administrator privileges Examples DGS 3200 10 44delete syslog host 4 Command delete syslog host 4 Success DGS 3200 10 4 8 13 show syslog host Purpose Used to display syslog host configurations Format show syslog host lt index 1 4 gt 80 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Description The show syslog host command displays the syslog host configurations Parameters Parameters Description index The host index If no parameter is specified all hosts will be displayed Restrictions None Examples DGS 3200 10 4 show syslog host Command show syslog host Syslog Global State Disabled Host Id Host IP Address Severity Facility UDP port Status 1 VO Led e2 All Local0 514 Disabled 2 10 40 24 3 All Local0 514 Disabled 3 10 21 13 1 All Local0 514 Disabled Total Entries 3 DGS 3200 10 4f 8 14 co
66. in Group 3 mix_1 User defined Group 4 local Keyword DGS 3200 10 4 27 8 create authen_enable method list_name Purpose Used to create a user defined method list of authentication methods for promoting a user s privilege to Admin level Format create authen_enable method_list_name lt string 15 gt Description Create a user defined method list of authentication methods for promoting a user s privilege to Admin level The maximum supported number of the enable method lists is eight Parameters Parameters Description string 15 The user defined method list name Restrictions You must have administrator privilege Examples To create a user defined method list for promoting a user s privilege to Admin level DGS 3200 10 4 create authen_enable method list name enable list 1 Command create authen enable method list name enable list 1 Success DGS 3200 10 4 206 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 27 9 config authen_enable Purpose Used to configure a user defined or default method list of authentication methods for promoting a user s privilege to Admin level Format config authen_enable default method list name string 15 gt method tacacs xtacacs tacacs radius server group string 15 gt local enable none Description Configure a user defined or default method list of authentication methods for promoting a user s privilege to Admin lev
67. in seconds that a ARP entry can remain in the switch s ARP table without being accessed before it is dropped from the table Parameters Parameters Description value The ARP age out time in seconds The default is 20 The range is 0 to 65535 Restrictions You must have administrator privileges Examples To configure the ARP aging time DGS 3200 10 4fconfig arp aging time 30 Command config arp aging time 30 Success DGS 3200 10 4f 171 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 21 5 show arpentry Purpose Used to display the ARP table Format show arpentry ipif lt ipif_name 12 gt ipaddress lt ipaddr gt static Description The show arpentry command displays the Address Resolution Protocol ARP table You can filter the display by IP address Interface name or static entries Parameters Parameters Description ipif_name The name of the IP interface the end node or station for which the ARP table entry was made resides on ipaddr The IP address of the end node or station static Displays the static entries to the ARP table Restrictions None Examples To display the ARP table DGS 3200 10 4 show arpentry Command show arpentry ARP Aging Time 20 Interface IP Address MAC Address Type System 1 00 00 FF FF FF FF FF FF Local Broadcast System 10 90 90 90 00 01 02 03 04 00 Local System 1 0 552 55 5 72 5 55 2 2 5 5 FF
68. keep retain the existing option 82 field in messages The default setting is replace Note The reforwarding policy is active only when the check option is disabled Restrictions You must have administrator privileges Examples To configure the DHCP relay option 82 Success Success Success DGS 3200 10 4 DGS 3200 10 4 config dhcp_relay option_82 state enable Command config dhcp_relay option_82 state enable DGS 3200 10 4 config dhcp relay option_82 check disable Command config dhcp_relay option_82 check disable DGS 3200 10 4 config dhcp_relay option_82 policy replace Command config dhcp_relay option_82 policy replace 266 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 33 5 enable dhcp relay Purpose Used to enable the DHCP relay function on the switch Format enable dhcp relay Description The enable dhcp relay command enables the DHCP relay function on the switch Parameters None Restrictions You must have administrator privileges Examples To enable the DHCP relay function DGS 3200 10 4fenable dhcp relay Command enable dhcp relay Success DGS 3200 10 4f 33 6 disable dhcp relay Purpose Used to disable DHCP relay function on the switch Format disable dhcp relay Description The disable dhcp relay command disables the DHCP relay function on the switch Parameters None Restrictions You must have administrator privil
69. list table DGS 3200 10 44 show cpu access profile Command show cpu access profile CPU Interface Filtering state Enabled CPU Interface Filtering Access Profile Table Access Profile ID 100 Type Ethernet Frame Filter Ports AN Time_range range_name defaultppppppppp 00 00 00 00 00 01 00 00 00 00 00 02 PPPPPPPPPPPVLANI ID Mode 1 Permit default 00 00 00 00 00 00 00 00 00 00 00 00 0 2 Deny default 00 00 00 00 00 00 00 00 00 00 00 00 5 Access Profile ID 101 Type IP Frame Filter Masks VLAN Source MAC Destination MAC 802 1p Ethernet 257 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Ports Ze AER Time range range name 1 Masks VLAN ID Mode 1 Permit default Access Profile ID 102 Type IP Frame Filter Ports 2 4 8 Masks VLAN D Mode Permit default Access Profile ID 103 Type IP Frame Filter Ports 2 4 8 Time_range range_name_2 Masks VLAN D Mode Permit default Access Profile ID 104 Type IP Frame Filter Ports Ly 8 Time_range range_name_3 Masks VLAN D Mode Permit default Access Profile ID 105 Type IP Frame Filter Ports 2 4 8 Time_range range_name Masks VLAN ID Mode 1 Permit Source IP MASK IGMP Source IP_Addr TCP Source IP Addr 111 111 111 111 UDP Source IP Addr 111 111 111 111 User defined Source IP Addr Dest IP MASK Dest IP_Addr_ IP Addr 111 111 111 111 Dest IP Addr IIL TITTEL STILL Dest IP
70. login command history error gurp jumbo frame log mac based access control mac notification multicast fdb pvid scheduling serial port snmp stp time wac mirror packet radius session sntp switch time_range trusted_host In the above example all of the possible next parameters for the show command are displayed At the next command prompt the up arrow was used to re enter the show command followed by the account parameter The CLI then displays the user accounts configu red on the Switch 14 angle brackets lt gt DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 1 3 Command Syntax Symbols Enclose a variable or value You must specify the variable or value For example in the syntax create ipif lt ipif_name gt vlan vlan name ipaddress lt network_address gt you must supply a IP interface name for lt ipif_name gt a vlan name for vlan name and an address for network address when entering the command Do not type the angle brackets Square brackets Enclose a required value or list of required arguments One or more values or arguments must be specified For example in the syntax create account admin user you must specify either the admin level or user level account when entering the command Do not type the square brackets Vertical bar Braces Separates mutually exclusive items in a list one of which must be entered For example in the s
71. lt portlist gt clear counters ports lt portlist gt clear log show log index lt value_list X Y gt enable syslog disable syslog show syslog config syslog host all lt index 1 4 gt severity informational warning all facility local0 local1 local2 local3 local4 local5 local6 local7 udp port lt udp_port_numers ipaddress lt ipaddr gt state enable disable create syslog host index 1 4 gt ipaddress lt ipaddr gt severity informational warning all facility local0 local1 local2 local3 local4 local5 local6 local7 udp port udp port numer gt state enable disable delete syslog host index 1 4 all show syslog host index 1 4 config log save timing time interval min 1 65535 gt on demand log trigger show log save timing 8 1 show packet ports Purpose Used to display statistics about the packets sent and received by the switch Format show packet ports portlist Description The show packet ports command displays statistics about the packets sent and received by the switch DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Parameter Parameters Description portlist Specifies a range of ports to be displayed Restrictions None Example To display the packets analysis for port 7 DGS 3200 10 4 show packet ports 7 Command show packet ports 7 Port number
72. lt vlan_name gt lt macaddr gt config multicast fdb lt vlan_name gt macaddr add delete lt portlist gt config fdb aging time sec 10 875 config multicast vlan filtering mode vlanid lt vlanid_list gt vlan vlan name all forward unregistered groups filter unregistered groups delete fdb vlan name lt macaddr gt clear fdb vlan vlan name 32 port port all show multicast fdb vlan vlan name mac address lt macaddr gt show fdb port port vlan lt vlan_name gt mac address lt macaddr gt static aging time show multicast vlan filtering mode 9 1 create fdb Purpose Used to create a static entry to the unicast MAC address forwarding table database Format create fdb vlan name 32 gt macaddr port lt port gt Description The create fdb command will make an entry into the switch s unicast MAC address forwarding database Parameters Parameters Description vlan name Specifies a VLAN name associated with a MAC address macaddr The MAC address to be added to the static forwarding table port The port number corresponding to the MAC destination address The switch will always forward traffic to the specified device through this port DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Restrictions You must have administrator privileges Examples To create an unicast MAC forwarding DGS 3200 10 4
73. of access list profile all Specifies the whole access list profile to delete Restrictions You must have administrator privileges The Switch supports a maximum of 500 access entries The delete cpu access profile command can only delete the profile which is created by the CPU ACL module Example To delete access list rules DGS 3200 10 4fdelete cpu access profile profile id 3 Command delete cpu access profile profile id 3 155 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Success DGS 3200 10 4f 17 9 config cpu access profile Purpose Used to configure a CPU access list entry Format config cpu access profile profile id value 1 5 gt add access id value 1 100 gt ethernet vlan vlan name 32 source mac macaddr 000000000000 ffffffffffff destination mac macaddr 000000000000 ffffffffffff 802 1p value 0 7 ethernet type hex 0x0 Oxffff gt 1 ip vlan vlan name 32 gt source ip lt ipaddr gt destination ip lt ipaddr gt dscp value 0 63 gt Icmp type value 0 255 code value 0 255 gt igmp type value 0 255 tcp src_port lt value 0 65535 gt dst port lt value 0 65535 gt urg ack psh rst syn fin udp src_port lt value 0 65535 gt dst_port lt value 0 65535 gt protocol id value 0 255 gt user_define hex 0x0 Oxffffffff 111 packet_content offset_0 15 hex 0x0 Oxffffffff gt l
74. recipient of an SNMP trap operation Format delete snmp host lt ipaddr gt Description The delete snmp host command deletes a recipient of an SNMP trap operation Parameter Parameters Description ipaddr The IP address of the recipient for which the traps are targeted Restrictions You must have administrator privileges Example Success DGS 3200 10 4f DGS 3200 10 4 delete snmp host 10 48 74 100 Command delete snmp host 10 48 74 100 46 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 4 17 show snmp host Purpose Used to display the recipient for which the traps are targeted Format show snmp host lt ipaddr gt Description The show snmp host command displays the recipient for which the traps are targeted Parameter Parameters Description ipaddr The IP address of the recipient for which the traps are targeted If no parameter is specified all SNMP hosts will be diplayed Restrictions You must have administrator privileges Example DGS 3200 10 4 show snmp host Command show snmp host SNMP Host Table Host IP Address SNMP Version Community Name SNMPv3 User Name 10 48 76 100 V3 noauthnopriv initial I0 51477 1 VZG public Total Entries 2 DGS 3200 10 4f 4 18 show snmp traps Purpose Used to display the status of snmp trap and authentication traps Format show snmp traps Description The s
75. setting is accepted by the device 2 Quit without saving The current greeting message will not be changed The user may exit the banner editor by pressing the Ctrl c function key 3 Fail Settings failed When settings entered are not accepted by the device 34 2 config command prompt Purpose Used to configure the command prompt Format config command prompt lt string 16 gt username default Description Users may enter this command to modify the command prompt The current command prompt consists of four parts product name user level f e g DGS 3200 10 44 This command is used to modify the first part 1 product name with a string consisting of a maximum of 16 characters or to be replaced with the users login user name Parameter Parameters Description string Enter the new command prompt string of no more than 16 characters 270 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual username Enter this command to set the login username as the command prompt default Enter this command to return the command prompt to its original factory default value Restrictions 1 When users issue the reset command the current command prompt will remain in tact Yet issuing the reset system will return the command prompt to its original factory default value 2 You must have administrator privileges Example To edit t
76. that supports Telnet Parameter Parameters Description ipaddr The IP address of the host to login tcp port The Telnet port Restrictions None Example To Telnet to a host 287 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4ftelnet 10 1 1 1 Command telnet 10 1 1 1 Connecting to 10 1 1 1 Success DGS 3200 10 4 Welcome to Microsoft Telnet Service login administrator password k C Documents and Settings Administrator gt exit Connection to host lost DGS 3200 10 4f Note Use Ctrl y can disconnect from the host 288 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 30 38 DHCP AUTO CONFIG COMMAND LIST show autoconfig enable autoconfig disable autoconfig 38 1 show autoconfig Purpose Used to show DHCP auto configuration status Format show autoconfig Description Show DHCP auto configuration status Restrictions None Example To display the DHCP auto configuration status DGES 3200 10 4 show autoconfig Command show autoconfig Autoconfig State Disabled DGS 3200 10 4 38 2 enable autoconfig Purpose Used to enable DHCP auto configuration Format enable autoconfig 289 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Description Enables DHCP auto configuration Restrictions Administrator Level Example To enable D
77. the routed path between the switch and a destination endstation Format traceroute lt ipaddr gt ttl lt value 1 60 gt port lt value 30000 64900 gt timeout sec 1 65535 gt probe lt value 1 9 gt Description The traceroute command allows you to trace a route between the switch and a give host on the network Parameter Parameters Description ipaddr IP address of the destination endstation ttl lt value1 60 gt The time to live value of the trace route request This is the maximum number of routers The traceroute command will cross while seeking the network path between two devices port lt value The port number Must be above 1024 The value range is from 30000 30000 64900 gt to 64900 probe lt value 1 9 gt The number of probes The range is from 1 to 9 Restrictions You must have administrator privileges Example Trace the routed path between the switch and 10 48 74 121 DGS 3200 10 4ftraceroute 10 48 74 121 probe 3 69 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Command traceroute 10 48 74 121 probe 3 1 lt 10 ms 10 48 74 121 1 lt 10 ms 10 48 74 121 1 lt 10 ms 10 48 74 121 DGS 3200 10 4 70 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter NETWORK MONITORING COMMANDS 8 NETWORK MONITORING COMMAND LIST show packet ports lt portlist gt show error ports lt portlist gt show utilization cpu ports
78. tiie eta Be ie beta EST PO RE Ens 4 SNMPV3 COMMAND LIST Z T CREATE SNMP USER 5 eret eee tenen eoe bene na ott rs 4 2 DELETE SNMP USER 4 3 SHOW SNMP USER 42 4 SHOW SNMP GROUPS i eee te ERATES ERE TR RARO IEE OE SER ERE ih 4 3 CREATE SNMP VIE Ws zaccsetttesso te tutt aii ed eite buste 4G DELETE SNMP VIEW eter e e RR E SEO EO tee tie a E Ue te e te E ta te te RI e io RA RH A QR EG 4 7 SHOW SNMP VIEW cscssccossscsscnccsscosenecossscsseneesscnsesecesenesneseessensesecosenecnesaesueneesscassnecessacsuenecsucnsssecesencsneneesuensssecaseneceesacsueneesscateneseesees 4 8 CREATE SNMP COMMUNITY 4 9 DELETE SNMP COMMUNITY 4 10 SHOW SNMP COMMUNITY ANNAN DIAN 4 1 2 SHOW SNMP ENGINELD 35 cr te RE TERR RO EE SENE EE REOR C e EE De e terea 2 13 CREATE SNMP GROUP is tre rH DR ica EIER UE 4 I DEERTESNMP GROUPD etre tare ee s TO eR OU te t ve te ew ee obe n te RR RP eed 4 15 CREATE SNMP HOST 4 16 DELETE SNMP HOST 4 17 SHOW SNMP HOST 4 18 SHOW SNMP TRAPS A eei tavut a aa te eva e te te teri un ete perd RE ed 5 SNMPV1 V2 COMMAND LIST erret eren restant tonat tonsan ta tontan ta tonta ea sonans sonans sonans sonans so nan ea sonas ea tonta nea sonan ea sonans 49 5 1 CREATE SNMP COMMUNITY ccccsssssssssccssssssssscssccssescssecsescssesssssscssscssessssscessessessseascsssessessceascsesessesscsaecessessessceaecsssesseesseascnseesseesees 5 2 DELETE SNMP COMMUNITY 5 3 CREATE SNMP
79. will not be met Parameters Parameters Description range_name Specifies the name of the time range settings start_time Specifies the starting time in a day 24 hr time For example 19 00 means 7PM 19 is also acceptable start_time must be smaller than end_time end_time Specifies the ending time in a day 24 hr time weekdays Specify the list of days contained in the time range Use a dash to define a period of days Use a comma to separate specific days For example mon fri Monday to Friday sun mon fri Sunday Monday and Friday delete Deletes a time range profile When a time range profile has been associated with ACL entries the deletion of this time range profile will fail Restrictions You must have administrator privileges Examples DGS 3200 10 4 config time_range testdaily hours start_time 12 0 0 end_time 13 0 0 weekdays mon fri Command config time range testdaily hours start time 12 0 0 end time 13 0 0 wee kdays mon fri Success DGS 3200 10 4 152 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 17 6 show time_range Purpose Used to display current access list table Format show time_range lt range_name 32 gt Description The show time_range command displays current time range setting Parameter None Restrictions None Example To display current time range setting DGS 3200 10 4 show time range Command show time range Time Ra
80. 0 10 4 dir Command dir wi add port_security_entry vlan_name clear clear arptable clear counters clear fdb clear log clear port_security_entry port config 802 1p default_priority config 802 1p user priority config 802 1x auth mode config 802 1x auth parameter ports config 802 1x capability ports config 802 1x init config 802 1x reauth config access profile profile id 167 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual config account config arp_aging time config arpentry config bandwidth_control config command_history mote 20 4 config command_history Purpose The switch remembers the last 40 maxmum commands you entered The command lets you configure the number of commands that the switch can recall Format config command_history lt value 1 40 gt Description The config command_history command lets you cofigure the number of commands that the switch can recall Parameter Parameters Description value The number of commands 1 40 that the switch can recall Restrictions You must have administrator privileges Example To configure the number of commands history DGS 3200 10 4 config command_history 20 Command config command_history 20 Success DGS 3200 10 4 168 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 21 ARP COMMANDS create arpentry lt ipaddr gt lt macaddr gt delete arpe
81. 0 4 create authen login method list name login list 1 Command create authen login method list name login list 1 Success DGS 3200 10 4 27 5 config authen_login Purpose Used to configure a user defined or default method list of authentication methods for user login Format config authen_login default method list name string 15 gt method tacacs xtacacs tacacs radius server group string 15 local none Description Configure a user defined or default method list of authentication methods for user login The sequence of methods will effect the authentication result For example if the sequence is TACACS first then TACACS and local when a user trys to login the authentication request will be sent to the first server host in the TACACS built in server group If the first server host in the TACACS group is missing the authentication request will be sent to the second server host in the TACACS group and so on If all server hosts in the TACACS group are missing the authentication request will be sent to the first server host in the TACACS 203 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual group If all server hosts in a TACACS group are missing the local account database in the device is used to authenticate this user When a user logs in to the device successfully while using methods like TACACS XTACACS TACACS RADIUS built in or user defined server groups or none the user privil
82. 0 ffffffffffff2 802 1p ethernet typeY 1 ip f vlan source ip mask lt netmask gt destination ip mask lt netmask gt dscp icmp type code igmp type tcp src port mask hex 0x0 Oxffff gt dst port mask hex 0x0 Oxffff gt flag mask all urg ack psh rst syn finX 1 udp src port mask hex 0x0 Oxffff dst port mask hex 0x0 Oxffff gt protocol id mask hex 0x0 0xff gt user define mask hex 0x0 Oxffffffff gt 1 packet content mask foffset 0 15 hex 0x0 Oxffffffff gt lt hex OxO Oxffffffff2 hex OxO Oxffffffff2 lt hex OxO Oxffffffff Offset 16 31 hex 0x0 Oxffffffff gt hex 0x0 Oxffffffff gt hex OxO Oxffffffff2 hex OxO0 Oxffffffff offset 32 47 hex 0x0 Oxffffffff gt hex 0x0 Oxffffffff gt hex OxO Oxffffffff2 hex OxO0 Oxffffffff offset 48 63 hex 0x0 Oxffffffff gt hex OxO Oxffffffff2 hex OxO Oxffffffff2 hex OxO0 Oxffffffff offset 64 79 hex 0x0 Oxffffffff gt hex 0x0 Oxffffffff gt hex OxO Oxffffffff2 hex OxO Oxffffffff 1 ipv6 class flowlabel source ipv6 mask lt ipv6mask gt destination ipv6 mask 145 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual lt ipv6mask gt 1 profile_id lt value 1 5 gt delete cpu access profile profile id lt value 1 5 gt all config cpu access_profile profile_id lt value 1 5 gt add access id lt value 1 100 gt ethernet vlan vlan name 32 source mac macaddr 000
83. 000000000 ffffffffffff destination mac macaddr 000000000000 ffffffffffff 802 1p value 0 7 ethernet type hex 0x0 Oxffff 1 ip vlan lt vlan_name 32 source ip lt ipaddr gt destination ip lt ipaddr gt dscp value 0 63 icmp type value 0 255 gt code value 0 255 igmp type value 0 255 tcp src port value 0 65535 gt dst port value 0 65535 gt urg ack psh rst syn fin udp src port value 0 65535 gt dst port value 0 65535 gt protocol id lt value 0 255 user define hex 0x0 Oxffffffff gt 131 packet_content offset_0 15 hex 0x0 0xffffffff gt lt hex OxO Oxffffffff2 lt hex Ox0 Oxtfffffff gt lt hex OxO0 Oxffffffff Offset 16 31 hex 0x0 Oxffffffff gt hex 0x0 Oxffffffff gt lt hex OxO Oxffffffff2 hex OxO0 Oxffffffff Offset 32 47 hex 0x0 Oxffffffff gt hex 0x0 Oxffffffff gt lt hex OxO Oxffffffff2 hex OxO0 Oxffffffff Offset 48 63 hex 0x0 Oxffffffff gt hex 0x0 Oxffffffff gt lt hex OxO Oxffffffff2 hex OxO0 Oxffffffff Offset 64 79 hex 0x0 Oxffffffff gt hex 0x0 Oxffffffff gt lt hex OxO Oxffffffff2 hex OxO0 Oxffffffff K1 ipv6 class lt value 0 255 gt flowlabel lt hex 0x0 Oxfffff gt source_ipv6 lt ipv6addr gt destination_ipv6 lt ipv6addr gt 1 port lt portlist gt all permit deny time range range name 32 gt delete access_id lt value 1 100 gt show cpu access profile
84. 1 byte 2 bytes 1byte 1 byte 1 Suboption type 2 Length 3 Circuit ID type 4 Length 5 VLAN The incoming VLAN ID of DHCP client packet 6 Module For a standalone switch Module is always 0 265 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 7 Port The incoming port number of DHCP client packet port number starts from 1 Remote ID suboption format 1 2 3 4 5 2 8 0 6 MAC address 1 byte 1 byte Parameters 1 byte 1 byte 6 bytes 1 Suboption type 2 Length 3 Remote ID type 4 Length 5 MAC address The switch s system MAC address Parameters Description state Enable or disable the switch to insert and remove DHCP relay agent information 82 field in messages between DHCP server and client The default setting is disable check Enable or disable the switch to check the validity of DHCP relay agent information 82 field in messages between DHCP server and client The invalid messages are those packets that contain the option 82 field from DHCP client and those packets that contain the wrong format of option 82 field from DHCP server If check is set to enable the switch will drop all invalid messages received from DHCP server or client The default setting is disable policy Configure the reforwarding policy as following replace replace the exiting option 82 field in messages drop discard messages with existing option 82 field
85. 2 hex OxO Oxffffffff2 hex OxO Oxffffffff 1 ipv6 class flowlabel source ipv6 mask lt ipv6mask gt destination ipv6 mask lt ipv6mask gt 1 Description The create cpu access profile command creates CPU access list rules Parameter Parameters Description vlan Specifies a VLAN mask Source mac Specifies the source MAC mask destination mac Specifies the destination MAC mask 802 1p Specifies 802 1p priority tag mask ethernet_type Specifies the Ethernet type mask vlan Specifies a VLAN mask source ip mask Specifies an IP source submask destination ip mask Specifies an IP destination submask dscp Specifies the DSCP mask icmp Specifies that the rule applies to ICMP traffic type Specifies the ICMP packet type code Specifies the ICMP code igmp Specifies that the rule applies to IGMP traffic type Specifies the IGMP packet type Tcp Specifies that the rule applies to TCP traffic src port mask Specifies the TCP source port mask dst port mask Specifies the TCP destination port mask flag_mask Specifies the TCP flag field mask udp Specifies that the rule applies to UDP traffic src_port mask Specifies the TCP source port mask dst port mask Specifies the TCP destination port mask protocod id mask Specifies that the rule applies to the IP protocol ID traffic user define mask Specifies the L4 part mask packet content mask S
86. 2 1x user Purpose Used to create the 802 1x user Format create 802 1x user lt username 15 gt Description The create 802 1x user command creates a 802 1x user Parameters Parameters Description username Specifies adding a user name Restrictions You must have administrator privilege Examples To create a user named ctsnow DGS 3200 10 4 create 802 1x user ctsnow Command create 802 1x user ctsnow Enter a case sensitive new password Enter the new password again for confirmation Success DGS 3200 10 4f 16 4 delete 802 1x user Purpose Used to delete a 802 1x user Format delete 802 1x user username 15 gt Description The delete 802 1x user command delete specified user 124 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Parameters Parameters Description username Specifies deleting a user name Restrictions You must have administrator privilege Examples To delete user named Tiberius DGS 3200 10 4 delete 802 1x user Tiberius Command delete 802 1x user Tiberius Are you sure to delete the user y n Success DGS 3200 10 4 16 5 show 802 1x user Purpose Used to display the 802 1x user Format show 802 1x user Description The show 802 1x user command displays the 802 1x user account information Parameters None Restrictions None Examples To display the 802 1x user information
87. 2 gt show router ports vlan vlan name 32 gt static dynamic forbidden 15 1 config igmp snooping Purpose Used to configurer IGMP snooping on the switch Format config igmp_snooping vlan name vlan name 32 gt all host timeout sec 1 16711450 gt router timeout sec 1 16711450 gt leave timer sec 1 16711450 gt state enable disable fast leave enable disable Description The config igmp snooping command configures IGMP snooping on the switch Parameters Parameters Description vlan name The name of the VLAN for which IGMP snooping is to be configured all indicates all VLAN host timeout Specifies the maximum amount of time a host can be a member of a multicast group without the switch receiving a host membership report The default is 260 seconds route timeout Specifies the maximum amount of time a route will remain in the switch s can be a member of a multicast group without the switch receiving a host membership report The default is 260 seconds 114 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual leave_timer Leave timer The default setting is 2 state Enable or disable IGMP snooping for the chosen VLAN fast_leave Enable or disable IGMP snooping fast_leave function If enable the membership is immediately removed when the system receive the IGMP leave message Restrictions You must have administrator priv
88. 5 TISICONEIGMIBROR PO A arias 95 T1 2 ENABLE MIRROR 0 a ede ea E evi ee eee ese eme deni 96 TES DISABLED E E 96 TiT 4 SHOW MR eO e E E E AEAEE a 97 12 VEAN COMMAND LIST 99 GREATE VIGAN aa 99 DELETE VLAN DRE a Et ENTENTE 100 CONFIG VEAN ADD PORTS ci 101 CONFIG VEAN DELETE PORTS sitcssevescseevusvsincssescatoesne o I e sacs sea AEE EE sehllasDoeave ip Secse dbase ucisap es cea Sav EEEE 101 CONFIG VEAN ADVERTISEMENT 5 3 eet terree Cereri etos located a ace 102 CONFIG PORT VLAN cerne ENABLE GVRP 13 BASIC IP COMMAND LIST FOR LAYER 2 ree eere rentas ntan eaten tan eaten tania sonas ea sonas ea sonans testen ania sonas ea sonas ea sonas eno 107 I3 I CONFIG APIE SYSTEM recette ss 107 13 2 SHOW IPIF 14 LINK AGGREGATION COMMAND LIST eere enean nn eaten an eaten tan eaten sana tonta n ea sonas ea tono nan ea sonans sonas ea sonas ea sonas eno 109 14 1 CREATE LINK AGGREGATION GROUP ID 14 2 DELETE LINK AGGREGATION GROUP_ID sccccsssssssesseescssesscossseescusesccssesscasssessenaesccnsesecassaecseuacsecasesecaseaecsesaesecssesecaseaeceeeaeeneneees 14 3 CONFIG EINK AGGREGATION 35er reet eere e E LE ED ERREUR e ERE REPE NEED 14 4 CONFIG LINK AGGREGATION ALGORITHM T455 SHOW LINK AGGREGATION s E EESE E a 15 IGMP SNOOPING COMMAND LIST ree eeeenren entero eaten tan eaten tan eaten tania sonas ea sonas ea sonans son
89. 53 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Example To display SNMP configurations DGS 3200 10 4 show snmp Command show snmp System Name DGS 3200 10 System Location Taiwan System Contact D Link SNMP Trap Enabled Authenticate Traps Enabled Community String Rights System Read Write public Read Only Develop Read Only private Read Write Total Entries 4 P Address Community String Q bod Develop Total Entries 1 DGS 3200 10 4f DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter NETWORK MANAGEMENT COMMANDS 6 NETWORK MANAGEMENT COMMAND LIST create trusted_host lt ipaddr gt delete trusted host ipaddr lt ipaddr gt all show trusted host lt ipaddr gt config snmp system name sw name config snmp system location sw location config snmp system contact sw contact enable rmon disable rmon enable snmp traps disable snmp traps enable snmp authenticate traps disable snmp authenticate traps 6 1 create trusted host Purpose Used to create the trusted host Format create trusted host ipaddr Description The create trusted host command creates the trusted host The switch allows you to specify up to eight IP addresses that are allowed to manage the switch via in band SNMP or Telnet based management software These IP addresses must be members of the Management VLAN If no IP addresses are
90. 6 802 1X COMMANDS 16 802 1X COMMAND LIST enable 802 1x disable 802 1x create 802 1x user lt username 15 gt delete 802 1x user lt username 15 gt show 802 1x user config 802 1x auth protocol local radius_eap show 802 1x auth_state auth_configuration ports lt portlist gt config 802 1x capability ports lt auth_portlist gt all authenticator none config 802 1x auth parameter ports lt auth_portlist gt all default direction both in port control force_unauth auto force_auth quiet_period lt sec 0 65535 gt tx_period lt sec 1 65535 gt supp timeout sec 1 65535 gt server timeout sec 1 65535 gt max req lt value 1 10 gt reauth period sec 1 65535 gt enable reauth enable disable config 802 1x auth mode port based mac based config 802 1x init port based ports auth portlist all mac based ports portlist all mac address lt macaddr gt config 802 1x reauth port based ports lt auth_portlist all gt Jmac based ports lt auth_portlist gt all mac address lt macaddr gt create 802 1x guest vlan vlan name 32 gt delete 802 1x guest vlan vlan name 32 gt config 802 1x guest vlan ports lt auth_portlist gt all state enable disable show 802 1x guest vlan config radius add server index 1 3 server ip key passwd 32 gt default auth portecudp port number 1 65535 gt acct port udp port number 1 65535 gt timeout int 1 255
91. 7 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Target Port es Mirrored Port RX IX LAS DGS 3200 10 4f 98 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 12 VLAN COMMANDS 12 VLAN COMMAND LIST create vlan lt vlan_name 32 gt tag lt vlanid 1 4094 gt type 1q_vlan advertisement create vlan vlanid vlanid list advertisement delete vlan vlan name delete vlan vlanid vlanid list config vlan lt vlan name add tagged untagged forbidden delete lt portlist gt advertisement enable disable config vlan vlanid vlanid list add tagged untagged forbidden delete lt portlist gt advertisement enable disable name vlan name config vlan vlan name delete portlist config vlan vlanid vlanid list delete lt portlist gt config gvrp portlist all state enable disable lingress checking enable disable lacceptable frame tagged only admit all pvid vlanid 1 4094 gt enable gvrp disable gvrp show vlan lt vlan_name 32 gt vlanid lt vlanid_list gt ports lt portlist gt show gvrp lt portlist gt create vlan Purpose Used to create a VLAN on the switch Format create vlan lt vlan_name 32 gt tag lt vlanid 1 4094 gt type 1q_vlan advertisement Description The create vlan command creates a VLAN on the switch The VLAN ID mu
92. 711450 gt done timer sec 1 16711450 gt state enable disable fast done enable disable Description The config mld snooping command configures MLD snooping on the switch Parameters Parameters Description vlan name The name of the VLAN for which MLD snooping is to be configured all indicates all VLANs 301 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual node_timeout Specifies the amount of time that must pass before a link node is considered to be not a listener anymore The default is 260 seconds router_timeout Specifies the maximum amount of time a router will remain the switch s can be a listener of a multicast group without the switch receiving a node listener report The default is 260 seconds done_timer The done timer The default setting is 2 state enable or disable MLD snooping for the chosen VLAN fast_done enable or disable the MLD snooping fast done function If enabled the membership is immediately removed when the system receives the MLD done message Restrictions You must have administrator privileges Example To configure MLD snooping DGS 3200 10 4 config mld_snooping default node_timeout 250 state enable Command config mld_snooping default node_timeout 250 state enable Success DGS 3200 10 4 40 2 config mld_snooping querier Purpose Used to configure the time in seconds between general query transmissions the maximum tim
93. 84 EA Authenticating default 4 00 0D 0B 4E A0 F7 Authenticating default 297 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 00 0D 60 8F 49 38 Authenticating default 00 0E A6 8E C1 B7 Authenticating default 00 10 4B 69 F4 AD Authenticating default 00 11 D8 DA CE 0B Authenticating default coo Jo O1 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh 39 9 show mac based access control Purpose Used to display MAC based Access Control settings Format show mac based access control port lt portlist gt all Description Use this command to display MAC based Access Control settings Parameters Parameters Description Display mac based access control global setting port Display mac based access control port state Restrictions None Examples To show MAC based Access Control settings DGS 3200 10 4 show mac based access control Command show mac based access control MAC Based Access Control State Enabled Method Radius Password default Guest VLAN default Guest VLAN Member Ports 1 8 DGS 3200 10 4 To show MAC based Access Control by port DGS 3200 10 4 show mac based access control port 1 9 Command show mac based access control port 1 9 298 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Port State 1 Disabled 2 Disabled 3 Disabled 4 Disabled 5 Enabled 6 Disabled y Disabled 8 Disabl
94. 9 SHOW MAC BASED ACCESS CONTROL eene 39 10 SHOW MAC BASED ACCESS CONTROL LOCAL cccccsccscssscssccssesscssecesccssesscssscsesessessseecesscssesssascsescesesuesssessceasessesssesssasenseess 40 MLD SNOOPING COMMAND LIST ee eee esee eee ee to en en aene teen ena eese eost n eS seen eE sene ese en ets eS seen eE sen Sese en ets en seen enata eE ete 4051 CONFIG MED SNOOPIN Gtia 40 2 CONFIG MLD SNOOPING QUERIER certe 40 3 CONFIG MLD SNOOPING MROUTER PORTS eene 40 4 CONFIG MLD SNOOPING MROUTER PORTS FORBIDDEN 40 5 ENABLE MLD SNOOPING Ad 40 6 DISABLE MLD_SNOOPING c cccssssssssscssssscesccssecssesecssccssessscsecsescssesssascesscesesscusscassessessseascaesessessseaecascessesscsaecaesessesssasceusessessesaees AQ 7 SHOW MLD SNOOPIN Gi t caca 40 8 SHOW MLD_SNOOPING GROUP cccsssssssscsscessecssssecsccssesssesecsesessesssesscssccssesscsscsesessessseasceesessessceascasscssesscsaecesscssesscaeceusessessssaees 40 9 SHOW MLD_SNOOPING MROUTER_PORTS 40 10 SHOW MLD_SNOOPING SOURCE LIST cccccsscssssscsscsssessccsecescssessccsscsesessesscseceecessesssaecsecessesssascassessesscsaecaesessessssaecusessesseeaees DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 41 2 DISABLE WAC 41 3 CONFIG WAC 41 4 CREATE WAC USER 41 5 DELETE WAC USER 41 6 CONFIG WAC USER A T SHOW WAGE O heh 41 8 SHOW WAG USER det 42 SYSTEM MESSAGE TEXT
95. Addr Dest DSCP ICMP TYPE CODE 1 5 7 DSCP TYPE 1 7 DSCP Src P Dst P Fig FFFF FFFF FF DSCP Src P Dst P Fig FFFF FFFF FF FFFFFFFF FFFFFFFF FFFFFFFF FFFFFFFF FFFFFFFF FFFFFFFF ERE EE EEE FFFFFFFF 258 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Type Ports Masks 1 Permit 1 Deny Time range Access Profile ID Packet all Offset Offset Offset Offset Offset 106 Content Filter 0 15 16 31 32 47 48 63 64 79 OxFFFFFFFF OxFFFFFFFF OxFFFFFFFF OxFFFFFFFF OxFFFFFFFF Offset Offset Offset Offset Offset Total Entries 7 DGS 3200 10 4 0 15 16 31 32 47 48 63 64 79 OxFFFFFFFF OxFFFFFFFF OxFFFFFFFF OxFFFFFFFF OxFFFFFFFF OxFFFFFFFF OxFFFFFFFF OxFFFFFFFF OxFFFFFFFF OxFFFFFFFF FEFERRREEF FFFERREFE FFFEFERFEE EWEFRFERE EFERERFERE FPERFFREET ETPEFERE PERTPERFER FPIEFERE EFEPSRERERE EFERFERFE Pee eer EFE FWEEFERERFPE EFFFEFEE FEFFEERER FEERRREEE EFERFREPD FFFERFERE FFFFFFFF FFFFFFFF FFFFFFFF FFFFFFFF FFFFFFFF FFFFFFFF FFFFFFFF FFFFFFFF FFFFFFFF FFFFFFFF FFFFFFFF FFFFFFFF FERERKEFFE RFEFEEFTP EFEFFEEFEE EFWEPREREE FEEFEETE PERFEFET EFPFERFERE FPFFEFFEIE FFFEPEEFP FFFFFFFF FFFFFFFF FFFFFFFF FFFFFFFF FFFFFFFF FFFFFFFF FFFFFFFF FFFFFFFF 259 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 32
96. COMMAND LIS AAA ase roe sano niaso s sakaro o desanisar niacara setto eisrean a sonita S rear ees ca oas reao n isao esisi 169 21 1 CREATE ARPENTRY ERROR 169 ASADA 170 21 3 CONFIG ARPENTRY Ste 170 21 4 CONFIG ARP_AGING TIME cccccscssscsscsssesssssscseccssesscesscoescssesscusecssssssesssusecsssessesscseecessessessceaecessssesscsaccasesusesscascssessesssnasensessees 171 O ARE a ad 172 21 6 CLEAR TN VN D 172 22 TIME AND SNTP COMMAND LIST eessosososcococcsesesessoscscscococcccseseseosososcscoccccccsesesessososcscocoecseseseseoscsoscecocecesesesesssscsescscccceesesese 174 225 CONFIG NA td adds USAS ONIS NN 22 3 ENABLE NM at 224 DISABLE SNIP eicere a a eive be p ii EE n ve boe t vine ee neve ass 22 5 CONFIG TIME 22 6 CONFIG TIME ZONE DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 2227 CONFIG DST A ic 178 22 8 SHOW TIME 23 LACP CONFIGURATION COMMAND LIST sssssssssssscssssssccsssssssscscsecsssscsscscnssacscescecsscacsccncnssacsssssasacescncescassccacessacaceneee 180 23 CONFIG EACP PORTS 5 netter es cete iS 180 ASAS NINO 181 24 PORT SECURITY COMMAND LIST scscssssssssssssssssssscssnscessccssnssscassccecnscossccssnssscasencecnssassccssnssacassncecnscasscsssnssscassccecnscacss 182 24 1 CONFIG PORT SECURITY 24 2 DELETE PORT SECURITY ENTRY 2473 CLEAR PORT SECURITY ENTRY ic DA A SHOW PORT SECURED Vi ala iaa DRE 24 5 ENABLE PORT SECURITY TRAP LOG ai 24 6
97. DISABLE PORT_SECURITY TRAP_LOG 25 MAC NOTIFICATION COMMAND LIST csssssssssssssssssssssssssessssessessssesnecsssecnecsssesnecssseesecsssussesnecsssecsecssecnecsssecnecssseesecoes 187 25 ENABLE MACH NOTIFICATION c 187 29 2 DISABEB MAG NOTIFICATION dl 188 25 3 CONFIGMAC NOTIFICATION ceo HH RAE REUS I is WRI an BN Pe ob Riv tebe 188 25 4 CONFIG MAC NOTIFICATION PORTS csccssssssssssesscssesscssesecseacsccnsesscsseseccessescensesecasesecassaecccsaesecasesscssesecsesaesecnsesecatenscaseacesenaeeees 189 25 5 SHOW MACSNOTIBICATION discs 190 25 6 SHOW MAC NOTIFICATION PORTS ssssscsssscescsscescssesscssssecscsacsccssesecasesecessaeeccnssecasesecassaesecsacsccssesecaseascaesacsecasesecateaecaseasesenaeeees 190 26 SSH COMMAND 192 2021 CONFIG SSH AEGOBITEHM aaa 26 2 SHOW ASIN OO ZO CONFIG SSH AUTHMODR as 26 4 SHOW SSH AUTHMODE ia eee a ac 26 5 CONFIG SSH USER ococnconconcnnonncnnos 26 6 SHOW SSH USER AUTHMODE 26 7 CONFIG SSH SERVER 26 8 ENABLE SSH ta iia aa ite ioo bis da 20 9 DISABEE SH A A dese A ate tede ae 26 10 SHOW SSH SERVER E EEE E E E ie EE E REGE GINGER 27 ACCESS AUTHENTICATION CONTROL COMMAND LIST ccsssssssssssssessssesvscsssesssssssecnecsssecnecessecsecsssncnecsssecseenecoes 200 27 1 ENABLE AUTHEN_POLICY 27 2 DISABLE AUTHEN POLICY 27 3 SHOW AUTHEN Pain cds 27 4 CREATE AUTHEN_LOGIN METHOD LIST NAME s csccsss
98. E SYSLOG 8 8 DISABLE SYSLOG 9 O SHOW SYSLOG a er ene REN RR TER NIE E SERE TRA IRSE DE EN ERR ERR RD avs eee dts 9S T CONFIG SYSEOG HOST iet tiet rep e en Por titer OR re der ra e RR ERE P wee een eee Sel ECREATESYSEOG HOST ii e E te RO tt OPER I a 9S 12 DBEETESYSEOGHOST EEE HD dd 8 13 SHOW SYSLOG HOST 8 14 CONFIG LOG SAVE TIMING SSI5 SHOWTOG SAVE TIMING 5 5 6G eret tere e tiet ete te t nate ust tds 9 LAYER 2 FDB COMMAND LIST ereeeeeee renean tenta ttnnnta tonta ta tenants tonta n ea sonans sonans sonans sonans sonans sonans sonas enenan en sonas eno 83 O IGCREATE RDB disc toentatedencib ettet ette Net oca eee tic cu eo it CON ie A 9 2 CREATE MULTICAST FDB 9 3 CONFIG MULTICAST FDB 9 4 CONFIG FDB AGING TIME 9 5 CONFIG MULTICAST VLAN FILTERING MODE 9 6 DELETE DB e dia OE PCLBARTDB a e a eti dq EEE 928 SHOW MULTICAST PDB as reas 070 SHOW PIB sa dl ca 9 10 SHOW MULTICAST VLAN_FILTERING_MODE DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 10 PACKET STORM CONTROL COMMAND LIST scssssssssossssscsccsssssscsssccesnssscsseccncescsssscscnssacscessecsscacscsscacsccacnssacacescncessaces 91 TO CONFIG TRAFFIC CONTROL td 91 1022 CONFIG TRAFBIC RA a ER Y 92 10 3 SHOW TRAFFIC CONTROL iii dd is ii A eh DERE ee da s coe 93 11 MIRROR CONFIGURATION COMMAND LIST sssssssssocssssssccscessscsssccecsssscssescncsscacsccssnssscecescacesescacsscacsccscnssacacescncessaces 9
99. HCP auto configuration status DGS 3200 10 4 enable autoconfig Command enable autoconfig Success DGS 3200 10 4 38 3 disable autoconfig Purpose Used to disable DHCP auto configuration Format disable autoconfig Description Disable DHCP auto configuration Restrictions Administrator Level Example To disablee DHCP auto configuration status DGS 3200 10 4 disable autoconfig Command disable autoconfig Success DGS 3200 10 4 290 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 39 MAC BASED ACCESS CONTROL COMMANDS 39 MAC BASED ACCESS CONTRL COMMAND LISTS enable mac_based_access_ control disable mac based access control config mac based access control ports lt portlist gt all state enable disable method local radius password lt passwd 16 gt guest vlan ports lt portlist gt create mac based access control guest vlan lt vlan name 32 gt delete mac based access control guest vlan create mac based access control local mac lt macaddr gt vlan lt vlan name 32 gt config mac based access control local mac lt macaddr gt vlan vlan name 32 gt delete mac based access control local mac lt macaddr gt vlanevlan name 32 gt show mac based access control auth mac ports lt portlist gt show mac based access control port lt portlist gt all show mac based access control local mac lt macaddr gt vlan vlan name 32 gt
100. IP interface settings DGS 3200 10 44 show ipif Command show ipif IP Interface Settings Interface Name System IP Address 10 90 90 90 MANUAL Subnet Mask o5w00 0 VLAN Name ixl Admin State Enabled Link Status Link UP Member Ports yo 26 Total Entries 1 DGS 3200 10 4f 108 Chapter 14 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual LINK AGGREGATION COMMANDS 14 LINK AGGREGATION COMMAND LIST create link aggregation group id value 1 5 gt type lacp static delete link_aggregation group_id lt value 1 5 gt config link_aggregation group_id lt value 1 5 gt master_port lt port gt ports lt portlist gt state enable disable config link aggregation algorithm mac source dest ip source dest show link aggregation group id value 1 5 algorithm 14 1 create link aggregation group id Purpose Used to create a link aggregation group on the switch Format create link aggregation group id value 1 5 type lacp static Description The create link aggregation group id command will create a link aggregation group Parameter Parameters Description group id Specifies the group ID The group number identifies each of the groups The switch allows up to five link aggregation groups to be configured type Specifies the group type is belong to static or LACP If type is not specified the default is the static type
101. LD Snooping Disabled TELNET Disabled TCP 23 WEB Enabled TCP 80 RMON Disabled SSL Status Disabled SSH Status Disabled SSL Status Disabled 802 1x Disabled Jumbo Frame OE Clipaging Enabled MAC Notification Disabled Port Mirror Disabled SNTP Disabled Syslog Global State Disabled Single IP Management Disabled Dual Image Supported Password Encryption Status Disabled DGS 3200 10 4 2 8 show Serial_port Purpose Used to display the current serial port setting Format show seril_port Description The show serial_port command displays the current serial port setting Parameter None Restrictions None Example To display the serial port setting DGS 3200 10 4 show serial_port Command show serial_port Baud Rate 9600 Data Bits 8 Parity Bits None Stop Bits OIL Auto Logout 10 mins DGS 3200 10 4 22 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 2 9 config serial_port Purpose Used to configure the serial bit rate that will be used to communicate with the management host and the auto logout time for idle connections Format config serial port baud_rate 9600 19200 38400 115200 auto logout never 2 minutes 5 minutes 10 minutes 15 minutes Description The config serial port command configures the serial bit rate that will be used to communicate with the management host and the auto logout time for idle connections Pa
102. Manual Example DGS 3200 10 4 show snmp community Command show snmp community SNMP Community Table Community Name View Name Access Right private CommunityView read_write public CommunityView read_only Total Entries 2 DGS 3200 10 4f 4 11 config snmp enginelD Purpose Used to configure a identifier for the SNMP engine on the switch Format config snmp enginelD snmp enginelD 10 64 gt Description The config snmp enginelD command configures a identifier for the SNMP engine on the switch Associated with each SNMP entity is a unique enginelD Parameter Parameters Description snmp enginelD Identify for the SNMP engine on the switch It is an octet string type Restrictions You must have administrator privileges Example DGS 3200 10 4fconfig snmp engineID 1023457890 Command config snmp engineID 1023457890 Success DGS 3200 10 4f 4 12 show snmp enginelD Purpose Used to display the identification of the SNMP engine on the switch Format show snmp enginelD 43 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Description The show snmp enginelD command displays the identification of the SNMP engine on the switch Parameter None Restrictions You must have administrator privileges Example DGS 3200 10 4 show snmp enginelD Command show snmp enginelD SNMP Engine ID 1023457890 DGS 3200 10 4f 4 13 create snmp group
103. Q 0 Active DGS 3200 10 4 181 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 24 PORT SECURITY COMMANDS 24 PORT SECURITY COMMAND LIST config port security ports lt auth_portlist gt all admin state enable disable max_learning_addr lt max_lock_no 0 16 gt lock_address_mode DeleteOnTimeout DeleteOnReset Permanent delete port security entry vlan_name vlan name 32 gt mac address lt macaddr gt port lt auth_port gt clear port security entry port auth portlist show port security ports auth portlist enable port security trap log disable port security trap log 24 config port security Purpose Configure port security Format config port security ports lt auth_portlist gt all admin state 0 enable 1 disable 0 max learning addr 1 max lock no 0 16 lock address _mode 2 Delete OnTimeout 1 DeleteOnReset 0 Permanent 2 1 Description The config port security command includes admin state maximum learning address and lock address mode Parameters Parameters Description auth portlist Specifies a range of ports to be configured port number all All ports be configured admin state allows the port security to be enabled or disabled for the ports specified in the port list max learning addr The maximum number of address learning set to the ports specified in the portlist The range of the maximum num
104. RSA DSS enable disable Description The config ssh algorithm command configures the SSH service algorithm Parameters Parameters Description 3DES An SSH server encryption algorithm blowfish An SSH server encryption algorithm AES 128 192 256 An SSH server encryption algorithm arcfour An SSH server encryption algorithm cast128 An SSH server encryption algorithm twofish 128 192 256 An SSH server encryption algorithm MD5 An SSH server data integrality algorithm SHA1 An SSH server data integrality algorithm DSS An SSH server public key algorithm 192 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual RSA An SSH server public key algorithm enable Used to enable the algorithm disable Used to disable the alogirthm Restrictions You must have administrator privileges Examples To enable an SSH server public key algorithm DGS 3200 10 4 config ssh algorithm DSS enable RSA enable Command config ssh algorithm DSS enable RSA enable Success DGS 3200 10 4 26 2 show ssh algorithm Purpose Used to show the SSH server algorithms Format show ssh algorithm Description The show ssh algorithm command displays the SSH service algorithms Parameters None Restrictions None Examples To show the SSH server algorithms DGS 3200 10 4 show ssh algorithm Command show ssh algorithm Encryption Algorithm 3DES Enabled AES128 Enabled AES192
105. S 3200 10 4f 5 3 create snmp trap receiver Purpose Used to specify a management station by IP address and community string that will receive traps generated by the switch s SNMP agent Format create snmp trap receiver lt ipaddr gt community string 50 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Description The create snmp trap_receiver command is used to specify the IP address of a management station that will receive traps generated by the switch s SNMP agent and the community string that will be used to authenticate the management station s privileges Parameter Parameters Description ipaddr The IP address of a management station that will receive SNMP traps generated by the switch s SNMP agent community_string An alpha numeric string of up to 32 characters that will be used to authenticate management stations that want to receive SNMP traps from the swtich s SNMP agent Restrictions You must have administrator privileges A maximum of four trap receivers can be specified Example To create a trap receiver 10 1 1 1 in read only level SNMP community DGS 3200 10 4 create snmp trap_receiver 10 1 1 1 System Command create snmp trap_receiver 10 1 1 1 System Success DGS 3200 10 4f 5 4 delete snmp trap receiver Purpose Used to delete a trap receiver entry on the switch made using create snmp trap reciever above Format delete snmp trap recei
106. ST instance_id 0 Format config stp maxage lt value 6 40 gt maxhops lt value 1 20 gt hellotime lt value 1 2 gt forwarddelay value 4 30 gt txholdcount lt value 1 10 gt fbpdu enable disable Description This command is used to configure the bridge parameter global settings Parameters Parameters Description maxage Used to determine if a BPDU is valid The default value is 20 maxhops Used to restrict the forwarded times of one BPDU The default value is 20 Hellotime The default value is 2 This is a per Bridge parameter in RSTP it is existed only in STP RSTP Mode forwarddelay The maximum delay time for one BPDU to be transmitted by a bridge and received from another bridge The default value is 15 txholdcount Used to restrict the numbers of BPDU transmitted in a time interval per Hello Time fbpdu To decide if the Bridge will flood STP BPDU when STP functionality is disabled Restrictions You must have administrator privilege Examples To config STP DGS 3200 10 44 config stp maxage 25 Command config stp maxage 25 Success DGS 3200 10 4 29 14 config stp ports Purpose Used to configure the ports management parameters only at CIST level Format config stp ports lt portlist gt external_cost auto lt value 1 200000000 gt hellotime lt value 1 2 gt 241 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual migrate yes
107. UTO CONFIG COMMAND LIST eee eere ee eo eee eee en en eene tete en et nene seen eP sene e seen sese eost nene se en eE een Ee seen eta ene seen en 289 38 I SHOW AUTOCONEIG 5 e tto epit minae itti emi en entes ted eit bs evite pet ps 289 38 2 ENABLE AUTOCONEIG ote ertet ert tee eese ct te ay eb Uv ere e Pie D ve Deva eere e ua ee e op a e Ree Edd 289 E ECEPENHBSPNURIO ONIS C RRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRMMMEMEMMMMMEEMMEEMMEMEMMMMMMM 290 39 MAC BASED ACCESS CONTRL COMMAND LISTS eee eee eee esee ee eene teen eaae e seen eta ene seen eE een eR seen eese en et sene seen en 291 39 1 ENABLE DISABLE MAC BASED ACCESS CONTROL 39 2 CONFIG MAC BASED ACCESS CONTROL eee 39 3 CONFIG MAC BASED ACCESS CONTROL GUEST _VLAN csccssssssesscesscssccssesscssecssscssessscsscesscssesssesecsescssesssesscsascascesssssesssasenseess 293 39 4 DELETE MAC BASED ACCESS CONTROL GUEST _VLAN csscssssssssscssscssccssescssscsessssesssesscsescssessssscsescssesssesscsescescessessesscasenseees 294 39 5 CREATEMAC BASED ACCESS CONTROL LOCAL MAC ccccsscessessesscssscssccssessscssceesessessscsscseccesessssecsaccssessssscsacsascesesusesssasenseess 295 39 6 CONFIG MAC BASED ACCESS CONTROL LOCAL cccccscsssssscssesssesscssscsccssesscesecsesessessssscssscssesssesscsescssesuessseesssascesesusesscasenseees 39 7 DELETEMAC BASED ACCESS CONTROL LOCAL 39 8 SHOW MAC BASED ACCESS CONTROL AUTH MAC 39
108. _name 32 gt delete wac user lt username 15 gt config wac user lt username 15 gt vlan lt vlan_name 32 gt show wac ports lt portlist gt all show wac user 41 1 enable wac Purpose Used to enable the Web based Access Control function Format enable wac Description The enable wac command will enable the WAC function Parameters None Restrictions You must have administrator privileges 311 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Examples To enable the WAC function DGS 3200 10 4 enable wac Command enable wac Success DGS 3200 10 4 41 2 disable wac Purpose Used to disable the Web based Access Control function Format disable wac Description The disable wac command will disable the WAC function Parameters None Restrictions You must have administrator privileges Examples To disable the WAC function DGS 3200 10 4 disable wac Command disable wac Success DGS 3200 10 4 41 3 config wac Purpose Used to configure the parameter of the Web authentication Format config wac vlan vlan name 32 ports lt portlist gt all state enable disable method local radius Description The config wac command allows you to configure Web authentication setting 312 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Parameters Parameters Description ports A range of port
109. able algorithm utilization Configure the CPU protection threshold 260 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual rising Config utilization rising threshold the range is between 20 100 if the CPU utilization is over the rising threshold the switch enters exhausted mode falling Config utilization falling threshold the range is between 20 100 if the CPU utilization is lower than the falling threshold the switch enters normal mode Restrictions You must have administrator privilege Examples To configure CPU protection DGS 3200 10 4 config safeguard_engine state enable utilization rising 50 falling 30 trap_log enable Command config safeguard_engine state enable utilization rising 50 falling 30 trap_log enable Success DGS 3200 10 4 32 2 Show safeguard engine Purpose To show safeguard engine information Format Show safeguard_engine Description Use this command to show safeguard_engine information Parameters None Restrictions None Examples To show safeguard engine information DGS 3200 10 4 show safeguard engine Command show safeguard engine Safeguard engine state Enabled Safeguard engine current status exhausted mode 261 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual CPU utilization information Rising threshold 50 Falling threshold 30 amp Trap log state Enabled
110. adius add Purpose Used to add a new RADIUS server The server with a lower index has higher authenticative priority Format config radius add server index 1 3 server ip key lt passwd 32 gt default auth porteudp port number 1 65535 gt acct port udp port number 1 65535 gt timeout int 1 255 gt retransmit int 1 255 gt Description The config radius add command adds a new RADIUS server Parameters Parameters Description server index The RADIUS server index server ip The IP address of the RADIUS server passwd The key pre negotiated between switch and the RADIUS server It is used to encrypt user s authentication data before being transmitted over the Internet The maximum length of the key is 32 default Sets the auth port to be 1812 and acct port to be 1813 auth port Specifies the UDP port number which is used to transmit RADIUS authentication data between the switch and the RADIUS server The range is 1 to 65535 acct port Specifies the UDP port number which is used to transmit RADIUS accounting statistics between the switch and the RADIUS server The range is 1 to 65535 timeout int 1 255 The time in second for waiting server reply The default value is 5 seconds retransmit int 1 255 The count for re transmit The default value is 2 134 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Restrictions You must have administrator privileg
111. affic also sent to a designated port where a network sniffer or other device can monitor the network traffic In addition you can specify that only traffic received by or sent by or both is mirrored to the target port Parameters Parameters Description port The port that will receive the packets duplicated at the mirror port add The mirror entry to be added delete The mirror entry to be deleted portlist The port that will be mirrored All packets entering and leaving the source port can be duplicated in the mirror port rx Allows the mirroring of only packets received flowing into the port or ports in the port list tx Allows the mirroring of only packets sent flowing out of the port or ports in the port list both Mirrors all the packets received or sent by the port or ports in the port list 95 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Restrictions You must have administrator privileges Examples To add the mirroring ports DGS 3200 10 4 config mirror port 5 add source ports 1 5 both Command config mirror port 5 add source ports 1 5 both Success DGS 3200 10 4 11 2 enable mirror Purpose Used to enable a previously entered port mirroring configuration Format enable mirror Description This command combined with the disable mirror command below allows you to enter a port mirroring configuration into the switch and then turn the port
112. ame lt path_filename 64 gt keyfilename lt path_filename 64 gt enable ssl ciphersuite RSA with RC4 128 MD5 RSA with S3DES EDE CBC SHA DHE DSS with 3DES EDE CBC SHA RSA EXPORT with RC4 40 MD5 disable ssl ciphersuite RSA with RC4 128 MD5 RSA with 3DES EDE CBC SHA DHE DSS with 3DES EDE CBC SHA RSA EXPORT with RC4 40 MD5 show ssl show ssl cachetimout config ssl cachetimout value 60 86400 gt 30 1 show ssl certificate Purpose To show the certificate status Format show ssl certificate Description User must download specified certificate type according to desired key exchange algorithm The options may be no certificate RSA type or DSA type certificate Parameters None Restrictions None Examples To show certificate DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4 show ssl certificate Command show ssl certificate Loaded with RSA Certificate DGS 3200 10 4 30 2 download ssl certificate Purpose Download certificate to device according to certificate level Format download ssl certificate lt ipaddr gt certfilename path filename 64 gt keyfilename path filename 64 gt Description User can download specified certificate to device according to the desired key exchange algorithm For RSA key exchange a user must download an RSA type certificate and for DHS_DSS must use the DSA certificate for key exchange
113. ameters Parameters Description none No notification will be generated when storm event is detected or cleared storm occurred A notification will be generated when a storm event is detected storm cleared A notification will be generated when a storm event is cleared both A notification will be generated both when a storm event is detected 92 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual and cleared Restrictions You must have administrator privileges Examples DGS 3200 10 4 config traffic trap both Command config traffic trap both Success DGS 3200 10 4 10 3 show traffic control Purpose Used to display current traffic control settings Format show traffic control lt portlist gt Description The show traffic control command displays current traffic control settings Parameters Parameters Description portlist Used to specify a range of ports to be shown If no parameter is specified the system will display all port packet storm control configurations Restrictions None Examples To display the packet storm control setting DGS 3200 10 4 show traffic control Command show traffic control Traffic Storm Control Trap None Port Thres Broadcast Multicast DLF Action Count Time Shutdown hold Storm Storm Storm down Interval Forever 1 64 Disabled Disabled Disabled drop 0 5 2 64 Disabled Disabled Disabled drop
114. amples To display the 802 1x states DGS 3200 10 4 show 802 1x auth_state ports 1 5 Command show 802 1x auth_state ports 1 5 Port Auth PAE State Backend State Port Status 1 ForceAuth Success Authorized 2 ForceAuth Success Authorized 3 ForceAuth Success Authorized 4 ForceAuth Success Authorized 5 ForceAuth Success Authorized DGS 3200 10 4 To display the 802 1x configurations DGS 3200 10 4 show 802 1x auth_configuration ports 1 Command show 802 1x auth_configuration ports 1 802 1X Enabled Authentication Mode Port_based Authentication Protocol Radius_Eap Port number E Capability None AdminCrlDir Both OpenCrlDir Both Port Control Auto QuietPeriod 60 sec TxPeriod 30 sec SuppTimeout 30 sec ServerTimeout 34 sec MaxReq E times ReAuthPeriod 3600 sec ReAuthenticate Disabled DGS 3200 10 4 16 8 config 802 1x capability Purpose Used to configure the port capability Format config 802 1x capability ports lt portlist gt all authenticator none 127 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Description The config 802 1x capability command configures the port capability Parameters Parameters Description portlist Specifies a range of ports to be configured all All ports authenticator The port that wishes to enforce authentication before allowing cess to services that are accessible via that Port adops the thenticat
115. an t be selected as a mirror port 60 Invalid or undefined VID 61 Specified vid is not in the static VLAN table 62 This is the DEFAULT VLAN it cannot be removed 63 This VLAN is used by routing interface it cannot be removed 64 Invalid VLAN name 65 The VLAN name you entered is existing 66 The VLAN name you entered does not exist Check IP Address or VLAN name 67 Invalid Interface name Check Interface Name 68 The interface name already exists Enter a Check Interface Name unique interface name 69 The interface name does not exist Check Interface Name 70 VLAN table is full 71 The specified VID has no MAC addresses 72 The specified port has no MAC addresses 73 Port Based VLAN overlaped 74 Default VLAN can t be deleted 75 VLAN name overlaped 76 You can t delete the VLAN which is used by IP 319 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual subnet 77 The system IP interface can t be deleted 78 Invalid IP address or invalid number of pings 79 __ Search entry is not found 80 Membership can t be overlap 81 The default entry can t be deleted 82 Non egress port must set to TAG 83 STP port settings can t be setted in trunking member port 84 Invalid key id 85 Invalid area id 86 Invalid ipaddr 87 Invalid host addr
116. are in the same MST region Restrictions None Examples Display the STP MST Config ID DGS 3200 10 4 show stp mst_config_id Command show stp mst_config_id 234 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Current MST Configuration Identification Configuration Name 00 22 22 22 22 00 Revision Level 0 MSTI ID Vid list CIST 1 4094 DGS 3200 10 4 29 5 create stp instance id Purpose To create an MST Instance without mapping the corresponding VLANs yet Format create stp instance_id lt value 1 15 gt Description To create a new MST instance independent from the default Instance CIST Instance 0 After creating the MST instance you need to configure the VLANs using commands in 47 7 or the newly created MST instance will still be in a disabled state Parameters Parameters Description instance_id MSTP instance ID Instance 0 represents a default instance CIST The DUT supports 16 Instance 0 16 at most Restrictions You must have administrator privilege Examples To create an MSTP instance DGS 3200 10 4 create stp instance_id 2 Command create stp instance_id 2 Warning There is no VLAN mapping to this instance_id Success DGS 3200 10 4 29 6 delete stp instance id Purpose Used to delete an MST instance 235 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Format delete stp instance_id
117. art end day number of DST s mth e mth Configure the start end month number of DST S time e time Configure the start end time of DST s date e date Configure the start end date of DST offset Indicates number of minutes to add or to subtract during summertime The range of offsets are 30 60 90 and 120 The default value is 60 178 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Restrictions You must have administrator privileges Example To configure time DGS 3200 10 4 config dst repeating s_week 2 s_day tue s_mth 4 s_time 15 00 e_week 2 e_day wed e_mth 10 e_time 15 30 offset 30 Command config dst repeating s_week 2 s_day tue s_mth 4 s_time 15 00 e_week 2 e _day wed e_mth 10 e_time 15 30 offset 30 Success DGS 3200 10 4f 22 8 show time Purpose Display time states Format show time Description The show time command displays current time states Parameter None Restrictions You must have administrator privileges Example To show time DGS 3200 10 4 show time Command show time Current Time Scource System Clock Current Time 2003 07 01 01 43 41 Time Zone GMT 02 30 Daylight Saving Time Repeating Offset in Minutes 530 Repeating From Apr 2nd Tue 15 00 To Oct 2nd Wed 15 30 Annual From 29 Apr 00 00 To 4 2 Oct 0000 DGS 3200 10 4 179 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 23 LACP Configuration COMMANDS
118. as ea sonans sonas ea sonas Srv rai 114 15 CONFIG IGMP SNOOPING 5 eoe etre Love eee E ee rete coe ROLE RENE QE v SIA wits PER EV eU DECRE Tee EYED 15 2 CONFIG IGMP SNOOPING QUERIER vrerin iniri a TT em T5 3 CONFIG ROUTER PORTS ds cce re e e Eee PAREN E PNE a EFE SEE KENN NEUSTEN HERES VENE EUER 15 4 CONFIG ROUTER PORTS FORBIDDEN 15 5 ENABLE IGMP SNOOPING 15 6 DISABLE IGMP SNOOPING 15 7 SHOW IGMP SNOOPINQ 4 dtt SEE ENEN EESE eese esee eee epe eer dre reete ep eee eicere EE ET 15 8 SHOW IGMP SNOOPING GROUP 5 rie es e ee vere FER E C EE e da 15 9 SHOW ROUTER PORTS iecore nit Le ee ei eee e o Ep e cvse tei o devel e Re sede rn E e ede vestes sod 16 802 1X COMMAND LIST 122 16 1 ENABLE 802 1x 16 2 DISABLE 802 1X 16 3 CREATE 802 TX USER EEEE E tree tert e dto dete ei 116 4 DELETE 802 TX USER crier ever init iria 16 5 SHOW 802 EX USER 545 ed eter det nte eter ev A e e EEES 16 6 CONFIG 802 1X AUTH PROTOCOL cccsccscssesscssessescsseccssesscssssescusesccssesscassaecscuassccsssescassaessesacsecnsesecaseaecaesaceecasesecaseaecseeaeeneneees 16 7 SHOW 802 1X cessere 16 8 CONFIG 802 1 X CAPABILITY 16 9 CONFIG 802 1X AUTH PARAMETER 16 10 CONFIG 802 1X AUTH MODE M LOCO 802 AA is DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual
119. ber will depends on project definition lock address mode Indicates the mode of locking address 182 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Permanent The locked addresses will not be aged out after aging timer expire DeleteOnTimeout The locked addresses can be aged out after aging timer expire DeleteOnReset never age out the locked addresses unless restart the system to prevent from port movement or intrusion Restrictions You must have administrator privileges Examples To configure a port security setting DGS 3200 10 4 config port_security ports 6 admin_state enable max_learning_addr 10 lock_address_mode Permanent Command config port_security ports 6 admin_state enable max_learning_addr 16 lock_address_mode Permanent Success DGS 3200 10 4f 24 2 delete port security entry Purpose Used to delete a port security entry by MAC address port number and VLAN ID Format delete port security entry vlan name vlan name 32 mac address lt macaddr gt port auth port Description Used to delete a port security entry by mac address port number and VLAN ID Parameters Parameters Description vlan name The VLAN name the port belongs to mac address The MAC address to be deleted which was learned by the port auth port The port number which has learned the MAC Restrictions You must have administrator p
120. between 0 and 63 tos Specifies the value of TOS the value can be configured from 0 to 127 icmp type Specifies that the rule applies to the value of ICMP type traffic 254 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual code Specifies that the rule applies to the value of ICMP code traffic igmp type Specifies that the rule applies to the value of IGMP type traffic tcp src port Specifies that the rule applies the range of the TCP source port dst port Specifies the range of the TCP destination port range flag Specifies the TCP flag fields udp src port Specifies the range of the TCP source port range dst port Specifies the range of TCP destination port masks protocod id Specifies that the rule applies to the value of ip protocol id traffic user_defi Specifies that the rule applies to the IP protocol ID ne and the mask option behind the IP header length is 20 bytes packet_conten Specifies the frame content pattern there are five offsets t maximum that can be configured Each offset presents 16 bytes the range of content of frame is 80 bytes 5 offsets in the first eighty bytes of frame ipv6 Specifies the rule applies to IPv6 fields class Specifies the value of IPv6 class flowlabel Specifies the value of IPv6 flow label source ipv6 Specifies the value of IPv6 source address destination ip Specifies the value of IPv6 destination
121. c based access control local vlan default MAC Address VLAN Name 00 00 00 00 00 01 default 00 00 00 00 00 04 default Total Entries 2 DGS 3200 10 4 300 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 40 MLD SNOOPING COMMANDS 40 MLD SNOOPING COMMAND LIST config mld snooping vlan name 32 gt all node timeout sec 1 16711450 gt router timeout sec 1 16711450 gt done timer sec 1 16711450 gt state enable disable fast done enable disable config mld snooping querier vlan name 32 gt jall query interval sec 1 65535 gt max response time sec 1 25 gt robustness variable value 1 255 last listener query interval sec 1 25 state enable disable config mld snooping mrouter ports vlan name 32 gt add delete portlist config mld snooping mrouter ports forbidden vlan name 32 gt add delete portlist enable mld snooping disable mld snooping show mld snooping vlan vlan name 32 gt show mld snooping group vlan vlan name 32 gt show mld snooping mrouter ports vlan vlan name 32 static dynamic forbidden show mld snooping source list vlan vlan name 32 group lt ipv6addr gt 40 1 config mld snooping Purpose Used to configurer MLD snooping on the switch Format config mld snooping vlan name 32 gt all node timeout sec 1 16711450 gt router timeout sec 1 16
122. ce Format download sim ms firmware_from_tftp configuration_from_tftp lt ipaddr gt path filename f members mslist 1 32 all Description The download sim ms command is used to download firmware or configuration from a TFTP server to indicated devices Parameters Parameters Description ipaddr Specifes the ipaddress of TFTP server path filename Specifes the file path of firmware of configuration in TFTP server members Specifies a range of members which download this firmware or configuration Restrictions You must have administrator privilege Examples To download firmware DGS 3200 10 4 download sim ms configuration from tftp 10 55 47 1 D dwl600x tfp members 1 Commands download sim ms configuration from tftp 10 55 47 1 D 1dw1600x tfp members 1 This device is updating firmware Please wait Download Status ID MAC Address Result T 00 01 02 03 04 00 Success 2 00 07 06 05 04 03 Fail 3 00 07 06 05 04 03 Fail DGS 3200 10 4 To download configuration DGS 3200 10 4 download sim ms configuratin from tftp 10 55 47 1 D test txt 1 Commands download sim ms configuratin from tftp 10 55 47 1 D test txt 1 new page This device is updating configuration Please wait 229 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Download Status ID MAC Address Result 00 01 02 03 04 00 Success 2 00 07 06 05 04 03 Fail 3 00 07 06 05 04 03 Fa
123. command displays the trusted hosts Parameter None Restrictions None Example To display a trusted host DGS 3200 10 4 show trusted_host Command show trusted_host Management Stations P Addrress Total Entries 3 DGS 3200 10 4 6 4 config snmp system_name Purpose Used to configure the name for the switch Format config snmp system name lt sw_name gt Description The config snmp system_name command configures the name of the switch Parameter Parameters Description sw_name A maximum of 128 characters is allowed NULL string is also accepted Restrictions You must have administrator privileges Example To configure the switch name for bcs 3200 10 Stackable Switch 57 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4 config snmp system name DGS 3200 10 Gigabit Ethernet Switch Command config snmp system name DGS 3200 10 Gigabit Ethernet Switch Success DGS 3200 10 4f 6 5 config snmp system location Purpose Used to enter a description of the location of the switch Format config snmp system location sw location Description The config snmp system location command is used to enter a description of the location of the switch A maximum of 128 characters can be used Parameter Parameters Description Sw location A maximum of 128 characters is allowed NULL string is also accepted Restrict
124. d delete jwac user 112233 Success DGS 3200 10 4 43 17 show jwac user Purpose Used to show JWAC user into local DB Format show jwac user Description The show jwac user command displays JWAC users in the local DB Parameters None Restrictions You must have administrator privileges Example 332 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4 show jwac user Command show jwac user Current Accounts Username Password DGS 3200 10 4 43 18 delete jwac host Purpose Used to delete the host on JWAC enabled ports Format delete jwac host ports all lt portlist gt authenticated authenticating blocked lt macaddr gt Description The delete jwac host command allows you to delete a JWAC host Parameters Parameters Description ports Specifies the port range to delete the host on authenticated Specifies the state of the host to delete authenticating Specifies the state of host to delete blocked Specifies the state of host to delete lt macaddr gt Deletes a specified host with this MAC Restrictions You must have administrator privileges Example DGS 3200 10 4 delete jwac host ports all blocked Command delete jwac host ports all blocked Success DGS 3200 10 4 43 19 show jwac Purpose Used to display the JWAC configuration Format show jwac 333 Description DGS 3200 10 Lay
125. d Switch CLI Manual Restrictions You must have administrator privilege Examples To map a VLAN ID to an MSTP instance DGS 3200 10 4 config stp instance_id 2 add_vlan 1 to 3 Command config stp instance_id 2 add_vlan 1 to 3 Success DGS 3200 10 4 To remove a VLAN ID from an MSTP instance DGS 3200 10 4 config stp instance_id 2 remove_vlan 2 Command config stp instance_id 2 remove_vlan 2 Success DGS 3200 10 4 29 8 config stp mst_config_id Purpose Used to change the name or revision level of the MST configuration identification Format config stp mst_config_id name lt string gt revision_level lt int gt Description To configure a configuration name or revision level in the MST configuration identification The default configuration name is the MAC address of the bridge Parameters Parameters Description name The name given for a specified MST region revision_level The same given name with a different revision level also represents a different MST region Restrictions You must have administrator privilege Examples To change the name and revision level of the MST configuration identification 237 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4 config stp mst_config_id name R amp D_BlockG revision_level 1 Commands config stp mst_config_id name R amp D_BlockG revision_level 1 Success DGS 3200 10 4 29 9
126. d configures role state and parameters of discovery protocol on the switch Parameters Parameters Description commander Transfer role to commander group name If commander user can update name of group candidate Transfer role to candidate dp interval The time in seconds between discovery hold time The time in seconds the device holds the discovery result 227 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Restrictions You must have administrator privilege Examples To transfer to commander DGS 3200 10 4 config sim commander Command config sim commander Success DGS 3200 10 4 To transfer to candidate DGS 3200 10 4 config sim candidate Command config sim candidate Success DGS 3200 10 4 To update name of group DGS 3200 10 4 config sim commander group_name mygroup Command config sim commander group_name mygroup Success DGS 3200 10 4 To change the time interval of discovery protocol DGS 3200 10 4 config sim dp_interval 30 Command config sim dp_interval 30 Success DGS 3200 10 4 To change the hold time of discovery protocol DGS 3200 10 4 config sim hold_time 200 Command config sim hold_time 200 Success DGS 3200 10 4 228 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 28 7 download sim_ms Purpose Used to download firmware or configuration to indicated devi
127. d enables SSH server services Parameters None Restrictions You must have administrator privilege When enabling SSH Telnet is disabled Examples DGS 3200 10 4 enable ssh Command enable ssh Success DGS 3200 10 4 26 9 disable ssh Purpose Used to disable SSH server service Format disable ssh server Description The disable ssh command disables SSH server services Parameters None Restrictions You must have administrator privilege 198 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Examples DGS 3200 10 4 disable ssh Command disable ssh Success DGS 3200 10 4 26 10 show ssh server Purpose Used to show SSH server Format show ssh server Description The show ssh server command show SSH server general information Parameters None Restrictions None Examples To show SSH server DGS 3200 10 4 show ssh server Command show ssh server The SSH Server Configuration max Session 3 Connection Timeout 300 Authfail Attempts 2 Rekey Timeout 60min DGS 3200 10 4 199 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 2 AAC COMMANDS 27 Access Authentication Control COMMAND LIST enable authen_policy disable authen_policy show authen_policy create authen_login method_list_name lt string 15 gt config authen_login default method_list_name lt string 15 gt method tacacs xtacacs tacac
128. d snooping mrouter ports command allows you to designate a range of ports as being connected to multicast enabled routers This will ensure that all packets with such a router as its destination will reach the multicast enabled router regardless of protocol etc 303 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Parameters Parameters Description vlan_name The name of the VLAN on which the router port resides add delete Specifies to add or delete the router ports portlist Specifies a range of ports to be configured UnitID port number Restrictions You must have administrator privileges Example To set up static router ports DGS 3200 10 4 config mld_snooping mrouter_ports default add 1 10 Command config mld_snooping mrouter_ports default add 1 10 Success DGS 3200 10 4 40 4 config mld_snooping mrouter_ports forbidden Purpose Used to configure ports as forbidden router ports Format config mld snooping mrouter ports forbidden vlan name 32 gt add delete lt portlist gt Description The config mld snooping mrouter ports forbidden command allows you to designate a range of ports as being not connected to multicast enabled routers This ensures that the forbidden router port will not propagate routing packets out Parameters Parameters Description vlan name The name of the VLAN on which the router port resides add delete Specifies to add or
129. des The maximum length is 32 macaddr Specifies a MAC address for which FDB entries will be displayed If no parameter is specified all multicast fdb entries will be displayed Restrictions None Examples To display multicast MAC address table DGS 3200 10 4 show multicast fdb Command show multicast fdb VLAN Name default MAC Address 01 00 5E 00 00 00 Egress Ports 1 Ln 2 6 Mode Static Total Entries 1 88 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4f 9 9 show fdb Purpose Used to display the current unicast MAC address forwarding database Format show fdb port port vlan vlan name 32 mac address lt macaddr gt static aging time Description The show fdb command displays the current unicast MAC address forwarding database Parameters Parameters Description port Displays the entries for one port vlan name Displays the entries for a specific VLAN static Displays all permanent entries aging time Displays the unicast MAC address aging time If no parameter isspecified the system will display the unicast address table Restrictions None Examples To display unicast MAC address table DGS 3200 10 4 show fdb Command show fdb Unicast MAC Address Ageing Time 300 VID VLAN Name MAC Address Port Type 1 default 00 00 00 00 01 02 5 Permanent 1 default 00 01 02 03 04 00 CPU self Total Entrie
130. dicate required parameters If a command is entered that is unrecognized by the CLI the top level commands will be displayed under the Available commands prompt 13 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual D6S 9200 10 4tthe Available commands D6S 3200 10 48 7 clear create delete dir download enable login ping reboot reconfig save show smtp upload config disable logout reset telnet The top level commands consist of commands such as show or config Most of these commands require one or more parameters to narrow the top level command This is equivalent to show what or config what Where the what is the next parameter For example entering the show command with no additional parameters the CLI will then display all of the possible next parameters Command show Next possible comple auth statistics authen policy config fdb igmp snooping jwac log_save_timing mac_based_access_con mld_snooping port_security router_ports scheduling_mechanism utilization D6S 3200 10 4t tions 802 1x address binding auth diagnostics authen autoconfig cpu firmware ipif lacp port loopdetect trol local multicast ports safeguard engine smtp ssl system severity traffic segmentation vlan access profile arpentry account attack log auth session statistics authen enable bandwidth control dhcp relay greeting message iproute link aggregation authen
131. direct destination is the Quarantine Server the Quarantine Server cannot be cleared You must have administrator privileges 327 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Example Success DGS 3200 10 4 DGS 3200 10 4 config jwac clear_quarantine_server_url Command config jwac clear_quarantine_server_url 43 11 config jwac update server Purpose Used to configure the servers that the PC may need to connect to in order to complete the JWAC authentication Format config jwac update server add delete ipaddress network address Description The config jwac other server command allows you to add or delete a server network address to which the traffic from an unauthenticated client host will not be blocked by the JWAC Switch Any servers ActiveX needs to access to accomplish the authentication before the client passes the authentication should be added to the Switch with its IP address For example the client may need to access update microsoft com or some sites of the Anti Virus software companies to check whether the OS or Anti Virus software of the client are the latest and so IP addresses of update microsoft com and of Anti Virus software companies need to be added in the Switch Parameters Parameters Description add Adds a network address to which the traffic will not be blocked Five network addresses can be added at most delete Deletes a network address to which the traf
132. dministrator privileges Example To create a local database entry DGS 3200 10 4 create mac based access control local mac 00 00 00 00 00 01 vlan default Command create mac based access control local mac 00 00 00 00 00 01 vlan default Success DGS 3200 10 4 39 6 config mac based access control local Purpose Used to config the local database entry Format config mac based access control local mac lt macaddr gt vlan vlan name 32 gt Description User use this command to modify a database entry 295 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Parameters Parameters Description mac The MAC address that access is accepted in local mode vlan If the MAC address is authorized the port will be assigned to this VLAN Restrictions You must have administrator privileges Examples To config a MAC based Access Control entry DGS 3200 10 4 config mac based access control local mac 00 00 00 00 00 01 vlan default Command config mac based access control local mac 00 00 00 00 00 01 vlan default Success DGS 3200 10 4 39 7 delete mac_based access control local Purpose Used to delete the local database entry Format delete mac based access control local mac lt macaddrs gt vlan lt vlan_name 32 gt Description User use this command to delete a database entry Parameters Parameters Description mac Delete database by thi
133. e 209 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual telnet An application Telnet ssh An application SSH http An application web all Applications console telnet SSH and web login Select the method list of authentication methods for user login enable Select the method list of authentication methods for promoting user s privilege to Admin level default The default method list method list name The user defined method list name string 15 Restrictions You must have administrator privilege Examples To configure the login method list for Telnet DGS 3200 10 44 config authen application telnet login method list name login list 1 Command config authen application telnet login method list name login list 1 Success DGS 3200 10 4 27 13 show authen application Purpose Used to display the login enable method list for all applications Format show authen application Description Display the login enable method list for all applications Parameters None Restrictions None Examples To display the login enable method list for all applications 210 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4 show authen application Command show authen application Application Login Method List Enable Method List Console default default Telnet login list 1 default HTTP default default DGS 3200 10 4
134. e Parameters None Restrictions None Examples To display the contents of the IP routing table 163 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4 show iproute Command show iproute Routing Table IP Address Netmask Gateway 10 0 0 0 8 0 0 0 0 Total Entries 1 DGS 3200 10 4f Interface 164 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 20 COMMAND LIST HISTORY COMMANDS 2 show command_history dir config command_history lt value 1 40 gt 20 1 Purpose Used to display all commands in the Command Line Interface CLI Format 2 command Description The command will display all of the commands available through the Command Line Interface CLI Parameter Parameters Description command Specifies the command If no command specified the system will display all commands Restrictions None Example To display all commands DGS 3200 10 4 Command oO add port_security_entry vlan_name clear clear arptable 165 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual clear counters clear fdb clear log clear port_security_entry port config 802 1p default priority config 802 1p user priority config 802 1x auth mode config 802 1x auth parameter ports config 802 1x capability ports config 802 1x init config 802 1x reauth config access profile profile id
135. e flowlabel Specifies IPv6 flow label value source ipv6 Specifies IPv6 source IP value destination ip v6 Specifies IPv6 destionation IP value permit Specifies the packets that match the access profile are permit by the switch priority Specifies the packets that match the access profile are remap the 802 1p priority tag field by the switch rx rate Specifies the limitation of receive data rate replace dscp Specifies the DSCP of the packets that match the access profile are modified according to the value deny Specifies the packets that match the access profile are filtered by the switch time range Specifies name of this time range entry Restrictions Example You must have administrator privileges To configure an access list entry Command Success DGS 3200 10 4 DGS 3200 10 4 config access_profile profile_id 101 add access_id 1 ip vlan defau lt source ip 20 2 2 3 destination ip 10 1 1 252 dscp 3 icmp port 1 permit config access profile profile id 101 add access id 1 ip vlan default so urce ip 20 2 2 3 destination ip 10 1 1 252 dscp 3 icmp port 1 permit 17 4 show access profile Purpose Format Used to display current access list table show access profile profile id value 1 200 150 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Description The show access_profile command displays current access list table Parameter
136. e IP MASK DIA 209 4 LL DO Unused Entries 100 DGS 3200 10 4f 17 11 enable disable cpu interface filtering Purpose Used to enable or disable CPU interface filtering Format enable cpu interface filtering disable cpu interface filtering Description The enable disable cpu interface filtering command enables or disables CPU interface filtering Parameter None Restrictions None Example To enable CPU interface filtering DGS 3200 10 4 enable cpu interface filtering Command enable cpu interface filtering Success DGS 3200 10 4f To disable CPU interface filtering DGS 3200 10 4fdisable cpu interface filtering Command disable cpu interface filtering Success DGS 3200 10 4f Chapter 159 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual eo o Traffic Segmentation COMMANDS 18 Traffic Segmentation COMMAND LIST config traffic segmentation lt portlist gt forward list null lt portlist gt show traffic segmentation lt portlist gt 18 1 config traffic segmentation Purpose Used to configure the traffic segmentation Format config traffic segmentation lt portlist gt forward list null lt portlist gt Description The config traffic segmentation command configures the traffic segmentation Parameter Parameters Description portlist Specifes a range of ports to be configured forward list Specifies a ran
137. e in seconds to wait for reports from listeners the permitted packet loss that guarantees MLD snooping Format config mld snooping querier lt vlan_name 32 all query interval sec 1 65535 gt max_response time lt sec 1 25 gt robustness_variable lt value 1 255 gt last_listener_query_interval lt sec 1 25 gt state enable disable Description The config mld snooping querier command configures MLD snooping querier Parameters Parameters Description vlan_name The name of the VLAN for which MLD snooping querier is to be configured query_interval Specifies the amount of time in seconds between general query transmissions The default setting is 125 seconds max_reponse_time The maximum time in seconds to wait for reports from listeners The default setting is 10 seconds 302 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual robustness_variable Provides fine tuning to allow for expected packet loss on a subnet The value of the robustness variable is used in calculating the following MLD message intervals Group listener interval Amount of time that must pass before a multicast router decides there are no more listeners of a group on a network This interval is calculated as follows robustness variable query interval 1 query response interval Other querier present interval Amount of time that must pass before a multicast router decides that there is no longer a
138. e server url Purpose Used to configure JWAC Quarantine Server URL 326 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Format config jwac quarantine_server_url lt string 128 gt Description This command allows you to configure the URL of the Quarantine Server If the redirect is enabled and the redirect destination is the Quarantine Server when an HTTP request from unauthenticated host not to the Quarantine Server reaches the JWAC Switch the Switch will handle this HTTP packet and send back a message to the host ot make it access the Quarantine Server with the configured URL When the PC connects to the specified URL the quarantine server will request the PC user to input the user name and password to do authentication Parameters Parameters Description lt string 128 gt Specifies the entire URL of the authentication page on the Quarantine Server Restrictions You must have administrator privileges Example DGS 3200 10 4 config jwac quarantine_server_url http 10 90 90 88 authpage html Command config jwac quarantine_server_url http 10 90 90 88 authpage html Success DGS 3200 10 4 43 10 config jwac clear quarantine server url Purpose Used to clear the Quarantine Server configuration Format config jwac clear quarantine server url Description This command will clear the Quarantine Server configuration Parameters None Restrictions When JWAC is enabled and the re
139. ecifies a range of ports to be configured 190 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Restrictions None Examples To display the MAC address table notification status settings of all ports DGS 3200 10 4 show mac_notification ports Command show mac_notification ports Port MAC Address Table Notification State ER OO D OX On q Gd NY ES Jg B u 5 o n en 0 Disabled DGS 3200 10 4f 191 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 20 SSH COMMANDS 26 SSH COMMAND LIST config ssh algorithm 3DES AES128 AES192 AES256 arcfour blowfish cast128 twofish128 twofish192 twofish256 MD5 SHA1 RSA DSA enable disable show ssh algorithm config ssh authmode password publickey hostbased enable disable show ssh authmode config ssh user username authmode publickey password hostbased hostname domain name 32 gt hostname ip domain name 32 gt lt ipaddr gt show ssh user authmode config ssh server maxsession int 1 8 contimeout sec 120 600 authfail int 2 20 gt rekey 10min 30min 60min never enable ssh disable ssh show ssh server 26 1 config ssh algorithm Purpose Used to configure the SSH server algorithm Format config ssh algorithm 3DES AES128 AES192 AES256 arcfour blowfish casti28 twofish128 twofish192 twofish256 MD5 SHA1
140. ed 9 Disabled DGS 3200 10 4 39 10 show mac based access control local Purpose Used to display MAC based Access Control local databases Format show mac based access control local mac lt macaddrs vlan vlan name 32 gt Description Use this command to display MAC based Access Control local databases Parameters Parameters Description Display all mac based access control local database entries mac Display mac based access control local database entries by MAC address vlan Display mac based access control local database entries by VLAN Restrictions None Examples To show MAC based Access Control local entries DGS 3200 10 4 show mac based access control local Command show mac based access control local MAC Address VLAN Name 00 00 00 00 00 01 default 00 00 00 00 00 02 123 00 00 00 00 00 03 123 00 00 00 00 00 04 default 299 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Total Entries 4 DGS 3200 10 4 To show MAC based Access Control local entries by MAC address DGS 3200 10 4 show mac based access control local mac 00 00 00 00 00 01 Command show mac based access control local mac 00 00 00 00 00 01 MAC Address VLAN Name 00 00 00 00 00 01 default Total Entries 1l DGS 3200 10 4 To show MAC based Access Control local entries by VLAN DGS 3200 10 4 show mac based access control local vlan default Command show ma
141. eding the specified limit For example a user inputs a limit of 130 therefore the Token value will be 128 36 2 show bandwidth_control Purpose Used to display the port bandwidth control table Format show bandwidth_control lt portlist gt Description The show bandwidth_control command displays the port bandwidth configurations Parameters Parameters Description portlist Specifies a range of ports to be displayed If no parameter is specified the system will display all port bandwidth configurations Restrictions None Examples To display the port bandwidth control table DGS 3200 10 4 show bandwidth control 1 10 Command show bandwidth control 1 10 Bandwidth Control Table Port RX Rate Mbit sec TX RATE Mbit sec 1 no limit 0 2 no limi 0 3 no limit 0 4 no limi 0 5 no limit 0 6 no limi 0 7 no_limit 0 8 no_limi 0 9 no_limit 0 10 no_limit 10 279 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4 36 3 config scheduling Purpose Used to configure the traffic scheduling mechanism for each COS queue Format config scheduling lt class_id 0 6 gt max_packet lt value 0 255 gt Description The switch contains n 1 hardware priority queues Incoming packets must be mapped to one of these n 1 queues This command is used to specify the rotation by which these n 1 hardware priority queues are emptied Parameters Paramet
142. ege level is assigned only If a user wants to get admin privilege level the user must use the enable admin command to promote his privilege level But when the local method is used the privilege level will depend on this account privilege level stored in the local device Parameters Parameters Description default The default method list of authentication methods method_list_name The user defined method list of authentication methods lt string 15 gt tacacs Authentication by the built in server group tacacs xtacacs Authentication by the built in server group xtacacs tacacs Authentication by the built in server group tacacs radius Authentication by the built in server group radius server group string Authentication by the user defined server group 15 local Authentication by local user accout database in device none No authentication Restrictions You must have administrator privilege Examples To configure a user defined method list for user login DGS 3200 10 4 config authen login method list name login list 1 method tacacs tac acs local Command config authen login method list name login list 1 method tacacs tacac S local Success DGS 3200 10 4 27 6 delete authen login method list name Purpose Used to delete a user defined method list of authentication methods for user login Format delete authen login method list name stri
143. eges Examples To disable the DHCP relay function 267 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Success DGS 3200 10 4 DGS 3200 10 4 disable dhcp_relay Command disable dhcp_relay 33 7 show dhcp relay Purpose Used to display the current DHCP relay configuration Format show dhcp relay ipif ipif name 12 gt Description The show dhcp relay command displays the current DHCP relay configuration Parameters Parameters Description ipif name The IP interface name configurations If no parameter is specified the system will display all DHCP relay Restrictions None Examples To display the DHCP relay status DHCP BOOTP DHCP BOOTP DHCP BOOTP DHCP Relay DHCP Relay DHCP Relay Interface Relay DGS 3200 10 44 show dhcp relay ipif System Command show dhcp relay ipif System Status Disabled Hops Count Limit 4 Relay Agent Agent Agent Time Threshold 0 Information Option 82 State Information Option 82 Check Information Option 82 Policy Server 1 Server 2 10 48 74 122 10 23 12 34 DGS 3200 10 4f Disabled Disabled Replace Server 3 Server 4 T0 T2 34 12 10 48 75 121 268 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 34 Modify Banner and Prompt 34 MODIFY BANNER AND PROMPT config greeting message default config command_prompt lt string 16 gt username default 34 1
144. el The sequence of methods will effect the authencation result For example if the sequence is TACACS first then TACACS and local enable when a user trys to login the authentication request will be sent to the first server host in the TACACS built in server group If the first server host in the TACACS group is missing the authentication request will be sent to the second server host in the TACACS group and so on If all server hosts in the TACACS group are missing the authentication request will be sent to the first server host in the TACACS group If all server hosts in the TACACS group are missing the local enable password in the device is used to authenticate this user s password The local enable password in the device can be configured by the CLI command config admin local password Parameters Parameters Description default The default method list of authentication methods method list name The user defined method list of authentication methods string 15 tacacs Authentication by the built in server group tacacs xtacacs Authentication by the built in server group xtacacs tacacs Authentication by the built in server group tacacs radius Authentication by the built in server group radius server group string Authentication by the user defined server group 15 gt local_enable Authentication by local enable password in device none No authentication Restric
145. encryption Success DGS 3200 10 4f 2 3 config account Purpose Used to configure user accounts Format config account username encrypt plain text sha 1 lt password gt Description When the password information is not specified in the command the system will prompt the user to input the password interactively For this case the user can only input the plain text password If the password is present in the command the user can select to input the password in the plain text form or in the encrypted form The encryption algorithm is based on SHA I Parameters Parameters Description username Name of the account The account must already be defined plain text Select to specify the password in plain text form sha 1 Select to specify the password in the SHA l enacrpted form password The password for the user account The length for of password in plain text form and in encrypted form are different For the plain text form passwords must have a minimum of O character and can have a maximum of 15 characters For the encrypted form password the length is fixed to 35 bytes long The assword is case sensitive Restrictions You must have administrator privileges Examples To configure the user password of dlink account DGS 3200 10 4fconfig account dlink Command config account dlink 18 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Enter a old pas
146. enticated state Parameters None Restrictions You must have administrator privileges Examples DGS 3200 10 4 enable jwac forcible_logout Command enable jwac forcible_logout Success DGS 3200 10 4 43 4 enable disable jwac forcible logout Purpose Used to enable or disable the JWAC UDP filtering function Format enable jwac udp_filtering disable jwac udp_filtering Description When udp filtering is enabled all UDP and ICMP packets except DHCP and DNS packets from unauthenticated hosts will be dropped 323 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Parameters None Restrictions You must have administrator privileges Examples DGS 3200 10 4 enable jwac udp filtering Command enable jwac udp_filtering Success DGS 3200 10 4 43 5 enable disable jwac quarantine server monitor Purpose Used to enable or disable the JWAC Quarantine Server monitor function Format enable jwac quarantine_server_monitor disable jwac quarantine_server_monitor Description When the JWAC Quarantine Server monitor is enabled the JWAC Switch will monitor the Quarantine Server to ensure the server is okay If the Switch detects no Quarantine Server it will redirect all unauthenticated HTTP accesses to the JWAC Login Page forcibly if the redirect is enabled and the redirect destination is configured to be Quarantine Server Parameters None Restrictions You must have administ
147. er radiusAccClientRoundTripTime radiusAccClientRequests radiusAccClientRetransmissions radiusAccClientResponses radiusAccClientMalformedResponses radiusAccClientBadAuthenticators radiusAccClientPendingRequests radiusAccClientTimeouts radiusAccClientUnknownTypes SOO COCO OD OO H 3 radiusAccClientPacketsDropped DGS 3200 10 4 143 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 1 7 ACL COMMANDS 17 ACL COMMAND LIST create access profile profile id lt value 1 200 gt ethernet vlan source mac macmask 000000000000 ffffffffffff destination mac macmask 000000000000 ffffffffffff 802 1p ethernet type K1 ip vlan source ip mask lt netmask gt destination ip mask lt netmask gt dscp icmp type code igmp type tcp src port mask hex 0x0 Oxffff gt dst port mask hex 0x0 Oxffff gt flag mask al urg ack psh rst syn fin 1 udp src port mask hex 0x0 Oxffff gt dst port mask hex 0x0 Oxffff gt protocol id mask hex 0x0 Oxff user define mask hex 0x0 Oxffffffff gt 1 ipv6 class flowlabel source ipv6 mask ipv6mask destination ipv6 mask lt ipv6mask gt 1 delete access profile profile id value 1 200 gt all config access profile profile id value 1 200 gt add access id auto assign value 1 200 gt ethernet vlan vlan name 32 source mac macaddr 000000000000 ffffffffffff dest
148. er 2 create iproute default lt ipaddr gt lt metric 1 65535 gt delete iproute default show iproute 19 1 create iproute Purpose Used to create a default IP route entry Format create iproute default lt ipaddr gt lt metric 1 65535 gt Description The create iproute command creates a default IP route entry Parameters Parameters Description ipaddr The IP address for the next hop router metric The default setting is 1 That is the default hop cost is 1 Restrictions You must have administrator privileges Examples To add a static address 10 48 74 121 DGS 3200 10 4 create iproute default 10 48 74 121 Command create iproute default 10 48 74 121 Success DGS 3200 10 4f 162 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 19 2 delete iproute default Purpose Used to delete a default IP route entry Format delete iproute default Description The delete iproute default command deletes a default route entry Parameters None Restrictions You must have administrator privileges Examples To delete a default route from the routing table DGS 3200 10 4 delete iproute default Command delete iproute default Success DGS 3200 10 4f 19 3 show iproute Purpose Used to display the switch s current IP routing table Format show iproute Description The show iproute command displays the switch s current IP routing tabl
149. er 2 Gigabit Managed Switch CLI Manual 2 00 55 55 00 55 00 DES 3326SR L3 Switch 140 4 00 B15 default master Total Entries 2 DGS 3200 10 4 To show other groups information in summary if a user specifies a group name it will show information in detail DGS 3200 10 4 show sim group Command show sim group SIM Group Name default ID MAC Address Platform Hold Firmware Device Name Capability Time Version a 00 01 02 03 04 00 DGS 3200 10 L2 Switch 40 1 00 B01 aaaaaaaaaaaaaaaa bbbbbbbbbbbbbbb 2 00 55 55 00 55 00 SIM Group Name SIM2 ID MAC Address Platform Hold Firmware Device Name Capability Time Version xT 00 01 02 03 04 00 DGS 3200 10 L2 Switch 40 1 00 B01 aaaaaaaaaaaaaaaa bbbbbbbbbbbbbbb 2 00 55 55500 55 00 means commander switch DGS 3200 10 4 To show a SIM neighbor table DGS 3200 10 4 show sim neighbor Command show sim neighbor Neighbor Table Port MAC Address Role 23 00 35 26 00 11 99 Commander 23 00 35 26 00 11 91 Member 24 00 35 26 00 11 90 Candidate Total Entries 3 DGS 3200 10 4 225 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 28 4 reconfig Purpose Used to re telnet to member Format reconfig member_id lt value 1 32 gt exit Description The reconfig command is used to re Telnet to a member Parameters Parameters Description member_id Specifies the serial number of a member Restric
150. er 2 Gigabit Managed Switch CLI Manual The show jwac command allows you to display the JWAC configuration settings Parameters None Restrictions None Example DGS 3200 10 4 show jwac Command show jwac State Enabled Enabled Ports 14 9 Virtual IP Liebe Lol Switch HTTP Port 21212 HTTP UDP Filtering Enabled Forcible Logout Enabled Redirect State Enabled Redirect Delay Time 3 Seconds Redirect Destination Quarantine Server Quarantine Server http 172 18 212 147 pcinventory Q Server Monitor Enabled Running Q Svr Error Timeout 5 Seconds Radius Auth Protocol PAP l172 19 202 1 32 172 18 202 0 24 10 1 1 0 24 Update Server DGS 3200 10 4 43 20 show jwac host Purpose Used to display JWAC client host information Format show jwac host port all lt portlist gt authenticated authenticating blocked Description The show jwac host command allows you to show the JWAC client host information Parameters Parameters Description port A port range to show the information of client host authenticated Only to show authenticated client hosts authenticating Only to show client hosts being in authenticating process 334 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual blocked Only to show client host being temporarily blocked because of the failure of authentication Restrictions None Example DGS 3200 10 44 show jwac
151. ers Description class_id This specifies which of the n 1 hardware priority queues the config scheduling command will apply to The four hardware priority queues are identified by number from 0 to n with the 0 queue being the lowest priority weight Specifies the weights for weighted fair queueing A value between 0 and 255 can be specified Restrictions You must have administrator privileges Examples To configure the traffic scheduling mechanism for each COS queue DGS 3200 10 4 config scheduling 0 max_packet 34 Command config scheduling 0 max_packet 34 Success DGS 3200 10 4 36 4 config scheduling mechanism Purpose Used to configure the traffic scheduling mechanism for each COS queue Format config scheduling_mechanism sirict 1 weight_fair 2 280 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Description This command is use to specify how the switch handle packets in priority queues Parameters Parameters Description strict The highest queue first process That is the highest queue should be finished first weight_fair Use weighted fair algorithm to handle packets in priority queues Restrictions You must have administrator privileges Examples To configure the traffic scheduling mechanism for each COS queue DGS 3200 10 4 config scheduling mechanism strict Command config scheduling mechanism strict Success DGS 3200 10
152. ers Description portlist Specified a range of ports to be configured all For set all ports in the system you may use all parameter enable Enable the port s MAC address table notification disable Disable the port s MAC address table notification Restrictions You must have administrator privileges Examples To enable MAC address table notification for Port 7 DGS 3200 10 4 config mac notification ports 7 enable Command config mac notification ports 7 enable Success DGS 3200 10 4f 189 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 25 5 show mac_notification Purpose Used to display the switch s MAC address table notification global settings Format show mac_notification Description Used to display the switch s MAC address table notification global settings Parameters None Restrictions None Examples To show the switch s MAC address table notification global settings DGS 3200 10 4 show mac_notification Command show mac_notification Global Mac Notification Settings State Enabled Interval zb History Size 500 DGS 3200 10 4f 25 6 show mac notification ports Purpose Used to display the ports MAC address table notification status settings Format show mac notification ports lt portlist gt Description Used to display the ports MAC address table notification status settings Parameters Parameters Description portlist Sp
153. es Examples To add anew RADIUS server DGS 3200 10 4 config radius add 1 10 48 74 121 key dlink default Command config radius add 1 10 48 74 121 key dlink default Success DGS 3200 10 4 16 18 config radius delete Purpose Used to delete a RADIUS server Format config radius delete lt server_index 1 3 gt Description The config radius delete command deletes a RADIUS server Parameters Parameters Description server_index The RADIUS server index The range is 1 to 3 Restrictions You must have administrator privileges Examples To delete a RADIUS server DGS 3200 10 4 config radius delete 1 Command config radius delete 1 Success DGS 3200 10 4f 16 19 config radius Purpose Used to configure a RADIUS server 135 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Format config radius server index 1 3 gt ipaddress server ip key lt passwd 32 auth port udp port number 1 65535 gt acct port udp port number 1 65535 gt timeout int 1 255 gt retransmit int 1 255 Description The config radius command configures a RADIUS server Parameters Parameters Description server index The RADIUS server index server ip The IP address of the RADIUS server passwd The key pre negotiated between the switch and the RADIUS server It is used to encrypt user s authentication data before being transm
154. es 27 21 SHOW AUTHEN SERVER HOST eere 27 22 CONFIG AUTHEN PARAMETER RESPONSE TIMEOUT DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 27 23 CONFIG AUTHEN PARAMETER ATTEMPT cccssssscssesccessscsseneesscosssecossscsseseessensesecossneceesnessensesscaseneceesnesueneesscnsssecessncsnesacesenseseee 218 27 24 SHOW AUTHEN PARAMETER 27 25 ENABLE ADMIN cccoococcnnononnnnninnonanincnnos 27 26 CONFIG ADMIN LOCAL ENABLE c ssssscsssssescsscsccssesscosesecscsacscensesscasesscsesaescensesecasenecassaesecnsesecnsesecasnecsesaesecssesecatesecsesacesenaeaees 220 28 SINGLE IP MANAGEMENT COMMAND LIST cccsssssssssssssssssssssessssecnecsssecnecsssnssecsssnsnecsssessecsssesnecsssesecsecsssnenecsssnesecees 222 28 1 ENABLE SIM 28 2 DISABLE SIM 28 3 SHOW SIM 28 4 RECONFIG 28 S CONFIG SIM GROUP oi a 226 28 0 CONFIG SIM sese Penatibus enm edis AR REOR ide 227 2827 DOWNEOAD SIME MS dd 229 20 UPLOAD SIMMS trv 5 REENA EEE ibi seca se a do e dd 230 29 MSTP COMMAND A 231 29 SHOW Ti a et te thai o RA E ae 292 SHOW SIPINSTANGE ER E E SEE E le 2923 SHOW STP PORTS A oa 29 4 SHOW STR MST CONFIG ID tete nnde pini one qn RR RITE 2975 CREATE TP INSTANCE ID cis eerte eite ter te tuere e utet dtt li ed utt ve a ie er AR RETE 29 6 DELETE STP INSTANCE ID 29 7 CONFIG STP INSTANCE ID 29 8 CONFIG STP MST CONFIG ID
155. es an IP destination submask dscp Specifies the DSCP mask icmp Specifies that the rule applies to icmp traffic type Specifies the ICMP packet type code Specifies the ICMP code igmp Specifies that the rule applies to IGMP traffic type Specifies the IGMP packet type tcp Specifies that the rule applies to TCP traffic src port mask Specifies the TCP source port mask dst port mask Specifies the TCP destination port mask flag mask Specifies the TCP flag field mask udp Specifies that the rule applies to UDP traffic src port mask Specifies the TCP source port mask dst port mask Specifies the TCP destination port mask protocod id mask Specifies that the rule applies to the IP protocol ID traffic user define mask Specifies the L4 part mask class Specifies the IPv6 class mask flowlabel Specifies the IPv6 flow label mask source ipv6 mask Specifies the IPv6 source IP mask destination ipv6 mask Specifies the IPv6 destination IP mask Restrictions You must have administrator privileges The Switch supports a maximum of 200 profiles 147 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Example To create access list rules F FF FF FF FF destination mac 00 00 00 FF FF FF 802 1p ethernet type FF FF FF destination mac 00 00 00 FF FF FF 802 1p ethernet type Success DGS 3200
156. escription ports The portlist that is assigned to a guest VLAN Restrictions You must have administrator privileges 293 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Example To assign ports to a guest VLAN DGS 3200 10 4 config mac based access control guest vlan ports 1 5 Command config mac based access control guest vlan ports 1 5 Success DGS 3200 10 4 39 4 delete mac based access control guest vlan Purpose To delete MAC based Access Control guest VLANs Format delete mac based access control guest vlan Description This command deletes guest VLANs from the switch Parameters none Restrictions You must have administrator privileges Example To delete a a MAC based Access Control guest VLAN DGS 3200 10 4 delete mac based access control guest vlan Command config mac based access control guest vlan Success DGS 3200 10 4 294 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 39 5 create mac based access control local mac Purpose Used to create the local database entry Format create mac based access control local mac lt macaddr gt vlan vlan_name 32 gt Description User use this command to create a database entry Parameter Parameters Description mac The MAC address that access is accepted in local mode vlan If the MAC address is authorized the port will be assigned to this VLAN Restrictions You must have a
157. ess assigned 88 Bad network mask assigned 89 Only System interface can change bootmode 90 Port settings can t be setted in trunking member port 91 RIP Version 1 does not support authentication 92 Invalid authentication setting 93 No more SNMP communities can be added 94 No more SNMP trap receivers can be added 95 No more trusted hosts can be added 96 J Stacking mode can be changed under standalone mode only 97 The settings of external module port for speed are illegal 320 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 43 J WAC Command List 43 J WAC Commands List enable jwac disable jwac enable jwac redirect disable jwac redirect enable jwac forcible logout disable jwac forcible logout enable jwac udp filtering disable jwac udp filtering enable jwac quarantine server monitor disable jwac quarantine server monitor config jwac quarantine server error timeout config jwac redirect destination quarantine server jwac login page delay time sec 0 10 gt 1 config jwac virtual ip lt ipaddr gt config jwac quarantine server url string 128 gt config jwac clear quarantine server url config jwac update server add delete ipaddress network address config jwac switch http port tcp port number 1 65535 gt http https config jwac port lt portlist gt all state enable disable max authenticating hos
158. esscsascsssssssssesscsascesesusesscaseeseess 159 18 TRAFFIC SEGMENTATION COMMAND LIST c recen ee eee ee ee en eese ne teen eaaet tese eost nene seen eE eene sene e seen etse Sete teen et aEa 160 18 1 CONFIG TRAFFIC SEGMENTATION 18 2 SHOW TRAFFIC _SEGMENTATION cccccssssscssscssesssssscseccssesssesscseccssssssesscseccesesssesscseceesesusesscsasessssssesscsaseesesusesscsaseesesssesscsaseeseessess 19 ROUTING TABLE COMMAND LIST FOR LAYER 2 eee esee ee eee teen eaaet ete en eta eese en eP een eee en et sensn ets eS teen en et aea 162 19 1 CREATE IPROUTE cccccccsscssscssesssesscssccssecssesscssscssesssessceascesssssesscssscssesusessceascssessseescesscesesssesscsascasesusesscsascasesssesssascasesusesssascaueseess 162 19 2 DELETE IPROUTE DEFAULT entere e FUR REPE RS EAR ada 163 19 3 SHOW IPROUTE si 163 20 COMMAND LIST HISTORY COMMAND LIST ee eene eere ee eoe eo en enean tete eo en e nee seen et aee se eo eE ea eneE eene seen et een seen ena 165 20 LU RON 165 20 2 SHOW COMMAND HISTORY ccccccsssssscssecsscsscssscssesscsseceesessesscseceessssesssseecsssessesscuascessessesscsaecesssusessceascasssusessceasesseessesssasensessess 166 DMI At tt s 167 20 4 CONFIG COMMAND HISTORY cccccsscssscsscsscssscssccssesscssecssscssesssesecessessesscuaecessessessceascasesesessceascessessesscsaccssssusesscsaccssseusessseasessessees 168 2T ARP
159. estination addresses from the switch s DHCP relay table 264 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Format config dhcp_relay delete ipif lt ipif_name 12 gt lt ipaddr gt Description The config dhcp_relay delete command is used to delete one or all of the IP destination addresses in the swith s relay table Parameters Parameters Description ipif_name The name of the IP interface which contains the IP address below ipaddr The DHCP BOOTP server IP address Restrictions You must have administrator privileges Examples To delete a DHCP BOOTP server to the relay table DGS 3200 10 4 config dhcp_relay delete ipif System 10 43 21 12 Command config dhcp_relay delete ipif System 10 43 21 12 Success DGS 3200 10 4f 33 4 config dhcp relay option 82 Purpose Used to configure the DHCP relay agent information option 82 of the switch Format config dhcp relay option 82 state enable disable check enable disable policy replace drop keep Description The config dhcp relay option 82 command configures the DHCP relay agent information option 82 setting of the switch The formats for the circuit ID suboption and the remote ID suboption are as following For the circuit ID suboption of a standalone switch the module field is always zero Circuit ID suboption format 1 2 3 4 5 6 T 1 6 0 4 VLAN Module Port 1 byte 1 byte 1 byte
160. ey 2 auth md5 2 auth key 32 32 gt sha 3 auth key 40 40 gt priv none 1 des 2 lt priv_key 32 32 gt Description The create snmp user command creates a new user to an SNMP group originated by this command User can chose input authencation and privacy by password or by key Parameter Parameters Description SNMP_name The name of the user on the host that connects to the agent The range is 1 to 32 groupname The name of the group to which the user is associated The range is 1 to 32 encrypted Specifies whether the password appears in encrypted format by_password indicate input password for authentication and privacy by_key indicate input key for authentication and privacy auth Initiates an authentication level setting session The options are md5 and sha md5 The HMAC MD5 96 authentication level sha The HMAC SHA 96 authentication level auth_password A authentication string used by MD5 or SHA1 priv_password A privacy string used by DES auth_key A authentication key used by MD5 or SHA it is hex string type priv_key A privacy key used by DES it is hex string type Restrictions You must have administrator privileges Example DGS 3200 10 44create snmp user dlink D Link group encrypted by password auth md5 1 2345678 priv des 12345678 Command create snmp user dlink D Link group encrypted by password auth md5 1234 5678 priv des 12345678 Success
161. fault of admin state of CPU interface filtering is disable Parameter None Restrictions You must have administrator privileges The Switch supports a maximum of five access entries Example To enable CPU interface filtering DGS 3200 10 4 enable cpu interface filtering Command enable cpu interface filtering Success DGS 3200 10 4f 31 5 disable cpu interface filtering Purpose Used to disable the CPU interface filtering control Format disable cpu interface flitering Description Configure parameters of CPU interface filtering control such as admin state The default of admin state for CPU interface filtering is disabled Parameter None Restrictions You must have administrator privileges The Switch supports a maximum of five access entries Example To disable CPU interface filtering 256 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4 disable cpu_interface_filtering Command disable cpu_interface_filtering Success DGS 3200 10 4f 31 6 show cpu access profile Purpose Used to display the current access list table Format show cpu access profile profile id value 1 n gt Description The show cpu access profile command displays the current access list table Parameter Parameters Description profile id Specifies the index of the access list profile Restrictions None Example To display the current CPU access
162. ffff gt lt hex OxO0 Oxffffffff hex 0x0 Oxffffffff hex 0x0 Oxffffffff offset 48 63 hex 0x0 Oxffffffff gt lt hex 0x0 Oxffffffff gt lt hex 0x0 Oxffffffff hex 0x0 Oxffffffff Offset 64 79 hex 0x0 Oxffffffff gt lt hex OxO0 Oxffffffff hex 0x0 Oxffffffff hex 0x0 Oxffffffff ipv6 class value 0 255 gt flowlabel hex 0x0 Oxfffff gt source ipv6 lt ipv6addr gt destination ipv6 lt ipv6addr gt permit deny time_range lt range_name 32 gt delete access_id lt value 1 65535 gt enable cpu_interface_filtering disable cpu_interface_filtering show cpu access profile profile_id lt value 1 n gt 31 1 create cpu access profile Purpose Used to create CPU access list rules Format Create cpu access profile profile id lt value 1 n gt ethernet vlan source mac lt macmask gt 251 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual destination mac lt macmask gt 802 1p ethernet type ip vlan source ip mask lt netmask gt destination ip mask lt netmask gt dscp icmp type code igmp type tcp src port mask hex 0x0 Oxffff gt dst port mask hex 0x0 Oxffff gt flag mask all urg ack psh rst syn fin udp src port mask hex 0x0 Oxffff gt dst port mask hex 0x0 Oxffff gt protocol id mask 0x0 0Oxff user define mask hex 0x0 Oxffffffff gt lt hex 0x0 Oxffffffff gt lt hex 0x0 Oxffffffff gt l
163. fffff hex OxO Oxffffffff offset 64 79 hex 0x0 Oxffffffff gt lt hex OxO Oxffffffff2 hex OxO0 Oxffffffff2 hex OxO Oxffffffff ipv6 class flowlabel source ipv6 mask lt ipv6mask gt destination ipv6 mask lt ipv6mask gt delete cpu access profile profile id value 1 n gt config cpu access profile profile id value 1 n gt add access id lt value 1 65535 gt ethernet vlan vlan name 32 gt 250 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual source_mac lt macaddr gt destination mac lt macaddr gt 802 1p lt value 0 7 gt ethernet type hex 0x0 Oxffff gt yl ip vlan lt vlan_name 32 gt source_ip lt ipaddr gt destination ip lt ipaddr gt dscp lt value gt icmp type value 0 255 gt code value 0 255 gt igmp type lt value 0 255 gt tcp src port lt value 0 65535 gt dst port value 0 65535 gt flag all urg ack psh rst syn fin yl udp src port value 0 65535 gt dst port lt value 0 65535 gt protocol id lt value 0 255 gt user define hex 0x0 Oxffffffff gt lt hex OxO Oxffffffff hex OxO Oxffffffff2 hex OxO0 Oxffffffff hex OxO Oxffffffff yl packet content offset 0 15 hex 0x0 Oxffffffff gt lt hex 0x0 Oxffffffff gt lt hex OxO Oxffffffff hex 0x0 Oxffffffff offset_16 31 hex 0x0 Oxffffffff gt lt hex OxO0 Oxffffffff hex 0x0 Oxffffffff hex 0x0 Oxffffffff Offset 32 47 hex 0x0 Oxffff
164. ffic igmp Specifies that the rule applies to IGMP traffic type Specifies that the rule applies to IGMP type traffic tcp Specifies that the rule applies to TCP traffic src port mask Specifies the TCP source port mask dst port mask Specifies the TCP destination port mask flag mask Specifies the TCP flag field mask udp Specifies that the rule applies to UDP traffic src port mask Specifies the TCP source port mask dst port mask Specifies the TCP destination port mask protocod id mask Specifies that the rule applies to the IP protocol ID traffic user define mask Specifies that the rule applies to the IP protocol ID and the mask options behind the IP header length is 20 bytes profile id Specifies the index of access list profile packet content mask Specifies the frame content mask there are five offsets maximum that can be configured Each offset presents 16 bytes the range of mask of frame is 80 bytes 5 offsets in the first eighty bytes of frame offset Specifies the mask pattern offset of frame ipv6 Specifies the IPv6 filtering mask class Specifies the IPv6 class flowlabel Specifies the IPv6 flow label source ipv6 mask Specifies an IPv6 source submask destination ipv6 mask Specifies an IPv6 destination submask 252 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Restrictions You must have administrator privileges The Switch supports a max
165. fic will not be blocked ipaddress Specifies the network address to add or delete Restrictions You must have administrator privileges Example Success DGS 3200 10 4 config jwac other server add ipaddress 10 90 90 109 24 Command config jwac other server add ipaddress 10 90 90 109 24 Warning the real added update server is 10 90 90 0 24 328 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4 43 12 config jwac switch_http_port Purpose Used to configure the TCP port which the JWAC Switch listens to Format config jwac switch_http_port lt tcp_port_number 1 65535 gt http https Description The config jwac switch_http_port command allows you to configure the TCP port which the JWAC Switch listens to This port number is used in the second stage of the authentication PC users will connect to the page on the switch to input the user name and password If not specified the default port number is 80 If no protocol is specified the protocol is HTTP Parameters Parameters Description tcp port number 1 65535 gt A TCP port which the JWAC Switch listens to and uses to finish the authenticating process http Specifies the JWAC run HTTP protocol on this TCP port https Specifies the JWAC run HTTPS protocol on this TCP port Restrictions HTTP cannot run on TCP port 443 and HTTPS cannot run on TCP port 80 You must have administrator priv
166. formation Parameter Parameters Description portlist A range of ports for which you want ingress checking The beginning and end of the port list range are separated by a dash gvrp_state Enabled or disables GVRP for the ports specified in the port list ingress checking Enables or disables ingress checking for the specified portlist acceptable frame The type of frame will be accepted by the port tagged only Only tagged frame will be received admit all Both tagged and untagged will be accepted pvid Specified the default VLAN will associated with the port Restrictions You must have administrator privileges Example To set the ingress checking status and send and receive GVRP information DGS 3200 10 4 config port vlan 5 gvrp state enable ingress checking enable acceptable frame tagged only pvid 2 Command config port vlan 5 gvrp state enable ingress checking enable acceptable frame tagged only pvid 2 Success DGS 3200 10 4f enable gvrp Purpose Used to enable the Generic VLAN Registration Protocol GVRP 103 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Format enable gvrp Description The enable gvrp command enables the Generic VLAN Registration Protocol GVRP The default setting is disabled Parameter None Restrictions You must have administrator privileges Example To enable the generic VLAN Registration Protocol GVRP DGS 3200 10 4 enable gvrp Command enable g
167. formational informational messages warning warning conditions all any condition facility Some of the operating system daemons and processes have been assigned Facility values Processes and daemons that have not been explicitly assigned a Facility may use any of the local use facilities or they may use the user level Facility Those Facilities that have been designated are shown in the following Bold font means the facility values the switch supports now local0 user defined Facility local1 user defined Facility local2 user defined Facility local3 user defined Facility local4 user defined Facility local5 user defined Facility local6 user defined Facility local7 user defined Facility udp port The UDP port number ipaddr The IP address of the host state The syslog protocol has been used for the transmission of event notification messages across networks to host This option enables or disables the host to receive such messages 78 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Restrictions You must have administrator privileges Examples Success DGS 3200 10 4f DGS 3200 10 4 config syslog host all severiry all facility local0 Command config syslog host all severiry all facility local0 8 11 create syslog host Purpose Used to create a new syslog host Format create syslog host index 1 4 gt ipaddress lt ipaddr gt severity informational warning all facility local0 local1 l
168. g radius command supports the protocol You must have administrator privileges Example DGS 3200 10 44 config jwac radius protocol ms chapv2 Command config jwac radius protocol ms chapv2 Success DGS 3200 10 4 43 15 create jwac user Purpose Used to create JWAC user into local DB Format create jwac user lt username 15 gt Description The create jwac user command creates JWAC users in the local DB When local is chosen while configuring the JWAC RADIUS protocol the local DB will be used Parameters Parameters Description lt username 15 gt The user name to be created Restrictions You must have administrator privileges Example DGS 3200 10 4 create jwac user 112233 Command create jwac user 112233 Enter a case sensitive new password Enter the new password again for confirmation Success DGS 3200 10 4 331 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 43 16 delete jwac user Purpose Used to delete JWAC user into local DB Format delete jwac user lt username 15 gt all_users Description The delete jwac user command deletes JWAC users from the local DB Parameters Parameters Description user Specifies the user name to be deleted all_user All user accouts in local DB will be deleted Restrictions You must have administrator privileges Example DGS 3200 10 4 delete jwac user 112233 Comman
169. g the address based load sharing algorithm Parameter Parameters Description mac source dest Indicates that the switch should examine the MAC source and destination address ip source dest Indicates that the switch should examine the IP source and destination address 111 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Restrictions You must have administrator privileges Example To configure the link aggregation algorithm for mac source dest DGS 3200 10 4 config link_aggregation algorithm mac_source_dest Command config link_aggregation algorithm mac_source_dest Success DGS 3200 10 4 14 5 show link_aggregation Purpose Used to display the current link aggregation configuration on the switch Format show link_aggregation group_id lt value gt algorithm Description The show link aggregation command will display the current link aggregation configuration of the switch Parameter Parameters Description group id Specifies the group ID The group number identifies each of the groups The switch allows up to five link aggregation groups to be configured algorithm Allows you to specify the display of link aggregation by the algorithm in use by that group If no parameter is specified the system will display all the link aggregation information Restrictions None Example Link aggregation group enabled DGS 3200 10 4 show link_aggregatio
170. ge Examples To disable SMTP client DGS 3200 10 4 disable smtp Command disable smtp Success DGS 3200 10 4 35 3 show smtp Purpose Used to display the current SMTP information Format show smtp Description The show smtp command displays the SMTP client information Parameters None Restrictions You must have administrator privilege Examples To show the SMTP information in detail 273 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4 show smtp Command show smtp Command show smtp smtp status Enabled smtp server address 172 18 208 9 smtp server port i735 self mail address smtp 3200 10 Index Mail Receiver Address 1 Black alphanetworks com 2 Smith alphanetworks com 3 Christiana alphanetworks com 4 John alphanetworks com 5 BOb alphanetworks com 6 Alice alphanetworks com 7 Julia alphanetworks com 8 Rogger alphanetworks com DGS 3200 10 4 35 4 config smtp Purpose Used to configure SMTP client information Format config smtp server lt ipaddr gt server_port lt port_number 1 65535 gt self_mail_addr lt mail_addr 64 gt add mail_receiver lt mail_addr 64 gt delete mail_receiver lt index 1 8 gt Description The configure smtp command is used to configure SMTP client Parameters Parameters Description server Specifies the SMTP server IP server_port Specifies the SMTP server port self_mail_addr S
171. ge of port forwarding domains portlist Specifes a range of ports to be configured null Specifies a range of port forwarding domain is null Restrictions You must have administrator privileges The forwarding domain is restricted to Bridge Traffic only Example To configure traffic segmentation DGS 3200 10 4 config traffic segmentation 1 6 forward list 7 8 Command config traffic segmentation 1 6 forward list 7 8 Success DGS 3200 10 4 160 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 18 2 show traffic segmentation Purpose Used to display current traffic segmentation table Format show traffic_segmentation lt portlist gt Description The show traffic_segmentation command displays current traffic segmentation table Parameter Parameters Description portlist Specifies a range of ports to be displayed If no parameter is specified the system will display all current traffic segmentation tables Restrictions None Example To display the traffic segmentation table DGS 3200 10 4 show traffic_segmentation Command show traffic_segmentation Traffic Segmentation Table Port Forward Portlist oo 3 O 01 WY FE SI ee AT cms E om l o 00 CO CO CO CO CO DGS 3200 10 4f 161 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 19 ROUTING TABLE COMMANDS For Layer 2 19 ROUTING TABLE COMMAND LIST For Lay
172. gless for TACACS and XTACACS none No encryption for TACACS and RADIUS authenticaiton This value is meaningless for TACACS and XTACACS timeout lt int 1 255 gt The time in seconds for waiting for a server reply The default value is 5 seconds retransmit lt int 1 255 gt The count for re transmit This value is meaningless for TACACS The default value is 2 Restrictions You must have administrator privilege Examples To configure a TACACS authentication server host s key value DGS 3200 10 4 config authen server host 10 1 1 222 protocol tacacst key This is a secret Command config authen server_host 10 1 1 222 protocol tacacs key This is a se cret Success DGS 3200 10 4 27 20 delete authen server host Purpose Used to delete an authentication server host Format delete authen server host lt ipaddr gt protocol tacacs xtacacs tacacs radius Description Delete an authentication server host Parameters Parameters Description server host lt ipaddr gt The server host s IP address protocol tacacs The server host s authentication protocol protocol xtacacs The server host s authentication protocol protocol tacacs The server host s authentication protocol protocol radius The server host s authentication protocol 216 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Restrictions You must have administrator priv
173. gt all Description Display the method list of authentication methods for promoting a user s privilege to Admin level 208 Parameters DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Parameters Description default Display default user defined method list for promoting a user s privilege to Admin level method_list_name lt string 15 gt Display the specific user defined method list for a promoting user s privilege to Admin level all Display all method lists for promoting a user s privilege to Admin level Restrictions None Examples To display all method lists for promoting a user s privilege to Admin level DGS 3200 10 Total Entries 2 4 DGS 3200 10 4fshow authen_enable all Command show authen_enable all Method List Name Priority Method Name Comment enable list 1 1 tacacs Built in Group 2 tacacs Built in Group 3 mix_1 User defined Group 4 local Keyword enable_list_2 1 tacacs Built in Group 2 radius Built in Group 27 12 Config authen application Purpose Used to configure login or enable method list for all or the specified application Format config authen application console telnet ssh http all login enable default method_list_name lt string 15 gt Description Configure login or enable method list for all or the specified application Parameters Parameters Description console Application consol
174. guration init esses The Switch s MAC address can also be found in the Web management program on the Switch Information Basic Settings window on the Configuration menu The IP address for the Switch must be set before it can be managed with the Web based manager The Switch IP address can be automatically set using BOOTP or DHCP protocols in which case the actual address assigned to the Switch must be known The IP address may be set using the Command Line Interface CLI over the console serial port as follows 1 Starting at the command line prompt enter the commands config ipif System ipaddress XXXJO0CXXX XXX yyy yyy yyy yyy Where the x s represent the IP address to be assigned to the IP interface named System and the y s represent the corresponding subnet mask 2 Alternatively you can enter config ipif System ipaddress xxx xxx xxx xxx z Where the x s represent the IP address to be assigned to the IP interface named System and the z represents the corresponding number of subnets in CIDR notation The IP interface named System on the Switch can be assigned an IP address and subnet mask which can then be used to connect a management station to the Switch s Telnet or Web based management agent 11 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 Gigabit Ethernet Switch Command Line Interface rmware Build 1 00B009 Copyright C 2007 D Link Corporation All rights reserved UserName PassWord
175. gure severity level control for system Format config system_severity trap log all critical warning information Description This command is used to configure severity level control for the system Parameters Parameters Description trap Configure severity level control for a trap log Configure severity level control for a log all Configure severity level control for a trap and a log Critical Severity level critical warning Severity level warning information Severity level information Restrictions You must have administrator privilege Examples To configure severity level control for information level for a trap 337 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4 config system_severity trap information Command config system_severity trap information Success DGS 3200 10 4 44 2 show system severity Purpose To show the severity level control for a system Format show system severity Description Use this command to show severity level control for a system Parameters None Restrictions None Examples To show the severity level control for a system DGS 3200 10 4 Command show system_severity System Severity Trap warning System Severity Log information DGS 3200 10 4 338
176. have administrator privileges Examples To disable the MAC notification function DGS 3200 10 4 disable mac notification Command disable mac notification Success DGS 3200 10 4f 25 3 config mac notification Purpose Used to configure the switch s MAC address table notification global settings Format config mac notification interval int 1 2147483647 gt historysize int 1 500 Description Used to configure the switch s MAC address table notification global settings Parameters Parameters Description interval The time in seconds between notifications historysize This is the maximum number of entries listed in the history log used for notification Up to 500 entries can be specified 188 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Restrictions You must have administrator privileges Examples To config the switch s MAC address table notification global settings DGS 3200 10 4 config mac_notification interval 1 historysize 500 Command config mac_notification interval 1 historysize 500 Success DGS 3200 10 4f 25 4 config mac notification ports Purpose Used to configure the port s MAC address table notification status settings Format config mac notification ports lt portlist gt all enable 3 disable 2 Description Used to configure the port s MAC address table notification status settings Parameters Paramet
177. he command prompt DGS 3200 10 4 config command_prompt DGS 3200 10 Command config command prompt DGS 3200 10 Success DGS 3200 10 4f Response messages 1 Success IWhen settings entered are accepted by the device 2 Fail The entered prompt string exceeded the maximum length 16 When the prompt string entered exceeds the maximum characters allowed 16 271 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 35 SMTP COMMANDS enable smtp disable smtp show smtp config smtp server lt ipaddr gt server port port number 1 65535 gt self_mail_addr lt mail_addr 64 gt add mail_receiver lt mail_addr 64 gt delete mail_receiver lt index 1 8 gt smtp send_testmsg 35 1 enable smtp Purpose Used to enable SMTP client Format enable smtp Description The enable smtp command configures the SMTP client on the switch as enable Parameters None Restrictions You must have administrator privilege Examples To enable SMTP client DGS 3200 10 4 enable smtp Command enable smtp Success DGS 3200 10 4 272 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 35 2 disable smtp Purpose Used to disable SMTP client on the switch Format disable smtp Description The disable smtp command configures an SMTP client on the switch as disable Parameters None Restrictions You must have administrator privile
178. he timeout value Format show ssl cachetimeout Description This command will show the cache timeout value which is designed for a dlktimer library to remove the session ID after it has expired In order to support the resume session feature the SSL library keeps the session ID on the web server and invokes the dlktimer library to remove this session ID by the cache timeout value Parameters None 248 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Restrictions None Examples To show the SSL cache timeout DGS 3200 10 4 show ssl cachetimeout Commands show ssl cachetimeout Cache timeout is 600 second s DGS 3200 10 4 30 7 config ssl cachetimeout Purpose Used to configure the SSL cache timeout value This value is between 1 minute and 24 hours Format config ssl cachetimout lt value 60 86400 gt Description This command will configure the cache timeout value which is designed for the dlktimer library to remove the session ID after expiration In order to support the resume session feature the SSL library keeps the session ID on theweb server and invokes the dlktimer library to remove this session ID by the cache timeout value The unit of argument s value is second and its boundary is between 60 1 minute and 86400 24 hours The default value is 600 seconds Parameters Parameters Description cachetimout The SSL cache timeout value attributes Restrictions None
179. hecking the idle state of the authenticated host on the port block_time If a host fail to pass the authentication it will be blocked for a period specified by the block time Restrictions You must have administrator privileges Example DGS 3200 10 4 config jwac port 1 9 state enable Command config jwac port 1 9 state enable Success DGS 3200 10 4 43 14 config jwac radius protocol Purpose Used to configure the RADIUS protocol used by JWAC Format config jwac radius_protocol local pap chap ms_chap ms_chapv2 eap_md5 Description The config jwac radius_protocol command allows you to specify the RADIUS protocol used by JWAC to complete RADIUS authentication Parameters Parameters Description local JWAC Switch uses local user DB to complete the authentication pap JWAC Switch uses PAP to communicate with the RADIUS Server chap JWAC Switch uses CHAP to communicate with the RADIUS Server 330 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual ms_chap JWAC Switch uses MS CHAP to communicate with the RADIUS Server ms_chapv2 JWAC Switch uses MS CHAPv2 to communicate with the RADIUS Server eap_md5 JWAC Switch uses EAP MD5 to communicate with the RADIUS Server Restrictions JWAC share other RADIUS configurations with 802 1x when using this command to set the RADIUS protocol you must make sure the RASIUS server added by the confi
180. hich version of STP mstp Multiple Spanning Tree Protocol rstp Rapid Spanning Tree Protocol stp Spanning Tree Protocol Restrictions You must have administrator privilege Examples To configure the STP version 239 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4 config stp version mstp Command config stp version mstp Success DGS 3200 10 4 To configure the STP version with the same value of the old configuration DGS 3200 10 4 config stp version mstp Command config stp version mstp Configure value is the same with current value Fail DGS 3200 10 4 29 12 config stp priority Purpose Used to configure the instance priority Format config stp priority lt value 0 61440 gt instance_id lt value 0 15 gt Description One of the parameters used to select the Root Bridge Parameters Parameters Description priority The bridge priority value must be divisible by 4096 instance_id Identifier to distinguish different STP instances Restrictions You must have administrator privilege Examples To configure the STP instance ID DGS 3200 10 4 config stp priority 61440 instance_id 0 Command config stp priority 61440 instance_id 0 Success DGS 3200 10 4 240 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 29 13 config stp Purpose Used to configure the bridge management parameters for CI
181. host port 3 Command show jwac host port 3 Remaining Hosts Port VID AgeTime IdleTime Authentication State or BlockingTime 00 00 00 00 00 01 3 5 98 Min Infinite Authenticated 00 00 00 00 00 02 3 99 Infinite Infinite Authenticating 00 00 00 00 00 03 2 44 30 Sec Blocked Total Authenticating Hosts 1 Total Authenticated Hosts s Total Blocked Hosts el DGS 3200 10 4 43 21 show jwac port Purpose Used to display the port configuration of JWAC Format show jwac port all lt portlist gt Description The show jwac port command allows you to display the port configuration of JWAC Parameters Parameters Description all Shows all the ports configured for JWAC lt portlist gt Specifies a port range to show the configuration of JWAC Restrictions None Example 335 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4 show jwac port 1 4 Command show jwac port 1 4 Port State Max Aging Time Idle Time Block Time Authenticating Minutes Minutes Seconds Host li Enabled 10 Infinite 20 10 2 Disabled 50 60 10 2 3 Enabled 50 1440 Infinite 2 4 Enabled 0 600 30 5 DGS 3200 10 4 336 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual SYSTEM SEVERITY COMMANDS 44 SYSTEM SEVERITY COMMAND LIST config system_severity trap log all critical warning information show system_severity 44 1 config system_severity Purpose Confi
182. how snmp traps command is used to show traps state Parameter None 47 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Restrictions You must have administrator privileges Example DGS 3200 10 4fshow snmp traps Command show snmp traps SNMP Trap Enabled Authenticate Traps Enabled DGS 3200 10 4f 48 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 5 SNMPv1 v2 COMMANDS create snmp community community string readonly readwrite delete snmp community community string create snmp trap receiver lt ipaddr gt community string delete snmp trap receiver lt ipaddr gt config snmp community community string readonly readwrite config snmp trap receiver lt ipaddr gt community string show snmp community trap receiver Note If chapter 4 SNMPv3 commands are used the SNMPv1 v2 commands are not necessary 5 create snmp community Purpose Used to create an SNMP community string Format create snmp community community string readonly readwrite Description The create snmp community command is used to create an SNMP community string and to specify the string as enabling read only or read write privileges for the SNMP management host Parameter Parameters Description community string An alphanumeric string of up to 32 characters used to authentication of users wanting access to the switch s SNMP agent readon
183. id auto assign value 1 200 ethernet vlan vlan name 32 gt source mac macaddr 000000000000 ffffffffffff destination mac macaddr 000000000000 ffffffffffff 802 1p value 0 7 lethernet type hex 0x0 Oxffff gt 1 port lt portlist gt all permit priority value 0 7 rx rate no limit lt value 1 156249 gt mirror deny ip vlan vlan name 32 gt source ip lt ipaddr gt destination ip lt ipaddr gt dscp value 0 63 gt icmp type value 0 255 gt code value 0 255 gt igmp type value 0 255 gt tcp src port lt value 0 65535 gt dst port lt value 0 65535 gt urg ack psh rst syn fin udp src port value 0 65535 gt dst port value 0 65535 gt protocol id lt value 0 255 gt user definechex 0x0 Oxffffffff gt 1 port lt portlist gt all permit priority value 0 7 rx rate no limit lt value 1 156249 gt replace dscp value 0 63 mirror deny ipv6 class value 0 255 flowlabel hex 0x0 Oxfffff source ipv6 lt ipv6addr gt destination ipv6 lt ipv6addr gt 1 port lt portlist gt all permit priority lt value 0 7 gt rx_rate no_limit lt value 1 156249 gt mirror deny time_range lt range_name 32 gt Idelete access id value 1 200 gt Description The config access profile command configures access list entry Parameter Parameters Description pr
184. ific firmware DGS 3200 10 4 config firmware image id 2 delete Command config firmware image_id 2 delete Please wait deleting image Done Success DGS 3200 10 4 To configure the specific firmware as boot up image DGS 3200 10 4 config firmware image_id 1 boot_up Command config firmware image_id 1 boot_up Success DGS 3200 10 4f 7 4 config configuration Purpose Used to configure the specific configuration boot up or active or to delete it Format config configuration config id 1 2 boot up delete active Description None Parameter Parameters Description config id lt 1 2 gt Specifes the serial number of the indicated configuration Restrictions You must have administrator privileges Example To delete the specific configuration DGS 3200 10 4 config configuration config id 2 delete Command config configuration config id 2 delete Success 66 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4 7 5 show firmware information Purpose Displays the firmware information Format show firmware information Description The show firmware information command displays the firmware information Parameter None Restrictions You must have administrator privileges Example To show the firmware information DGS 3200 10 4 show firmware information Command show firmware information
185. ifies a range of ports to be configured all All ports mac_address MAC address of the client Restrictions You must have administrator privileges Examples To initialize the authentication state machine of some or all DGS 3200 10 44 config 802 1x init port based ports all Command config 802 1x init port based ports all Success DGS 3200 10 4 130 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 16 12 config 802 1x reauth Purpose Used to reauthenticate the device connected with the port Format config 802 1x reauth port based ports portlist all mac_based ports lt portlist gt all mac_address lt macaddr gt Description The config 802 1x reauth command reauthenticates the device connected with the port During the reauthentication period the port status remains authorized until failed reauthentication Parameters Parameters Description port_based Switch pass data based on its authenticated port mac_based Switch pass data based on MAC address of authenticated RADIUS client portlist Specifies a range of ports to be configured all All ports mac_address MAC address of authenticated RADIUS client Restrictions You must have administrator privileges Examples To reauthenticate the device connected with the port DGS 3200 10 4 config 802 1x reauth port_based ports all Command config 802 1x reauth port_based ports all Success
186. il DGS 3200 10 4 28 8 upload sim_ms Purpose Used to upload configuration to TFTP server Format upload sim ms configuration to tftp log to tftp lt ipaddr gt path filename members lt mslist gt all Description The upload sim ms command is used to upload configuration from indicated devices to a TFTP server Parameters Parameters Description ipaddr Specifes the IP address of TFTP server path filename Specifes the file path to store configuration in TFTP server members Specifies the member which upload its configuration Restrictions You must have administrator privilege Examples To upload a configuration DGS 3200 10 4 upload sim ms configuration to tftp 10 55 47 1 D configuration txt members 1 Command upload sim ms configuration to tftp 10 55 47 1 D configuration txt members 1 Done DGS 3200 10 4f 230 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 29 MSTP COMMANDS 29 MSTP COMMAND LIST show stp show stp instance lt value 0 15 gt show stp ports lt portlist gt show stp mst_config_id create stp instance_id lt value 1 15 gt delete stp instance_id lt value 1 15 gt config stp instance_id lt value 1 15 gt add_vlan remove_vlan lt vidlist gt config stp mst_config_id name lt string gt revision_level lt int gt enable stp disable stp config stp version mstp
187. ilege Examples To delete an authentication server host Success DGS 3200 10 4 DGS 3200 10 4 delete authen server host 10 1 1 222 protocol tacacst Command delete authen server host 10 1 1 222 protocol tacacst 27 21 show authen server host Purpose Used to display the authentication server hosts Format show authen server host Description Display the authentication server hosts Parameters None Restrictions None Examples To display all authentication server hosts DGS 3200 10 4 show authen server host Command show authen server host SRV IP Address Protocol Port Timeout Retransmit 1 0 List 22 2 TACACS T5555 10 No Use Total Entries 1 DGS 3200 10 4f This is a secret 217 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 27 22 config authen parameter response timeout Purpose Used to configure the amount of time waiting or for user input on console Telnet and SSH applications Format config authen parameter response_timeout lt int 0 255 gt Description Configure the amount of time waiting or for user input on console Telnet and SSH applications Parameters Parameters Description lt int 0 255 gt The amount of time for user input on console or Telnet or SSH 0 means there is no time out The default value is 30 seconds Restrictions You must have administrator privilege Examples To configure the amount of time waiting or for user
188. ileges Example DGS 3200 10 44 config jwac switch http port 8888 http Command config jwac switch http port 8888 http Success DGS 3200 10 4 43 13 config jwac port Purpose Used to configure the port state of JWAC Format config jwac port lt portlist gt all state enable disable max authenticating host lt value 0 10 gt aging time infinite min 1 1440 gt idle time infinite min 1 1440 gt block time sec 0 300 gt 1 329 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Description The config jwac port command allows you to configure port state of JWAC The default value of themax_authenticating_host is 50 The default value of the aging_time is 1440 minutes The default value of the idle_time is infinite The default value of the block_time is 0 seconds Parameters Parameters Description lt porlist gt A port range for setting the JWAC state all Every Switch ports JWAC state is configured state Specifies the port state of JWAC max authenticating host The maximum number of hosts that can process authentication on each port at the same time aging_time A time period during which an authenticated host will keep in authenticated state infinite indicates never aging out the authenticated host on the port idle_time If there is no traffic during idle time the host will be moved back to unauthenticated state infinite indicates never c
189. ileges Examples To configure the IGMP snooping enable Success DGS 3200 10 4f DGS 3200 10 4 config igmp snooping default host timeout 250 state enable Command config igmp snooping default host timeout 250 state enable fast leave 15 2 config igmp snooping querier Purpose Used to configure the the time in seconds between general query transmissions the maximum time in seconds to wait for reports from members the permitted packet loss that guarantees IGMP snooping Format config igmp snooping querier vlaan name vlan name 32 gt all query interval sec 1 65535 gt max response time sec 1 25 robustness variable value 1 255 last member query interval sec 1 25 state enable disable Description The config igmp snooping querier command configures IGMP snooping querier Parameters Parameters Description vlan name The name of the VLAN for which IGMP snooping querier is to be configured query interval Specifies the amount of time in seconds between general query transmissions the default setting is 125 seconds max reponse time The maximum time in seconds to wait for reports from members The default setting is 10 seconds robustness variable Provides fine tuning to allow for expected packet loss on a subnet The value of the robustness variable is used in calculating the following IGMP message intervals Group member interval Amount of ti
190. imum of 10 profiles Example To create CPU access list rules DGS 3200 10 4 create cpu access_profile profile_id 100 ethernet vlan source_mac 00 00 00 00 00 01 destination mac 00 00 00 00 00 02 802 1p ethernet type Command create cpu access profile profile id 100 ethernet vlan source mac 00 00 00 00 00 01 destination mac 00 00 00 00 00 02 802 1p ethernet type Success DGS 3312SR 4fcreate cpu access profile profile id 101 ip vlan source ip mask 20 0 0 0 destination Ip mask 10 0 0 0 dscp icmp type code Command create cpu access profile profile id 101 ip vlan source ip mask 20 0 0 0 de stination ip mask 10 0 0 0 dscp icmp type code Success DGS 3200 10 4 31 2 delete cpu access profile Purpose Used to delete CPU access list rules Format delete cpu access_profile profile_id lt value 1 n gt Description The delete cpu access_profile command deletes access list rules Parameter Parameters Description profile_id Specifies the index of the access list profile Restrictions You must have administrator privileges The Switch supports a maximum of five access entries Example To delete CPU access list rules DGS 3200 10 4 delete cpu access_profile profile_id 10 Command delete cpu access_profile profile_id 10 Success DGS 3200 10 4 253 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 31 3 config cpu access profile Purpose Format Used to configure a CPU acces
191. ination mac macaddr 000000000000 ffffffffffff 802 1p value 0 7 ethernet type hex 0x0 Oxffff gt 1 port portlist all permit priority value 0 7 rx rate no limit lt value 1 156249 mirror deny ip vlan vlan name 32 source ip lt ipaddr gt destination ip lt ipaddr gt dscp value 0 63 gt icmp type value 0 255 gt code value 0 255 igmp type lt value 0 255 gt tcp src port value 0 65535 gt dst port value 0 65535 gt urg ack psh rst syn fin udp src port value 0 65535 gt dst port value 0 65535 gt protocol id lt value 0 255 user_define lt hex 0x0 Oxffffffff gt 1 port lt portlist gt all permit priority value 0 7 rx rate no limit lt value 1 156249 gt replace dscp value 0 63 mirror deny ipv6 f class value 0 255 flowlabel hex 0x0 Oxfffff source ipv6 lt ipv6addr gt destination ipv6 lt ipv6addr gt 1 port lt portlist gt all permit priority lt value 0 7 rx rate no limit lt value 1 156249 gt mirror deny 144 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual time_range lt range_name 32 gt Idelete access_id lt value 1 200 gt show access profile profile_id lt value 1 200 gt config time_range lt range_name 32 gt hours start_time lt time hh mm ss gt end_time lt time hh mm ss gt weekdays lt daylist gt delete show time_range c
192. input to be 60 seconds DGS 3200 10 4 config authen parameter response_timeout 60 Command config authen parameter response_timeout 60 Success DGS 3200 10 4 27 23 config authen parameter attempt Purpose Used to configure the maximum attempts for users trying to login or promote the privilege on console Telnet or SSH applications Format config authen parameter attempt lt int 1 255 gt Description Used to configure the maximum attempts for users trying to login or promote the privilege on console Telnet or SSH applications If the failure value is exceeded connection or access will be locked Parameters Parameters Description 218 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual lt int 1 255 gt The amount of attempts for users trying to login or promote the privilege on console Telnet or SSH The default value is 3 Restrictions You must have administrator privilege Examples To configure the maximum attempts for users trying to login or promote the privilege to be 9 DGS 3200 10 4 config authen parameter attempt 9 Command config authen parameter attempt 9 Success DGS 3200 10 4 27 24 show authen parameter Purpose Used to display the parameters of authentication Format show authen parameter Description Display the parameters of authentication Parameters None Restrictions None Examples To display the paramete
193. ionTime 0 sionTerminateCause SupplicantLogoff sionUserName 3200 10 4t 139 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 16 24 show auth_client Purpose Used to display authentication client information Format show auth_client Description The show auth_client command displays authentication client information Parameters None Restrictions None Examples To display authentication client information DGS 3200 10 4 show auth_client Command show auth_client radiusAuthClient gt radiusAuthClientInvalidServerAddresses 0 radiusAuthClientIdentifier D Link radiusAuthServerEntry gt radiusAuthServerIndex 1 radiusAuthServerAddress radiusAuthClientServerPortNumber radiusAuthClientRoundTripTime radiusAuthClientAccessRequests P00 KM oO radiusAuthClientAccessRetransmissions radiusAuthClientAccessAccepts radiusAuthClientAccessRejects radiusAuthClientAccessChallenges radiusAuthClientMalformedAccessResponses radiusAuthClientBadAuthenticators radiusAuthClientPendingRequests radiusAuthClientTimeouts radiusAuthClientUnknownTypes ooooo ooso radiusAuthClientPacketsDropped radiusAuthClient gt radiusAuthClientInvalidServerAddresses 0 radiusAuthClientIdentifier D Link radiusAuthServerEntry gt radiusAuthServerIndex 2 140 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual radiusAuthServerAddress radiusAuthClientServerPortNumber
194. ions You must have administrator privileges Example To configure the switch location for HQ 5F DGS 3200 10 4 config snmp system location HQ 5F Command config snmp system location HQ 5F Success DGS 3200 10 4f 6 6 config snmp system contact Purpose Used to enter the name of a contact person who is responsible for the switch Format config snmp system contact sw contact Description The config snmp system contact command is used to enter the name and or other information to identify a contact person who is responsible for the switch A maximum of 128 character can be used 58 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Parameter Parameters Description sw_contact A maximum of 128 characters is allowed A null string is also accepted Restrictions You must have administrator privileges Example To configure the switch contact to MIs Department 11 DGS 3200 10 4 config snmp system contact MIS Department II Command config snmp system_contact MIS Department II Success DGS 3200 10 4f 6 7 enable rmon Purpose Used to enable RMON on the switch Format enable rmon Description The enable rmon command enables RMON on the switch Parameter None Restrictions You must have administrator privileges Example To enable RMON on the switch DGS 3200 10 4 enable rmon Command enable rmon Success DGS 3200 10 4f
195. ipv6 lt ipv6addr gt permit deny time range range name 32 delete access id lt value 1 65535 gt Description The config cpu access profile command configures an access list entry Configure the behavior of queuing a packet with a specified priority When the software sees a packet the priority queue has been determined software is unable to proceed queuing a packet before hardware Besides the main objective of the software ACL is filtering some packets which cannot be discarded by hardware successfully thus replacing DSCP with a specific value is not meaningful for software ACL Consequently the following commands are not provided for software ACL priority value 0 7 freplace priority with value 0 72 replace dscp with value 0 63 Parameter Parameters Description profile id Specifies the index of access list profile access id Specifies the index of access list entry The range of this value is 1 to 65535 vlan Specifies a VLAN name source mac Specifies the source MAC destination m Specifies the destination MAC ac 802 1p Specifies the value of 802 1p priority tag the value can be configured between 1 and 7 ethernet type Specifies the Ethernet type vlan Specifies a VLAN name source ip Specifies an IP source address destination ip Specifies an IP destination address dscp Specifies the value of DSCP the value can be configured
196. isable mld_snooping Command disable mld_snooping Success DGS 3200 10 4 40 7 show mld snooping Purpose Used to show the current status of MLD snooping on the switch Format show mld snooping vlan vlan name 32 gt Description The show mld_snooping command will display the current MLD snooping configuration on the switch Parameters Parameters Description vlan_name The name of the VLAN for which you want to view the MLD snooping configuration If no parameter is specified the system will display all current MLD snooping configurations Restrictions None Example To show MLD snooping DGS 3200 10 4 show mld snooping Command show mld snooping MLD Snooping Global State Disabled Multicast router Only Disabled VLAN Name default Query Interval to WEZ Max Response Time 2100 Robustness Value 20Z Last Listener Query Interval 1 Node Timeout 201260 306 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Router Timeout 260 Done Timer 2 Querier State Disabled Querier Router Behavior Non Querier State Disabled VLAN Name vlan2 Query Interval 125 Max Response Time 10 Robustness Value 2 Last Listener Query Interval d Node Timeout 260 Router Timeout 260 Done Timer 2 Querier State Disabled Querier Router Behavior Non Querier State Disabled Total Entries 2 DGS 3200 10 4 40 8 show mld snooping group Purpose Used to display the cu
197. it Managed Switch CLI Manual 33 Master port can t be half duplex mode 34 The EEPROM is full 35 The VLAN has no router ports 36 IGMP snooping is disabled in the designated VLAN 37 The username is invalid 38 Incorrect password 39 The specified user already exists Enter a Add user unique username 40 The username does not exist Enter the name Delete and Update user of an existing user 41 One active Admin user must exist Delete or Update user 42 Confirmation error Passwords do not match Add or Update user 43 No more user accounts can be added Add user 44 __ Please wait loading factory parameters 45 You need to configure a port within the range selected to view 46 Invalid port settings 47 The TFTP process was stopped 48 Cannot upload log The switch does not have a history log 49 The maximum number of spanning tree group is twelve 50 MAC address must be unicast 51 MAC address must be multicast 52 JForwarding Filtering Table is full 53 Multicast member must exist in the VLAN 54 The member port must exist in the VLAN 55 Duplicate route Enter a unique route 56 Target port can t be source port 57 This port member can t be set 58 Port members must belong to the same VLAN 59 The target port c
198. itch CLI Manual Parameters None Restrictions None Examples To display the port security information of switch ports DGS 3200 10 4 show port_security ports 1 6 Command show port_security ports 1 6 Port_security Trap Log Enabled Port Admin State Max Learning Addr Lock Address Mode 1 Disabled 1 DeleteOnReset 2 Disabled 1 DeleteOnReset 3 Disabled 1 DeleteOnReset 4 Disabled 1 DeleteOnReset 5 Disabled 1 DeleteOnReset 6 Enabled 10 Permanent DGS 3200 10 4f 24 5 enable port security trap log Purpose Used to enable the port security trap log Format enable port security trap log Description When the port security trap is enabled if there s a new MAC that violates the pre defined port security configuration a trap will be sent out with the info of the MAC and port and the relevant information will be logged Parameter None Restrictions You must have administrator privileges Example To enable a port security trap 185 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4 enable port_security trap_log Command enable port_security trap_log Success DGS 3200 10 4 24 6 disable port security trap log Purpose Used to disable a port security trap log Format disable port security trap log Description If the port security trap is disabled no trap will be sent out for MAC violations Parameter None Restrictions You must have admi
199. iteView Name Notify View Name CommunityView Security Model SNMPvl Security Level NoAuthNoPriv Group ame ReadGroup ReadView Name CommunityView WriteView Name Notify View Name CommunityView Security Model SNMPv2 Security Level NoAuthNoPriv Group ame WriteGroup ReadView Name CommunityView WriteView Name CommunityView Notify View Name CommunityView Security Model SNMPv1 Security Level NoAuthNoPriv Group ame WriteGroup ReadView Name CommunityView WriteView Name CommunityView Notify View Name CommunityView Security Model SNMPvl Security Level NoAuthNoPriv Group ame WriteGroup ReadView Name CommunityView WriteView Name CommunityView Notify View Name CommunityView Security Model SNMPv2 Security Level NoAuthNoPriv Group ame D Link_group ReadView Name CommunityView WriteView Name CommunityView 38 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Notify View Name CommunityView Security Model SNMPv3 Security Level authPriv Total Entries 10 DGS 3200 10 4 4 5 create snmp view Purpose Used to assign views to community strings to limit which MIB objects an SNMP manager can access Format create snmp view view name 32 gt oid view type included excluded Description The create snmp view command assigns views to community strings to limit which MIB objects an SNMP manager can access Parameter Parameters Description vie
200. itted over the Internet The maximum length of the key is 32 auth port Specifies the UDP port number which is used to transmit RADIUS authentication data between the switch and the RADIUS server acct port Specifies the UDP port number which is used to transmit RADIUS accounting statistics between the switch and the RADIUS server timeout int 1 255 The time in second for waiting server reply The default value is 5 seconds retransmit int 1 255 The count for re transmit The default value is 2 Restrictions You must have administrator privileges Examples To configure a RADIUS server DGS 3200 10 44config radius add 1 10 48 74 121 key dlink default Command config radius add 1 10 48 74 121 key dlink default Success DGS 3200 10 4f 16 20 show radius Purpose Used to display RADIUS server configurations Format show radius Description The show radius command displays RADIUS server configurations 136 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Parameters None Restrictions None Examples To display RADIUS server configurations DGS 3200 10 4 show radius Command show radius Index IP Address Auth Port Acct Port Timeout Retransmit Key secs 1 10 1 11 1812 1813 5 2 switch 2 20 As Lol 1800 1813 5 2 des3326 3 30 Teh sd 1812 1813 5 2 dlink Total Entries 3 DGS 3200 10 4f 16 21 show auth statistics Purpose Used to display authenticator s
201. l tacacs xtacacs tacacs radius show authen server_host config authen parameter response_timeout lt int 0 255 gt config authen parameter attempt lt int 1 255 gt 200 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual show authen parameter enable admin config admin local_enable lt password 0 15 gt 27 1 enable authen policy Purpose Used to enable system access authentication policy Format enable authen_policy Description Enables system access authentication policy When authentication is enabled the device will adopt the login authentication method list to authenticate the user for login and adopt the enable authentication mothod list to authenticate the enable password for promoting the user s privilege to Admin level Parameters None Restrictions You must have administrator privilege Examples To enable system access authentication policy DGS 3200 10 4 enable authen_policy Command enable authen_policy Success DGS 3200 10 4 27 2 disable authen_policy Purpose Used to disable system access authentication policy Format disable authen_policy Description Disables system access authentication policy When authentication is disabled the device will adopt the local user account database to authenticate the user for login and adopt the local enable password to authenticate the enable password for promoting the user s pri
202. lt value 1 15 gt Description To delete the specified MST Instance CIST Instance 0 cannot be deleted and you can only delete one instance at a time Parameters Parameters Description instance id MSTP instance ID Instance O represents the default instance CIST The DUT supports 16 instances 0 15 at most Restrictions You must have administrator privilege Examples To delete an MSTP instance DGS 3200 10 44 delete stp instance id 2 Command delete stp instance id 2 Success DGS 3200 10 4 29 7 config stp instance id Purpose To map or remove the VLAN range of the specified MST instance for an existing MST instance Format config stp instance id value 1 4 add vlan remove vlan lt vidlist gt Description There are two different action types to deal with an MST instance They are listed as follows e add vlan To map specified VLAN lists to an existing MST instance e remove vlan To delete specified VLAN lists from an existing MST instance Parameters Parameters Description instance id MSTP instance ID Instance 0 represents a default instance CIST The DUT supports 16 instances 0 16 at most add vlan Defined action type to configure an MST instance remove vlan Defined action type to configure an MST instance vidlist Newly added CLI Value Type It is similar to lt portlist gt type but the value range is 1 to 4094 236 DGS 3200 10 Layer 2 Gigabit Manage
203. lue 64 1024000 gt Description The config bandwidth control command sets the maximum limit for port bandwidth Parameters Parameters Description portlist Specifes a range of ports to be configured rx rate Specifies the limitation of receive data rate 277 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual no_limit Indicates there is no limit on port rx bandwidth An integer value from 64 to 1024000 sets a maximum limit in Kbits sec The specified bandwidth limit may be equaled but not exceeded This exact logical limit or token value is hardware determined The token value will always be a multiple of the bandwidth increment specific to the chip used for the project i e 32 Kbits 64 Kbits 128 Kbits etc This token value the actual set limit recognized by the CPU will be displayed when the user enters the bandwidth limit integer Note 1 Kbit 1000 bits 1 Gigabit 1000 1000 Kbits tx rate Specifies the limitation of transmit data rate no limit Indicates there is no limit on port tx bandwidth An integer value from 64 to 1024000 sets a maximum limit in Kbits sec The specified bandwidth limit may be equaled but not exceeded This exact logical limit or token value is hardware determined The token value will always be a multiple of the bandwidth increment specific to the chip used for the project i e 32 Kbits 64 Kbits 128 Kbits etc This token value the actual set limit recog
204. ly Allows the user using the above community string to have read only access to the switch s SNMP agent The default read only community string is public readwrite Allows the user using the above community string to have read and write acces to the switch s SNMP agent The default read write community string is private Restrictions You must have administrator privileges A maximum of four community strings can be specified 49 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Example To create a read only level SNMP community System DGS 3200 10 4 create snmp community System readwrite Command create snmp community System readwrite Success DGS 3200 10 4f 5 2 delete snmp community Purpose Used to delete an SNMP community string previously entered on the switch Format delete snmp community community string Description The delete snmp community command is used to delete an SNMP community string entered on the switch using the create snmp community command above Parameter Parameters Description community string An alphanumeric string of up to 32 characters used to authentication of users wanting access to the switch s SNMP agent Restrictions You must have administrator privileges Example To delete a read only level SNMP community System DGS 3200 10 4fdelete snmp community System Command delete snmp community System Success DG
205. manage the switch via Telnet based management software Use the command to disable Telnet Format disable telnet Description The disable telnet command disables Telnet Parameter None Restrictions You must have administrator privileges 25 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Example To disable Telnet DGS 3200 10 4 disable telnet Command disable telnet Success DGS 3200 10 4f 2 14 enable web Purpose The switch allows you manage the switch via HTTP based management software Use the command to enable HTTP and configure port number Format enable web tcp port number 1 65535 gt Description The enable web command enables HTTP and configures port number Parameter Parameters Description tcp port number The TCP port number TCP ports are numbered between 1 and 65535 The well known TCP port for the Web protocol is 80 Restrictions You must have administrator privileges Example To enable HTTP and configure port number DGS 3200 10 4 enable web 80 Command enable web 80 Success DGS 3200 10 4 2 15 disable web Purpose The switch allows you manage the switch via HTTP based management software Use the command to disable HTTP Format disable web 26 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Description The disable web command disables HTTP Parameter None Restrictions You must have ad
206. me 32 gt show snmp user show snmp groups create snmp view lt view_name 32 gt lt oid gt view_type included excluded delete snmp view view name 32 gt all lt oid gt show snmp view lt view_name 32 gt create snmp community lt community_string 32 gt view lt view_name 32 gt read_only read_write delete snmp community lt community_string 32 gt show snmp community lt community_string 32 gt config snmp enginelD lt snmp_enginelD 10 64 gt show snmp enginelD create snmp group lt groupname 32 gt v1 v2c v3 noauth_nopriv auth_nopriv auth_priv read_view lt view_name 32 gt write_view lt view_name 32 gt notify_view lt view_name 32 gt delete snmp group lt groupname 32 gt create snmp host lt ipaddr gt v1 v2c v3 noauth_nopriv auth_nopriv auth_priv lt auth_string 32 gt delete snmp host lt ipaddr gt show snmp host lt ipaddr gt show snmp traps Note If SNMPv3 commands are used the next chapter SNMPv1 v2 commands are not necessary 4 1 create snmp user Purpose Used to create a new user to an SNMP group originated by this command Format DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual create snmp user lt SNMP_name 32 gt lt groupname 32 gt encrypted 1 by_password 1 auth md5 2 lt auth_password 8 16 gt sha 3 lt auth_password 8 20 gt priv none 1 des 2 priv password 8 16 gt by_k
207. me that must pass before a multicast router decides there are no more members of a group on a network This interval is calculated as follows robustness variable x query interval 1 x query response interval Other querier present interval Amount of time that must pass before a multicast router decides that there is no longer another 115 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual multicast router that is the querier This interval is calculated as follows robustness variable x query interval 0 5 x query response interval Last member query count Number of group specific queries sent before the router assumes there are no local members of a group The default number is the value of the robustness variable By default the robustness variable is set to 2 You might want to increase this value if you expect a subnet to be lossy last member query interval The maximum amount of time between group specific query messages including those sent in response to leave group messages You might lower this interval to reduce the amount of time it takes a router to detect the loss of the last member of a group state If the state is enable it allows the switch to be selected as a IGMP Querier sends IGMP query packets It the state is disabled then the Switch can not play the role as a querier Note that if the Layer 3 router connected to the switch provides only the IGMP proxy function but does not provide
208. ministrator privileges Example To disable HTTP DGS 3200 10 4 disable web Command disable web Success DGS 3200 10 4f 2 16 save Purpose Used to save changes in non volatile RAM Format save config log all Description The save command saves changes in non volatile RAM Parameter Parameters Description log Save log all Save changes to currently active configuration and save log If no any keyword specified save changes to configuration Restrictions You must have administrator privileges Example DGS 3200 10 4 save Command save Saving all configurations to NV RAM Done DGS 3200 10 4 27 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4 save config Command save config Saving configuration to NV RAM Done DGS 3200 10 4f DGS 3200 10 4 save log Command save log Saving all system logs to NV RAM Done DGS 3200 10 4f DGS 3200 10 4 save all Command save all Saving configuration and logs to NV RAM Done DGS 3200 10 4f 2 17 reboot Purpose Used to restart the switch Format reboot Description The reboot command restarts the switch Parameter None Restrictions You must have administrator privileges Example DGS 3200 10 4 reboot Command reboot Are you sure to proceed with the system reboot y n Please wait
209. mirroring on and off without having to modify the port mirroring configuration Note If the target port hasn t been set enable mirror will not be allowed Parameters None Restrictions You must have administrator privileges Examples To enable mirroring configurations DGS 3200 10 4 enable mirror Command enable mirror Success DGS 3200 10 4f 11 3 disable mirror Purpose Used to disable a previously entered port mirroring configuration 96 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Format disable mirror Description This command combined with the enable mirror command above allows you to enter a port mirroring configuration into the switch and then turn the port mirroring on and off without having to modify the port mirroring configuration Parameters None Restrictions You must have administrator privileges Examples To disable mirroring configurations DGS 3200 10 4 disable mirror Command disalbe mirror Success DGS 3200 10 4f 11 4 show mirror Purpose Used to show the current port mirroring configuration on the switch Format show mirror Description The show mirror command displays the current port mirroring configuration on the switch Parameters None Restrictions None Examples To display mirroring configuration DGS 3200 10 4 show mirror Command show mirror Current Settings Mirror Status Disabled 9
210. n Command show link_aggregation Link Aggregation Algorithm MAC_source_dest Group ID 2t Type LACP Master Port e 112 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Member Port 5 O Active Port sU Status Enabled Flooding Port 7 DGS 3200 10 4f Link aggregation group disabled DGS 3200 10 44show link Command show link aggregation Link Aggregation Algorithm MAC source dest Group ID ERR Type LACP Master Port e Member Port 1 8 Active Port Status Disabled Flooding Port DGS 3200 10 4f 113 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 15 IGMP SNOOPING COMMANDS 15 IGMP SNOOPING COMMAND LIST config igmp_snooping vlan_name vlan name 32 gt jall host timeout sec 1 16711450 gt router_timeout lt sec 1 16711450 gt leave_timer lt sec 1 16711450 gt state enable disable fast_leave enable disable config igmp_snooping querier vian_name vlan name 32 gt all query interval sec 1 65535 gt max response time sec 1 25 gt robustness variable lt value 1 255 gt last member query interval sec 1 25 state enable disable config router ports vlan name 32 add delete lt portlist gt config router ports forbidden vlan name 32 gt add delete portlist enable igmp snooping disable igmp snooping show igmp snooping vlan vlan name 32 gt show igmp snooping group vlan vlan name 3
211. n the user chooses the local_enable method to promote the privilege level the enable password of the local device is needed Parameters Parameters Description password 0 15 The specific password 220 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Restrictions You must have administrator privilege Examples To configure the administrator password DGS 3200 10 4 config admin local_enable Command config admin local_ebable Enter the old password Enter the case sensitive new password x xx Enter the new password again for confirmation Success DGS 3200 10 4 221 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 28 SINGLE IP MANAGEMENT COMMANDS 28 SINGLE IP MANAGEMENT COMMAND LIST enable sim disable sim show sim candidates lt candidate_id 1 100 gt members lt member_id 1 32 gt group commander_mac_ lt macaddrs neighbor reconfig member_id lt value 1 32 gt exit config sim group add candidate id 1 100 gt lt password gt delete member id 1 32 config sim commander group name groupname 64 gt candidate dp interval sec 30 90 hold time sec 100 255 gt download sim ms firmware from tftp configuration from tftp lt ipaddr gt path filename members mslist 1 32 gt all upload sim ms configuration to tftp lot to tftp ipaddr path filename
212. ncryption and MD5 hash RSA with 3DES EDE CBC SHA Indicates RSA key exchange with 3DES EDE CBC encryption and SHA hash DHE DSS with 3DES EDE CBC SHA Indicates DH key exchange with 3DES EDE CBC encryption and SHA hash RSA EXPORT with RC4 40 MD5 Indicates RSA_EXPORT key exchange with RC4 40 bits encryption and MD5 hash NULL Disables the SSL feature Restrictions You must have administrator privilege Examples To disable the SSL ciphersuite for RSA with RC4 128 MD5 DGS 3200 10 44 disable ssl ciphersuite RSA with RC4 128 MD5 Command disable ssl ciphersuite RSA with RCA4 128 MD5 Success DGS 3200 10 4 To disable the SSL feature DGS 3200 10 4 disable ssl Command disable ssl Success DGS 3200 10 4 247 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 30 5 show ssl Purpose Used to show SSL environment variables and ciphersuites status Format show ssl Description This command will show the current SSL status and supported ciphersuites Parameters None Restrictions None Examples To show SSL DGS 3200 10 4 show ssl Commands show ssl SSL Status Disabled RSA_WITH_RC4_128_MD5 0x0004 Enabled RSA_WITH_3DES_EDE_CBC_SHA 0x000A Enabled DHE DSS WITH 3DES EDE CBC SHA 0x0013 Enabled RSA EXPORT WITH RCA4 40 MDS5 0x0003 Enabled DGS 3200 10 4 30 6 show ssl cachetimeout Purpose Used to show the SSL cac
213. nd config vlan vl delete 2 4 2 8 Success DGS 3200 10 4f config vlan advertisement Purpose Used to enable or disable the VLAN advertisement Format config vlan vlan name advertisement enable disable Description The config vlan advertisement command enables or disables the VLAN advertisement Parameters Parameters Description vlan name The name of the VLAN on which you want to configure advertisement Join GVRP or not If not the VLAN can t join dynamically Restrictions You must have administrator privileges Examples To enable the VLAN default advertisement DGS 3200 10 4 config vlan default advertisement enable Command config vlan default advertisement enable Success DGS 3200 10 4f 102 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual config port_vlan Purpose Used to set the ingress checking status and the sending and receiving of GVRP information Format config port vlan lt portlist gt all gvrp_state enable disable ingress_checking enable disable lacceptable frame tagged only admit_all pvid lt vlanid 1 4094 gt config gvrp lt portlist gt all state enable disable ingress_checking enable disable lacceptable frame tagged only admit_all pvid lt vlanid 1 4094 gt Description The config gvrp command sets the ingress checking status and the sending and receiving of GVRP in
214. nfig log save timing Purpose Used to configure the method to save log Format config log save timing time interval min 1 65535 gt on demand log trigger Description The config log save timing command is used to set the method to save log Parameters Parameters Description time interval Save log to flash every xxx minutes if no log happen in this period don t save on demand Save log to flash whener user type save log or save all log trigger Save log to flash whenever log arrives Restrictions You must have administrator privileges 81 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Notes The default method is on_demand Examples To configure method to save log as on demand DGS 3200 10 4 config log save timing on demand Command config log save timing on demand Success DGS 3200 10 4f 8 15 show log save timing Purpose Used to show the method to save log Format show log save timing Description Shows the method to save log Parameters None Restrictions None Examples To show the timing method of the log save DGS 3200 10 44show log save timing Command show log save timing Saving log method on demand DGS 3200 10 4 82 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual LAYER 2 FDB COMMANDS 9 LAYER 2 FDB COMMAND LIST create fdb lt vlan_name gt macaddr port lt port gt create multicast_fdb
215. ng 1 Enabled 10M Full Enabled Err Disabled Enabled 2 Enabled 10M Full Enabled Link Down Enabled 3 Enabled 10M Full Enabled Err Disabled Enabled 4 Enabled Auto Disabled Link Down Enabled DGS 3200 10 4 DGS 3200 10 4 show ports 1 4 description Command show ports 1 4 description Port Port Settings Connection status Address State Speed Duplex FlowCtrl Speed Duplex FlowCtrl Learning 1 Enabled 0M Full Enabled Err Disabled Enabled Desc portl 2 Enabled 0M Full Enabled Err Disabled Enabled Desc port2 3 Enabled 0M Full Enabled Link Down Enabled Desc port3 4 Enabled Auto Disabled Link Down Enabled Desc port4 Note Connection status has the following situations Link Down speed Duplex FlowCtrl link up and Err Disabled DGS 3200 10 4 show ports err disabled Command show ports err disabled Fort Port Connection status State 1 Enabled Err Disabled Desc portl 8 Enabled Err Disabled Desc port8 DGS 3200 10 44 Storm control Storm control 33 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter A SNMPv3 COMMANDS 4 SNMPv3 COMMAND LIST create snmp user lt SNMP_name 32 gt lt groupname 32 gt encrypted by_password auth md5 lt auth_password 8 16 gt sha lt auth_password 8 20 gt priv none 1 des lt priv_password 8 16 gt by_key auth md5 lt auth_key 32 32 gt sha lt auth_key 40 40 gt priv none 1 des priv key 32 32 gt delete snmp user lt SNMP_na
216. ng 15 gt Description Delete a user defined method list of authentication methods for user login 204 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Parameters Parameters Description string 15 The user defined method list name Restrictions You must have administrator privilege Examples To delete a user defined method list for user login DGS 3200 10 4 delete authen login method list name login list 1 Command delete authen login method list name login list 1 Success DGS 3200 10 4 27 7 show authen_login Purpose Used to display the method list of authentication methods for user login Format show authen_login default method_list_name lt string 15 gt all Description Display the method list of authentication methods for user login Parameters Parameters Description default Display default user defined method list for user login method_list_name Display the specific user defined method list for user login lt string 15 gt all Display all method lists for user login Restrictions None Examples To display a user defined method list for user login 205 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4 show authen_login method_list_name login_list_l Command show authen_login method list name login list 1 Method List Name Priority Method Name Comment login list 1 1 tacacs Built in Group 2 tacacs Built
217. ng the CLI command create authen server_host Parameters Parameters Description server group tacacs The built in server group tacacs server_group xtacacs The built in server group xtacacs server_group tacacs The built in server group tacacs server group radius The built in server group radius server group string A user defined server group 15 gt add Add a server host to a server group delete Remove a server host from a server group server host ipaddr The server host s IP address protocol tacacs The server host s authentication protocol protocol xtacacs The server host s authentication protocol protocol tacacs The server host s authentication protocol protocol radius The server host s authentication protocol Restrictions You must have administrator privilege Examples To add an authentication server host to a server group DGS 3200 10 4 config authen server group mix 1 add server host 10 1 1 222 protocol tacacs Command config authen server group mix 1 add server host 10 1 1 222 protocol ta cacs Success DGS 3200 10 4 27 16 delete authen server group Purpose Used to delete a user defined authentication server group 212 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Format delete authen server_group lt string 15 gt Description Delete a user defined authentication server group Parameter
218. nge Information Range Name testdaily Weekdays Mon Fri Start Time 12 00 00 End Time 13 00 00 Total Entries 1 DGS 3200 10 41 17 7 create cpu access profile Purpose Used to create CPU access list rules Format create cpu access profile profile id value 1 5 ethernet vlan source mac macmask 000000000000 ffffffffffff destination mac macmask 000000000000 ffffffffffff2 802 1p ethernet type 1 ip f vlan source ip mask lt netmask gt destination ip mask lt netmask gt dscp icmp type code igmp type 153 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual tcp src port mask hex 0x0 0xffff gt dst port mask hex 0x0 Oxffff gt flag mask all urg ack psh rst syn firn 1 udp src port mask hex 0x0 Oxffff gt dst port mask hex 0x0 Oxffff gt protocol id mask hex 0x0 Oxff user define mask hex 0x0 Oxffffffff gt 1 packet content mask foffset 0 15 hex 0x0 Oxffffffff gt hex OxO Oxffffffff2 hex OxO Oxffffffff2 lt hex OxO Oxffffffff offset 16 31 hex 0x0 Oxffffffff gt hex 0x0 Oxffffffff gt hex OxO Oxffffffff2 hex OxO Oxffffffff offset 32 47 hex 0x0 Oxffffffff gt hex 0x0 Oxffffffff gt lt hex OxO Oxffffffff2 lt hex OxO0 Oxffffffff offset 48 63 hex 0x0 Oxffffffff gt hex 0x0 Oxffffffff gt hex OxO Oxffffffff2 hex OxO Oxffffffff offset 64 79 hex 0x0 Oxffffffff gt hex OxO Oxffffffff
219. nistrator privileges Example To prevent port security traps from being sent from the switch DGS 3200 10 4 disable port security trap log Command disable port security trap log Success DGS 3200 10 4f 186 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 25 MAC NOTIFICATION COMMANDS 25 MAC NOTIFICATION COMMAND LIST enable mac_notification disable mac_notification config mac_notification interval int 1 2147483647 gt historysize int 1 500 gt config mac notification ports lt portlist gt all enable disable show mac notification show mac notification ports lt portlist gt 25 1 enable mac notification Purpose Used to enable global MAC address table notification on the switch Format enable mac notification Description Enable global MAC address table notification on the switch Parameters None Restrictions You must have administrator privileges Examples To enable the MAC notification function DGS 3200 10 4 enable mac notification Command enable mac notification Success DGS 3200 10 4f 187 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 25 2 disable mac_notification Purpose Used to disable global MAC address table notification on the switch Format disable mac_notification Description Disable global MAC address table notification on the switch Parameters None Restrictions You must
220. nized by the CPU will be displayed when the user enters the bandwidth limit integer Note 1 Kbit 1000 bits 1 Gigabit 1000 1000 Kbits Restrictions You must have administrator privileges Examples To configure the port bandwidth DGS 3200 10 4 config bandwidth control 1 10 tx rate 100 Command config bandwidth control 1 10 tx rate 100 Success The setting value is not a multiple of 64 closest value 64 is chosen DGS 3200 10 4 DGS 3200 10 4 config bandwidth_control 1 20 tx_rate 200 Command config bandwidth_control 1 20 tx_rate 200 Fail Trunk member port 12 can not be configured because the master port is not contained in the portlis DGS 3200 10 4 Response messages 1 Success When users input a value that is a multiple of 64 and the setting is successful 278 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 2 Fail Trunk member port p can not be configured because the master is not contained in the portlist The configured portlist contains trunk port but not it s master port 3 Success The setting value is not a multiple of 64 closest value d is chosen If a user inputs a value that is not a multiple of 64 or whatever bandwidth increment is used for the chip The token value becomes the effective limit The Token value is set at the nearest multiple of the bandwidth increment is used for the chip i e 32 Kbits 64 Kbits etc without exce
221. no edge true false p2p true false auto state enable disable Ibd enable disable fopdu enable disable Description This command can configure all the parameters of ports except for Internal Path Cost and Port Priority The two parameters Internal Path Cost and Port Priority are special cases in MSTP and will need another command in 47 13 to use Parameters Parameters Description portlist One of the CLI Value Types restricts the input value and format of the ports external_cost The path cost between the MST regions from the transmitting Bridge to the CIST Root Bridge It is only used at CIST level hellotime The default value is 2 This is a per Bridge parameter in RSTP but it becomes a per Port parameter in MSTP migrate Operation of management in order to specify the port to send MSTP BPDU for a delay time edge Decides if this port is connected to a LAN or a Bridged LAN p2p Decides if this port is in Full Duplex or Half Duplex mode state Decides if this port supports the STP functionality Ibd Puts the port into an error disabled state when the port receives a self loop back BPDU fbpdu Decides if this port will flood STP BPDU when STP functionality is disabled Restrictions You must have administrator privilege Examples To config STP ports DGS 3200 10 4 config stp ports 1 external_cost auto Command config stp ports 1 external_cos
222. nother multicast router that is the querier This interval is calculated as follows robustness variable query interval 0 5 query response interval Last listener query count Number of group specific queries sent before the router assumes there are no local listeners of a group The default number is the value of the robustness variable By default the robustness variable is set to 2 You might want to increase this value if you expect a subnet to be lossy last listener query interval The maximum amount of time between group specific query messages including those sent in response to done group messages You might lower this interval to reduce the amount of time it takes a router to detect the loss of the last listener of a group state This allows the switch to be specified as an MLD Querier sends MLD query packets or a Non Querier does not send MLD query packets Set to enable or disable Restrictions You must have administrator privileges Example To configure the MLD snooping querier DGS 3200 10 4 config mld snooping querier default query interval 125 state enable Command config mld snooping querier default query interval 125 state enable Success DGS 3200 10 4 40 3 config mld_snooping mrouter_ports Purpose Used to configure ports as router ports Format config mld_snooping mrouter_ports lt vlan_name 32 gt add delete lt portlist gt Description The config ml
223. ntify number of the indicated firmware config id lt 1 2 gt Specifes the configuration identify number of the indicated configuration increment Allows the download of a partial switch configuration file This allows a file to be downloaded that will change only the switch parameters explicitly stated in the configuration file All other switch parameters will remain unchanged Restrictions You must have administrator privileges Examples Download firmware Success DGS 3200 10 4f DGS 3200 10 44download firmware fromTFTP 10 90 90 1 des30xxp had image id 1 Command download firmware fromTFTP 10 90 90 1 des30xxp had image id 1 Connecting to Server Ses eee ee Done Download firmware xe a e Done Do not power off Please wait programming flash Done 7 2 upload Purpose Used to upload the current switch settings or the switch history log to a TFTP server Format upload log toTFTP lt ipaddr gt path filename 64 gt upload cfg toTFTP lt ipaddr gt path filename 64 gt config id 1 25 Description This command is used to upload either the switch s configuration or the switch s history log to a TFTP server Parameters Parameters Description log toTFTP Specifies that the switch history log will be uploaded to the TFTP server 64 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual cfg_toTFTP Specifies that the switch configuration
224. ntry lt ipaddr gt all config arpentry lt ipaddr gt lt macaddr gt config arp_aging time lt value 0 65535 gt clear arptable show arpentry ipif lt ipif_name 12 gt ipaddress lt ipaddr gt static 21 1 create arpentry Purpose Used to make a static entry into the ARP table Format create arpentry lt ipaddr gt lt macaddr gt Description The create arpentry command is used to enter an IP address and the corresponding MAC address into the switch s ARP table Parameters Parameters Description ipaddr The IP address of the end node or station macaddr The MAC address corresponding to the IP address above Restrictions You must have administrator privileges Examples To create a static ARP entry for the IP address 10 48 74 121 and MAC address 00 50 BA 00 07 36 DGS 3200 10 4 create arpentry 10 48 74 121 00 50 BA 00 07 36 Command create arpentry 10 48 74 121 00 50 BA 00 07 36 Success 169 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4f 21 2 delete arpentry Purpose Used to delete a static entry into the ARP table Format delete arpentry lt ipaddr gt all Description The delete arpentry command is used to delete a static ARP entry made using the create arpentry command above by specifing either the IP address of the entry or all Specifing all clears the switch s ARP table Parameter
225. nual 22 3 Enable sntp Purpose Turn on SNTP support Format enable sntp Description The enable sntp command turns on SNTP support Parameter None Restrictions You must have administrator privileges Example To enable SNTP DGS 3200 10 4 enable sntp Command enable sntp Success DGS 3200 10 4f 22 4 Disable sntp Purpose Turn off SNTP support Format disable sntp Description The disable sntp command turns off SNTP support Parameter None Restrictions You must have administrator privileges Example To disable SNTP 176 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4 disable sntp Command disable sntp Success DGS 3200 10 4f 22 5 config time Purpose Configure time and date settings of the device Format config time date ddmthyyyy gt time hh mm ss gt Description The config time command changes time settings Parameter Parameters Description date system clock date time system clock time Restrictions You must have administrator privileges Example To configure time DGS 3200 10 44 config time 30jun2003 16 30 30 Command config time 30jun2003 16 30 30 Success DGS 3200 10 4f 22 6 config time zone Purpose Configure time zone of the device Format config time zone operator hour gmt hour 0 13 min minute 0 59 gt Description The config time zone
226. ocal2 local3 local4 local5 local6 local7 udp port lt udp_port_number gt state enable disable Description The config syslog command creates a new syslog host Parameters Parameters Description host lt index 1 4 gt The host index or all hosts severity Three levels are supported informational Informational messages warning Warning conditions all Any condition facility Some of the operating system daemons and processes have been assigned Facility values Processes and daemons that have not been explicitly assigned a Facility may use any of the local use facilities or they may use the user level Facility Those Facilities that have been designated are shown in the following Bold font means the facility values the switch supports now local0 user defined Facility local1 user defined Facility local2 user defined Facility local3 user defined Facility local4 user defined Facility local5 user defined Facility local6 user defined Facility local7 user defined Facility udp port The UDP port number ipaddr The IP address of the host state The syslog protocol has been used for the transmission of event notification messages across networks to host The option enables or disables the host to receive such messages 79 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Restrictions You must
227. ofile id Specifies the index of the access list profile access id Specifies the index of the access list entry The range of this value is 1 to 200 vlan Specifies a VLAN name source mac Specifies the source MAC destination m ac Specifies the destination MAC 802 1p Specifies the value of 802 1p priority tag the value can be configured between 1 to 7 ethernet_type Specifies the Ethernet type vian Spcifies a VLAN name source_ip Specifies an IP source address destination_ip Specifies an IP destination address dscp Specifies the value of DSCP the value can be configured from 0 to 63 149 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual icmp Specifies that the rule applies to ICMP traffic type Specifies the ICMP packet type code Specifies the ICMP packet code igmp Specifies that the rule applies to IGMP traffic type Specifies the IGMP packet type tcp src_port Specifies that the rule applies the range of TCP source port dst port Specifies the range of tcp destination port range flag Specifies the TCP flag fields udp src_port Specifies the range of tcp source port range dst port Specifies the range of tcp destination port mask protocod id X Specifies that the rule applies to the value of IP protocol id traffic user defin Specifics the L4 part value e class Specifies IPv6 class valu
228. og Command clear log Success DGS 3200 10 4f 8 6 show log Purpose Used to display the switch history log Format show log index value list X Y Description The show log command displays the switch history log 75 Parameters DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Parameters Description value list X Y The show log command will display the history log between the log number of X and Y For example show log index 1 5 will display the history log from 1 to 5 If no parameter is specified all history log entries will be displayed Restrictions None Examples To display the switch history log DGS 3200 10 4 DGS 3200 10 4 show log index 1 5 Command show log index 1 5 43 Port 5 link down 42 Port 3 link up 100Mbps FULL duplex S3 Successful login through Console Username Anonymous 09 Console session timed out Username dlink 03 Spanning Tree Protocol is disabled 8 7 enable syslog Purpose Used to enable syslog to send a message Format enable syslog Description The enable syslog command enables syslog to send a message Parameters None Restrictions You must have administrator privileges Examples To enable syslog to send a message DGS 3200 10 4 enable syslog Command enable syslog 76 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Success DGS 3200 10 4
229. on command above 110 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Parameter Parameters Description group id Specifies the group ID The group number identifies each of the groups The switch allows up to five link aggregation groups to be configured master_port The master port ID Specifies which port by port number of the link aggregation group will be the master port All of the ports in a link aggregation group will share the port configuration with the master port ports Specifies a range of ports that will belong to the link aggregation group state Allows you to enable or disable the specified link aggregation group If configuring an LACP group the ports state machine will start Restrictions You must have administrator privileges Example To define a load sharing group of ports group id 1 master port 7 DGS 3200 10 4 config link_aggregation group_id 1 master_port 7 ports 5 7 Command config link aggregation group id 1 master port 7 ports 5 7 Success DGS 3200 10 4f 14 4 config link aggregation algorithm Purpose Used to configure the link aggregation algorithm Format config link aggregation algorithm mac source dest ip source dest Description The config link aggregation algorithm command configures the part of the packet examined by the Switch when selecting the egress port for transmitting load sharing data This feature is only available when usin
230. onfig firmware image id 1 2 delete boot up config configuration config id 1 2 boot up delete active show firmware information show config current config config in nvram config id 1 2 information ping lt ipaddr gt times value 0 255 timeout sec 1 99 traceroute lt ipaddr gt ttl lt value 1 605 port value 30000 64900 timeout sec 1 65535 gt probe value 1 9 7 1 download Purpose Used to download and install new firmware or a switch configuration file from a TFTP server Format download firmware fromTFTP lt ipaddr gt path filename 64 gt image id 1 2 cfg_fromTFTP lt ipaddr gt path filename 64 gt config id 1 2 increment Description This command is used to download a new firmware or a switch configuration file from a TFTP server The firmware can be loaded to different section according to the image id or the config id DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Parameters Parameters Description firmware_fromTFTP Download and install new firmware on the switch from a TFTP server cfg fromTFTP Download a switch configuration file from a TFTP server ipaddr The IP address of the TFTP server path filename The DOS path and filename of the firmware or switch configuration file on the TFTP server The maximum length is 64 image id lt 1 2 gt Specifes the image ide
231. onnected to the Switch s serial port via an RS 232 DB 9 cable With the serial port properly connected to a management computer the following screen should be visible If this screen does not appear try pressing Ctrl r to refresh the console screen D6S 3200 10 Gigabit Ethernet Switch Command Line Interface Firmware Build 1 00B009 Copyright C 2007 D Link Corporation All rights reserved UserName There is no initial username or password Just press the Enter key twice to display the CLI input cursor 10 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4 This is the command line where all commands are input 1 2 Setting the Switch s IP Address Each Switch must be assigned its own IP Address which is used for communication with an SNMP network manager or other TCP IP application for example BOOTP TFTP The Switch s default IP address is 10 90 90 90 You can change the default Switch IP address to meet the specification of your networking address scheme The Switch is also assigned a unique MAC address by the factory This MAC address cannot be changed and can be found on the initial boot console screen shown below Boot Procedure V1 00B003 Power On Self Test eeeeeee RI 100 MAC Address 00 80 C8 24 22 00 H W Version 1816 Please Wait Loading V1 00B009 Runtime Image 100 Device Discovery osansa eanna skinad ener eee eens 100 Confi
232. onnecting EapLogoffsWhileConnecting EntersAuthenticating SuccessWhileAuthenticating TimeoutsWhileAuthenticating FailWhileAuthenticating ReauthsWhileAuthenticating EapStartsWhileAuthenticating EapLogoffWhileAuthenticating ReauthsWhileAuthenticated EapStartsWhileAuthenticated Oe Guo OO wq Ou 138 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Eap Bac Bac Bac Bac Bac Bac DGS LogoffWhileAuthenticated 0 kendResponses 0 kendAccessChallenges 0 kendOtherRequestsToSupplicant 0 kendNonNakResponsesFromSupplicant 0 kendAuthSuccesses kendAuthFails oO 3200 10 4t 16 23 show auth session statistics Purpose Used to display authenticator session statistics information Format show auth session statistics ports lt auth_portlist gt Description The show auth session statistics command displays authenticator session statistics information Parameters Parameters Description auth portlist Specifies a range of ports to be configured Restrictions None Examples To display authenticator session statistics information from port 1 DGS Com Por Ses Ses Ses Ses Ses Ses Ses Ses Ses DGS 3200 10 44show auth session statistics ports 1 mand show auth session statistics ports 1 t number 1 sionOctetsRx sionOctetsTx sionFramesRx x SS sionFramesTx sionId sionAuthenticMethod Remote Authentication Server s
233. or role none Allows the flow of PDUs via the Port Restrictions You must have administrator privileges Examples To configure the port capability DGS 3200 10 4 config 802 1x capability ports 1 10 authenticator Command config 802 1x capability ports 1 10 authenticator Success DGS 3200 10 4f 16 9 config 802 1x auth parameter Purpose Used to configure the parameters that control the operation of the authenticator associated with a port Format config 802 1x auth parameter ports lt portlist gt all default direction both in port control force unauth auto force auth quiet period sec 0 65535 gt tx_ period sec 1 65535 supp timeout sec 1 65535 server timeout sec 1 65535 gt max_req value 1 10 reauth period sec 1 65535 gt enable_reauth enable disable Description The config 802 1x auth_parameter command configures the parameters that control the operation of the authenticator associated with a port Parameters Parameters Description portlist Specifies a range of ports to be configured all All ports default Sets all parameter to be default value direction Sets the direction of access control both For bidirectional access control in For unidirectional access control 128 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual port_control You can force a specific port to be unconditionally authorized or unauthorized b
234. ormat show snmp groups Description The show snmp groups command displays the names of groups on the switch and the security model level and the status of the different views Parameter None Restrictions You must have administrator privileges Example DGS 3200 10 4 show snmp group Command show snmp groups Vacm Access Table Settings Group Name public ReadView Name CommunityView WriteView Name Notify View Name CommunityView Securiy Model SNMPvl Securiy Level NoAuthNoPriv Group Name public ReadView Name CommunityView WriteView Name Notify View Name CommunityView Securiy Model SNMPv2 Securiy Level NoAuthNoPriv Group Name initial ReadView Name restricted WriteView Name Notify View Name restricted Securiy Model SNMPv3 Securiy Level NoAuthNoPriv Group Name private ReadView Name CommunityView 37 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual WriteView Name CommunityView Notify View Name CommunityView Security Model SNMPvl Security Level NoAuthNoPriv Group ame private ReadView Name CommunityView WriteView Name CommunityView Notify View Name CommunityView Security Model SNMPv2 Security Level NoAuthNoPriv Group ame ReadGroup ReadView Name CommunityView WriteView Name Notify View Name CommunityView Security Model SNMPv1 Security Level NoAuthNoPriv Group ame ReadGroup ReadView Name CommunityView Wr
235. ose Used to display a list of currently logged in users Format show session Description The show session command will display a list of currently users which are logged in to CLI sessions Parameter None Restrictions You must have administrator privileges 20 Example DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual To display a list of currently logged in users DGS 3200 10 4 show session Command show session ID Login Time Live Time From Level 0 00000 days 01 07 08 11 22 33 444 172 171 180 110 3 8 00000 days 01 07 17 22 33 44 555 Serial Port DGS 3200 10 4 System Anonymous 2 7 show switch Purpose Used to display the switch information Format show switch Description The show switch command displays the switch information Parameter None Restrictions None Example To display the switch information MAC VLA Boo Sys Sys Sys GVR Command Device Type Address IP Address Name Subnet Mask Default Gateway t PROM Version Firmware Version Hardware Version tem Name tem Location tem Contact Spanning Tree p DGS 3200 10 4 show switch show switch DGS 3200 10 Gigabit Ethernet Switch 00 00 00 01 02 00 10 90 90 90 default 255 0 0 0 0 0 0 0 Build 1 008003 Build 1 00B009 1A1G Manual Enabled Disabled 21 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual IGMP Snooping Disabled M
236. pecifies the packet content mask Offset 0 15 Specifies mask for packet bytes 0 15 Offset 16 31 Specifies mask for packet bytes 16 31 Offset 32 47 Specifies mask for packet bytes 32 47 Offset 48 63 Specifies mask for packet bytes 48 63 Offset 64 79 Specifies mask for packet bytes 64 79 class Specifies the IPv6 class mask flowlabel Specifies the IPv6 flow label mask source ipv6 mask Specifies the IPv6 source IP mask 154 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual destination ipv6 mask Specifies the IPv6 destination IP mask Restrictions You must have administrator privileges The Switch supports a maximum of five CPU profiles to be configured Example To create CPU access list rules DGS 3200 10 4fcreate cpu access profile profile id 1 ethernet vlan Command create cpu access profile profile id 1 ethernet vlan Success DGS 3200 10 4fcreate cpu access profile profile id 2 ip source ip mask 255 255 2 554 2 55 Command create cpu access profile profile id 2 ip source ip mask 255 255 255 25 5 Success DGS 3200 10 4f 17 8 delete cpu access profile Purpose Used to delete CPU access list rules Format delete CPU access profile profile id value 1 5 all Description The delete cpu access profile command deletes CPU access list rules Parameter Parameters Description profile id Specifies the index
237. pecifiles the sender s mail address add mail receiver Add mail receiver s address delete mail receiver Delete mail receiver s address Restrictions You must have administrator privilege Examples To configure a server IP 274 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4 config smtp server 172 18 208 9 Command config smtp server 172 18 208 9 Success DGS 3200 10 4 To configure a server port DGS 3200 10 4 config smtp server_port 25 Command config smtp server_port 25 Success DGS 3200 10 4 To configure a mail source address DGS 3200 10 4 config smtp self_mail_addr Black alphanetworks com Command config smtp self_mail_addr Black alphanetworks com Success DGS 3200 10 4 To add a mail destination address DGS 3200 10 4 config smtp add mail_receiver Alice alphanetworks com Command config smtp add mail_receiver Alice alphanetworks com Success DGS 3200 10 4 To delete a mail destination address DGS 3200 10 4 config smtp delete mail_receiver 2 Command config smtp delete mail_receiver 2 Success DGS 3200 10 4 35 5 smtp send testmsg Purpose Used to check the reachability of an SMTP server Format smtp send testmsg Description The smtp send testmsg command is used to send mail to everybody on a mail list and check the reachability to an SMTP server 275 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Man
238. permanent FDB entry DGS 3200 10 4 delete fdb default 00 00 00 00 01 02 Command delete fdb default 00 00 00 00 01 02 Success DGS 3200 10 4f 9 7 clear fdb Purpose Used to clear the switch s forwarding database of all dynamically learned MAC addresses Format clear fdb vlan vlan name 32 gt port lt port gt all Description The clear fdb command clears the switch s forwarding database of all dynamically learned MAC addresses Parameters Parameters Description vlan name The name of the VLAN on which the MAC address resides The maximum length is 32 port The port number corresponding to the MAC destination address The 87 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual switch will always forward traffic to the specified device through this port Restrictions You must have administrator privileges Examples To clear all FDB dynamic entries DGS 3200 10 4 clear fdb all Command clear fdb all Success DGS 3200 10 4f 9 8 show multicast fdb Purpose Used to display the contents of the switch s multicast forwarding database Format show multicast fdb vlan vlan name 32 mac address lt macaddr gt Description The show multicast fdb command displays the contents of the switch s multicast forwarding database Parameters Parameters Description vlan name The name of the VLAN on which the MAC address resi
239. profile_id lt value 1 5 gt disable cpu_interface_filtering enable cpu interface filtering 17 1 create access profile Purpose Used to create access list rules Format create access profile profile id value 1 200 gt ethernet f vlan source mac macmask 000000000000 ffffffffffff 146 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual destination mac lt macmask 000000000000 ffffffffffff 802 1p ethernet type 1 ip vlan source ip mask lt netmask gt destination ip mask lt netmask gt icmp type code igmp type tcp src_port_mask hex 0x0 Oxffff gt dst_port_mask lt hex 0x0 Oxffff gt flag mask al urg ack psh rst syn fin 1 udp src port mask hex 0x0 Oxffff gt dst port mask hex 0x0 Oxffff gt protocol id mask hex 0x0 0xff gt user define mask hex 0x0 Oxffffffff gt 1 ipv6 class flowlabel source ipv6 mask ipv6mask destination ipv6 mask lt ipv6mask gt 1 dscp Description The create access profile command creates access list rules Parameter Parameters Description vlan Specifies a VLAN mask Source mac Specifies the source MAC mask destination mac Specifies the destination MAC mask 802 1p Specifies 802 1p priority tag mask ethernet_type Specifies the Ethernet type mask vlan Specifies a VLAN mask source ip mask Specifies an IP source submask destination ip mask Specifi
240. ption The config 802 1p user_priority command configures the way the switch will map an incoming packet based on its 802 1p user priority to one of the four available hardware priority queues on the switch The switch s default is to map the fowllowing incoming 802 1p user priority values to the four hardware priority queues Parameters Parameters Description priority The 802 1p user priority you want to associate with the lt class_id gt the number of the hardware queue with class_id The number of the switch s hardware priority queue The switch has n 1 hardware priority queues available They are numbered between 0 the lowest priority and n the highest priority Restrictions You must have administrator privileges Examples To configure the 802 1p user priority DGS 3200 10 44 config 802 1p user priority 1 3 Command config 802 1p user priority 1 3 Success DGS 3200 10 4f 36 8 show 802 1p user priority Purpose Used to display 802 1p user priority Format show 802 1p user priority Description The show 802 1p user priority command displays 802 1p user priority Parameters None Restrictions None Examples To display the traffic scheduling mechanism for each COS queue 283 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4 show 802 1p user priority Command show 802 1p user priority QOS Class of Traffic Priority 0 gt lt Class 1
241. ption The config ports command changes switch port settings Parameter Parameters Description portlist Specified a range of ports to be configured all For set all ports in the system you may use all parameter medium type Specify the medium type when configuring ports that are combo ports It s an optional parameter for configuring the medium type of a combo port If there are no combo ports user need not specify medium type in the command Speed You can set port speed for the specified ports auto Set port speed to auto negotiation 10 half Set port speed to 10 half 10 full Set port speed to 10 full 100 half Set port speed to 100 half 100 full Set port speed to 100 full _ 1000 full 1000 full sets port speed to 1000 full When setting port speed to 1000 full user should specify master or slave mode for 1000 base TX interface and leave the 1000 full without any master or slave setting for other interface flow control You can turn on or turn off flow control on one or more ports by setting 31 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual flow_control to enable or disable learning You can turn on or turn off MAC address learning on one or more ports state Enables or disables the specified port If the specified ports are in error disabled status configuring their state to enable will recover these ports from disabled to enable state descrip
242. rameter Parameters Description groupname The name of the group will be deleted Restrictions You must have administrator privileges Example DGS 3200 10 4 delete snmp group D Link group Command delete snmp group D Link group Success DGS 3200 10 4f 4 15 create snmp host Purpose Used to create a recipient of an SNMP trap operation Format create snmp host lt ipaddr gt v1 v2c v3 noauth nopriv auth nopriv auth priv auth string 32 Description The create snmp host command creates a recipient of an SNMP operation Parameter Parameters Description 45 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual ipaddr The IP address of the recipient for which the traps are targeted v1 the least secure of the possible security models v2c the second least secure of the possible security models v3 the most secure of the possible noauth nopriv neither support packet authentication nor encrypting auth nopriv Support packet authentication auth priv Support packet authentication and encrypting auth string authentication string Restrictions You must have administrator privileges Example Success DGS 3200 10 4f DGS 3200 10 4 create snmp host 10 48 74 100 v3 noauth nopriv initial Command create snmp host 10 48 74 100 v3 noauth nopriv initial 4 16 delete snmp host Purpose Used to delete a
243. rameter Parameters Description baud rate The serial bit rate that will be used to communicate with the management host There are four options 9600 19200 38400 and 115200 auto logout The auto logout time out setting never Never timeout 2 minutes When you idle over 2 minutes the device will auto logout 5 minutes When you idle over 5 minutes the device will auto logout 10 minutes When you idle over 10 minutes the device will auto logout 15 minutes When you idle over 15 minutes the device will auto logout Restrictions You must have administrator privileges Example To configure baud rate DGS 3200 10 4 config serial port baud rate 9600 Command config serial port baud rate 9600 Success DGS 3200 10 4f 2 10 enable clipaging Purpose Used to pause the scrolling of the console screen when the show command displays more than one page Format enable clipaging 23 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Description The enable clipaging command enables pausing of the screen display when show command output reaches the end of the page The default setting is enabled Parameter None Restrictions You must have administrator privileges Example To enable pausing of the screen display when show command output reaches the end of the page DGS 3200 10 4 enable clipaging Command enable clipaging Success DGS 3200 10 4f
244. rator privileges Examples DGS 3200 10 4 enable jwac quarantine_server_monitor Command enable jwac quarantine_server_monitor Success DGS 3200 10 4 324 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 43 6 config jwac quarantine server error timeout Purpose Used to set the Quarantine Server error timeout Format config jwac quarantine server error timeout sec 5 300 gt Description When the Quarantine Server monitor is enabled the JWAC Switch will periodically check if the Quarantine works okay If the Switch does not receive any response from Quarantine Server during the configured error timeout the Switch then regards it as not working properly Parameters Parameters Description sec 5 300 gt Specifies the error timeout interval Restrictions You must have administrator privileges Example DGS 3200 10 44 config jwac quarantine server error timeout 60 Command config jwac quarantine server error timeout 60 Success DGS 3200 10 4 43 7 config jwac redirect Purpose Used to config redirect destination and delay time before an unauthenticated host is redirected to the Quarantine Server or JWAC login web page Format config jwac redirect destination quarantine_server jwac_login_page delay_time lt sec 0 10 gt 1 Description This command allows you to configure redirect destination and delay time before an unauthenticated host is redirec
245. reate cpu access_profile profile_id lt value 1 5 gt ethernet f vlan source mac lt macmask 000000000000 ffffffffffff destination mac macmask 000000000000 ffffffffffff 802 1p ethernet type 1 ip vlan source ip mask lt netmask gt destination ip mask lt netmask gt dscp icmp type code igmp type tcp src port mask hex 0x0 Oxffff gt dst port mask hex 0x0 Oxffff gt flag mask all urg ack psh rst syn finK1 udp src port mask hex 0x0 Oxffff gt dst port mask hex 0x0 Oxffff gt protocol id mask hex 0x0 0xff gt user define mask hex 0x0 Oxffffffff gt 1 packet content mask foffset 0 15 hex 0x0 Oxffffffff gt hex OxO Oxffffffff2 lt hex OxO Oxffffffff2 hex OxO Oxffffffff offset 16 31 hex 0x0 Oxffffffff gt hex 0x0 Oxffffffff2 hex OxO Oxffffffff2 lt hex OxO0 Oxffffffff offset 32 47 hex 0x0 Oxffffffff gt hex 0x0 Oxffffffff gt hex OxO Oxffffffff2 hex OxO0 Oxffffffff offset 48 63 hex 0x0 Oxffffffff gt hex 0x0 Oxffffffff gt hex OxO Oxffffffff2 lt hex OxO0 Oxffffffff offset 64 79 hex 0x0 Oxffffffff gt hex 0x0 Oxffffffff gt hex OxO Oxffffffff2 lt hex OxO Oxffffffff 1 ipv6 class flowlabel source ipv6 mask lt ipv6mask gt destination ipv6 mask lt ipv6mask gt 1 create cpu access_profile ethernet f vlan source mac lt macmask 000000000000 ffffffffffff destination mac macmask 00000000000
246. rivileges Examples To delete a default route from the routing table 183 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4 delete port security entry vlan_name default mac address 00 01 30 10 2C C7 port 6 Command delete port_security_entry vlan_name default mac_address 00 01 30 10 2C C7 port 6 Success DGS 3200 10 4f 24 3 clear port security entry Purpose Used to clear the MAC entries learned from the specified port s for the port security function Format clear port security entry port portlist Description Used to clear the MAC entries learned from the specified port s for the port security function Parameters Parameters Description portlist Specifies a range of ports to be configured UnitID port number Restrictions You must have administrator privileges Examples To clear port security entry by port s DGS 3200 10 4 clear port security entry port 6 Command clear port security entry port 6 Success DGS 3200 10 4f 24 4 show port security Purpose Used to display the port security related information of the switch ports Format show port security ports lt portlist gt Description The show port security command displays the port security related information of the switch ports including the port security admin state the maximum number of learning addresses and the lock mode 184 DGS 3200 10 Layer 2 Gigabit Managed Sw
247. rrent MLD snooping group configuration on the switch Format show mld snooping group vlan vlan name 32 gt Description The show mld snooping group command displays the current MLD snooping group configuration on the switch Parameters Parameters Description vlan name The name of the VLAN for which you want to view MLD snooping group configuration information If no parameter is specified the system will display all current MLD group snooping configuration of the switch Restrictions None Examples To show MLD snooping group DGS 3200 10 4 show mld snooping group Command show mld snooping group 307 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual VLAN Name Multicast group MAC address Reports Port Listener VLA Multicast group MAC Reports Name address Port Listener VLA Multicast group MAC Reports Name address Port Listener VLA Multicast group MAC Reports Name address Port Listener VLA Multicast group MAC Reports Name address Port Listener VLA Multicast group MAC Reports Name address Port Listener Total Entries DGS 3200 10 4 6 default FF02 13 33 33 00 00 00 13 1 Ek 7 default FF02 14 33 33 00 00 00 14 1 254 default EEOAE GLS 33 33 00 00 00 15 1 2 9 default FF02 16 33 33 00 00 00 16 1 24 default EE02 17 33 33 00 00 00 17 2 2 7 default FF02 18 33 33 00 00 00
248. rs of authentication DGS 3200 10 44 show authen parameter Command show authen parameter Response timeout 60 seconds User attempts soeg DGS 3200 10 4 219 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 27 25 enable admin Purpose Used to open the administrator level privilege Format enable admin Description Promote the user privilege level to admin level When the user enters this command the authentication method TACACS XTACAS TACACS user defined server groups local enable or none will be used to authenticate the user Because TACACS XTACACS and RADIUS don t support the enable function by themselves if a user wants to use either one of these three protocols to enable authentication the user must create a special account on the server host first which has a username enable and then configure its password as the enable password to support the enable function This command can not be used when authentication policy is disabled Parameters None Restrictions You must have administrator privilege Examples To enable administrator lever privilege DGS 3200 10 3 enable admin Password x x x DGS 3200 10 4 27 26 config admin local_enable Purpose Used to configure the local enable password for the administrator level privilege Format config admin local_enable lt password 0 15 gt Description Configure the local enable password for the enable command Whe
249. rsion Size B Update Time From User Boot 7 7 ping Purpose Used to test the connectivity between network devices Format ping lt ipaddr gt times lt value 0 255 gt timeout lt sec 1 99 gt Description The ping command sends Internet Control Message Protocol ICMP echo messages to a remote IP address The remote IP address will then echo or return the message This is used to confirm connectivity between the switch and the remote device Parameter Parameters Description ipaddr Specify the IP address of the host value The number of individual ICMP echo messages to be sent A value of 0 will send an infinite ICMP echo messages The maximum value is 255 The default is 0 sec Defines the time out period while waiting for a response from the remote device 68 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual A value of 1 to 99 seconds can be specified The defaultis 1 second Restrictions You must have administrator privileges Example To send ICMP echo message to 10 51 17 1 for 4 times DGS 3200 10 4fping 10 51 17 1 times 4 Command ping 10 51 17 1 times 4 Reply from 10 51 17 1 time lt 1l0ms Reply from 10 51 17 1 time lt 1l0ms Reply from 10 51 17 1 time lt 1l0ms Reply from 10 51 17 1 time lt 1l0ms Ping Statistics for 10 51 17 1 Packets Sent 4 Received 4 Lost 0 DGS 3200 10 4 7 8 traceroute Purpose Used to trace
250. rstp stp config stp priority lt value 0 61440 gt instance_id lt value 0 15 gt config stp maxage lt value 6 40 gt maxhops lt value 1 20 gt hellotime lt value 1 2 gt forwarddelay lt value 4 30 gt txholdcount lt value 1 10 gt fbpdu enable disable config stp ports lt portlist gt external cost auto value 1 200000000 gt hellotime lt value 1 2 gt migrate yes no edge true false p2p true false auto state enable disable fbpdu enable disable config stp mst_ports lt portlist gt instance id lt value 0 15 internal cost auto lt value 1 200000000 gt priority value 0 240 gt Note This chapter includes all the commands of chapter 9 STP commands It is not suitable to use chapter 9 if the switch supports both the MSTP and the STP protocols 231 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 29 1 show stp Purpose Used to show the bridge parameters global settings CIST or msti id 0 Format show stp Description The show stp command is used to show the bridge parameters global settings Parameters None Restrictions None Examples To show STP DGS 3200 10 4 show stp Command show stp STP Bridge Global Settings STP Status Enabled STP Version MSTP Max Age 20 Forward Delay 155 Max Hops t 20 TX Hold Count ES Forwarding BPDU Enabled DGS 3200 10 4
251. rver uses the password The maximum length of the key is 32 guest_vian An authentication VLAN ports The guest VLAN members The specified port list will be associated with guest_vlan Those ports outside of the specified port list will be de associated from the guest VLAN Restrictions You must have administrator privileges Examples To config the port state DGS 3200 10 4 config mac based access control ports 1 8 state enable Command config mac based access control ports 1 8 state enable Success DGS 3200 10 4 292 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual To config method DGS 3200 10 4 config mac based access control method local Command config mac based access control method local Success DGS 3200 10 4 To config password DGS 3200 10 4 config mac based access control password default Command config mac based access control password default Success DGS 3200 10 4 To config guest_vlan ports DGS 3200 10 4 config mac based access control relative vlan 123 Command config mac based access control relative vlan 123 Success DGS 3200 10 4 39 3 config mac based access control guest vlan Purpose Configure guest VLAN ports for MAC based Access Control Format config mac based access control guest vlan ports portlist Description This command assigns some ports to be guest VLAN members Parameters Parameters D
252. s DGS 3200 10 4 config router_ports default add 1 10 Command config router_ports default add 1 10 Success DGS 3200 10 4 15 4 config router ports forbidden Purpose Used to configure ports as forbidden router ports Format config router ports forbidden vlan name 32 gt add delete portlist Description The config router ports forbidden command allows you to designate a range of ports as being not connected to multicast enabled routers This ensures that the forbidden router port will not propagate routing packets out Parameters Parameters Description vlan name The name of the VLAN on which the router port resides add delete Specifies to add or delete the router ports portlist Specifies a range of ports to be configured Restrictions You must have administrator privileges Examples To set up port range 1 7 to be forbidden router ports of the default VLAN DGS 3200 10 4 config router ports forbidden default add 1 7 Command config router ports forbidden default add 1 7 Success DGS 3200 10 4 117 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 15 5 enable igmp_snooping Purpose Used to enable IGMP snooping on the switch Format enable igmp_snooping Description The enable igmp_snooping command allows you to enable IGMP snooping on the switch Parameters None Restrictions You must have administrator privileges Examples To
253. s Parameters Description string 15 The user defined server group name Restrictions You must have administrator privilege Examples To delete a user defined authentication server group DGS 3200 10 4 delete authen server group mix 1 Command delete authen server group mix 1 Success DGS 3200 10 4 27 17 show authen server_group Purpose Used to display the authentication server groups Format show authen server_group lt string 15 gt Description Display the authentication server groups Parameters Parameters Description lt string 15 gt The built in or user defined server group name Restrictions None 213 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Examples To display all authentication server groups DGS 3200 10 4 show authen server_group Command show authen server_group Server Group mix_l Group Name IP Address Protocol mix_1 10 1 1 222 TACACS radius LOL ZA RADIUS tacacs 10 1 L229 TACACS tacacs 10 Td 226 TACACS xtacacs LOL a x2 XTACACS Total Entries 5 DGS 3200 10 4 27 18 create authen server host Purpose Used to create an authentication server host Format create authen server host lt ipaddr gt protocol tacacs xtacacs tacacs radius port int 1 65535 gt key key string 254 gt none timeout int 1 255 retransmit int 1 255 Description Create an authentica
254. s To show the SSH user authentication method DGS 3200 10 4 show ssh authmode Command show ssh authmode The SSH Authmode Password Enabled Publickey Enabled Hostbased Enabled DGS 3200 10 4 26 5 config ssh user Purpose Used to update user information for ssh configuration Format config ssh user lt username gt authmode publickey password hostbased hostname lt domain_name 32 gt hostname_ip lt domain_name 32 gt lt ipaddr gt Description The config ssh user command update the ssh user information 195 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Parameters Parameters Description username The user name publickey Specifies user authentication method password Specifies user authentication method hostbased Specifies user authentication method hostname Specifies host domain name hostname ip Specifies host domain name and IP address domain name Specifies host name if configuration is in host based mode ipaddr Specifies host IP address if configuring host based mode Restrictions You must have administrator privilege Note The user account must be created Examples To update user test authmode DGS 3200 10 4 config ssh user test publickey Command config ssh user test publickey Success DGS 3200 10 4 26 6 show ssh user authmode Purpose Used to show SSH user information Format show ssh user
255. s radius server_group lt string 15 gt local none delete authen_login method_list_name lt string 15 gt show authen login default method list name string 15 gt all create authen enable method list name string 15 gt config authen enable default method list name string 15 gt method tacacs xtacacs tacacs radius server group string 15 local enable none delete authen_enable method list name string 15 gt show authen enable default method list name string 15 gt all config authen application console telnet ssh http all login enable default method list name string 15 gt sshow authen application create authen server group string 15 gt config authen server group tacacs xtacacs tacacs radius string 15 gt add delete server host lt ipaddr gt protocol tacacs xtacacs tacacs radius delete authen server group string 15 gt show authen server group string 15 gt create authen server host lt ipaddr gt protocol tacacs xtacacs tacacs radius port int 1 65535 gt key key string 254 gt none timeout int 1 255 retransmit int 1 255 config authen server_host lt ipaddr gt protocol tacacs xtacacs tacacs radius port lt int 1 65535 gt key lt key_string 254 gt none timeout lt int 1 255 gt retransmit lt int 1 255 gt delete authen server_host lt ipaddr gt protoco
256. s 2 DGS 3200 10 4 9 10 show multicast vlan filtering mode Purpose Used to show the multicast packet filtering mode for VLANs 89 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Format show multicast vlan filtering mode vlanid lt vlanid_list gt vlan vlan name 32 gt Description The show multicast filtering mode command show the multicast packet filtering mode for VLANs Parameters Parameters Description vlanid_list Displays the entries by VLAN ID list vlan_name Displays the entries for a specific VLAN Restrictions None Examples To show multicast filtering mode for ports DGS 3200 10 4 show multicast vlan_filtering_mode Command show multicast filtering_mode VLAN Name Multicast Filter Mode default forward_unregistered_groups DGS 3200 10 4f 90 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 10 PACKET STORM CONTROL COMMANDS config traffic control lt portlist gt all broadcast enable disable multicast enable disable unicast enable disable action drop shutdown threshold lt value 512 1000000 gt time interval secs 5 30 gt countdown minutes 0 5 30 config traffic trap none storm occurred storm cleared both show traffic control lt portlist gt 10 1 config traffic control Purpose Used to configure broadcast multicast dlf packet storm control A S W mechanism i
257. s Example DGS 3200 10 4 enable jwac Command enable jwac Success DGS 3200 10 4 43 2 enable disable jwac redirect Purpose Used to enable or disable JWAC redirect function Format enable jwac redirect disable jwac redirect Description When redirect quarantine_server is enabled the unauthenticated host will be redirected to a quarantine server when it tries to access a random URL When redirect jwac_login_page is enabled the unauthenticated host will be redirected to the jwac_login_page on the Switch to finish authentication When redirect is disabled only access to quarantine_server and the jwac_login_page from an unauthenticated host is allowed all other Web access will be denied Parameters None Restrictions When enable redirect to quarantine server is in effect a quarantine server must be configured first You must have administrator privileges Example 322 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4 enable jwac redirect Command enable jwac redirect Success DGS 3200 10 4 43 3 enable disable jwac forcible logout Purpose Used to enable or disable the JWAC forcible logout function Format enable jwac forcible_logout disable jwac forcible_logout Description When forcible_logout is enabled a Ping packet from an authenticated host to the JWAC Switch with TTL 1 will be regarded as a logout request and the host will be moved back to unauth
258. s Parameters Description ipaddr The IP address of the end node or station all Deletes all ARP entries Restrictions You must have administrator privileges Examples To delete an entry of IP address 10 48 74 121 from the ARP table DGS 3200 10 4 delete arpentry 10 48 74 121 Command delete arpentry 10 48 74 121 Success DGS 3200 10 4f 21 3 config arpentry Purpose Used to configure a static entry to the ARP table Format config arpentry lt ipaddr gt lt macaddr gt Description The config arpentry command configures a static entry to the ARP table Specify the IP address and MAC address of the entry Parameters Parameters Description 170 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual ipaddr The IP address of the end node or station macaddr The MAC address corresponding to the IP address above Restrictions You must have administrator privileges Examples To configure a static ARP entry for the IP address 10 48 74 121 and MAC address 00 50 BA 00 07 36 DGS 3200 10 4 config arpentry 10 48 74 121 00 50 BA 00 07 36 Command config arpentry 10 48 74 121 00 50 BA 00 07 36 Success DGS 3200 10 4f 21 4 config arp aging time Purpose Used to configure the age out timer for ARP table entries on the switch Format config arp aging time value 0 65535 gt Description The config arp aging time command sets the maximum amount of time
259. s 274 35 5 SMTP SEND_TESTMSG cccccsssscssscsscessesscssecsecessesscssecesscssesssesscessessesssascssccssesssusscessessesssesscsasessesssesscsescssesssessceaseasesssesssnaseaseaseess 275 36 QOS COMMAND y ite 277 36 CONFIG BANDWIDTH CONTROL entente eoe eee t eap Govdevstesvesnesscedsvevecessuvnde vdevecsseevnes eee bai o ee aua ep eue ae e pue Re ER Vea Ren 277 36 2 SHOW BANDWIDTH _CONTROL scccssssscssecssssssesscesecssscssesscesscessessesseescesscssessssscsssessessssscssscasesssesscsascasesssesscsascasssssesssasenseessees 279 3623 CONFIG SCHEDULING JR PP He 280 36 4 CONFIG SCHEDULING MECHANISM ccccsscssssssssscssecssccssessccsecssccssesscseecesccssesssuascsesessessscsscessessessseasceescesesusessceaseasesssessseaseesesusees 280 36 5 SHOW SCHEDULING A ti 36 6 SHOW SCHEDULING_MECHANISM 36 7 CONFIG 802 1P USER_PRIORITY 36 8 SHOW 802 1P USER PRIORITY 36 9 CONFIG 802 1P DEFAULT PRIORITY ccccccesscssssscssccssesssessccsecsessssesscssscesssssssscssscsesessessscsscsaseesesssesscsescesesssesscsaseasesssesssaseaseessees 284 36 10 SHOW 802 1P DEFAULT PRIORITY ccccccessessecscssecssccssescssecsescssesscesscesccssessssescsscsssesssesscesseesesssesscsescesesssessceesessesusessseasenseessens 285 37 TELNET CLIENT COMMAND LIST ic icssssssosessesesesssebecsesssdesososnscnsesseseinsssabcasesssdensscsususoessosevesssonsetesissesossnsetoessssesesasebendabioess 287 37 ETEENET A NN RN 287 38 DHCP A
260. s MAC address vlan Delete database by this VLAN name Restrictions You must have administrator privileges Examples To delete a MAC based Access Control local database entry by MAC address 296 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4 delete mac based access control local mac 00 00 00 00 00 01 Command delete mac based access control local mac 00 00 00 00 00 01 Success DGS 3200 10 4 To delete a MAC based Access Control local database entry by VLAN name DGS 3200 10 4 delete mac based access control local vlan default Command delete mac based access control local vlan default Success DGS 3200 10 4 39 8 show mac_based_access control auth_mac Purpose Used to display MAC based Access Control authentication MACs Format show mac_based_access_control auth_mac ports lt portlist gt Description User use this command to display mac_based_access_control authentication MACs on some ports or all ports Parameters Parameters Description ports The ports that you want to show Restrictions None Examples To show MAC based Access Control authenticated MAC addresses DGS 3200 10 4 show mac based access control auth mac Command show mac based access control auth mac Port number 1 Index MAC Address Auth State VLAN Name 1 00 00 01 02 03 A2 Authenticating default 2 00 03 09 18 10 01 Authenticating default 3 00 05 5D ED
261. s Specifies the maximum number of router hops that the DHCP BOOTP packets can cross The range is 1 to 16 The default value is 4 time The minimum time in seconds within which the switch must relay the DHCP BOOTP request If this time is exceeded the switch will drop the DHCP BOOTP packet The range is 0 to 65535 The default value is O 263 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Restrictions You must have administrator privileges Examples To configure DHCP relay status DGS 3200 10 4 config dhcp_relay hops 4 time 2 Command config dhcp_relay hops 4 time 2 Success DGS 3200 10 4f 33 2 config dhcp relay add Purpose Used to add an IP destination address to the switch s DHCP relay table Format config dhcp relay add ipif ipif name 12 gt lt ipaddr gt Description The config dhcp relay add command adds an IP address as a destination to forward relay DHCP BOOTP packets Parameters Parameters Description ipif name The name of the IP interface which contains the IP address below ipaddr The DHCP BOOTP server IP address Restrictions You must have administrator privileges Examples To add a DHCP BOOTP server to the relay table DGS 3200 10 4 config dhcp relay add ipif System 10 43 21 12 Command config dhcp relay add ipif System 10 43 21 12 Success DGS 3200 10 4f 33 3 config dhcp relay delete Purpose Used to delete one or all IP d
262. s list entry Config cpu access profile profile id lt value 1 n gt add access id lt value 1 65535 gt ethernet vlan vlan name 32 source mac lt macaddr gt destination mac macaddr 802 1p lt value 0 7 gt ethernet type hex 0x0 Oxffff gt ip vlan vlan name 32 source ip lt ipaddr gt destination ip ipaddr dscp value icmp type value 0 255 code value 0 255 gt igmp type lt value 0 255 gt tcp src port value 0 65535 gt dst port value 0 65535 gt flag all urg ack psh rst syn fin udp src port value 0 65535 gt dst port value 0 65535 gt protocol id value 0 255 user define hex 0x0 Oxffffffff gt lt hex 0x0 Oxffffffff gt lt hex 0x0 Oxffffffff gt lt hex 0x0 Oxffffffff gt lt hex OxO0 Oxffffffff2 packet content offset 0 15 hex 0x0 Oxffffffff gt lt hex OxO Oxffffffff2 hex 0x0 Oxffffffff gt lt hex OxO Oxffffffff2 offset 16 31 hex 0x0 Oxffffffff gt lt hex OxO Oxffffffff2 hex 0x0 Oxffffffff gt lt hex OxO Oxffffffff2 offset 32 47 hex 0x0 Oxffffffff gt lt hex OxO Oxffffffff2 hex 0x0 Oxffffffff gt lt hex OxO Oxffffffff2 offset 48 63 hex OxO Oxffffffff2 hex OxO Oxffffffff2 hex 0x0 Oxffffffff gt lt hex OxO Oxffffffff2 offset 64 79 hex 0x0 Oxffffffff lt hex OxO Oxffffffff2 hex Ox0 Oxffffffff2 hex OxO Oxffffffff ipv6 class value 0 255 gt flowlabel hex 0x0 Oxfffff source ipv6 lt ipv6addr gt destination
263. s provided to monitor the traffic rate in addition to the H W storm control mechanism If the traffic rate is too high this port will be shut down Format config traffic control lt portlist gt all broadcast enable disable multicast enable disable unicast enable disable action drop shutdown threshold lt value 512 1000000 gt time_interval lt secs 5 30 gt countdown lt minutes 0 5 30 gt Description The config traffic control command configures broadcast multicast dlf storm control Broadcast storm control commands chapter 11 provides H W storm control mechanism only and these packet storm control commands include H W and S W mechanisms to provide shutdown recovery and trap notification functions Parameters Parameters Description portlist Used to specify a range of ports to be configured broadcast Enable or disable broadcast storm control multicast Enable or disable multicast storm control unicast Enable or disable unknown packet strom control Only support HW storm control action There are two actions to take for storm control shutdown and drop The former is implemented in S W and the latter is implemented in H W If a user chooses shutdown he needs to configure threshold countdown and time interval as well 91 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual threshold The upper threshold at which the specified storm control will turn on
264. s that enable or disable the WAC function state Specify the port state method Specify which authenticated method is used vlan The authentication VLAN name Restrictions You must have administrator privileges The specific VLAN assigned to be the authentication VLAN must already exist already Examples To config the WAC port state DGS 3200 10 4 config wac ports 1 8 state enable Command config wac ports 1 8 state enable Success DGS 3200 10 4 To config method DGS 3200 10 4 config wac method radius Command config wac method radius Success DGS 3200 10 4 To config VLAN DGS 3200 10 4 config wac vlan default Command config wac vid default Success DGS 3200 10 4 41 4 create wac user Purpose Used to create a user account for Web based Access Control Format create wac user lt username 15 gt vlan lt vlan_name 32 gt Description The create wac command allows you to create an account for Web based Access Control Parameters 313 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Parameters Description username User account for Web based Access Control vian The authentication VLAN name Restrictions You must have administrator privileges This user account is independent from the login user acoount Example To create a WAC account DGS 3200 10 4 create wac user 123 Command create wac user 123 Enter a case sensitive ne
265. snmp view Command show snmp view Vacm View Table Settings View Name Subtree View Type restricted 143564152 LL Included restricted Lodo Le Zi ost 1 Included restricted 1 3 64 146 35 Ol Included DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual restricted restricted CommunityView CommunityView CommunityView Total Entries 8 DGS 3200 10 4f Li 2 51 21 Included d 5 3 6 1425 3515 14 41 Included il Included Ts Excluded Ts 6 3 1 Included 4 8 create snmp community Purpose Use an SNMP community string to define the relationship between the SNMP manager and the agent The community string acts like a password to permit access to the agent on the switch You can specify one or more of the following characteristics associated with the string An access list of IP addresses of the SNMP managers that are permitted to use the community string to gain access to the agent A MIB view which defines the subset of all MIB objects accessible to the given community Read and write or read only permission for the MIB objects accessible to the community Format create snmp community community string 32 gt view view name 32 gt read only read write Description The create snmp community command creates an SNMP community string Parameter Parameters Description community string Communtiy string Max string length is 32 view name View name A MIB view Max length is 32 read only Read and
266. snooping IGMP Snooping Global State Disabled Multicast router Only Disabled VLAN Name default Query Interval 125 Max Response Time 10 Robustness Value 2 Last Member Query Interval 1 Host Timeout 260 Route Timeout 260 Leave Timer 2 Querier State Disabled Querier Router Behavior Non Querier State Disabled VLAN Name vlan2 Query Interval 125 119 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Max Response Time 10 Robustness Value 1302 Last Member Query Interval 1 Host Timeout 260 Route Timeout 260 Leave Timer 2 Querier State Disabled Querier Router Behavior Non Querier State Disabled Total Entries 2 DGS 3200 10 4 15 8 show igmp_snooping group Purpose Used to display the current IGMP snooping group configuration on the switch Format show igmp_snooping group vlan lt vlan_name 32 gt Description The show igmp_snooping group command displays the current IGMP snooping group configuration on the switch Parameters Parameters Description vlan_name The name of the VLAN for which you want to view IGMP snooping group configuration information If no parameter specified the system will display all current IGMP group snooping configuration of the switch Restrictions None Examples To show the IGMP snooping group DGS 3200 10 4 show igmp_snooping group Command show igmp_snooping group VLAN Name default ulticast group 224 0 0 2 AC
267. specified then there is nothing to prevent any IP address from accessing the switch provided the user knows the Username and Password Parameter Parameters Description ipaddr The IP address of the trusted host Restrictions You must have administrator privileges DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Example To create the trusted host DGS 3200 10 4 create trusted_host 10 48 74 121 Command create trusted_host 10 48 74 121 Success DGS 3200 10 4f 6 2 delete trusted host Purpose Used to delete a trusted host entry made using the create trusted host command above Format delete trusted host ipaddr lt ipaddr gt all Description The delete trusted host command is used to delete a trusted host entry made using the create trusted host command above Parameter Parameters Description ipaddr lt all gt The IP address of the trusted host Restrictions You must have administrator privileges Example To delete the trusted host DGS 3200 10 44delete trusted host 10 48 74 121 Command delete trusted host 10 48 74 121 Success DGS 3200 10 4f 6 3 show trusted host Purpose Used to display a list of trusted hosts entered on the switch using the create trusted host command above Format show trusted host lt ipaddr gt 56 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Description The show trusted host
268. sscscsscsccssesccssesecessseeccnsesecssesecsssaesecuassccssesesasesessesscatenscassaceecsaseecaeenecaees 27 5 CONFIG AUTHEN LOGIN oiar E e e e Re esl a vba ORO RU TR Aaa 27 6 DELETE AUTHEN LOGIN METHOD LIST NAME c ccccsssssescsssescssesscssesscsssaeeccnsesecasesecasaececssesecssesecassaessesecaseaecaeeaceecnacsecasenecaees 27 7 SHOW AUTHEN LOGIN recenter ennt ntn nnn enn 27 8 CREATE AUTHEN ENABLE METHOD LIST NAME 27 9 CONFIG AUTHEN ENABLE eene enne 27 10 DELETE AUTHEN ENABLE METHOD LIST NAME cscssscsssssescssesscssesscsssseccnsesecssesecaseaececsacsecssesecaseaecaesacasenscaesaeeecnecsecasenscaees 208 27 1 SHOW AUTHEN ENABLE ai ct 21 12 CONFIG AUTHEN APPLICATION crit rre REESE EXPE EEUU RETE e C IEEE EE E PER NER EGER CEN ra 2113 SHOW AUTHEN APPLICATION 5 5 n tete te ee pe RE Ue ET rr OE RESI AER c E ERO UN e e E VE HE Reged 27 14 CREATE AUTHEN SERVER GROUP 27 15 CONFIG AUTHEN SERVER GROUP 27 16 DELETE AUTHEN SERVER GROUP 21 177 SHOW AUTHEN SERVER GROUP edit 27 18 CREATE AUTHEN SERVER HOST cccssssscsssssescsscsscssesscssseccesaesccssesecssesecsesaesccnsesecssesecsssaececuaesecasesscaseaecacsacsncssesecatenscaeeaeeeenaeenes 27 19 CONFIG AUTHEN SER VER HOST 4 eee ee eR ERE ETATE ERNEUERBARE TENET IURE E VERRE EI ee 27 20 DELETE AUTHEN SERVER _HOST c cssssscsssssesesscsscssesscssesecseaesccnsesccasesecsesaeeccnsesecssesecasaesecsaesecasesscasesecsesaesecnsesecatenecaseaseeenaeee
269. st be always specified for creating a VLAN DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Parameters Parameters Description vlan_name The name of the VLAN to be created tag The VLAN ID of the VLAN to be created The range is from 1 to 4094 advertisement Specifies the VLAN as being able to be advertised out Restrictions Examples To create a VLAN with name v2 and VLAN ID 2 DGS 3200 10 4fcreate vlan v2 tag 2 type 1q vlan advertisement Command create vlan v2 tag 2 type lq_vlan advertisement Success DGS 3200 10 4 delete vian Purpose Used to delete a previously configured VLAN on the switch Format delete vian lt vlan_name gt Description The delete vlan command deletes a previously configured VLAN on the switch Parameters Parameters Description vlan_name The VLAN name of the VLAN to be deleted Restrictions You must have administrator privileges Examples To remove a vlan v1 DGS 3200 10 4 delete vlan vl Command delete vlan vl Success DGS 3200 10 4f 100 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual config vlan add ports Purpose Used to add additional ports to a previously configured VLAN Format config vlan vlan name add tagged untagged forbidden delete lt portlist gt advertisement enable disable Description The config vlan add command allows you to add por
270. strator privileges Examples To create the admin level user dlink DGS 3200 10 4 create account admin dlink Command create account admin dlink Enter a case sensitive new password Enter the new password again for confirmation Success DGS 3200 10 4f To create the user level user System DGS 3200 10 4 create account user System Command create account user System Enter a case sensitive new password Enter the new password again for confirmation Success DGS 3200 10 4f 2 2 enable disable password encryption Purpose Used to enable disable password encryption Format enable password encryption disable password encryption Description The user account configuration information will be stored in the configuration file and can be applied to the system later If the password encryption is enabled the password will be in encrypted form when it is stored in the configuration file When password encryption is disabled the password will be in plan text form when it is stored in the configuration file However if the created user account directly use the encrypted password the password will still be in the encrypted form Parameters None 17 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Restrictions You must have administrator privileges Examples To enable the password encryption DGS 3200 10 4 enable password encryption Command enable password
271. sword Enter a case sensitive new password Enter the new password again for confirmation Success DGS 3200 10 4 To configure the user password of adminstrator account DGS 3200 10 4fconfig account adminstrator Command config account administrator encrypt sha_l Q amp cRDtpNCeBiq15KOOsKVyrAOsAiCIZOwq Success DGS 3200 10 4 2 4 show account Purpose Used to display user accounts Format show account Description The show account command displays user accounts that have been created Parameter None Restrictions None Example To display the accounts that have been created DGS 3200 10 4 show account Command show account Current Accounts Username Access Level System User dlink Admin Total Entries 2 DGS 3200 10 4f 19 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 2 5 delete account Purpose Used to delete an existing account Format delete account lt username gt Description The delete account command deletes an existing account Parameter Parameters Description lt username gt Name of the user who will be deleted Restrictions You must have administrator privileges One active admin user must exist Example To delete the user account System DGS 3200 10 4 delete account System Command delete account System Success DGS 3200 10 4f 2 6 show session Purp
272. t value 0 10 gt aging time infinite min 1 1440 gt idle time infinite min 1 1440 gt block time sec 0 300 gt 1 config jwac radius protocol local pap chap ms chap ms chapv2 eap md5 create jwac user username 15 gt delete jwac user username 15 gt all users show jwac user delete jwac host ports all portlist authenticated authenticating blocked lt macaddr gt show jwac show jwac host ports all lt portlist gt authenticated authenticating blocked show jwac port all lt portlist gt 43 1 enable disable jwac Purpose Used to enable or disable the JWAC function Format enable jwac disable jwac 321 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Description JWAC and WAC are mutually exclusive functions That is they can not be enabled at the same time Using the JWAC function PC users need to pass two stages of authentication The first stage is to do the authentication with the quarantine server and the second stage is the authentication with the switch For the second stage the authentication is similar to WAC except that there is no port VLAN membership change by JWAC after a host passes authentication The RADIUS server will share the server configuration defined by the 802 1X command set Parameters None Restrictions You must have administrator privilege
273. t auto Success DGS 3200 10 4 29 15 config stp mst_ports Purpose Used to configure the port management parameters at the CIST instance_id 0 or MSTI instance_id 1 level Format config stp mst_ports lt portlist gt instance_id lt value 0 15 gt internal_cost auto lt value 1 200000000 gt priority lt value 0 240 gt 242 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Description Internal Path Cost and Port Priority of a Port in MSTI can be separately configured to different values from the configuration of CIST instance id 2 0 Parameters Parameters Description mst ports Distinguished from the parameters of ports only at the CIST level portlist One of the CLI Value Types restricts the input value and format of the ports instance id Instance 0 represents CIST Instance from 1 to 15 represents MSTI 1 MSTI 15 internal cost The Port Path Cost used in MSTP priority The Port Priority Restrictions You must have administrator privilege Examples To configure STP MST ports DGS 3200 10 44 config stp mst ports 1 instance id 0 internal cost auto Command config stp mst ports 1 instance id 0 internal cost auto Success DGS 3200 10 4 243 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 30 SSL COMMANDS 30 SSL COMMAND LIST show ssl certificate download ssl certificate lt ipaddr gt certfilen
274. t hex OxO Oxffffffff hex Ox0 Oxffffffff packet content mask offset 0 15 hex 0x0 Oxffffffff gt lt hex OxO Oxffffffff2 hex 0x0 Oxffffffff lt hex 0x0 Oxfffffff i gt offset 16 31 hex Ox0 Oxffffffff gt lt hex 0x0 Oxffffffff gt lt hex OxO Oxffffffff2 hex 0x0 Oxffffffff gt offset 32 47 hex Ox0 Oxffffffff2 hex OxO Oxffffffff2 hex 0x0 Oxffffffff lt hex OxO Oxffffffff offset 48 63 hex Ox0 Oxffffffff gt lt hex 0x0 Oxffffffff gt lt hex OxO Oxffffffff2 hex 0x0 Oxffffffff gt offset 64 79 hex 0x0 Oxffffffff gt lt hex 0x0 Oxffffffff gt lt hex Ox0 Oxffffffff2 hex OxO Oxffffffff ipv6 class flowlabel source ipv6 mask lt ipv6mask gt destination ipv6 mask lt ipv6mask gt Description The create cpu access profile command creates access list rules Parameter Parameters Description vlan Specifies a VLAN mask Source mac Specifies the source MAC mask destination mac Specifies the destination MAC mask 802 1p Specifies 802 1p priority tag mask ethernet_type Specifies the Ethernet type mask vlan Specifies a VLAN mask source ip mask Specifies an IP source submask destination ip mask Specifies an IP destination submask dscp Specifies the DSCP mask tos Specifies the DSCP mask icmp Specifies that the rule applies to icmp traffic type Specifies that the rule applies to ICMP type traffic code Specifies that the rule applies to ICMP code tra
275. t hex OxO Oxffffffff2 hex OxO Oxffffffff 2 hex OxO Oxffffffff Offset 16 31 hex OxO0 Oxffffffff2 hex OxO Oxffffffff2 hex OxO Oxffffffff2 hex OxO Oxffffffff offset 32 47 hex 0OxO0 Oxffffffff2 hex OxO Oxffffffff2 hex OxO Oxffffffff2 hex OxO Oxffffffff offset 48 63 hex 0OxO0 Oxffffffff2 hex OxO Oxffffffff2 hex OxO Oxffffffff2 hex OxO Oxffffffff offset 64 79 hex 0x0 Oxffffffff gt hex OxO Oxffffffff hex OxO Oxffffffff2 hex OxO0 Oxffffffff K1 ipv6 class lt value 0 255 gt flowlabel lt hex 0x0 Oxfffff gt source ipv6 lt ipv6addr gt destination ipv6 lt ipv6addr gt 1 port lt portlist gt all permit deny time range range name 32 gt delete access id value 1 100 Description The config cpu access profile command configures CPU access list entry Parameter Parameters Description profile id Specifies the index of CPU access list profile access id Specifies the index of an access list entry The range of this value is 1 to 100 vlan Specifies a VLAN name source mac Specifies the source MAC 156 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual destination m Specifies the destination MAC ac 802 1p Specifies the value of 802 1p priority tag the value can be configured between 1 and 7 ethernet type Specifies the Ethernet type vlan Spcifies a VLAN name source ip Specifies an IP source address
276. t vlan filtering mode vlanid vlanid list vlan vlan name all forward unregistered groups filter unregistered groups Description The config multicast fdb command configures the multicast packet filtering mode for VLANs Parameters Parameters Description vlanid list Specifies VLAN ID list to set vlan_namelall Specifies VLAN or all VLANs to set forward unregistered groups The filtering mode can be forward unregistered groups or filler unregistered groups filter unregistered groups Restrictions You must have administrator privileges Examples To configure the the multicast packet filtering mode for all VLAN DGS 3200 10 4 config multicast vlan filtering mode all forward unregistered groups Command config multicast port filtering mode all forward unregistered groups Success DGS 3200 10 4 86 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 9 6 delete fdb Purpose Used to delete an entry to the switch s forwarding database Format delete fdb lt vlan_name 32 gt lt macaddr gt Description The delete fdb command deletes a permanent FDB entry Parameters Parameters Description vlan_name The name of the VLAN on which the MAC address resides The maximum length is 32 macaddr The multicast MAC address to be deleted from the static forwarding table Restrictions You must have administrator privileges Examples To delete a
277. tatistics information Format show auth statistics ports lt portlist gt Description The show auth statistics command displays authenticator statistics information Parameters Parameters Description portlist Specifies a range of ports to be configured Restrictions None Examples To display authenticator statistics information from port 1 DGS 3200 10 4fshow auth statistics ports 1 Command show auth statistics ports 1 Port number 1 137 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual EapolFramesRx EapolFramesTx EapolStartFramesRx EapolReqIdFramesTx EapolLogoffFramesRx EapolReqFramesTx EapolRespIdFramesRx EapolRespFramesRx InvalidEapolFramesRx EapLengthErrorFramesRx LastEapolFrameVersion Coco c c c COO ODO o c LastEapolFrameSource 0 00 00 00 00 00 DGS 3200 10 4 16 22 show auth_diagnostics Purpose Used to display authenticator diagnostics information Format show auth_ diagnostics ports lt auth_portlist gt Description The show auth_ diagnostics command displays authenticator diagnostics information Parameters Parameters Description auth portlist Specifies a range of ports to be configured Restrictions None Examples To display authenticator diagnostics information from port 1 DGS 3200 10 44 show auth diagnostics ports 1 Command show auth diagnostics ports 1 Port number 1 C EntersC
278. tch the access profile are filtered by the switch time range Specifies name of this time range entry Restrictions You must have administrator privileges Example To configure access list entry DGS 3200 10 4 config cpu access profile profile id 1 add access id 1 ethernet vl an default port 1 3 deny Command config cpu access profile profile id 1 add access id 1 ethernet vlan de fault port 1 3 deny Success 157 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4f 17 10 show cpu access profile Purpose Used to display current CPU access list table Format show cpu access profile profile id value 1 52 Description The show cpu access profile command displays current CPU access list table Parameter Parameters Description profile id Specifies the index of an access list profile Restrictions None Example To display the current CPU access list table DGS 3200 10 4 show cpu access profile Command show cpu access profile CPU Interface Filtering State Disabled CPU Interface Access Profile Table Total Unused Rule Entries 499 Total Used Rule Entries S Access Profile ID 1 Type E MASK Option VLAN Access ID 1 Mode Deny Ports LS default Unused Entries 99 Access Profile ID 2 4 ll oO H MASK Option DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Sourc
279. ted to the Quarantine Server or the JWAC login web page The unit of delay_time is seconds 0 means no delaying the redirect Parameters Parameters Description destination Specifies the destination which the unauthenticated host will be redirected to delay_time Specifies the time interval after which the 325 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual unauthenticated host will be redirected Restrictions You must have administrator privileges Example DGS 3200 10 4 config jwac redirect destination jwac login page delay time 5 Command config jwac redirect destination jwac login page delay time 5 Success DGS 3200 10 4 43 8 config jwac virtual_ip Purpose Used to configure JWAC virtual IP addresses used to accept authentication requests from an unauthenticated host Format config jwac virtual_ip lt ipaddr gt Description The virtual IP of JWAC is used to accept authentication request from unauthenticated host Only requests sent to this IP will get response correctly This IP does not respond to ARP request or ICMP packet Parameters Parameters Description lt ipaddr gt Specifies the IP address of the virtual IP Restrictions You must have administrator privileges Example DGS 3200 10 4 config jwac virtual_ip 1 1 1 1 Command config jwac virtual_ip 1 1 1 1 Success DGS 3200 10 4 43 9 config jwac quarantin
280. tes RSA key exchange with RC4 128 bits encryption and MD5 hash RSA with 3DES EDE CBC SHA Indicates RSA key exchange with 3DES EDE CBC encryption and SHA hash DHE DSS with 3DES EDE CBC SHA Indicates DH key exchange with 3DES EDE CBC encryption and SHA hash RSA EXPORT with RC4 40 MD5 Indicates RSA EXPORT key exchange with RC4 40 bits encryption and MD5 hash NULL Enable the SSL feature Restrictions You must have administrator privilege Examples To enable the SSL ciphersuite for RSA with RC4 128 MD5 Command DGS 3200 10 4 enable ssl ciphersuite RSA with RCA4 128 MD5 enable ssl ciphersuite RSA with RCA4 128 MD5 Success DGS 3200 10 4 To enable SSL DGS 3200 10 4 enable ssl Command enable ssl Success DGS 3200 10 4 246 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 30 4 disable ssl Purpose Used to disable SSL feature and ciphersuites Format disable ssl ciphersuite RSA with RC4 128 MD5 RSA_with_3DES EDE CBC SHA DHE DSS with 3DES EDE CBC SHA RSA EXPORT with RC4 40 MD5 Description This command disables the SSL feature and supported ciphercuites Using the disable ssl command will disable the SSL feature and each individual ciphersuite Parameters Parameters Description ciphersuite For configuring cipher suite combination RSA with RC4 128 MD5 Indicates RSA key exchange with RC4 128 bits e
281. the multicast routing function then this state must be configured as disabled Otherwise if the Layer 3 router is not selected as the querier it will not send the IGMP query packet Since it will not also send the multicast routing protocol packet the port will be timed out as a router port Restrictions You must have administrator privileges Examples To configure the IGMP snooping querier DGS 3200 10 44config igmp snooping querier default query interval 125 state enable Command config igmp snooping querier default query interval 125 state enable Success DGS 3200 10 4f 15 3 config router ports Purpose Used to configure ports as router ports Format config router ports vlan name 32 add delete portlist Description The config router ports command allows you to designate a range of ports as being connected to multicast enabled routers This will ensure that all packets with such a router as its destination will reach the multicast enabled router regardless of protocol etc Parameters Parameters Description vlan name The name of the VLAN on which the router port resides add delete Specifies to add or delete the router ports 116 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual portlist Specifies a range of ports to be configured Restrictions You must have administrator privileges Examples To set up static router port
282. the switch is rebooting 28 2 18 reset Purpose DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Used to reset all switch parameters Format reset config system Description The reset command resets all switch parameters to the factory defaults Parameter Parameters Description config If you specify the config keyword all parameters are reset to default settings But device will neither save nor reboot System If you specify the system keyword all parameters are reset to default settings Then the switch will do factory reset save and reboot If no keyword is specified all parameters will be reset to default settings except IP address user account and history log But device will neither save nor reboot Restrictions You must have administrator privileges Example DGS 3200 10 4 Command rese Are you sure Success DGS 3200 10 4 reset to proceed with system reset except IP address y n DGS 3200 10 4 Command rese Are you sure Success DGS 3200 10 4 reset config t config to proceed with system reset y n DGS 3200 10 4 Command Are you sure Les eu reset system system to proceed with system reset save and reboot y n Loading factory default configuration Done Saving all configuration to NV RAM Done Please wait the switch is rebooting 29 DGS 3200 10 Layer 2 Gigabit
283. tion Describes the port interface Note Gigabit Ethernet ports are statically setto 1 Gbps and their speed cannot be modified Restrictions You must have administrator privileges Example To configure the speed of ports 1 to 3 of unit 1 to be 10 Mbps with full duplex learning enabled state enabled and flow control enabled DGS 3200 10 4 config ports 1 3 speed 10_full state enable learning enable flow_control enable Command config ports 1 3 speed 10_full state enable learning enable flow_control enable Success DGS 3200 10 4 3 2 show ports Purpose Used to display the current configurations of a range of ports Format show ports lt portlist gt description err disabled Description The show ports command displays the current configurations of a range of ports No parameter will show all ports Parameter Parameters Description portlist Specified a range of ports to be displayed description Indicate if port description will be included in the display err disabled Indicate if ports are disabled by some reasons will be displayed Restrictions None 32 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Example To display the configuration of ports 1 4 DGS 3200 10 4 show ports 1 4 DGS 3200 10 4 Command show ports 1 4 Port Port Settings Connection Address State Speed Duplex FlowCtrl Speed Duplex FlowCtrl Learni
284. tion failure trap support Format enable snmp authenticate traps Description The enable snmp authenticate traps command enables SNMP authentication failure trap support Parameter None Restrictions You must have administrator privileges 61 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Example To enable SNMP authentication trap support DGS 3200 10 4 enable snmp authenticate_traps Command enable snmp authenticate_traps Success DGS 3200 10 4 6 12 disable snmp authenticate traps Purpose Used to disable SNMP authentication failure trap support Format disable snmp authenticate_traps Description The disable snmp authenticate_traps command disables SNMP authentication failure trap support Parameter None Restrictions You must have administrator privileges Example To disable SNMP authentication trap support DGS 3200 10 4 disable snmp authenticate_traps Command disable snmp authenticate_traps Success DGS 3200 10 4f 62 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter UTILITY COMMANDS 7 UTILITY COMMAND LIST download firmware_fromTFTP lt ipaddr gt lt path_filename 64 gt image_id lt 1 2 gt cfg_fromTFTP lt ipaddr gt path filename 64 gt lt config_id 1 2 gt increment upload log_toTFTP lt ipaddr gt lt path_filename 64 gt upload cfg toTFTP lt ipaddr gt path filename 64 gt config id 1 2 gt c
285. tion server host When an authentication server host is created the IP address and protocol are the index That means more than one authentication protocol service can be run on the same physical host The maximum supported number of server hosts is 16 Parameters Parameters Description server host lt ipaddr gt The server host s IP address protocol tacacs The server host s authentication protocol protocol xtacacs The server host s authentication protocol protocol tacacs The server host s authentication protocol protocol radius The server host s authentication protocol port int 1 65535 gt The port number of the authentication protocol for the server host The default value for TACACS XTACACS TACACS is 49 The default value for RADIUS is 1812 key key string 254 gt The key for TACACS and RADIUS authenticaiton If the value is null no encryption will apply This value is meaningless for TACACS and XTACACS 214 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual none No encryption for TACACS and RADIUS authenticaiton This value is meaningless for TACACS and XTACACS timeout lt int 1 255 gt The time in seconds for waiting for a server reply Default value is 5 seconds retransmit lt int 1 255 gt The count for re transmit This value is meaningless for TACACS Default value is 2 Restrictions You must have administrator privilege Examples
286. tions You must have administrator privilege Examples To configure a user defined method list for promoting a user s privilege to Admin level DGS 3200 10 4 config authen_enable method list name enable list 1 method tacacs tac acs local enable Command config authen_ enable method list name enable list 1 method tacacs tacac S local enable Success 207 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual DGS 3200 10 4 27 10 delete authen enable method list name Purpose Used to delete a user defined method list of authentication methods for promoting a user s privilege to Admin level Format delete authen enable method list name string 15 gt Description Delete a user defined method list of authentication methods for promoting a user s privilege to Admin level Parameters Parameters Description string 15 The user defined method list name Restrictions You must have administrator privilege Examples To delete a user defined method list for promoting a user s privilege to Admin level DGS 3200 10 4 delete authen enable method list name enable list 1 Command delete authen enable method list name enable list 1 Success DGS 3200 10 4 27 11 show authen_enable Purpose Used to display the method list of authentication methods for promoting a user s privilege to Admin level Format show authen_enable default method_list_name lt string 15
287. tions You must have administrator privilege Examples To re Telnet to a member DGS 3200 10 4 reconfig member id 1 Command reconfig member_id 1 DGS 3200 10 4 Login 28 5 config sim_group Purpose Used to configure group information Format config sim group add candidate id 1 100 gt lt password gt delete member id 1 32 gt Description The config sim_group command configures group information on the switch Parameters Parameters Description candidate_id Add a specific candidate to group password The password of candidate if necessary member_id Remove a specific member from group 226 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Restrictions You must have administrator privilege Examples To add a member DGS 3200 10 4 config sim group add 2 Command config sim group add 2 Please wait for ACK SIM Config Success Success DGS 3200 10 4 To delete a member DGS 3200 10 4 config sim group delete 1 Command config sim_group delete 1 Please wait for ACK SIM Config Success Success DGS 3200 10 4 28 6 config sim Purpose Used to configure the role state and parameters of discovery protocol on the switch Format config sim commander group_name lt groupname 64 gt candidate dp_interval lt sec 30 90 gt hold_time lt sec 100 255 gt Description The config sim comman
288. trator privileges Example To configure a SNMP community System DGS 3200 10 4 config snmp community System readwrite Command config snmp community System readwrite Success DGS 3200 10 44 5 6 config snmp trap receiver Purpose Used to configure a specified trap receiver 52 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Format config snmp trap_receiver lt ipaddr gt lt community_string gt Description The config snmp trap receiver command configures a specified trap receiver A maximum of three trap receivers are allowed Parameter Parameters Description ipaddr The IP address of the station to receive SNMP traps community_string SNMP community strings Restrictions You must have administrator privileges Example To configure a trap receiver 10 1 1 1 in read only level SNMP community DGS 3200 10 4 config snmp trap receiver 10 1 1 1 Develop Command config snmp trap_receiver 10 1 1 1 Develop Success DGS 3200 10 4f 5 7 show snmp Purpose Used to display the SNMP configurations on the switch Format show snmp community trap receiver Description The show snmp command displays the following information SNMP community strings SNMP Trap Recipients Switch name location and contact information Parameter Parameters Description community SNMP community strings trap receiver SNMP Trap Recipients Restrictions None
289. ts to the port list of a previously configured VLAN You can specifiy the additional ports as tagging untagging or forbidden The default is to assign the ports as untagging Parameters Parameters Description vlan name The name of the VLAN you want to add ports to tagged Specifies the additional ports as tagged untagged Specifies the additional ports as untagged forbidden Specifies the additional ports as forbidden portlist A range of ports to add to the VLAN Restrictions You must have administrator privileges Examples To add 4 through 8 of unit 2 as tagged ports to the VLAN v1 DGS 3200 10 4 config vlan vl add tagged 2 4 2 8 Command config vlan vl add tagged 2 4 2 8 Success DGS 3200 10 4 config vlan delete ports Purpose Used to delete one or more ports from a previously configured VLAN Format config vlan lt vlan_name gt delete lt portlist gt Description The config vlan delete command deletes one or more ports from a previously configured VLAN Parameters Parameters Description 101 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual vlan_name The name of the VLAN you want to delete ports from portlist Specifies a range of ports to be configured Restrictions You must have administrator privileges Examples To delete 4 through 8 of unit 2 from the VLAN v1 DGS 3200 10 4 config vlan vl delete 2 4 2 8 Comma
290. ual Parameters Upon execution of this command the user will be prompted to enter the mail subject and content Restrictions You must have administrator privilege Examples To send mail to everybody on a mail list at one time Note The sentences following Subject and Content are user inputs end with CR DGS 3200 10 4 smtp send testmsg Command smtp send testmsg Subject This is a test of SMTP Content Hello everybody Sending mail please wait Success DGS 3200 10 4 276 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 36 COS COMMANDS 36 QOS COMMAND LIST config bandwidth_control lt portlist gt rx_rate no_limit lt value 64 1024000 gt tx_rate no_limit lt value 64 1024000 gt show bandwidth_control lt portlist gt config scheduling lt class_id 0 6 gt max_packet lt value 0 255 gt config scheduling_mechanism strict 1 weight_fair 2 show scheduling show scheduling_mechanism config 802 1p user_priority lt priority 0 7 gt lt class_id 0 6 gt show 802 p user_priority config 802 1p default_priority lt portlist gt all lt priority 0 7 gt show 802 1p default_priority lt portlist gt 36 1 config bandwidth_control Purpose Used to configure the port bandwidth limit control Format config bandwidth control lt portlist gt rx_rate no limit lt value 64 1024000 gt tx rate no limit va
291. unt client information DGS 3200 10 4 show acct_client Command show acct_client radiusAcctClient gt radiusAcctClientInvalidServerAddresses 0 radiusAcctClientIdentifier D Link radiusAuthServerEntry gt radiusAccServerIndex 1 radiusAccServerAddress radiusAccClientServerPortNumber radiusAccClientRoundTripTime radiusAccClientRequests radiusAccClientRetransmissions radiusAccClientResponses radiusAccClientMalformedResponses radiusAccClientBadAuthenticators radiusAccClientPendingRequests radiusAccClientTimeouts radiusAccClientUnknownTypes SOO COCO OD OG OK 3 radiusAccClientPacketsDropped radiusAcctClient gt radiusAcctClientInvalidServerAddresses 0 radiusAcctClientIdentifier D Link radiusAuthServerEntry gt radiusAccServerIndex 2 radiusAccServerAddress radiusAccClientServerPortNumber radiusAccClientRoundTripTime radiusAccClientRequests radiusAccClientRetransmissions radiusAccClientResponses radiusAccClientMalformedResponses radiusAccClientBadAuthenticators radiusAccClientPendingRequests radiusAccClientTimeouts radiusAccClientUnknownTypes Ooo CE OO 9 c Oo 0 X o radiusAccClientPacketsDropped radiusAcctClient gt radiusAcctClientInvalidServerAddresses 0 radiusAcctClientIdentifier D Link 142 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual radiusAuthServerEntry gt radiusAccServerIndex 3 radiusAccServerAddress radiusAccClientServerPortNumb
292. v6addr gt Description The show mld snooping source list command displays the currently group source list configuration on the switch Parameters Parameters Description vlan name The name of the VLAN on which the router port resides 309 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual group Displays the source_list of specified group Restrictions None Example To display the group source list VLAN default Source FE80 200 FF FEO01 VLAN default Source FE80 200 FF FEO01 VLAN default Source FE80 200 FF FEO01 VLAN default Source FE80 200 FF FE01 VLAN default Source FE80 200 FF FE01 VLAN default Source FE80 200 FF FEO01 DGS 3200 10 4 Group FF02 DGS 3200 10 4 show mld snooping source list Command show mld snooping source list 900 100 Forwarding Yes 900 100 Forwarding Yes 900 100 Forwarding Yes 900 e101 Forwarding Yes 900 101 Forwarding Yes 900 101 Forwarding Expire Timer 310 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Chapter 41 Web based Access Control WAC Command List 41 Web based Access Control WAC Command List enable wac disable wac config wac vlan vlan name 32 gt ports lt portlist gt all state enable disable method local radius create wac user lt username 15 gt vlan lt vlan
293. ver lt ipaddr gt Description The delete snmp trapreceiver command allows the user to delete an SNMP trap receiver specified previously using the create trap receiver command above Parameter Parameters Description ipaddr The IP address of the management station that is currently specified to receive traps from the switch s SNMP agent This management station will be deleted from the list of up to three that can be entered using the create snmp trap receiver commmand above Restrictions You must have administrator privileges 51 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Example To delete a trap receiver 10 1 1 1 DGS 3200 10 4 delete snmp trap_receiver 10 1 1 1 Command delete snmp trap_receiver 10 1 1 1 Success DGS 3200 10 4f 5 5 config snmp community Purpose Used to configure an SNMP community string Format config snmp community community string readonly readwrite Description The config snmp community command configures an SNMP read or read write community string Parameter Parameters Description community string A string of up to 32 characters used for authentication of users wanting access to the switch s SNMP agent readonly The type of the SNMP community The default read only community string is public readwrite The type of the SNMP community The default read write community string is private Restrictions You must have adminis
294. vilege to Admin level 201 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Parameters None Restrictions You must have administrator privilege Examples To disable system access authentication policy DGS 3200 10 4 disable authen_policy Command disable authen_policy Success DGS 3200 10 4 27 3 show authen_policy Purpose Used to display whether system access authentication policy is enabled or disabled Format disable authen_policy Description Displays whether system access authentication policy is enabled or disabled Parameters None Restrictions None Examples To display system access authentication policy DGS 3200 10 4 show authen_policy Command show authen_policy Authentication Policy Enabled DGS 3200 10 4 202 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 27 4 create authen login method list name Purpose Used to create a user defined method list of authentication methods for user login Format create authen login method list name string 15 gt Description Create a user defined method list of authentication methods for user login The maximum supported number of the login method lists is eight Parameters Parameters Description string 15 The user defined method list name Restrictions You must have administrator privilege Examples To create a user defined method list for user login DGS 3200 1
295. vrp Success DGS 3200 10 4f disable gvrp Purpose Used to disable the Generic VLAN Registration Protocol GVRP Format disable gvrp Description The disable gvrp command disables the Generic VLAN Registration Protocol GVRP Parameter None Restrictions You must have administrator privileges Example To disable the Generic VLAN Registration Protocol GVRP DGS 3200 10 4 disable gvrp Command disable gvrp Success DGS 3200 10 4f 104 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual show vlan Purpose Used to show the VLAN information including of parameters setting and operational value Format show vian lt vlan_name 32 gt Description The show vlan command displays summary information about each VLAN which includes e VLAN ID VLAN Name e e Tagged untagged Forbidden status for each port e Member Non member status for each port Parameters Parameters Description vlan name The name of the VLAN to be displayed Restrictions None Examples To display VLAN settings DGS 3200 10 4 show vlan Command show vlan VID sod VLAN Name VLAN TYPE static Advertisement Member ports 2d Static ports seo d Current Tagged ports Current Untagged ports ao Ile Static Tagged ports Static Untagged ports ao 6 Forbidden ports Total Entries 1 DGS 3200 10 4f default Enabled DGS 3200 10 4fshow vlan ports 6
296. w name View name to be created oid Object Identified tree MIB tree view type Specify the access type of of the MIB tree in this view included Includes for this view excluded Excluded for this view Restrictions You must have administrator privileges Example DGS 3200 10 4fcreate snmp view dlinkview 1 3 6 view type included Command create snmp view dlinkview 1 3 6 view type included Success DGS 3200 10 4f 4 6 delete snmp view Purpose Used to remove a view record Format delete snmp view view name 32 gt all lt oid gt 39 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Description The delete snmp view command removes a view record Parameter Parameters Description view_name View nameof the user who will be deleted all all view record oid Object Identified tree MIB tree Restrictions You must have administrator privileges Example DGS 3200 10 4 delete snmp view dlinkview all Command delete snmp view dlinkview all Success DGS 3200 10 4f 4 7 show snmp view Purpose Used to display the SNMP view record Format show snmp view view name 32 gt Description The show snmp view command displays the SNMP view record Parameter Parameters Description view name View name of the user who likes to show Restrictions You must have administrator privileges Example DGS 3200 10 4 show
297. w password Enter the new password again for confirmation Success DGS 3200 10 4 41 5 delete wac user Purpose Used to delete a Web based Access Control account Format delete wac user lt username 15 gt Description The delete wac command allows you to delete a account Parameters Parameters Description username User account for Web based Access Control Restrictions None Example To delete a WAC account DGS 3200 10 4 delete wac user 123 Command delete wac user 123 Success DGS 3200 10 4 314 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 41 6 config wac user Purpose Used to configure the VLAN ID of the user account Format config wac user username 15 gt vlan vlan name 32 gt Description The config wac command allows you to configure Web Authentication Parameters Parameters Description username The name of user account who want to change VID vlan The authentication VLAN name Restrictions You must have administrator privileges Example To config port state DGS 3200 10 4 config wac user 123 vid 100 Command config wac user 123 vid 100 Success DGS 3200 10 4 41 7 show wac Purpose Used to display the Web authentication setting Format show wac ports lt portlist gt all Description The show wac command allows you to show the Web authentication setting Parameters
298. when the show command output reaches the end of the page DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual BASIC SWITCH COMMANDS 2 BASIC SWITCH COMMAND LIST create account admin user lt username 15 gt enable password encryption disable password encryption config account username encrypt plain text sha 1 lt password gt show account delete account username show session show switch show serial port config serial port baud rate 9600 19200 38400 115200 auto logout never 2 minutes 5 minutes 10 minutes 15 minutes enable clipaging disable clipaging enable telnet tcp port number 1 65535 gt disable telnet enable web tcp port number 1 65535 gt disable web save config log all reboot reset config system login logout 2 create account Purpose Used to create user accounts Format create account admin user username 15 Description The create account command creates user accounts The username is between 1 and 15 characters the password is between 0 and 15 characters The number of account include admin and user is up to 8 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Parameters Parameters Description admin lt username 15 gt Name of the admin account User lt username 15 gt Name of the user account Restrictions You must have admini
299. will be uploaded to the TFTP server ipaddr The IP address of the TFTP server path_filename Specifies the location of the switch configuration file on the TFTP server This file will be replaced by the uploaded file from the switch The maximum length is 64 config_id lt 1 2 gt Specifies the configuration identify number of the indicated configuration Restrictions You must have administrator privileges Examples Upload configuration to TFTP server DGS 3200 10 4 upload cfg_toTFTP 10 48 74 121 c cfg DGS 3200 10 cfg config id 1 Command upload cfg toTFTP 10 48 74 121 c cfg DGS 3200 10 cfg config id 1 Connecting to server Done Upload configuration Done DGS 3200 10 4 Upload system log to TFTP server DGS 3200 10 4 upload log_toTFTP 10 48 74 121 c cfg DGS 3200 10 log Command upload log_toTFTP 10 48 74 121 c cfg DGS 3200 10 log Connecting to server Done Upload configuration Done DGS 3200 10 4 7 3 config firmware Purpose Used to config the specific firmware as boot up image or delete the specific firmware Format config firmware image_id lt 1 2 gt delete boot_up Description Parameter Parameters Description image_id lt 1 2 gt Specifes the serial number of the indicated firmware 65 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual Restrictions You must have administrator privileges Example To delete the spec
300. write or read only permission read write Restrictions You must have administrator privileges Example Success DGS 3200 10 4f DGS 3200 10 4 create snmp community dlink view CommunityView read write Command create snmp community dlink view CommunityView read write 41 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI Manual 4 9 delete snmp community Purpose Used to remove a specific communtiy string Format delete snmp community lt community_string 32 gt Description The delete snmp community command removes a specific community string Parameter Parameters Description community_string Communtiy string will be deleted Restrictions You must have administrator privileges Example Success DGS 3200 10 4f DGS 3200 10 4 delete snmp community dlink Command delete snmp community dlink 4 10 show snmp community Purpose Used to display the community string configurations Format show snmp community lt community_string 32 gt Description The show snmp communtiy command displays the community string configurations Parameter Parameters Description community_string A community string If a community string is not specified all community string information will be displayed Restrictions You must have administrator privileges 42 DGS 3200 10 Layer 2 Gigabit Managed Switch CLI
301. y setting the the parameter of port_control to be force_authorized or force_unauthorized Besides the controlled port will reflect the outcome of authentication if port_control is auto force_authorized auto force_unauthorized quiet_period It is the initialization value of the quietWhile timer The default value is 60 s and can be any value from 0 to 65535 tx_period supp_timeout It is the initialization value of the txWhen timer The default value is 30 s and can be any value from 1 to 65535 The initialization value of the aWhile timer when timing out the supplicant Its default value is 30 s and can be any value from 1 to 65535 server_timeout The initialization value of the aWhile timer when timing out the authentication server Its default value is 30 and can be any value from 1 to 65535 max_req The maximum number of times that the authenitcation PAE state machine will retransmit an EAP Request packet to the supplicant Its default value is 2 and can be any number from 1 to 10 reauth_period Its a nonzero number of seconds which is used to be the re authentication timer The default value is 3600 enable_reauth You can enable or disable the re authentication mechanism for a specific port Restrictions You must have administrator privileges Examples To configure the parameters that control the operation of the authenticator associated with a port Success
302. yntax show snmp community trapreceiver detail you must specify either the community or trapreceiver or detail in the command Do not type the vertical bar Enclose an optional value or a list of optional arguments One or more values or arguments can be specified For example in the syntax config igmp ipif name all version lt value gt query interval lt sec gt max response time sec robustness variable value last member query interval value state enable disable Do not type the braces Ipif lt ipif_name 12 gt metric lt value 1 31 gt 12 means the maxmum length of IP interface name 1 31 means the legal range of metric value 1 4 Line Editing Keys Keys Description Delete Delete character under cursor and shift remainder of line to left Backspace Delete character to left of cursor and shift remainder of line to left Insert Toggle on and off When toggled on inserts text and shifts previous text to right Left Arrow Move cursor to left Right Arrow Move cursor to right Tab Help user to select appropriate token P Display the previous page N or Space Display the next page CTRL C Escape from displayed pages ESC Escape from displayed pages Q Escape from displayed pages R refresh the displayed pages a Display the remaining pages The screen display will not pause again Enter Display the next line The screen display pauses
Download Pdf Manuals
Related Search