User Manual for the NETGEAR 7200 Series Layer 2 Managed
Contents
1. Table 9 1 IS CLI Mapping continued CLI Command Package 7200 Series L2 Switch Command Mode Syntax Switching config mirroring delete Global no set igmp interfacemode all Config Switching config mirroring create lt slot port gt Global monitor session source lt slot port gt lt slot port gt Config destination lt slot port gt Global no monitor session Config Switching config mirroring mode lt enable Global monitor session mode disable gt Config Global no monitor session mode Config Security config authentication login create Global authentication login lt listname gt listname Config method1 method2 method3 Security config authentication login set Global listname lt local radius reject gt Config local radius reject local radius reject Security config authentication login delete Global no authentication login listname listname Config Security config users defaultlogin Global users defaultlogin listname lt listhame gt Config Security config users login lt user gt Global users login user listname listname Config Security show authentication login info Privileged show authentication EXEC Security show authentication login users Privileged show authentication users listname EXEC listname Security show users authentication Privileged show users authentication EXEC Security config radius maxretransmit 1 Global radius server retransmit 12. Table 9 1 IS CLI Mapping continued CLI Command Package 7200 Series L2 Switch Command Mode Syntax Switching config protocol delete lt groupid gt Global vlan protocol group remove Config lt groupid gt Switching config protocol protocol add Global vlan protocol group add protocol lt groupid gt lt protocol gt Config lt groupid gt ip arp ipx Switching config protocol protocol remove Global no vlan protocol group add protocol lt groupid gt lt protocol gt Config lt groupid gt ip arp ipx Switching config protocol vlan add lt groupid gt VLAN protocol group lt groupid gt lt 1 4094 gt lt vlan gt database Switching config protocol vlan remove VLAN no protocol group lt groupid gt lt groupid gt lt vlan gt database lt 1 4094 gt Switching config protocol interface add Interface protocol vlan group lt groupid gt lt groupid gt lt slot port all gt Config Switching config protocol interface remove Interface no protocol vlan group lt groupid gt lt groupid gt lt slot port all gt Config Switching config protocol interface remove Global protocol vlan group all lt groupid gt lt groupid gt lt slot port all gt Config Switching config protocol interface remove Global no protocol vlan group all lt groupid gt lt groupid gt lt slot port all gt Config Switching config garp gmrp adminmode Privileged set gmrp adminmode lt enable disable gt EXEC Privileged no set gmrp adminmode EXEC Switchin
3. 8 58 show mac adgress table Sals 1 orm ncc e is ka scc EROR show FOOIEOE uuooisieset Quies te ehe dio d Bae show port i cU POR OTO MER T 8 60 cas Mogns p Meum mE BOW SHIMON usce boat cooper enda a aub ann era SOUS PEA sic wulvoa sain aps Com DIE Esai E L EA T eb RON SDN DU ARA DURO E 8 61 show vlan brief ires T TE ang hos piin inia Essen 8 63 QR 1 15 1 TT 8 63 EIN Saee voscitestu us doen t bo Utt dics bold sU tres tact vo utem y edd aiuti o deci bee Lim edd atn 8 64 no shutdown seiececeas Re T 8 64 IMP dg UMN MERI SE mS 8 64 iEn All Rem 8 65 Smp Tap INSANE usnsenxiubero anii ne RM Iis I rep Eee he snmp trap Ii StS iiuuece rci epe kk kk pua qu EXE k innui Fabel iuk Ekean eU EUE ERE ox Eae 8 65 snmp trap link status all diis idisse 8 65 no enmp irap inkstatus all T catenins O spanning tree o oo cette spanning tree bpdumigrationcheck Contents December 2004 202 10010 02 xi no vlan acceptframe E E 8 70 AMIN c aem en 8 70 na vian Ingresstlllelr 2 oouadcececa di dbsc tert vrds ee orE QUA p i pud LS c e URN A no vlan port ingressiilter all iussis toeyeec it rr Pda prag pit De Pha rcr e sie RP V AE I BAN UE PT 8 73 no vlan port pvid all pad t face pariis 8 73 nanpa AO l ee e D Rovan por s s cer A vlan pr
4. Format no radius server retransmit Mode Global Config radius server timeout This command sets the timeout value in seconds after which a request must be retransmitted to the RADIUS server if no response is received The timeout value is an integer in the range of 1 to 30 Default 6 Format radius server timeout lt seconds gt Mode Global Config no radius server timeout This command sets the timeout value in seconds after which a request must be retransmitted to the RADIUS server if no response is received to the default value i e 6 Format no radius server timeout Mode Global Config show accounting This command is used to display the configured RADIUS accounting mode accounting server and the statistics for the configured accounting server Format show accounting statistics lt ipaddr gt Mode Privileged EXEC If the optional token statistics lt ipaddr gt is not included then only the accounting mode and the RADIUS accounting server details are displayed Switching Commands 8 103 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Mode IP Address Port Secret Configured Enabled or disabled The configured IP address of the RADIUS accounting server The port in use by the RADIUS accounting server Yes or No If the optional token statistics lt ipaddr gt is included the statistics for the configured RADIUS accounting server are display
5. octets in length inclusive excluding framing bits but including FCS octets Packets Received 256 511 Octets The total number of packets including bad packets received that were between 256 and 511 octets in length inclusive excluding framing bits but including FCS octets Packets Received 512 1023 Octets The total number of pack ets including bad packets received that were between 512 and 1023 octets in length inclusive excluding framing bits but including FCS octets Packets Received 1024 1518 Octets The total number of pack ets including bad packets received that were between 1024 and 1518 octets in length inclusive excluding framing bits but including FCS octets Packets Received 1519 1522 Octets The total number of pack ets including bad packets received that were between 1519 and 1522 octets in length inclusive excluding framing bits but including FCS octets Packets Received gt 1522 Octets The total number of packets received that were longer than 1522 octets excluding framing bits but including FCS octets and were otherwise well formed Packets Received Successfully Total The total number of packets received that were without errors Unicast Packets Received The number of subnetwork unicast packets delivered to a higher layer protocol Multicast Packets Received The total number of good packets received that were directed to a multicast address Note that this number does not include pack
6. 8 94 HTIP ee ES tet isin eon oen eb aC CW e EQ D CERE Dan Cb nn P OL eee NI ip http secure port no ip http secure port viii Contents December 2004 202 10010 02 IP DUD Secure PDrOlOCOl MMC E no ip http secure protocol 1 esr reiten ELE ip http secure server 8 35 nO eguuieEi te I r i r pu DT cuina caliente 8 35 D TAS r7 Mtt NETTEN LU und cxx rrr c C EG I Jis UMN ta ei E M RA cr 8 36 Secure Shell SSH Commands m Lee 1 ped 8 36 ip SS ossi PT EROR MAE caa datu f Cbr nba A abd tv Ru E ER REP cu Pn En 8 36 SAER er T Benson ober ient einn d ip ssh protocol occcesnecece 8 36 ps 165 11 ern CEP 8 37 Device Configuration Commands T eee ee dde dini E Oe sers p E ri gto qoM since nar Dust a ooa aae E GU 8 37 no auto niegollalg iaceret 8 38 BUDS WO Mate EE T A IET 8 38 se Ns soni m c Eme delete interface 8 38 sicci Ep 8 38 DEBBIE sacieussttenmietben quu edi emtebeiqittbont n telas tren es um Dis nte dde Ml dns SESSION M ee SW a REGE or MR AA N AE E TA 8 39 monitor session mode X hae Eie 8 39 no mortor session MOGE e i port lacpmode
7. Option2 and or Option3 are used an ordered list of methods are set in the authentication login list If the authentication login list does not exist a new authentication login list os first created and then the authentication methods are set in the authentication login list The maximum number of authentication login methods is three The possible method values are local radius and reject The value of 1oca1 indicates that the user s locally stored ID and password are used for authentication The value of radius indicates that the user s ID and password will be authenticated using the RADIUS server The value of reject indicates that the user is never authenticated To authenticate a user the authentication methods in the user s login will be attempted in order until an authentication attempt succeeds or fails Note that the default login list included with the default configuration can not be changed Format authentication login listname method1 method2 method3 Mode Global Config no authentication login This command deletes the specified authentication login list The attempt to delete will fail if any of the following conditions are true The login list name is invalid or does not match an existing authentication login list e The specified authentication login list is assigned to any user or to the nonconfigured user for any component e The login list is the default login list included with the default co
8. e oi no port lacpmode AANA 8 40 eid eain nt rtm 8 40 no POR MAG MOOS eM rere T T E Ce tet 8 40 gn cp npriemo mU EE portchannel admite siinsest neinna Eo La aiaa iaiia 8 41 no port channel adminmode mm piaia 8 41 spec pmi rii m T 8 41 no POR eie Miet UE porr channel TATE ucsneisesceiattvenes esses eS a a pus Lese E ined i turis EE CER Ep USRUE 8 42 Contents December 2004 202 10010 02 peser rero Mc D no protocol group ness i no set garp timer join eer passio phani sides I iesu 8 4 SEL OSI MINIT JOD tom URN no setga imer nr e n E set garp timer leave jisieku dissi 8 44 n sot gap Umer ORNE eM T 8 45 sergam Ta eave 9l naaa 8 45 Ho set gap imer eave all sender n perte is beet eed vd d ER eR Rs 8 45 gorgar timer leaveall e 8 46 no set garp timer leaveall 8 46 set garp timer leaveall all ires rrr rra e t e OR a b an cn eaa B 46 no set garp timer leaveall all 8 46 set gmrp adminmode M PETERA pines guai PEE TERRA d 8 47 no set gmrp adminmode sssssssssesssseeeee eene nnne nnne enn nnne nnns 8 47 BEI OUT UU GFLTORITIOGE 5i passate tete iple beides etse ENS 8 47 na Set amm intorfacoModE iuste age ep Ea arva tT sar amp meracemodo Wl Luis caesa i
9. LAN If 0 defined as the default CIST ID is passed as the lt mstid gt then this command displays the settings and parameters for a specific switch port within the common and internal spanning tree The lt slot port gt is the desired switch port In this case the following are displayed Port Identifier The port identifier for this port within the CST Port Priority The priority of the port within the CST Port Forwarding State The forwarding state of the port within the CST Port Role The role of the specified interface within the CST Port Path Cost The configured path cost for the specified interface Designated Root Identifier of the designated root for this port within the CST Designated Port Cost Path Cost offered to the LAN by the Designated Port Designated Bridge The bridge containing the designated port Switching Commands 8 79 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Designated Port Identifier Port on the Designated Bridge that offers the lowest cost to the LAN Topology Change Acknowledgement Value of flag in next Configuration Bridge Pro tocol Data Unit BPDU transmission indicating if a topology change is in progress for this port Hello Time The hello time in use for this port Edge Port The configured value indicating if this port is an edge port Edge Port Status The derived value of the edge port status True if operating as an edge port false
10. This Layer 2 network standard improves support of time critical traffic and limits the extent of high bandwidth multicast traffic within a bridged LAN To do this 802 1P defines a methodology for introducing traffic class priorities The 802 1P standard allows priority to be defined in all 802 MAC protocols Ethernet Token Bus Token Ring as well as in FDDI For protocols such as Ethernet that do not contain a priority field 802 1P specifies a method for indicating frame priority based on the new fields defined in the 802 1Q VLAN standard 802 1Q VLAN The IEEE protocol designator for Virtual Local Area Network VLAN This standard provides VLAN identification and quality of service QoS levels Four bytes are added to an Ethernet frame to allow eight priority levels QoS and to identify up to 4096 VLANs See VLAN on page 18 for more information 10BASE T The IEEE specification for 10 Mbps Ethernet over Category 3 4 or 5 twisted pair cable 100BASE FX The IEEE specification for 100 Mbps Fast Ethernet over fiber optic cable Glossary C 1 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software 100BASE TX The IEEE specification for 100 Mbps Fast Ethernet over Category 5 twisted pair cable 1000BASE SX The IEEE specification for 1000 Mbps Gigabit Ethernet over fiber optic cable 1000BASE T The IEEE specification for 1000 Mbps Gigabit Ethernet over Category 5 twisted pai
11. User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software NETGEAR NETGEAR Inc 4500 Great America Parkway Santa Clara CA 202 10010 02 December 2004 December 2004 202 10010 02 2004 by NETGEAR Inc December 2004 FullManual All rights reserved Technical Support Please register to obtain technical support Please retain your proof of purchase and warranty information To register your product get product support or obtain product information and product documentation go to http www netgear com If you do not have access to the World Wide Web you may register your product by filling out the registration card and mailing it to NETGEAR customer service You will find technical support information at http www netgear com through the customer service area If you want to contact technical support by telephone see the support information card for the correct telephone number for your country Trademarks NETGEAR is a registered trademark of NETGEAR INC Windows is a registered trademark of Microsoft Corporation Other brand and product names are trademarks or registered trademarks of their respective holders Information is subject to change without notice All rights reserved Statement of Conditions In the interest of improving internal design operational function and or reliability NETGEAR reserves the right to make changes to the products described in this document without notice N
12. Cabling Guidelines This appendix provides specifications for cables used with a NETGEAR NETGEAR 7200 Series Layer 2 Managed Switch Fast Ethernet Cable Guidelines Fast Ethernet uses UTP cable as specified in the IEEE 802 3u standard for 1OOBASE TX The specification requires Category 5 UTP cable consisting of either two pair or four pair twisted insulated copper conductors bound in a single plastic sheath Category 5 cable is certified up to 100 MHz bandwidth 100BASE TX operation uses one pair of wires for transmission and the other pair for receiving and for collision detection When installing Category 5 UTP cabling use the following guidelines to ensure that your cables perform to the following specifications Certification Make sure that your Category 5 UTP cable has completed the Underwriters Laboratories UL or Electronic Testing Laboratories ETL certification process Termination method To minimize cross talk noise maintain the twist ratio of the cable up to the point of termination untwist at any RJ 45 plug or patch panel should not exceed 0 5 inch 1 5 cm Cabling Guidelines B 1 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Category 5 Cable Category 5 distributed cable that meets ANSI EIA TIA 568 A building wiring standards can be a maximum of 328 feet ft or 100 meters m in length divided as follows 20 ft 6 m between the hub and the p
13. If the command is not found the output message indicates where the offending entry begins For instance command node A has the command show arp brief but the operator attempts to execute the command show arpp brief then the output message would be exec gt show arpp brief Invalid input detected at marker If the operator has given an invalid input parameter in the command then the message conveys to the operator an invalid input was detected The layout of the output is depicted below exec show arpp brief A Invalid input detected at marker FIGURE 2 Syntax Error Message Mode based CLI 7 5 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software After all the mandatory parameters are entered any additional parameters entered are treated as optional parameters If any of the parameters are not recognized a syntax error message will be displayed 2 After the command is successfully parsed and validated the control of execution goes to the corresponding CLI callback function 3 For mandatory parameters the command tree extends till the mandatory parameters make the leaf of the branch The callback function is only invoked when all the mandatory parameters are provided For optional parameters the command tree extends till the mandatory parameters and the optional parameters make the leaf of the branch However the call back function is associa
14. Mode Interface Config LAG Port Channel 802 3ad Commands port channel staticcapability This command enables the support of port channels static link aggregations LAGs on the device By default the static capability for all port channels is disabled Default Disabled Format port channel staticcapability Mode Global Config no port channel staticcapability This command disables the support of static port channels link aggregations LAGs on the device Default Disabled 8 16 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Format no port channel staticcapability Mode Global Config show port channel brief This command displays the static capability of all port channels LAGs on the device as well as a summary of individual port channels Format show port channel brief Mode Privileged EXEC and User EXEC Static Capability This field displays whether or not the device has static capability enabled For each port channel the following information is displayed Name This field displays the name of the port channel Link State This field indicates whether the link is up or down Mbr Ports This field lists the ports that are members of this port channel in slot port notation Active Ports This field lists the ports that are actively participating in this port channel Management Commands These commands manage the switch and
15. Quick Start up Uploading from Switch to Out of Band PC Only XMODEM Table 6 5 Quick Start up Uploading from Switch to Out of Band PC XMODEM Command Details copy The types are nvram startup config nvram errorlog nvram msglog nvram traplog url config configuration file errorlog error log system trace system trace traplog trap log The URL must be specified as xmodem filepath fileName This starts the upload and also displays the mode of uploading and the type of upload it is and confirms the upload is taking place For example If the user is using HyperTerminal the user must specify where the file is going to be received by the PC Quick Start up 6 5 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Quick Start up Downloading from Out of Band PC to Switch Only XMODEM Table 6 6 Quick Start up Downloading from Out of Band PC to Switch Only XMODEM Command Details copy url nvram startup config system image Sets the download datatype to be an image or config file The URL must be specified as xmodem filepath fileName For example If the user is using HyperTerminal the user must specify which file is to be sent to the switch The Switch will restart automatically once the code has been downloaded Quick Start up Downloading from TFTP Server Before starting a TFTP
16. Switching config telnet maxsessions lt 0 5 gt Privileged remotecon maxsessions lt 0 5 gt EXEC Privileged no remotecon maxsessions EXEC Switching config telnet mode lt enable Privileged telnet disable gt EXEC Privileged no telnet EXEC Switching config telnet timeout lt 0 160 gt Privileged remnotecon timeout lt 0 160 gt EXEC Privileged no remotecon timeout EXEC Switching config forwardingdb agetime Global bridge aging time lt 10 1000000 gt lt 10 1 000 000 gt fdbid all Config lt 1 4094 gt all Global no bridge aging time lt 1 4094 gt all Config Switching show spanningtree summary Privileged show spanning tree summary EXEC and User EXEC Switching show spanningtree port lt slot port gt Privileged show spanning tree interface lt slot EXECand port gt User EXEC Switching show spanningtree cst detailed Privileged show spanning tree EXEC and User EXEC A 4 IS CLI Mapping December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Table 9 1 IS CLI Mapping continued CLI Command Package 7200 Series L2 Switch Command Mode Syntax Switching show spanningtree bridge Privileged show spanning tree brief EXEC and User EXEC Switching show spanningtree mst summary Privileged show spanning tree mst summary EXEC and User EXEC Switching show spanningtree mst detailed Privileged
17. The value is expressed in seconds and will be in the range of 1 and 65535 Server Timeout The timer used by the authenticator on this port to timeout the authentication server The value is expressed in seconds and will be in the range of 1 and 65535 Maximum Requests The maximum number of times the authenticator state machine on this port will retransmit an EAPOL EAP Request Identity before timing out the supplicant The value will be in the range of 1 and 10 Reauthentication Period The timer used by the authenticator state machine on this port to determine when reauthentication of the supplicant takes place The value is expressed in seconds and will be in the range of 1 and 65535 Reauthentication Enabled Indicates if reauthentication is enabled on this port Possible values are True or False Key Transmission Enabled Indicates if the key is transmitted to the supplicant for the specified port Possible values are True or False Control Direction Indicates the control direction for the specified port or ports Pos sible values are both or in If the optional parameter statistics lt slot port gt is used the dot1x statistics for the specified port are displayed Port The interface whose statistics are displayed EAPOL Frames Received The number of valid EAPOL frames of any type that have been received by this authenticator EAPOL Frames Transmitted The number of EAPOL frames of any type that have been transmitted by thi
18. addport This command adds one port to the port channel LAG The first interface is a logical slot and port number of a configured port channel Note Before adding a port to a port channel set the physical mode of the port See speed command Format addport logical slot port gt Mode Interface Config auto negotiate This command enables automatic negotiation on a port The default value is enable Format auto negotiate Mode Interface Config Switching Commands 8 37 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software no auto negotiate This command disables automatic negotiation on a port Format no auto negotiate Mode Interface Config auto negotiate all This command enables automatic negotiation on all ports The default value is enable Format auto negotiate all Mode Global Config no auto negotiate all This command disables automatic negotiation on all ports Format no auto negotiate all Mode Global Config delete interface This command deletes an existing port channel LAG from the configuration The interface is a logical slot and port for a configured port channel The a11 option removes all configured port channels LAGs Format delete interface logical slot port gt all Mode Interface Config deleteport This command deletes the port from the port channel LAG The interface is a logical slot and port number of a configured por
19. factory default is disabled Management VLAN ID Specifies the management VLAN ID show remotecon This command displays telnet settings Format show remotecon Mode Privileged EXEC and User EXEC Remote Connection Login Timeout minutes This object indicates the number of minutes a remote connection session is allowed to remain inac tive before being logged off A zero means there will be no time out May be specified as a number from 0 to 160 The factory default is 5 Maximum Number of Remote Connection Sessions This object indicates the num ber of simultaneous remote connection sessions allowed The fac tory default is 5 Allow New Telnet Sessions Indicates that new telnet sessions will not be allowed when set to no The factory default value is yes show serial This command displays serial communication settings for the switch Format show serial 8 24 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Mode Privileged EXEC and User EXEC Serial Port Login Timeout minutes Specifies the time in minutes of inactivity on a Baud Rate Character Size Flow Control Stop Bits Parity Type Serial port connection after which the Switch will close the con nection Any numeric value between 0 and 160 is allowed the factory default is 5 A value of 0 disables the timeout The default baud rate at which the serial port will try to con
20. lt true false gt Config Interface no dot1x re authentication Config Security config dot1x defaultlogin Global dot1x defaultlogin listname lt listname gt Config Security config dot1x login lt user gt Global dot1x login user lt listname gt lt listname gt Config Security config dot1x port users add lt user gt Global dot1x user lt user gt lt slot port gt all lt slot port all gt Config Security config dot1x port users remove Global no dot1x user user lt slot port gt user lt slot port all gt Config all IS CLI Mapping A 23 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Table 9 1 IS CLI Mapping continued CLI Command Package 7200 Series L2 Switch Command Mode Syntax Security show dot1x summary Privileged show dotix summary lt slot port gt EXEC all detail lt slot port gt statistics lt slot port gt users lt slot port gt Security show dot1x port summary lt slot Privileged port all gt EXEC Security show dot1x port detailed lt slot Privileged port gt EXEC Security show dot1x port stats lt slot port gt Privileged EXEC Security show dot1x port users lt slot port gt Privileged EXEC Security clear dot1x port stats lt slot port all gt Privileged clear dot1x statistics lt slot port gt all EXEC A 24 IS CLI Mapping December 2004 202 10010 02 Appendix B
21. mtu This command sets the maximum transmission unit MTU size in bytes for physical and port channel LAG interfaces For the standard implementation the range of mtusize is a valid integer between 1522 9216 Default 1522 Format mtu 1522 9216 Mode Interface Config no mtu This command sets the default maximum transmission unit MTU size in bytes for the interface Format no mtu Mode Interface Config 8 18 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software network javamode This command specifies whether or not the switch should allow access to the Java applet in the header frame of the Web interface When access is enabled the Java applet can be viewed from the Web interface When access is disabled the user cannot view the Java applet Default Enabled Format network javamode Mode Privileged EXEC no network javamode This command disallows access to the Java applet in the header frame of the Web interface When access is disabled the user cannot view the Java applet Format no network javamode Mode Privileged EXEC network mac address This command sets locally administered MAC addresses The following rules apply e Bit 6 of byte 0 called the U L bit indicates whether the address is universally administered b 0 or locally administered b 1 e Bit 7 of byte 0 called the I G bit indicates whether the destination addre
22. 255 255 255 will allow access from only one station and will use that machine s IP address for the client IP Address A value of 0 0 0 0 will allow access from any IP address The name is the applicable community name Default 0 0 0 0 Format snmp server community ipmask lt ipmask gt lt name gt Mode Global Config no snmp server community ipmask This command sets a client IP mask for an SNMP community to 0 0 0 0 The name is the applicable community name The community name may be up to 16 alphanumeric characters Format no snmp server community ipmask lt name gt Mode Global Config snmp server community mode This command activates an SNMP community If a community is enabled an SNMP manager associated with this community manages the switch according to its access right If the community is disabled no SNMP requests using this community are accepted In this case the SNMP manager associated with this community cannot manage the switch until the Status is changed back to Enable Default The default private and public communities are enabled by default The four undefined communities are disabled by default Format snmp server community mode name Mode Global Config no snmp server community mode This command deactivates an SNMP community If the community is disabled no SNMP requests using this community are accepted In this case the SNMP manager associated with this community cannot manage the switch until the Status is
23. December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Mode GlobalConfig port channel name This command defines a name for the port channel LAG The interface is a logical slot and port for a configured port channel and name is an alphanumeric string up to 15 characters This command is used to modify the name that was associated with the port channel when it was created Format port channel name logical slot port gt all lt name gt Mode Global Config protocol group This command attaches a lt vlanid gt to the protocol based VLAN identified by lt groupid gt A group may only be associated with one VLAN at a time however the VLAN association can be changed Default none Format protocol group lt groupid gt vlanid Mode VLAN database no protocol group This command removes the lt vlanid gt from this protocol based VLAN group that is identified by this lt groupid gt Format no protocol group groupid vlanid Mode VLAN database protocol vlan group This command adds the physical lt slot port gt interface to the protocol based VLAN identified by lt groupid gt A group may have more than one interface associated with it Each interface and protocol combination can only be associated with one group If adding an interface to a group causes any conflicts with protocols currently associated with the group this command will fail and the interface s w
24. Format set garp timer leaveall all lt 200 6000 gt Mode Global Config no set garp timer leaveall all This command sets how frequently Leave All PDUs are generated for all ports to 1000 centiseconds 10 seconds Note This command has an effect only when GVRP is enabled 8 46 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Format no set garp timer leaveall all Mode Global Config set gmrp adminmode This command enables GARP Multicast Registration Protocol GMRP on the system The default value is disable Format set gmrp adminmode Mode Privileged EXEC no set gmrp adminmode This command disables GARP Multicast Registration Protocol GMRP on the system Format no set gmrp adminmode Mode Privileged EXEC set gmrp interfacemode This command enables GARP Multicast Registration Protocol on a selected interface If an interface which has GARP enabled is enabled for routing or is enlisted as a member of a port channel LAG GARP functionality will be disabled on that interface GARP functionality will subsequently be re enabled if routing is disabled and port channel LAG membership is removed from an interface that has GARP enabled Default Disabled Format set gmrp interfacemode Mode Interface Config no set gmrp interfacemode This command disables GARP Multicast Registration Protocol on a selected interface If an interface which has GARP e
25. Maximum Response time on the system to 10 seconds Format no set igmp maxresponse Mode Global Config Switching Commands 8 51 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software set igmp mcrtrexpiretime This command sets the Multicast Router Present Expiration time on the system This is the amount of time in seconds that a switch will wait for a query to be received on an interface before the interface is removed from the list of interfaces with multicast routers attached The range is 0 to 3600 seconds A value of 0 indicates an infinite timeout i e no expiration Default 0 Format set igmp mcrtexpiretime 0 3600 Mode Global Config no set igmp mcrtrexpiretime This command sets the Multicast Router Present Expiration time on the system to 0 A value of 0 indicates an infinite timeout i e no expiration Format no set igmp mcrtexpiretime Mode Global Config show garp This command displays Generic Attributes Registration Protocol GARP information Format show garp Mode Privileged EXEC and User EXEC GMRP Admin Mode This displays the administrative mode of GARP Multicast Regis tration Protocol GMRP for the system GVRP Admin Mode This displays the administrative mode of GARP VLAN Registra tion Protocol GVRP for the system show gmrp configuration This command displays Generic Attributes Registration Protocol GARP information for one or all interfaces F
26. Mode Privileged EXEC remotecon maxsessions This command specifies the maximum number of remote connection sessions that can be established A value of 0 indicates that no remote connection can be established The range is 0 to 5 Default 5 Format remotecon maxsessions 0 5 Mode Privileged EXEC 8 20 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software no remotecon maxsessions This command sets the maximum number of remote connection sessions that can be established to the default value Default 5 Format no remotecon maxsessions Mode Privileged EXEC remotecon timeout This command sets the remote connection session timeout value in minutes A session is active as long as the session has been idle for the value set A value of 0 indicates that a session remains active indefinitely The time is a decimal value from 0 to 160 Note Changing the timeout value for active sessions does not become effective until the session is reaccessed Any keystroke will also activate the new timeout duration Default 5 Format remotecon timeout lt 0 160 gt Mode Privileged EXEC no remotecon timeout This command sets the remote connection session timeout value in minutes to the default Note Changing the timeout value for active sessions does not become effective until the session is reaccessed Any keystroke will also activate the new timeout duration Defau
27. PCR 9 3 no hardware dO BRE o acero duret i a xad Don ceu Gase D eec sd std o bem S Ea 9 3 e ee D soot E A ices 9 3 qORISCUETRE ADOOS ELT 9 3 ip dhcp excluded address rere TE TT en brc dd ei ere reer 9 4 no ip CNG excluded aAddresS a 9 4 TOD PUI ROME Meier cre 9 4 no ip dhep ping packets 2 eder dise ber uta gee obs duds A ego bbRqS ieee Hp USN GON er ce tiasted ppbatein ier tet as slate ee tem nod Cl OST Seconds antistes a eam 9 5 lo 5 5 NG 2 1 MTM X a Ivi PET RU E TN epos QURE nee reer E E no network M pini piada 9 6 A vile E MN D T E E I TTD 9 6 no service dhcp TIT TT mate ore TUM eee estes rein este iiem a DHCP Server Show Comets iornaxcstetec ku pp ad ttr ada oe P RR apr rdi O ps WINNS UMC PE EO oO 9 7 show ip dhcp global configuration X 9 7 show ip dhep pool eontiqur lle isse accidere am ras edt End tutela sad ea o Gat LR DRY show ip dhcp server statistics PE SEE EbrI ERES Ep E E isset ED RR DR DHCP Server Cear Commande ercran tacicone ep tac coitu ca Genie RE CoU N KD Saee Eea 9 9 xvi Contents December 2004 202 10010 02 cear PONO OONO MR m I IT 9 9 clear ip dhcp server Statistics uuu assecii dresse cti etn ieda T AFET pobon TA 9 9 Appendix A IS CLI Mapping Appendix B Cabling
28. PON TT OTT TO TOS T 8 108 show radius m mm Sd Ds show radius SAISIO 1i peni re tarn a DRE hx ert gc Pate aaa eg ia prts PARE show users authentication sess enne nnne 8 110 users ici ep M 8 111 SEIN EE TED CELLS 0 S1 25 2155 51205 05 2 20 8 111 c DEAL E 0 0 0T ug cci CON e 8 111 we cr MOOD DI E NN DE TEE EET 8 112 e colam ci T E Um eu Epor Diu ooi oat venil I Pb ERR REN p ER AR RTI M IS EN HER RMERERN T RAD 8 112 coa DOIE SPENT credis mutans idc eaau Geb asd Etc nett cone eer emer tr eer rrr meres 8 112 lear Waplog ccce mE CB VEI Loser ES ES eto pco pa od aw ER C p p PR ant t BE a tulis tbecbix dbbec bid ber E reer err i pi Memor 8 114 Contents December 2004 202 10010 02 Do 8 114 reload s PA A TAT TU T ET abb eseees BT Chapter 9 DHCP Server Commands DHCP Server Configuration Commands E E E atico E be s feos Gig XP BIBIE iiio ena re ae p e eor E In Dada obitu t RES E S Ue CIE RII M ETT TEE 9 1 EIE eR RETE T UT RU 9 1 Kieler sesira abcr aise 9 1 default router TET TRUE wae 9 2 no default router EA E iu UE m 9 2 ONEST r E D T toa ildweeenets mandates 9 2 TESI ET RT MEE E E E E D T E E eee 9 2 harduwale addi Lions ebd oh eph aqoa cu E EQUOS PP UR d
29. RC RR 5 1 PN NES NETT OT DEDE 5 2 POI IN 5 2 Contents V December 2004 202 10010 02 Chapter 6 Quick Start up EORGE Staring thi ule Hao ao dye bo ben tes deba a er te dd Faut tat intu Ei tato errs 6 1 cysieim inio and System Soup 5 gr idis reris coda dd ad ERG Gd i ai p Ha a 6 2 Quick Start up Software Medion Infeamatich ipei deducet isch grt tuu anaes 6 2 Quick Start up Physical Port Data HET E cee EM 6 2 Quick Start up User Account Management ccecceceeceeeeeeeeeeeaaeeeeneeeseaeeeeeeeeess 6 3 Quick Start p IP Address sce eire bre DHE Ea ERE UE UR A UP MHP MISI TNdUE 6 3 Quick Start up Uploading from Switch to Out of Band PC Only XMODEM 5 Quick Start up Downloading from Out of Band PC to Switch Only XMODEM shine 6 6 Quick Start up Downloading from TFTP Server ccccccccsseccesseseesseeeseeeeecsaaeseseeeess 6 6 Quick Start up Factory Defaulis 2er aa e aa aL n ceil 6 7 Chapter 7 Mode based CLI Mode hased hier T Te Mode based Command Hisesiciy PANEL N Hie q M E MO EP QUA EE ORE EE DAR DER MALAE rd Flow of Operation TETTE ERT T TEEI Msn pos us Bees pH s Tag Pen pr S COREL ee nomen ee emer er renner rennet ee dads eure tr EPOD Urdu vb eC Sud 7 6 SUBDIT or NE PORTU Lue pori ieutat esito tmc tolto en di sat o se Ed ae D dd essi Ra PET RMMS 7 6 Behavior or Command Plel
30. RMON Short for remote monitoring a network management protocol that allows network information to be gathered at a single workstation Whereas SNMP gathers network data from a single type of Management Information Base MIB RMON 1 defines nine additional MIBs that provide a much richer set of data about network usage For RMON to work network devices such as hubs and switches must be designed to support it The newest version of RMON RMON 2 provides data about traffic at the network layer in addition to the physical layer This allows administrators to analyze traffic by protocol RSVP See Resource Reservation Setup Protocol on page 15 RTOS See Real Time Operating System on page 15 Glossary C 15 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software S Simple Network Management Protocol SNMP is the protocol governing network management and the monitoring of network devices and their functions It is not necessarily limited to TCP IP networks The versions have the following differences SNMP full Security is based on community strings SNMPsec historic Security is based on parties Few if any vendors implemented this version of the protocol which is now largely forgotten SNMPyv2p historic For this version much work was done to update the SNMPv1 protocol and the SMIv1 and not just security The result was updated protocol operations new protocol operatio
31. Series Layer 2 Managed Switch Software If the auth token is used the command configures the IP address to use to connect to a RADIUS authentication server Up to 3 servers can be configured per RADIUS client If the maximum number of configured servers is reached the command will fail until one of the servers is removed by executing the no form of the command If the optional port parameter is used the command will configure the UDP port number to use to connect to the configured RADIUS server In order to configure the UDP port number the IP address must match that of a previously configured RADIUS authentication server The port number must lie between 1 65535 with 1812 being the default value If the acct token is used the command configures the IP address to use for the RADIUS accounting server Only a single accounting server can be configured If an accounting server is currently configured it must be removed from the configuration using the no form of the command before this command succeeds If the optional lt port gt parameter is used the command will configure the UDP port to use to connect to the RADIUS accounting server The IP address specified must match that of a previously configured accounting server If a port is already configured for the accounting server then the new port will replace the previously configured value The port must be a value in the range 1 65535 with 1813 being the default value Forma
32. Server Commands 9 3 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software ip dhcp excluded address This command specifies the IP addresses that a DHCP server should not assign to DHCP clients Low address and high address are valid IP addresses each made up of four decimal bytes ranging from 0 to 255 IP address 0 0 0 0 is invalid Default None Format ip dhcp excluded address lt lowaddress gt highaddress Mode Global Config no ip dhcp excluded address This command removes the excluded IP addresses for a DHCP client Low address and high address are valid IP addresses each made up of four decimal bytes ranging from 0 to 255 IP address 0 0 0 0 is invalid Format no ip dhcp excluded address lt lowaddress gt highad dress Mode Global Config ip dhcp ping packets This command is used to specify the number in a range from 2 10 of packets a DHCP server sends to a pool address as part of a ping operation Setting the number of ping packets to 0 is the same as no ip dhcp ping packets and will prevent the server from pinging pool addresses Default 2 Format ip dhcp ping packets lt 0 2 10 gt Mode Global Config no ip dhcp ping packets This command prevents the server from pinging pool addresses and will set the number of packets to 0 Default 0 Format no ip dhcp ping packets Mode Global Config 9 4 DHCP Server Commands December 2004 202 10010 02 User Manu
33. Switch Software e Web Browser Note The user should do a copy system running config nvram startup config after configuring the network parameters so that the configurations are not lost Table 6 4 Quick Start up IP Address Command Details show network Displays the Network Configurations in User EXEC IP Address IP Address of the interface Default IP is 0 0 0 0 Subnet Mask IP Subnet Mask for the interface Default is 0 0 0 0 Default Gateway The default Gateway for this interface Default value is 0 0 0 0 Burned in MAC Address The Burned in MAC Address used for in band connectivity Network Configurations Protocol Current Indicates which network protocol is being used Default is none Management VLAN Id Specifies VLAN id Web Mode Indicates whether HTTP Web is enabled Java Mode Indicates whether java mode is enabled network parms network parms lt ipaddr gt lt netmask gt lt gateway gt in Privileged EXEC IP Address range from 0 0 0 0 to 255 255 255 255 Subnet Mask range from 0 0 0 0 to 255 255 255 255 Gateway Address range from 0 0 0 0 to 255 255 255 255 Note The IP address assigned to network in the above table will not be routable If access to management CPU via the routable interface is desired use the ip command 6 4 Quick Start up December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software
34. This field is optional Type of VLAN which can be Default WLAN ID 1 a static one that is configured and permanently defined or a Dynamic one that is created by GVRP registration This command displays VLAN port information Format Mode slot port Port VLAN ID show vlan port lt slot port gt all Privileged EXEC and User EXEC Indicates by slot id and port number which port is controlled by the fields on this line It is possible to set the parameters for all ports by using the selectors on the top line The VLAN ID that this port will assign to untagged frames or pri ority tagged frames received on this port The value must be for an existing VLAN The factory default is 1 Acceptable Frame Types Specifies the types of frames that may be received on this port The options are VLAN only and Admit All When set to VLAN only untagged frames or priority tagged frames received on this port are discarded When set to Admit All untagged Switching Commands 8 63 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Ingress Filtering GVRP Default Priority shutdown This command disables a port Default Format Mode no shutdown This command enables a port Format Mode shutdown all frames or priority tagged frames received on this port are accepted and assigned the value of the Port VLAN ID for this port With either opti
35. This mode groups all the commands pertaining to VLANs The command prompt shown at this level is Command Prompt VLAN Many features are enabled for a particular interface The Interface commands enable or modify the operation of an interface In this mode a physical port is set up for a specific logical con nection operation The Interface Config mode provides access to 7 4 Mode based CLI December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software the router interface configuration commands The command prompt at this level is Command Prompt Interface lt slot port gt The resulting prompt for the interface configuration command entered in the Global Configuration mode is shown below Config interface 2 1 Interface 2 1 Line Config Mode This mode allows the operator to configure the console interface The operator may configure the interface from the directly con nected console or the virtual terminal used with Telnet The com mand prompt at this level is Command Prompt Line Flow of Operation This section captures the flow of operation for the CLI 1 The operator logs into the CLI session and enters the User Exec mode In the User Exec mode the exec gt prompt is displayed on the screen The parsing process is initiated whenever the operator types a command and presses lt ENTER gt The command tree is searched for the command of interest
36. Uie pe rinill ET D I S 8 93 no users snmpv3 encryption 8 93 Security Commands authentication login no authentication login gloar dorik sial OS M RT p clear radius SIAN BUCS usceccnesscis tt Reed oi e ex n a en OD dotis debaulloDlPE asusa E dan ee abd E a NEUE Eiro ATIL ae A P PA A E A O E EA 8 95 xiv Contents December 2004 202 10010 02 SB EE LITE TNR TOT AE no dot1x timeout dot1x user feuin n desse Mun oe RUC UU MN TT DL 8 100 gp 8 igs ren Cage WI a m P a no radius accounting MOQO cen EE TN CEEE A A EA E E O E 8 100 no radius server host pubes Mac ote 8 101 CAE CUL E P E E EE E E m 8 102 radis Sarver meg Wiihencannann aaa r radius server primary 8 102 radius server retransmit 1 eec tanken tx rk nh RR Rn tan t IERKR uan RE REE RA AR EER Rt ra RAE 8 102 no radius server retransmit rU OE TT tee OO radius server HB usa d p OR AE 8 103 no radius server timeout eee ccecescceccecsssecececessesececcsseeeececcssseeeeeeesseaeeees 8 103 psp T 8 103 show Biene st Gl iuussseeoiagi e ron aa DAR UNE scd coe c a P PCR Ro oed S E A show authentication users csccceiesssceorcissaseonressssnceonoess RT o show dot1x jonki jarike podad 8 105 ipse Rod
37. Why thie Doc meni was Created cucossdsitessdecsi tere noB ppeEXUI Re ip SR EPe LI ERI ARDARA 1 1 Howo Use This DOCUMEN ec cioi eros tbe eee naa r Gas Up I CESAR RR PR assu EOM iria 1 1 Tuer IONE adea Reda added mode nie Put darum dicatur ato ATT 1 2 opaca Massscl FONTISIS anrimen a vi aeo PL nde Reaper etu dU here Sude bU uaa 1 2 Features of the HTML Version of this Manual eese 1 3 tons Per TS Manual ouk son duse E Vel xb AS Uoc Y Ra PUDE aao US tres n eR dE Rod SUE Ru duds 1 4 Chapter 2 Switch Management Overview ica eM 2 1 Switch Management OYVervieW Me 2 1 Chapter 3 Administration Console Telnet Interface Set Up Your Switch Using Direct Console Access c cccccceeeeteeeeeeeeeeeaeeeeeeeeeetaeeeeenes 3 1 Chapter 4 Web Based Management Interface Web Based Management OVelvigW uiii sese satct ccu nuda icut xad X Earn unl Ea adr Eden gua 4 1 How to Log In to the Managed SW iuttesuiiedeect tais bee vix do Pee va dedu beu iu desi Pe ian 4 2 Web Based Management Utility Features eeeeeeeeeeeeeeeeeeeneee eene 4 3 DVS ACUI ANCE Image P eubinteaadadereacsabinanbuauainuolndand 4 4 cac pet 4 4 Sysiem Nide Popup IBI 1ueccc eodd maia aged ae abd Sta dna vd nde e 4 4 For apaciic Popup Menus iato dit orc tieiaibeu tud di beebe od be EOE 4 4 Chapter 5 Command Line Interface Structure NEST PORAMINCIMR T o S UESTRE 5 1 CDU PRSETER PODER CER RACER e EC np P i
38. all lt 1 4094 gt Mode Global Config vian port tagging all This command configures the tagging behavior for all interfaces in a VLAN to enabled If tagging is enabled traffic is transmitted as tagged frames If tagging is disabled traffic is transmitted as untagged frames The ID is a valid VLAN identification number Format vlan port tagging all lt 1 4094 gt Mode Global Config no vian port tagging all This command configures the tagging behavior for all interfaces in a VLAN to disabled If tagging is disabled traffic is transmitted as untagged frames The ID is a valid VLAN identification number Format no vlan port tagging all 1 4094 Mode Global Config vlan protocol group This command adds protocol based VLAN group to the system The lt groupName gt is a character string of 1 to 16 characters When it is created the protocol group will be assigned a unique number that will be used to identify the group in subsequent commands Format vlan protocol group lt groupname gt Mode Global Config vlan protocol group add protocol This command adds the protocol to the protocol based VLAN identified by groupid A group may have more than one protocol associated with it Each interface and protocol combination can only be associated with one group If adding a protocol to a group causes any conflicts with interfaces currently associated with the group this command will fail and the protocol will not be added to t
39. and additional features of the Web management access method make it the best method to manage the switch See Web Based Management Overview on page 4 1 for more information Direct access to the switch console is achieved by connecting the switch s console port to a VT 100 or compatible terminal or to a PC Apple Macintosh or UNIX workstation equipped with a terminal emulation program This connection is made using the null modem cable supplied with the switch Administration Console Telnet Interface 3 1 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Examples of terminal emulation programs include e HyperTerminal which is included with Microsoft Windows operating systems e ZTerm for the Apple Macintosh e TIP for UNIX workstations This example describes how to set up the connection using a HyperTerminal on a PC but other systems follow similar steps 1 Click the Windows Start button Select Accessories and then Communications HyperTerminal should be one of the options listed in this menu Select HyperTerminal 2 The following screen will appear Enter a name for this connection In the example below the name of the connection is GSM7224 Click OK Connection Description 2 x hh New Connection Enter a name and choose an icon for the connection Name GSM7224 Figure 3 2 Connection Description 3 The following screen will appear In the bottom dr
40. are those that are configured by the end user Dynamic entries are added to the table as a result of a learning process or protocol The text description of this multicast table entry The list of interfaces that are designated for forwarding Fwd and filtering Flt show mac address table igmpsnooping This command displays the IGMP Snooping entries in the Multicast Forwarding Database MFDB table Format show mac address table igmpsnooping Mode Privileged EXEC Mac Address A unicast MAC address for which the switch has forwarding and or filtering information The format is 6 or 8 two digit hexadeci mal numbers that are separated by colons for example 01 23 45 67 89 AB In an IVL system the MAC address will be displayed as 8 bytes In an SVL system the MAC address will be displayed as 6 bytes Type This displays the type of the entry Static entries are those that are configured by the end user Dynamic entries are added to the table as a result of a learning process or protocol Description The text description of this multicast table entry 8 56 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Interfaces The list of interfaces that are designated for forwarding Fwd and filtering Flt show mac address table multicast This command displays the Multicast Forwarding Database MFDB information If the command is entered with no paramet
41. changed back to Enable Switching Commands 8 29 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Format no snmp server community mode lt name gt Mode Global Config snmp server community ro This command restricts access to switch information The access mode is read only also called public Format snmp server community ro lt name gt Mode Global Config snmp server community rw This command restricts access to switch information The access mode is read write also called private Format snmp server community rw name Mode Global Config snmp server enable traps This command enables the Authentication Flag Default Enabled Format snmp server enable traps Mode Global Config no snmp server enable traps This command disables the Authentication Flag Format no snmp server enable traps Mode Global Config snmp server enable traps bcaststorm This command enables the broadcast storm trap When enabled broadcast storm traps are sent only if the broadcast storm recovery mode setting associated with the port is enabled 8 30 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Default Enabled Format snmp server enable traps bcaststorm Mode Global Config no snmp server enable traps bcaststorm This command disables the broadcast storm trap When enabled broadcast storm
42. flowcontrol This command enables 802 3x flow control for the switch Note This command only applies to full duplex mode ports Default Disabled Format storm control flowcontrol Mode Global Config no storm control flowcontrol This command disables 802 3x flow control for the switch Note This command only applies to full duplex mode ports Format no storm control flowcontrol Mode Global Config vlan This command creates a new VLAN and assigns it an ID The ID is a valid VLAN identification number ID 1 is reserved for the default VLAN VLAN range is 2 4094 Format vlan 2 4094 Mode VLAN database no vlan This command deletes an existing VLAN The ID is a valid VLAN identification number ID 1 is reserved for the default VLAN VLAN range is 2 4094 Format no vlan lt 2 4094 gt Mode VLAN database Switching Commands 8 69 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software vlan acceptframe This command sets the frame acceptance mode per interface For VLAN Only mode untagged frames or priority frames received on this interface are discarded For Admit All mode untagged frames or priority frames received on this interface are accepted and assigned the value of the interface VLAN ID for this port With either option VLAN tagged frames are forwarded in accordance with the IEEE 802 1Q VLAN Specification Default Admit All Format vlan acceptframe vlanonly al
43. gt is a number that corresponds to the desired existing multiple spanning tree instance The priority value is a number within a range of 0 to 61440 in increments of 4096 If 0 defined as the default CIST ID is passed as the lt mstid gt then this command sets the Bridge Priority parameter to a new value for the common and internal spanning tree The bridge priority value again is a number within a range of 0 to 61440 The twelve least significant bits will be masked according to the 802 1s specification This will cause the priority to be rounded down to the next lower valid priority Default 32768 Format spanning tree mst priority lt mstid gt lt 0 61440 gt Mode Global Config Switching Commands 8 87 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software no spanning tree mst priority This command sets the bridge priority for a specific multiple spanning tree instance to the default value i e 32768 The instance lt mstid gt is a number that corresponds to the desired existing multiple spanning tree instance If 0 defined as the default CIST ID is passed as the lt mstid gt then this command sets the Bridge Priority parameter for the common and internal spanning tree to the default value i e 32768 Format spanning tree mst priority lt mstid gt Mode Global Config spanning tree mst vlan This command adds an association between a multiple spanning tree instance and a
44. http settings for the switch Format show ip http Mode Privileged EXEC Secure Server Administrative Mode This field indicates whether the administrative mode of secure HTTP is enabled or disabled Secure Protocol Level The protocol level may have the values of SSL3 TSL1 or both SSL3 and TSL1 Secure Port This field specifies the port configured for SSLT HTTP Mode THis field indicates whether the HTTP mode is enabled or dis abled Secure Shell SSH Commands ip ssh This command is used to enable SSH Default Disabled Format ip ssh Mode Privileged EXEC no ip ssh This command is used to disable SSH Format no ip ssh Mode Privileged EXEC ip ssh protocol This command is used to set or remove protocol levels or versions for SSH Either SSH1 1 SSH2 2 or both SSH 1 and SSH 2 1 and 2 can be set Default and 2 8 36 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Format ip ssh protocol 1 2 Mode Privileged EXEC show ip ssh This command displays the ssh settings Format show ip ssh Mode Privileged EXEC Administrative Mode This field indicates whether the administrative mode of SSH is enabled or disabled Protocol Level The protocol level may have the values of version 1 version 2 or both versions 1 and version 2 Connections This field specifies the current ssh connections Device Configuration Commands
45. in Contents button locates the current topic in the Contents tab Previous Next buttons display the previous or next topic The PDF button links to a PDF version of the full manual The Print button prints the current topic Using this button when a step by step procedure is displayed will send the entire procedure to your printer you do not have to worry about specifying the correct range of pages 3 Right pane Use the right pane to view the contents of the manual Also each page of the manual includesa PDF of This Chapter link at the top right which links to a PDF file containing just the currently selected chapter of the manual About This Guide 1 3 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software How to Print this Manual To print this manual you man choose one of the following several options according to your needs Printing a How To Sequence of Steps in the HTML View Use the Print button E on the upper right of the toolbar to print the currently displayed topic Using this button when a step by step procedure is displayed will send the entire procedure to your printer you do not have to worry about specifying the correct range of pages e Printing a Chapter Use the PDF of This Chapter link at the top right of any page Click PDF of This Chapter link at the top right of any page in the chapter you want to print The PDF version of the
46. interface that this row in the table describes Specifies the interval between the transmission of GARP PDUs registering or re registering membership for an attribute Cur rent attributes are a VLAN or multicast group There is an instance of this timer on a per Port per GARP participant basis Permissible values are 10 to 100 centiseconds 0 1 to 1 0 sec onds The factory default is 20 centiseconds 0 2 seconds The finest granularity of specification is 1 centisecond 0 01 seconds Specifies the period of time to wait after receiving an unregister request for an attribute before deleting the attribute Current attributes are a VLAN or multicast group This may be consid ered a buffer time for another station to assert registration for the same attribute in order to maintain uninterrupted service There is an instance of this timer on a per Port per GARP participant basis Permissible values are 20 to 600 centiseconds 0 2 to 6 0 seconds The factory default is 60 centiseconds 0 6 seconds The finest granularity of specification is 1 centisecond 0 01 sec onds This Leave All Time controls how frequently LeaveAll PDUs are generated A LeaveAll PDU indicates that all registrations will shortly be deregistered Participants will need to rejoin in order to maintain registration There is an instance of this timer on a per Port per GARP participant basis The Leave AII Period Timer is set to a random value in the range of LeaveAllT
47. limited to a distance of 1 500 feet LANs can be connected together but if modems and telephones connect two or more LANs the larger network constitutes what is called a WAN or Wide Area Network Loop An event that occurs when two network devices are connected by more than one path thereby causing packets to repeatedly cycle around the network and not reach their destination C 10 Glossary December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software MAC 1 Medium Access Control In LANs the sublayer of the data link control layer that supports medium dependent functions and uses the services of the physical layer to provide services to the logical link control LLC sublayer The MAC sublayer includes the method of determining when a device has access to the transmission medium 2 Message Authentication Code In computer security a value that is a part of a message or accompanies a message and is used to determine that the contents origin author or other attributes of all or part of the message are as they appear to be IBM Glossary of Computing Terms MAC address The Media Access Control address is a unique 48 bit hardware address assigned to every network interface card Usually written in the form 01 23 45 67 89 ab Management Information Base When SNMP devices send SNMP messages to the management console the device managing SNMP messages it stores information in the MIB M
48. logout This command closes the current telnet connection or resets the current serial connection Note Save configuration changes before logging out Format logout Mode Privileged EXEC ping This command checks if another computer is on the network and listens for connections To use this command configure the switch for network in band connection as described in the 7200 Series L2 Switch 2402 4802 Hardware User Guide The source and target devices must have the ping utility enabled and running on top of TCP IP The switch can be pinged from any IP workstation with which the switch is connected through the default VLAN VLAN 1 as long as there is a physical path between the switch and the workstation The terminal interface sends three pings to the target station Format ping lt ipaddr gt Mode Privileged EXEC and User EXEC reload This command resets the switch without powering it off Reset means that all network connections are terminated and the boot code executes The switch uses the stored configuration to initialize the switch You are prompted to confirm that the reset should proceed A successful reset is indicated by the LEDs on the switch Format reload Mode Privileged EXEC 8 114 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Chapter 9 DHCP Server Commands DHCP Server Configuration Commands These commands configure the DHCP S
49. mapping on a per port basis and the number of available traffic classes may vary with the platform Format classofservice dotlpmapping lt userpriority gt traffic class Mode Global Config or Interface Config show classofservice dot1pmapping This command displays the current 802 1p priority mapping to internal traffic classes for a specific interface The slot port parameter is required on platforms that support priority to traffic class mapping on a per port basis Platforms that support priority to traffic class mapping on a per port basis Format show classofservice dotlpmapping lt slot port gt Platforms that do not support priority to traffic class mapping on a per port basis Switching Commands 8 15 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Format Show classofservice dotlpmapping Mode Privileged EXEC and User EXEC vian port priority all This command configures the port priority assigned for untagged packets for all ports presently plugged into the device The range for the priority is 0 7 Any subsequent per port configuration will override this configuration setting Format vlan port priority all lt priority gt Mode Global Config vlan priority This command configures the default 802 1p port priority assigned for untagged packets for a specific interface The range for the priority is 0 7 Default 0 Format vlan priority lt priority gt
50. mode for all interfaces to Admit All For Admit All mode untagged frames or priority frames received on this interface are accepted and assigned the value of the interface VLAN ID for this port With either option VLAN tagged frames are forwarded in accordance with the IEEE 802 1Q VLAN Specification Format no vlan port acceptframe all vlanonly all Mode Global Config vlan port ingressfilter all This command enables ingress filtering for all ports If ingress filtering is disabled frames received with VLAN IDs that do not match the VLAN membership of the receiving interface are admitted and forwarded to ports that are members of that VLAN Default Disabled Format vlan port ingressfilter all Mode Global Config no vlan port ingressfilter all This command disables ingress filtering for all ports If ingress filtering is disabled frames received with VLAN IDs that do not match the VLAN membership of the receiving interface are admitted and forwarded to ports that are members of that VLAN Format no vlan port ingressfilter all Mode Global Config vlan port pvid all This command changes the VLAN ID for all interface Default 1 Format vlan port pvid all lt 1 4094 gt Mode Global Config no vlan port pvid all This command sets the VLAN ID for all interfaces to 1 Switching Commands 8 73 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Format no vlan port pvid
51. one of two bridges forming a network loop into standby mode so that only one side of a potential loop passes traffic By examining frequent 802 1d configuration updates a bridge in the standby mode can switch automatically into the forward mode if the other bridge forming the loop fails Broadcast A packet sent to all devices on a network Broadcast storm Multiple simultaneous broadcasts that typically absorb all the available network bandwidth and can cause a network to fail Broadcast storms can be due to faulty network devices or network loops Glossary C 3 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software C Cat 5 Category 5 unshielded twisted pair UTP cabling An Ethernet network operating at 10 Mbits second LOBASE T will often tolerate low quality cables but at 100 Mbits second 1OBASE Tx the cable must be rated as Category 5 or Cat 5 or Cat V by the Electronic Industry Association EIA This rating will be printed on the cable jacket Cat 5 cable contains eight conductors arranged in four twisted pairs and terminated with an RJ45 type connector In addition there are restrictions on maximum cable length for both 10 and 100 Mbits second networks Capacity planning Determining whether current solutions can satisfy future demands Capacity planning includes evaluating potential workload and infrastructure changes Checksum A simple error detection scheme in
52. or not to send a trap when link status changes The factory default is enabled Displays whether LACP is enabled or disabled on this port This command displays the Protocol Based VLAN information for either the entire system or for the indicated Group Format Mode Group Name Group ID Protocol s VLAN Interface s show port channel show port protocol lt groupid gt all Privileged EXEC This field displays the group name of an entry in the Protocol based VLAN table This field displays the group identifier of the protocol group This field indicates the type of protocol s for this group This field indicates the VLAN associated with this Protocol Group This field lists the slot port interface s that are associated with this Protocol Group This command displays an overview of all port channels LAGs on the switch Format Mode Logical slot port show port channel logical slot port gt all Privileged EXEC The logical slot and the logical port 8 60 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Name Link State Admin Mode Link Trap Mode STP Mode Mbr Ports Port Speed Type Active Ports show storm control The name of this port channel LAG You may enter any string of up to 15 alphanumeric characters Indicates whether the Link is up or down May be enabled or disabled The factory defa
53. password dialog box Type the default user name of admin and default of no password or whatever password you have set up Once you have entered your access point name your Web browser should automatically find the 7200 Series L2 Switch and display the home page as shown below Web Based Management Utility Features This welcome page displays system information such as System Description System Name System Location System Contact IP Address System Object ID OID System Up Time Web Based Management Interface 4 3 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Interactive Switch Image This dynamic image shows various real time conditions about the switch including the status fan operation power and the connectivity and traffic indication for each port In addition using the popup menus described below you can directly access a wealth of information by right clicking on a port and selecting a menu item from the popup menu that displays Menus The Web based interface enables navigation through several menus The main navigation menu is on the left of every page and contains the screens that let you access all the commands and statistics the switch provides Management e Switch e Traffic Management e Smart Wizard System Wide Popup Menus The 7200 Series L2 Switch also provides several popup menus You can also access the main navigation me
54. re authenticate lt slot port gt Mode Privileged EXEC Switching Commands 8 97 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software dot1x re authentication This command enables re authentication of the supplicant for the specified port Default Disabled Format dot1x re authentication Mode Interface Config no dot1x re authentication This command disables re authentication of the supplicant for the specified port Format no dot1x re authentication Mode Interface Config dot1x system auth control This command is used to enable the dot1x authentication support on the switch By default the authentication support is disabled While disabled the dot1x configuration is retained and can be changed but is not activated Default Disabled Format dot1x system auth control Mode Global Config no dot1x system auth control This command is used to disable the dot1x authentication support on the switch Format no dot1x system auth control Mode Global Config dot1x timeout This command sets the value in seconds of the timer used by the authenticator state machine on this port Depending on the token used and the value in seconds passed various timeout configurable parameters are set The following tokens are supported 8 98 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software reauth period Sets the
55. reset should proceed Format clear config Switching Commands 8 111 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Mode Privileged EXEC clear counters This command clears the stats for a specified lt slot port gt or for all the ports or for the entire switch based upon the argument Format clear counters lt slot port gt all Mode Privileged EXEC clear igmpsnooping This command clears the tables managed by the IGMP Snooping function and will attempt to delete these entries from the Multicast Forwarding Database Format clear igmpsnooping Mode Privileged EXEC clear pass This command resets all user passwords to the factory defaults without powering off the switch You are prompted to confirm that the password reset should proceed Format clear pass Mode Privileged EXEC clear port channel This command clears all port channels LAGs Format clear port channel Mode Privileged EXEC clear traplog This command clears the trap log Format clear traplog Mode Privileged EXEC 8 112 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software clear vlan This command resets VLAN configuration parameters to the factory defaults Format clear vlan Mode Privileged EXEC copy This command uploads and downloads to from the switch Local URLs can be specified using tftp or xmod
56. server download the operator must complete the Quick Start up for the IP Address Table 6 7 Quick Start up Downloading from TFTP Server Command Details copy url nvram startup config system image Sets the download datatype to be an image or config file The URL must be specified as tftp ipAddr filepath fileName The nvram startup config option downloads the config file using tftp and system image option downloads the code file 6 6 Quick Start up December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Quick Start up Factory Defaults Table 6 8 Quick Start up Factory Defaults Command Details clear config Enter yes when the prompt pops up to clear all the configurations made to the switch copy system running config nvram startup config Enter yes when the prompt pops up that asks if you want to save the configurations made to the switch reload OR Cold Boot the Switch Enter yes when the prompt pops up that asks if you want to reset the system This is the users choice either reset the switch or cold boot the switch both work effectively Quick Start up 6 7 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software 6 8 December 2004 202 10010 02 Quick Start up User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Chapter 7 Mod
57. tree instance depending on the lt mstid gt parameter The pathcost can be specified as a number in the range of 1 to 200000000 or auto If auto is specified the pathcost value will be set based on Link Speed If the port priority token is specified this command sets the priority for this port within a specific multiple spanning tree instance or the common and internal spanning tree instance depending on the lt mstid gt parameter The port priority value is a number in the range of 0 to 240 in increments of 16 Default cost auto port priorty 128 Format spanning tree mst lt mstid gt cost lt 1 200000000 gt auto port priority lt 0 240 gt Mode Interface Config no spanning tree mst This command sets the Path Cost or Port Priority for this port within the multiple spanning tree instance or in the common and internal spanning tree to the respective default values If the lt mstid gt parameter corresponds to an existing multiple spanning tree instance then the configurations are done for that multiple spanning tree instance If however 0 defined as the default CIST ID is passed as the lt mstid gt then the configurations are performed for the common and internal spanning tree instance If the cost token is specified this command sets the path cost for this port within a multiple spanning tree instance or the common and internal spanning tree instance depending on the lt mstid gt parameter to the de
58. uir Sod coven Dade an papae 8 29 no snmp server community ipmask eee I Pola 8 29 ann Sarver pomi RIDE MORE raaire eaoin xD Pda RE ibn aU Mia 8 29 no snmp server community MOJE scssicccccssccsesccesssscnesaaeracsesonesiscceeaeanseaseneessnccor OO ee SHAT Seer COMIN by TO suos ee rper e o nee and peel aie SEU SOS FT IDE BM acariens aai aai a aaia a aE 8 30 snmp server enable traps s rade unde TE TT jade 8 30 na SHINS GIVE SHAS I eps esposti prora prc er pO UR p DL er D GR Ln Rd 8 30 snmp server enable traps bcaststorm T 8 30 no snmp server enable traps bcaststorm sesesssseeeeeeeess OOO snmp server enable traps linkmode sssssssssssseeneeeneee nnns 8 31 no snmp server enable traps linkmode sss 8 91 snmp server enable traps multiusers enne nennen 8 31 no snmp server enable traps multiusers eeeesesesseeeseeee 8 32 snmp server enable traps stpmode iens hos isses es 8 32 no snmp server enable traps stpmode sssssssssseseees 8 92 nsa eC Ua no snmptrap dieses ere EEI EE E nm dicken 8 32 MUNA o c fT DRE 8 33 Sina OE OOS corae r beu Qu CU MS dedo be guid bate ta Ee ee nog SHUT OO rsesso pi dera RE x pda er t pare M dd p aee m EUN 8 33 no telnet parase I jdisesn
59. value in seconds of the timer used by the authenticator state machine on this port to determine when re authentication of the supplicant takes place The reauth period must be a value in the range 1 65535 quiet period Sets the value in seconds of the timer used by the authenticator state machine on this port to define periods of time in which it will not attempt to acquire a supplicant The quiet period must be a value in the range 0 65535 tx period Sets the value in seconds of the timer used by the authenticator state machine on this port to determine when to send an EAPOL EAP Request Identity frame to the supplicant The quiet period must be a value in the range 1 65535 supp timeout Sets the value in seconds of the timer used by the authenticator state machine on this port to timeout the supplicant The supp timeout must be a value in the range 1 65535 server timeout Sets the value in seconds of the timer used by the authenticator state machine on this port to timeout the authentication server The supp timeout must be a value in the range 1 65535 Default reauth period 3600 seconds quiet period 60 seconds tx period 30 seconds supp timeout 30 seconds server timeout 30 seconds Format dot1x timeout reauth period seconds quiet period lt sec onds gt tx period seconds supp timeout lt seconds gt server timeout lt seconds gt Mode Interface Config no dot1x timeout This co
60. 04 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Client IP Mask Access Mode Status show snmptrap before being compared to the IP Address Note that if the Subnet Mask is set to 0 0 0 0 an IP Address of 0 0 0 0 matches all IP addresses The default value is 0 0 0 0 A mask to be ANDed with the requesting entity s IP address before comparison with IP Address If the result matches with IP Address then the address is an authenticated IP address For example if the IP Address 9 47 128 0 and the corresponding Subnet Mask 255 255 255 0 a range of incoming IP addresses would match i e the incoming IP Address could equal 9 47 128 0 9 47 128 255 The default value is 0 0 0 0 The access level for this community string The status of this community access entry This command displays SNMP trap receivers Trap messages are sent across a network to an SNMP Network Manager These messages alert the manager to events occurring within the switch or on the network Six trap receivers are simultaneously supported Format Mode SNMP Trap Name IP Address Status show snmptrap Privileged EXEC The community string of the SNMP trap packet sent to the trap manager This may be up to 16 alphanumeric characters This string is case sensitive The IP address to receive SNMP traps from this device Enter 4 numbers between 0 and 255 separated by periods A pull down menu that indicates th
61. 10f gt Config full duplex 1000 full duplex Global speed all 100 10 half duplex Config full duplex 1000 full duplex Switching config port lacpmode lt slot port all gt Interface port lacpmode lt enable disable gt Config Interface no port lacomode Config Global port lacpmode all Config Global no port lacpmode all Config Switching config port autoneg lt slot port all gt Interface auto negotiate lt enable disable gt Config Interface no auto negotiate Config Global auto negotiate all Config Global no auto negotiate all Config Switching config lag create name Global port channel name Config Switching config lag addport logical slot Interface addport logical slot port gt port gt lt slot port gt Config Switching config lag deleteport lt logical slot Interface deleteport lt logical slot port gt port gt lt slot port all gt Config A 14 IS CLI Mapping December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Table 9 1 IS CLI Mapping continued CLI Command Package 7200 Series L2 Switch Command Mode Syntax Global deleteport lt logical slot port gt all Config Switching config lag adminmode lt logical slot Global port channel adminmode lt logical port all gt lt enable disable gt Config slot port gt all Global no port channel adminmode lt logical Config slot por
62. 15 15 gt Config A 20 IS CLI Mapping December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Table 9 1 IS CLI Mapping continued CLI Command Package 7200 Series L2 Switch Command Mode Syntax Global no radius server retransmit Config Security config radius timeout 1 30 Global radius server timeout 1 30 Config Global no radius server timeout Config Security config radius accounting mode Global radius accounting mode lt enable disable gt Config Global no radius accounting mode Config Security config radius accounting server Global radius server host auth acct add lt ipaddr gt Config lt ipaddr gt lt 0 65535 gt Security config radius accounting server Global port lt ipaddr gt lt 0 65535 gt Config Security config radius accounting server Global remove lt ipaddr gt Config Security config radius server add lt ipaddr gt Global Config Security config radius server port lt ipaddr gt Global lt 0 65535 gt Config Security config radius server remove Global no radius server host auth acct lt ipaddr gt Config lt ipaddr gt Security config radius accounting server Global radius server key auth acct secret lt ipaddr gt Config lt ipaddr gt Security config radius server secret Global lt ipaddr gt Config Security config radius server primary Global radius server primary lt ipadd
63. 202 10010 02 xvii E Seasonic ahi sh ass tg E E sdk ae kd ada cds ada ee hee se 12 16 Qr T paetemeeee 12 17 E onsnbinoM dH nU UI MINES I LEN IE E LN MP NU CU 12 18 E E tact niue sace iis des mec cece ELA MEM LI E DEL ret AE 12 18 D 8 N Y Y M Xn 12 19 Avete eret P YR UEM RE 12 19 xviii Contents December 2004 202 10010 02 Chapter 1 About This Guide Thank you for purchasing the NETGEAR 7200 Series L2 Switch Audience This reference manual assumes that the reader has basic to intermediate computer and Internet skills However basic computer network Internet and wireless technology tutorial information is provided in the Appendices This document describes configuration commands for the 7200 Series L2 Switch software The commands can be accessed from the CLI telnet and Web interfaces Why the Document was Created This document was created primarily for system administrators configuring and operating a system using 7200 Series L2 Switch software It is intended to provide an understanding of the configuration options of 7200 Series L2 Switch software It is assumed that the reader has an understanding of the relevant switch platforms It is also assumed that the reader has a basic knowledge of Ethernet and networking concepts How to Use This Document This document describes configuration commands for the 7000 Series L3 Managed Sw
64. 94 Format vlan makestatic lt 2 4094 gt Mode VLAN database vlan name This command changes the name of a VLAN The name is an alphanumeric string of up to 16 characters and the ID is a valid VLAN identification number ID range is 1 4094 Default The name for VLAN ID 1 is always Default The name for other VLANs is defaulted to a blank string Format vlan name lt 2 4094 gt lt name gt Mode VLAN database no vlan name This command sets the name of a VLAN to a blank string The VLAN ID is a valid VLAN identification number ID range is 1 4094 Format no vlan name lt 2 4094 gt Mode VLAN database vian participation This command configures the degree of participation for a specific interface in a VLAN The ID is a valid VLAN identification number and the interface is a valid interface number Format vlan participation exclude include auto 1 4094 Mode Interface Config Participation options are include The interface is always a member of this VLAN This is equiva lent to registration fixed Switching Commands 8 71 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software exclude The interface is never a member of this VLAN This is equivalent to registration forbidden auto The interface is dynamically registered in this VLAN by GVRP The interface will not participate in this VLAN unless a join request is received on this interface This is equivalent t
65. CS with a non integral number of octets Rx FCS Errors The total number of packets received that had a length excluding framing bits but including FCS octets of between 64 and 1518 octets inclusive but had a bad Frame Check Sequence FCS with an integral number of octets Overruns The total number of frames discarded as this port was overloaded with incoming packets and could not keep up with the inflow Received Packets not forwarded Total A count of valid frames received which were discarded i e filtered by the forwarding process Local Traffic Frames The total number of frames dropped in the forwarding process because the destination address was located off of this port 802 3x Pause Frames Received A count of MAC Control frames received on this interface with an opcode indicating the PAUSE operation This counter does not increment when the interface is operating in half duplex mode Unacceptable Frame Type The number of frames discarded from this port due to being an unacceptable frame type VLAN Membership Mismatch The number of frames dis carded on this port due to ingress filtering 8 6 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software VLAN Viable Discards The number of frames discarded on this port when a lookup on a particular VLAN occurs while that entry in the VLAN table is being modified or if the VLAN has not been
66. Counters Last Cleared Time since port was reset displayed in days hours minutes and seconds Switching Commands 8 77 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software STP BPDUs Transmitted Spanning Tree Protocol Bridge Protocol Data Units sent STP BPDUs Received Spanning Tree Protocol Bridge Protocol Data Units received RST BPDUs Transmitted Rapid Spanning Tree Protocol Bridge Protocol Data Units sent RST BPDUs Received Rapid Spanning Tree Protocol Bridge Protocol Data Units received MSTP BPDUs Transmitted Multiple Spanning Tree Protocol Bridge Protocol Data Units sent MSTP BPDUs Received Multiple Spanning Tree Protocol Bridge Protocol Data Units received show spanning tree mst detailed This command displays settings and parameters for the specified multiple spanning tree instance The instance lt mstid gt is a number that corresponds to the desired existing multiple spanning tree instance ID The following details are displayed Format show spanning tree mst detailed lt mstid gt Mode Privileged EXEC and User EXEC MST Instance ID MST Bridge Priority Time Since Topology Change in seconds Topology Change Count Number of times the topology has changed for this multiple spanning tree instance Topology Change in Progress Value of the Topology Change parameter for the multiple spanning tree instance Designated Root Identifier of the Regional Root for this multip
67. Database GVRP See GARP VLAN Registration Protocol on page 7 H Half duplex A system that allows packets to transmitted and received but not at the same time Contrast with full duplex hop count The number of routers that a data packet passes through on its way to its destination ICMP See Internet Control Message Protocol on page 9 IEEE Institute of Electrical and Electronics Engineers This American organization was founded in 1963 and sets standards for computers and communications IETF Internet Engineering Task Force An organization responsible for providing engineering solutions for TCP IP networks In the network management area this group is responsible for the development of the SNMP protocol C 8 Glossary December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software IGMP See Internet Group Management Protocol on page 9 IGMP Snooping A series of operations performed by intermediate systems to add logic to the network to optimize the flow of multicast traffic these intermediate systems such as Layer 2 switches listen for IGMP messages and build mapping tables and associated forwarding filters in addition to reducing the IGMP protocol traffic See Internet Group Management Protocol on page 9 for more information Internet Control Message Protocol ICMP is an extension to the Internet Protocol IP that supports packets containing er
68. EC Switching config users add lt name gt Global users name lt username gt Config Switching config users delete lt name gt Global no users name lt username gt Config Switching config users passwd user Global users passwd username Config Switching config users snmpv3 Global users snmpv3 authentication authentication user none md5 Config username none md5 sha sha gt Global no users snmpv3 authentication Config username Switching config users snmpv3 encryption Global users snmpv3 encryption user none des key gt Config username none des key Global no users snmpv3 encryption Config username Switching config users snmpv3 accessmode Global users snmpv3 accessmode user lt readonly readwrite gt Config username readonly readwrite Global no users snmpv3 accessmode Config username Switching config loginsession close Privileged disconnect sessionID all sessionlD all EXEC Switching show switchconfig Privileged show storm control EXEC Switching show port slot port all Privileged show port lt slot port gt all EXEC Switching show lag logical slot port all gt Privileged show port channel lt logical slot port gt EXEC all IS CLI Mapping A 11 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Table 9 1 IS CLI Mapping continued Package 7200 Series L2 Switch Command CLI Com
69. EIA TIA 568A 3 If not correctly implemented this can adversely affect all cabling parameters Near End Cross Talk NEXT This is a measure of the signal coupling from one wire to another within a cable assembly or among cables within a bundle NEXT measures the amount of cross talk disturbance energy that is detected at the near end of the link the end where the transmitter is located NEXT measures the amount of energy that is returned to the sender end The factors that affect NEXT and cross talk are exactly the same as outlined in the Return Loss section The cross talk performance is directly related to the quality of the cable installation Patch Cables When installing your equipment replace old patch panel cables that do not meet Category 5e specifications As pointed out in the NEXT section this near end piece of cable is critical for successful operation RJ 45 Plug and RJ 45 Connectors In a Fast Ethernet network it is important that all 100B ASE T certified Category 5 cabling use RJ 45 plugs The RJ 45 plug accepts 4 pair UTP or shielded twisted pair STP 100 ohm cable and connects into the RJ 45 connector The RJ 45 connector is used to connect stations hubs and switches through UTP cable it supports 10 Mbps 100 Mbps or 1000 Mbps data transmission B 6 Cabling Guidelines December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Figure 9 4 shows the RJ 45 plug an
70. ETGEAR does not assume any liability that may occur due to the use or application of the product s or circuit layout s described herein Regulatory Compliance Information This device is restricted to indoor use due to reduce the potential for harmful interference to co channel Mobile Satellite and Radar Systems December 2004 202 10010 02 Canadian Department of Communications Compliance Statement This Class B Digital apparatus NETGEAR 7200 Series Layer 2 Managed Switch meets all the requirements of the Canadian Interference Causing Equipment Regulations Cet appareil numerique del la classe B respect les exigences du Regalement sur le material broilleur du Canada This device comples with Class B limits of Industry of Canada Operation is subject to the following two conditions 1 This device may not cause harmful interference 2 This device must accept any interference received including interference that may cause undesired operation EN 55 022 Declaration of Conformance This is to certify that the NETGEAR 7200 Series Layer 2 Managed Switch is shielded against the generation of radio interference in accordance with the application of Council Directive 89 336 EEC Article 4a Conformity is declared by the application of EN 55 022 Class B CISPR 22 iii December 2004 202 10010 02 December 2004 202 10010 02 Contents Chapter 1 About This Guide PURSE ocurre p pea perat ni dee tnde ERROR MH HORE ad tcn pena 1 1
71. EXEC Switching show mfdb igmpsnooping Privileged show mac address table EXEC igmpsnooping Switching show mfdb statisticfiltering Privileged show mac address table EXEC staticfiltering Switching show mfdb stats Privileged show mac address table stats EXEC Switching show mirroring Privileged show monitor EXEC Switching config switchconfig broadcast Global storm control broadcast lt enable disable gt Config Global no storm control broadcast Config Switching config switchconfig flowcontrol Global storm control flowcontrol lt enable disable gt Config Global no storm control flowcontrol Config Switching config port adminmode slot port Interface shutdown all gt enable disable Config Interface no shutdown Config Global shutdown all Config Global no shutdown all Config Switching config port linktrap slot port all gt Interface snmp trap link status enable disable Config Interface no snmp trap link status Config IS CLI Mapping A 13 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Table 9 1 IS CLI Mapping continued CLI Command Package 7200 Series L2 Switch Command Mode Syntax Global snmp trap link status all Config Global no snmp trap link status all Config Switching config port physicalmode slot port Interface speed 100 10 half duplex all gt 100h 100f 10h
72. Flow Control The process of adjusting the flow of data from one network device to another to ensure that the receiving device can handle all of the incoming data This is particularly important where the sending device is capable of sending data much faster than the receiving device can receive it There are many flow control C 6 Glossary December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software mechanisms One of the most common flow control protocols for asynchronous communication is called xon xoff In this case the receiving device sends a an xoff message to the sending device when its buffer is full The sending device then stops sending data When the receiving device is ready to receive more data it sends an xon signal Forwarding When a frame is received on an input port on a switch the address is checked against the lookup table If the lookup table has recorded the destination address the frame is automatically forwarded on an output port Full duplex A system that allows packets to be transmitted and received at the same time and in effect doubles the potential throughput of a link G GARP See Generic Attribute Registration Protocol on page 7 GARP Information Propagation GIP is the propagation of information between GARP participants for the same application in a bridge is carried out by a GIP component GARP Multicast Registration Protocol GMRP provides a
73. Guidelines Fast Ethernet Cable Guidelines soc icsscccccaxicssqcecsasesaccsiwossceceisensaoensensssaeisinevabeseaxearioneanaes 11 1 Je CFG e a e eve cade ane eta EA 11 2 catego c Cable SpebITG BN 15x eda aen Pe CR AED 11 2 TRS Heh Pal Cae dederunt urn adette ibt aer QURE ERE diS EDU tranche 11 3 Patel Paneb and CaDIES LH 11 4 Using 1000BASE T Gigabit Ethernet over Category 5 Cable sssss 11 5 Cabling jube T UE sesto Hid siete AT 11 5 Near End GSS TaN TO acrins 11 6 AE ONES A A P TTE 11 6 P45 Plug and RJA den cui sicisisrrissniord ranner niaior naani 11 6 Gore EIO aia NREN A A 11 8 Appendix C Glossary AIETE certe rr E N E 12 1 ee E 12 2 rm P E 12 3 P 12 4 ree TTC 12 4 E Nag eats me ODIO DUDEN DES CN NM rasa CODE pARR DN DEUS DUCK N RURE 12 6 FE oae udstesta disease M best di qe liege E A dud oM 12 6 5 M HT 12 7 I T TT S EIN M 12 8 e 12 8 v n te M MX M 12 10 e M eachdaioeah e 12 11 ee E A A A E A E A E R E E 12 12 E E E EAN E E EII EEA gu PL UNS LAO UH AE qu E A I EA A go E AAA 12 13 EE E E E AE E NE E E E I N E T 12 13 P 12 14 Contents December 2004
74. IEEE 802 1s functionality supported Default 802 1s Format spanning tree forceversion 802 1d 802 1w 802 1s gt Mode Global Config no spanning tree forceversion This command sets the Force Protocol Version parameter to the default value i e 802 1s Format no spanning tree forceversion Mode Global Config spanning tree forward time This command sets the Bridge Forward Delay parameter to a new value for the common and internal spanning tree The forward time value is in seconds within a range of 4 to 30 with the value being greater than or equal to Bridge Max Age 2 1 Default 15 Format spanning tree forward time 4 30 Mode Global Config no spanning tree forward time This command sets the Bridge Forward Delay parameter for the common and internal spanning tree to the default value i e 15 Format no spanning tree forward time Mode Global Config 8 84 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software spanning tree hello time This command sets the Hello Time parameter to a new value for the common and internal spanning tree The hellotime lt value gt is in whole seconds within a range of 1 to 10 with the value being less than or equal to Bridge Max Age 2 1 Default 2 Format spanning tree hello time lt 1 10 gt Mode Global Config no spanning tree hello time This command sets the Hello Time parameter for the
75. RSION xsiccocsssecresesetr inca ener csse etu RENE rtt a pa UL aaa i em Abi ciel oq Hb MT 8 no spanning tree forward time EPIRI T aaa S no spanning tree MST pitini ere PEPEE 8 86 spanning tree Frist alae disrannidi ana cbe a bug vnd RE Re ex RU aaa 8 87 ro SAMMI TS mst InSIalleB uissieussecesodsise tetti tudo b FebE nein ox Red Sr etp dde URN ERR Sannin reri mist MONLY caseo b DR ORE CHEFS AR Rr ER RU RR RE no spanning tree mst priority spanning tree IMSL vlan i e piara 8 88 NG Spannng ree WISE VIRB sisssssss pop kx bl Fa ia np POEEEM gan iR aet E o Fo ora EO no spanning tree port mode eee hod sedate ade 9 89 Contents xiii December 2004 202 10010 02 no spanning tree port mode all User Account Management Commands sine NENNEN T T T TD show loginsession Ig Hol E M TE o UBI Horas casae ba A nd E A Meaty td Dane dea lord ENT no users name SETICH4CII ep 8 91 lig Hel SG ocio dut b dtt SR EUR teo dota Sette REEL i te ca to Pa petet EE NO users snmpv3 accessmode m M E 8 92 n users snmpu3 BCS SSIS iusso ease Reis duh x etn isa ganan E Dna 8 92 users snmpv3 authentication eee eT E cre tre Eme ME no users SHIMPVS authentication saissesiisarssvaiissasesseitiassdevarsaseseniiaasdensnsaiesbe eee DECIR a
76. S CLI Mapping December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Table 9 1 IS CLI Mapping continued CLI Command Package 7200 Series L2 Switch Command Mode Syntax Switching config syslocation lt location gt Global snmp server location lt loc gt Config Switching config syscontact lt contact gt Global snmp server contact lt con gt Config Switching ping lt ipaddr gt Privileged ping lt ipaddress gt EXEC and User EXEC Switching reset system Privileged reload EXEC Switching transfer upload mode lt xmodem Privileged copy nvram errorlog tftp gt EXEC nvram msglog nvram startup config nvram traplog url lt url gt nvram startup config system image nvram sshkey rsal nvram sshkey rsa2 nvram sshkey dsa nvram sslpem root nvram sslpem server nvram sslpem dhweak nvram sslpem strong system running config nvram startup config Switching transfer upload serverip lt ipaddr gt Switching transfer upload path lt path gt Switching transfer upload filename lt name gt Switching transfer upload datatype lt config errorlog msglog traplog gt Switching transfer upload start Switching transfer download mode lt xmodem tftp gt Switching transfer download serverip lt ipaddr gt IS CLI Mapping A 9 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Laye
77. S server statistic the IP Address specified must match that of a previously configured RADIUS server On execution the following fields are displayed Format show radius statistics ipaddr Mode Privileged EXEC If ip address is not specified than only Invalis Server Address filed is displayed Otherwise other listed fields are displayed Invalid Server Addresses The number of RADIUS Access Response packets received from unknown addresses Server IP Address Round Trip Time The time interval in hundredths of a second between the most recent Access Reply Access Challenge and the Access Request that matched it from the RADIUS authentication server Access Requests The number of RADIUS Access Request packets sent to this server This number does not include retransmissions Switching Commands 8 109 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Access Retransmission The number of RADIUS Access Request packets retransmitted Access Accepts Access Rejects Access Challenges to this RADIUS authentication server The number of RADIUS Access Accept packets including both valid and invalid packets which were received from this server The number of RADIUS Access Reject packets including both valid and invalid packets which were received from this server The number of RADIUS Access Challenge packets including both valid and invalid packets which were received from t
78. SSL3 TLS1 Mode Privileged EXEC no ip http secure protocol This command is used to remove protocol levels versions for secure HTTP Format no ip http secure protocol SSL3 TLS1 8 34 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Mode Privileged EXEC ip http secure server This command is used to enable the secure socket layer for secure HTTP Default Disabled Format ip http secure server Mode Privileged EXEC no ip http secure server This command is used to disable the secure socket layer for secure HTTP Format ip http secure server Mode Privileged EXEC ip http server This command enables access to the switch through the Web interface When access is enabled the user can login to the switch from the Web interface When access is disabled the user cannot login to the switch s Web server Disabling the Web interface takes effect immediately All interfaces are effected Default enabled Format ip http server Mode Privileged EXEC no ip http server This command disables access to the switch through the Web interface When access is disabled the user cannot login to the switch s Web server Default enabled Format no ip http server Mode Privileged EXEC Switching Commands 8 35 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software show ip http This command displays the
79. Specifications Product Version NETGEAR 7200 Series Layer 2 Managed Switch Manual Publication Date December 2004 Note Product updates are available on the NETGEAR Inc Web site at http www netgear com support main asp About This Guide December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Features of the HTML Version of this Manual The HTML version of this manual includes these features SUCCES index Search Favorites EQ Chapter 1 Introduction H Chapter 2 Basic Setup QA Chapter 3 Configuration g Understanding the Configuration Options IJ Using Configuration Profiles Connectto an Access Point in Infrastru How to Configure an Connecting to Another PC in Ad hoc Mode Infrastructure Mode Profile Enabling Wireless Security Features Appendix A Technical Specifications amp Appendix B Wireless Networking Basics Appendix C Preparing Your PCs for Network Glossary Follow the instructions below to configure an infrastructure mode profile for connecting to an access point Figure Preface 2 HTML version of this manual 1 Left pane Use the left pane to view the Contents Index Search and Favorites tabs To view the HTML version of the manual you must have a version 4 or later browser with JavaScript enabled 2 Toolbar buttons Use the toolbar buttons across the top to navigate print pages and more The Show
80. Typically a WAN consists of two or more local area networks LANs Windows Internet Naming Service WINS Windows Internet Naming Service is a server process for resolving Windows based computer names to IP addresses If a remote network contains a WINS server your Windows PCs can gather information from that WINS server about its local hosts This allows your PCs to browse that remote network using the Windows Network Neighborhood feature WINS WINS Windows Internet Naming Service is a server process for resolving Windows based computer names to IP addresses X XModem One of the most popular file transfer protocols FTPs Xmodem is fairly effective at detecting errors It sends blocks of data together with a checksum and then waits for acknowledgment of the block s receipt The waiting slows down the rate of data transmission considerably but it ensures accurate transmission Xmodem can be implemented either in software or in hardware Many modems and almost all communications software packages support Xmodem However it is useful only at relatively slow data transmission speeds less than 4 800 bps Enhanced versions of Xmodem that work at higher transmission speeds are known as Ymodem and Zmodem Glossary C 19 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software C 20 Glossary December 2004 202 10010 02
81. VLAN The VLAN will no longer be associated with the common and internal spanning tree The instance mstid is a number that corresponds to the desired existing multiple spanning tree instance The vlanid corresponds to an existing VLAN ID Format spanning tree mst vlan mstid lt vlanid gt Mode Global Config no spanning tree mst vlan This command removes an association between a multiple spanning tree instance and a VLAN The VLAN will again be associated with the common and internal spanning tree The instance lt mstid gt is a number that corresponds to the desired existing multiple spanning tree instance The lt vlanid gt corresponds to an existing VLAN ID Format no spanning tree mst vlan lt mstid gt lt vlanid gt Mode Global Config spanning tree port mode This command sets the Administrative Switch Port State for this port to enabled Default Disabled Format spanning tree port mode Mode Interface Config 8 88 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software no spanning tree port mode This command sets the Administrative Switch Port State for this port to disabled Format no spanning tree port mode Mode Interface Config spanning tree port mode all This command sets the Administrative Switch Port State for all ports to enabled Default Disabled Format spanning tree port mode all Mode Global Config no spanning tree port m
82. able traps linkmode command Format no snmp trap link status Mode Interface Config snmp trap link status all This command enables link status traps for all interfaces Note This command is valid only when the Link Up Down Flag is enabled see snmp server enable traps linkmode Format snmp trap link status all Mode Global Config no snmp trap link status all This command disables link status traps for all interfaces Note This command is valid only when the Link Up Down Flag is enabled see snmp server enable traps linkmode Switching Commands 8 65 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Format no snmp trap link status all Mode Global Config spanning tree This command sets the STP mode for a specific port channel LAG This is the value specified for STP Mode on the Port Configuration Menu 802 1D mode is the default The interface is a logical slot and port for a configured port channel The a11 option sets all configured port channels LAGs with the same option Format spanning tree logical slot port all off 802 1d fast Mode Global Config The mode is one of the following 802 1d IEEE 802 1D compliant STP mode is used fast Fast STP mode is used off STP is turned off spanning tree bpdumigrationcheck This command enables BPDU migration check on a given interface The all option enables BPDU migration check on all int
83. al bytes ranging from 0 to 255 IP address 0 0 0 0 is invalid Default None Format dns server address1 lt address2 gt lt address8 gt Mode DHCP Pool Config Mode no dns server This command removes the DNS Server list Format no dns server Mode DHCP Pool Config Mode 9 2 DHCP Server Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software hardware address This command specifies the hardware address of a DHCP client Hardware address is the MAC address of the hardware platform of the client consisting of 6 bytes in dotted hexadecimal format Type indicates the protocol of the hardware platform It is 1 for 10 MB Ethernet and 6 for IEEE 802 Default Ethernet Format hardware address lt hardwareaddress gt type Mode DHCP Pool Config Mode no hardware address This command removes the hardware address of the DHCP client Format no hardware address Mode DHCP Pool Config Mode host This command specifies the IP address and network mask for a manual binding to a DHCP client Address and Mask are valid IP addresses each made up of four decimal bytes ranging from 0 to 255 IP address 0 0 0 0 is invalid The prefix length is an integer from 0 to 32 Default None Format host address mask prefix length Mode DHCP Pool Config Mode no host This command removes the IP address of the DHCP client Format no host Mode DHCP Pool Config Mode DHCP
84. al for the NETGEAR 7200 Series Layer 2 Managed Switch Software ip dhcp pool This command configures a DHCP address pool name on a DHCP server and enters DHCP pool configuration mode Default None Format ip dhcp pool lt name gt Mode Global Config Mode no ip dhcp pool This command removes the DHCP address pool The name should be previously configured pool name Format no ip dhcp pool lt name gt Mode Global Config Mode lease This command configures the duration of the lease for an IP address that is assigned from a DHCP server to a DHCP client The overall lease time should be between 1 86400 minutes If infinite is specified lease is set for 60 days Days is an integer from 0 to 59 Hours is an integer from 0 to 1339 Minutes is an integer from 0 to 86399 Default 1 day Format lease lt days gt hours minutes infinite Mode DHCP Pool Config no lease This command restores the default value of the lease time for DHCP Server Format no lease Mode DHCP Pool Config DHCP Server Commands 9 5 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software network This command is used to configure the subnet number and mask for a DHCP address pool on the server Network number is a valid IP address made up of four decimal bytes ranging from 0 to 255 IP address 0 0 0 0 is invalid Mask is the IP subnet mask for the specified address pool The prefix length is an int
85. ample the domain name www example com might translate to 198 105 232 4 The DNS system is in fact its own network If one DNS server doesn t know how to translate a particular domain name it asks another one and so on until the correct IP address is returned Domain Name A descriptive name for an address or group of addresses on the Internet Domain names are of the form of a registered entity name plus one of a number of predefined top level suffixes such as com edu uk etc For example in the address mail NETGEAR com mail is a server name and NETGEAR com is the domain Dynamic Host Configuration Protocol DHCP is a protocol for assigning dynamic IP addresses to devices on a network With dynamic addressing a device can have a different IP address every time it connects to the network In some systems the device s IP address can even change while it is still connected DHCP also supports a mix of static and dynamic IP addresses Dynamic addressing simplifies network administration because the software tracks IP addresses rather than requiring an administrator to manage the task A new computer can be added to a network without the hassle of manually assigning it a unique IP address Glossary C 5 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software E EAP Extensible Authentication Protocol is a general protocol for authentication that supports multiple authentication method
86. atch panel if used 295 ft 90 m from the wiring closet to the wall outlet 10 ft 3 m from the wall outlet to the desktop device The patch panel and other connecting hardware must meet the requirements for 100 Mbps operation Category 5 Only 0 5 inch 1 5 cm of untwist in the wire pair is allowed at any termination point Category 5 Cable Specifications Ensure that the fiber cable is crossed over to guarantee link The Table below lists the electrical requirements of Category 5 UTP cable B 2 Cabling Guidelines December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Table 9 2 Electrical Requirements of Category 5 Cable SPECIFICATIONS CATEGORY 5 CABLE REQUIREMENTS Number of pairs Four Impedance 100 15 Mutual capacitance at 1 KHz 5 6 nF per 100 m Maximum attenuation at 4 MHz 8 2 dB per 100 m at 20 C at 31 MHz 11 7 at 100 MHz 22 0 NEXT loss dB minimum at 16 MHz 44 at 31 MHz 39 at 100 MHz 32 Twisted Pair Cables For two devices to communicate the transmitter of each device must be connected to the receiver of the other device The crossover function is usually implemented internally as part of the circuitry in the device Computers and workstation adapter cards are usually media dependent interface ports called MDI or uplink ports Most repeaters and switch ports are configured as media dependent interfaces with built in crosso
87. ation sent over a network A packet typically contains a source and destination network address some protocol and length information a block of data and a checksum PDU See Protocol Data Unit on page 14 PHY The OSI Physical Layer The physical layer provides for transmission of cells over a physical medium connecting two ATM devices This physical layer is comprised of two sublayers the Physical Medium Dependent PMD sublayer and the Transmission Convergence TC sublayer Point to Point Protocol PPP A protocol allowing a computer using TCP IP to connect directly to the Internet Port Mirroring Also known as a roving analysis port This is a method of monitoring network traffic that forwards a copy of each incoming and outgoing packet from one port of a network switch to another port where the packet can be studied A network administrator uses port mirroring as a diagnostic tool or debugging feature especially Glossary C 13 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software when fending off an attack It enables the administrator to keep close track of switch performance and alter it if necessary Port mirroring can be managed locally or remotely An administrator configures port mirroring by assigning a port from which to copy all packets and another port where those packets will be sent A packet bound for or heading away from the first port will be forwarded onto the seco
88. ault value is 0 0 0 0 Burned In MAC Address The burned in MAC address used for in band connectivity Locally Administered MAC Address If desired a locally administered MAC address can be configured for in band connectivity To take effect MAC Address Type must be set to Locally Administered Enter the address as twelve hexadecimal digits 6 bytes with a colon between each byte Bit 1 of byte 0 must be set to a 1 and bit 0 to a 0 i e byte O should have the following mask xxxx xx10 The MAC address used by this bridge when it must be referred to in a unique fashion It is recommended that this be the numerically Switching Commands 8 23 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software smallest MAC address of all ports that belong to this bridge However it is only required to be unique When concatenated with dot1dStpPriority a unique Bridgeldentifier is formed which is used in the Spanning Tree Protocol MAC Address Type Specifies which MAC address should be used for in band con nectivity The choices are the burned in or the Locally Adminis tered address The factory default is to use the burned in MAC address Network Configuration Protocol Current Indicates which network protocol is being used The options are bootp dhcp none Java Mode Specifies if the switch should allow access to the Java applet in the header frame Enabled means the applet can be viewed The
89. authorized auto gt force authorized auto Global no dot1x port control all Config Interface dot1x port control Config force unauthorized force authorized auto A 22 IS CLI Mapping December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Table 9 1 IS CLI Mapping continued CLI Command Package 7200 Series L2 Switch Command Mode Syntax Interface no dot1x port control Config Security config dot1x port quietperiod lt slot Interface dot1x timeout reauth period port gt lt 0 65535 gt Config lt seconds gt quiet period lt seconds gt tx period seconds supp timeout lt seconds gt server timeout lt 0 65535 gt Security config dot1x port transmitperiod Interface no dot1x timeout reauth period lt slot port gt lt 1 65535 gt Config quiet period tx period supp timeout server timeout Security config dot1x port supptimeout Interface lt slot port gt lt 1 65535 gt Config Security config dot1x port servertimeout Interface lt slot port gt lt 1 65535 gt Config Security config dot1x port reauthperiod Interface lt slot port gt lt 1 65535 gt Config Security config dot1x port maxrequests Interface dot1x max req 1 10 lt slot port gt lt 1 10 gt Config Interface no dot1x max req Config Security config dot1x port reauthenabled Interface dot1x re authentication lt slot port gt
90. avealltimer slot port Interface set garp timer leaveall 200 6000 all gt lt 200 600 gt Config A 18 IS CLI Mapping December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Table 9 1 IS CLI Mapping continued CLI Command Package 7200 Series L2 Switch Command Mode Syntax Interface no set garp timer leaveall Config Global set garp timer leaveall all 200 6000 Config Global no set garp timer leaveall all Config Switching config igmpsnooping adminmode Global set igmp lt enable disable gt Config Global no set igmp Config Switching config igmpsnooping Global set igmp groupmembershipinterval groupmembershipinterval Config lt 2 3600 gt lt 1 3600 gt Global no set igmp Config groupmembershipinterval Switching config igmpsnooping maxresponse Global set igmp maxresponse lt 1 3599 gt lt 1 3600 gt Config Global no set igmp maxresponse Config Switching config igmpsnooping Global set igmp mcrtexpiretime lt 0 3600 gt mcrtexpiretime lt 0 3600 gt Config Global no set igmp mcrtexpiretime Config Switching config igmpsnooping Interface set igmp interfacemode lt slot port all gt Config lt enable disable gt Interface no set igmp Config Global set igmp interfacemode all Config IS CLI Mapping A 19 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software
91. ayed Port The interface whose configuration is displayed Protocol Version The protocol version associated with this port The only possible value is 1 corresponding to the first version of the dot1x specifi cation PAE Capabilities The port access entity PAE functionality of this port Possible values are Authenticator or Supplicant Authenticator PAE State Current state of the authenticator PAE state machine Possible values are Initialize Disconnected Connecting Authenticating Authenticated Aborting Held ForceAuthorized and ForceUn authorized Backend Authentication State Current state of the backend authentication state machine Possible values are Request Response Success Fail Timeout Idle and Initialize Quiet Period The timer used by the authenticator state machine on this port to define periods of time in which it will not attempt to acquire a supplicant The value is expressed in seconds and will be in the range 0 and 65535 8 106 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Transmit Period The timer used by the authenticator state machine on the speci fied port to determine when to send an EAPOL EAP Request Identity frame to the supplicant The value is expressed in sec onds and will be in the range of 1 and 65535 Supplicant Timeout The timer used by the authenticator state machine on this port to timeout the supplicant
92. ber of presently active VLAN entries on this switch that have been created by GVRP registration VLAN Deletes The number of VLANs on this switch that have been created and then deleted since the last reboot Time Since Counters Last Cleared The elapsed time in days hours minutes and sec onds since the statistics for this switch were last cleared show logging This command displays the trap log maintained by the switch The trap log contains a maximum of 256 entries that wrap Format show logging Mode Privileged EXEC Number of Traps since last reset The number of traps that have occurred since the last reset of this device Number of Traps since log last displayed The number of traps that have occurred since the traps were last displayed Getting the traps by any method terminal interface display Web display upload file from switch etc will result in this counter being cleared to 0 Log The sequence number of this trap System Up Time The relative time since the last reboot of the switch at which this trap occurred Trap The relevant information of this trap Note Trap log information is not retained across a switch reset show mac addr table This command displays the forwarding database entries If the command is entered with no parameter the entire table is displayed This is the same as entering the optional a11 parameter Alternatively the administrator can enter a MAC Address to display the table entry for t
93. bps Megabits per second MBONE See Multicast Backbone on page 12 MD5 MDS creates digital signatures using a one way hash function meaning that it takes a message and converts it into a fixed string of digits also called a message digest When using a one way hash function one can compare a calculated message digest against the message digest that is decrypted with a public key to verify that the message hasn t been tampered with This comparison is called a hashcheck MDI MDIX In cable wiring the concept of transmit and receive are from the perspective of the PC which is wired as a Media Dependant Interface MDI In MDI wiring a PC transmits on pins 1 and 2 At the hub switch router or access point the perspective is reversed and the hub receives on pins and 2 This wiring is referred to as Media Dependant Interface Crossover MDI X See Auto negotiation on page 2 MIB See Management Information Base on page 11 Glossary C11 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Multicast Backbone The MBONE is a virtual network It is layered on top of portions of the physical Internet to support routing of IP multicast packets since that function has not yet been integrated into many production routers The network is composed of islands that can directly support IP multicast such as multicast LANs like Ethernet linked by virtual point to point l
94. ced oerki sind dE e aneao EESE Ede ku 8 48 no set gmrp interfacemode all eo ee Sad 8 48 Be Cur admi oae n et DR a EOD RE pn RE OR ERE I FERA C n 8 48 no se ST WO duiceon aet ree qat ut eced dep a i NN set gvrp interfacemode m A disacaante Siagi EER 8 48 no ser ouvip MIST a wn cae estas enean E asia ia dade a 8 49 SN qe p ss AU sept na set quip interlacemode all assess ore Era oiled pm Ru e D EE SEIN coca conss Ec tuck van E E A E bases AAE Dan adis 8 49 no set igmp Contents December 2004 202 10010 02 set igmp interfacemode all no set igmp interfacemode all BIOS Wee jo M no set igmp maxresponse ccm sd pg eR hg esti FCN III sorser a cda donc sa c ES cada a kc da show garp Sissi T sidus T sese ss Show coni OCCIDIT 16s oer E bo REPRE E BCD aq e brc EPI ROO DUE Re OPE ER URNE Show gwp Conliguralon t o OE show igmpsnooping m Seis RARE T peer N 8 55 show mao adaress Table gimp uoa issues adem esa iu Lexur Fed ugar aana show mac address table igmpsnooping cceeceeeeee cesses eeeeeeseeaaeeeeeeeeetaeeeteees 700 show mac address table mulliGBsl 455 rris pee er uer a Ross ia OR RR RR PR show mac address table Static uisus ink uicta ater Iib agr cov bl Roda sera a DUE aaa 8 57 show mac address table staticfiltering bisi
95. chapter you were viewing opens in a browser window Note Your computer must have the free Adobe Acrobat reader installed in order to view and print PDF files The Acrobat reader is available on the Adobe Web site at http www adobe com Click the print icon in the upper left of the window Tip If your printer supports printing two pages on a single sheet of paper you can save paper and printer ink by selecting this feature Printing the Full Manual Use the PDF button in the toolbar at the top right of the browser window Click the PDF button on the upper right of the toolbar The PDF version of the chapter you were viewing opens in a browser window Click the print icon in the upper left of the window Tip If your printer supports printing two pages on a single sheet of paper you can save paper and printer ink by selecting this feature 1 4 About This Guide December 2004 202 10010 02 Chapter 2 Switch Management Overview This chapter gives an overview of switch management including the methods you can use to manage your NETGEAR NETGEAR 7200 Series Layer 2 Managed Switch Management Access Overview SNMP Access e Protocols Scope The NETGEAR 7200 Series Layer 2 Managed Switch software has two purposes e Assist attached hardware in switching frames based on Layer 2 or 3 information contained in the frames e Provide a complete switch management portfolio for the network administrator Sw
96. ching config spanningtree cst port Interface spanning tree mst 0 cost pathcost lt slot port gt Config lt 1 200000000 gt auto lt 1 200000000 auto gt Interface no spanning tree mst 0 cost Config Switching config spanningtree cst port priority Interface spanning tree mst O port priority lt slot port gt lt 0 240 gt Config lt 0 240 gt Interface no spanning tree mst 0 port priority Config Switching config spanningtree cst port Interface spanning tree edgeport edgeport lt slot port gt lt true false gt Config Interface no spanning tree edgeport Config Switching config spanningtree mst create Global spanning tree mst instance lt mstid gt lt mstid gt Config Switching config spanningtree mst delete Global no spanning tree mst instance lt mstid gt Config lt mstid gt Switching config spanningtree mst vlan add Global spanning tree mst vlan lt mstid gt lt mstid gt lt vlan gt Config lt vlanid gt Switching config spanningtree mst vlan Global no spanning tree mst vlan lt mstid gt remove lt mstid gt lt vlan gt Config lt vlanid gt Switching config spanningtree mst priority Global spanning tree mst priority lt mstid gt lt mstid gt lt 0 61440 gt Config lt 0 61440 gt Global no spanning tree mst priority mstid Config Switching config spanningtree mst port Interface spanning tree mst lt mstid gt cost pathcost lt mstid gt lt slot port gt Config lt 1 200000000 gt auto lt 1 200000000 auto gt IS CLI Mappin
97. command has an effect only when GVRP is enabled Format no set garp timer leave all Mode Global Config Switching Commands 8 45 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software set garp timer leaveall This command sets how frequently Leave All PDUs are generated per port A Leave All PDU indicates that all registrations will be unregistered Participants would need to rejoin in order to maintain registration The value applies per port and per GARP participation The time may range from 200 to 6000 centiseconds Note This command has an effect only when GVRP is enabled Default 1000 centiseconds 10 seconds Format set garp timer leaveall lt 200 6000 gt Mode Interface Config no set garp timer leaveall This command sets how frequently Leave All PDUs are generated per port to 1000 centiseconds 10 seconds Note This command has an effect only when GVRP is enabled Format no set garp timer leaveall Mode Interface Config set garp timer leaveall all This command sets how frequently Leave All PDUs are generated for all ports A Leave All PDU indicates that all registrations will be unregistered Participants would need to rejoin in order to maintain registration The value applies per port and per GARP participation The time may range from 200 to 6000 centiseconds Note This command has an effect only when GVRP is enabled Default 1000 centiseconds 10 seconds
98. common and internal spanning tree to the default value i e 2 Format no spanning tree hello time Mode Global Config spanning tree max age This command sets the Bridge Max Age parameter to a new value for the common and internal spanning tree The max age value is in seconds within a range of 6 to 40 with the value being less than or equal to 2 times Bridge Forward Delay 1 Default 20 Format spanning tree max age lt 6 40 gt Mode Global Config no spanning tree max age This command sets the Bridge Max Age parameter for the common and internal spanning tree to the default value i e 20 Format no spanning tree max age Mode Global Config Switching Commands 8 85 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software spanning tree mst This command sets the Path Cost or Port Priority for this port within the multiple spanning tree instance or in the common and internal spanning tree If the lt mstid gt parameter corresponds to an existing multiple spanning tree instance then the configurations are done for that multiple spanning tree instance If however 0 defined as the default CIST ID is passed as the lt mstid gt then the configurations are performed for the common and internal spanning tree instance If the cost token is specified this command sets the path cost for this port within a multiple spanning tree instance or the common and internal spanning
99. configured Multicast Tree Viable Discards The number of frames dis carded when a lookup in the multicast tree for a VLAN occurs while that tree is being modified Reserved Address Discards The number of frames discarded that are destined to an IEEE 802 1 reserved address and are not supported by the system Broadcast Storm Recovery The number of frames discarded that are destined for FF FF FF FF FF FF when Broadcast Storm Recovery is enabled CFI Discards The number of frames discarded that have CFI bit set and the addresses in RIF are in non canonical format Upstream Threshold The number of frames discarded due to lack of cell descriptors available for that packet s priority level Packets Transmitted Octets Total Bytes The total number of octets of data including those in bad packets received on the network excluding framing bits but including FCS octets This object can be used as a reasonable estimate of ethernet utilization If greater precision is desired the etherStatsPkts and etherStatsOctets objects should be sampled before and after a common interval Packets Transmitted 64 Octets The total number of packets including bad packets received that were 64 octets in length excluding framing bits but including FCS octets Packets Transmitted 65 127 Octets The total number of pack ets including bad packets received that were between 65 and 127 octets in length inclusive excluding framing bits but inc
100. contact person for this switch May be up to 31 alpha numeric characters The factory default is blank System ObjectID The base object ID for the switch s enterprise MIB System Up Time The time in days hours and minutes since the last switch reboot MIBs Supported A list of MIBs supported by this agent snmp server This command sets the name and the physical location of the switch and the organization responsible for the network The range for name location and contact is from 1 to 31 alphanumeric characters Default None Format snmp server sysname lt name gt location lt loc gt contact lt con gt 8 14 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Mode Global Config Management VLAN Commands network mgmt vlan This command configures the Management VLAN ID Default 1 Format network mgmt_vlan 1 4094 Mode Privileged EXEC Dot1P Commands classofservice dot1pmapping This command maps an 802 1p priority to an internal traffic class for a device when in Global Config mode The number of available traffic classes may vary with the platform Userpriority and trafficclass can both be the range from 1 7 Under Interface Config mode this command maps an 802 1p priority to an internal traffic class for a specific interface The command in either modes is only available on platforms that support priority to traffic class
101. d CLI December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software e For the no config interface and no config inte cases of the the options displayed are identical to the case when the no token is not specified Mode based CLI 7 7 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software 7 8 December 2004 202 10010 02 Mode based CLI User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Chapter 8 Switching Commands This chapter provides detailed explanation of the Switching commands The commands are divided into five functional groups Show commands display switch settings statistics and other information Configuration Commands configure features and options of the switch For every configuration command there is a show command that displays the configuration setting Copy commands transfers or saves configuration and informational files to and from the switch Clear commands clear some or all of the settings to factory defaults This chapter includes the following configuration types System information and statistics commands Management commands Device configuration commands User account management commands Security commands System utilities System Information and Statistics Commands show arp switch This command displays connectivity between the switch and other devic
102. d RJ 45 connector a n h 8 1 Key 1 to 8 pin numbers Figure 9 4 RJ 45 Plug and RJ 45 Connector with Built in LEDs Table 9 1 lists the pin assignments for the 10 100 Mbps RJ 45 plug and the RJ 45 connector Table 9 1 10 100 Mbps RJ 45 Plug and RJ 45 Connector Pin Assignments PIN NORMAL ASSIGNMENT ON UPLINK ASSIGNMENT ON PORTS 1 TO 8 PORT 8 1 Input Receive Data Output Transmit Data 2 Input Receive Data Output Transmit Data 3 Output Transmit Data Input Receive Data 6 Output Transmit Data Input Receive Data 4 5 7 8 Internal termination not used for data transmission Table E 2 lists the pin assignments for the 100 1000 Mbps RJ 45 plug and the RJ 45 connector Cabling Guidelines B 7 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Table 9 2 100 1000 Mbps RJ 45 Plug and RJ 45 Connector Pin Assignments PIN CHANNEL DESCRIPTION 1 A Rx Tx Data 2 Rx Tx Data 3 B Rx Tx Data 6 Rx Tx Data 4 G Rx Tx Data 5 Rx Tx Data 7 D Rx Tx Data 8 Rx Tx Data Conclusion For optimum performance of your 1000B ASE T product it is important to fully qualify your cable installation and ensure it meets or exceeds ANSI EIA TIA 568 A 1995 or ISO IEC 11801 1995 Category 5 specifications Install Category 5e cable where possible including patch panel cables Minimize transition points jac
103. d for managing traffic in terms of what is called Class of Service CoS Unlike the earlier mechanisms of 802 1P tagging and Type of Service ToS Differentiated Services avoids simple priority tagging and depends on more complex policy or rule statements to determine how to forward a given network packet An analogy is made to travel services in which a person can choose among different modes of travel train bus airplane degree of comfort the number of stops on the route standby status the time of day or period of year for the trip and so forth For a given set of packet travel rules a packet is given one of 64 possible forwarding behaviors known as per hop behaviors PHBs A six bit field known as the Differentiated Services Code Point DSCP in the Internet Protocol Internet Protocol header specifies the per hop behavior for a given flow of packets Differentiated Services and the Class of Service approach provide a way to control traffic that is both more flexible and more scalability than the Quality of Service approach Diffserv See Differentiated Services on page 5 DNS Short for Domain Name System or Service an Internet service that translates domain names into IP addresses Because domain names are alphabetic they re easier to remember The Internet however is really based on IP addresses Every time you use a domain name therefore a DNS service must translate the name into the corresponding IP address For ex
104. d not be completed GMRP PDU s received The count of GMRP PDU s received in the GARP layer Switching Commands 8 9 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Dot1x Statistics GMRP PDU s Transmitted The count of GMRP PDU s trans mitted from the GARP layer GMRP Failed Registrations The number of times attempted GMRP registrations could not be completed STP BPDUs Transmitted Spanning Tree Protocol Bridge Pro tocol Data Units sent STP BPDUs Received Spanning Tree Protocol Bridge Protocol Data Units received RST BPDUs Transmitted Rapid Spanning Tree Protocol Bridge Protocol Data Units sent RSTP BPDUs Received Rapid Spanning Tree Protocol Bridge Protocol Data Units received MSTP BPDUs Transmitted Multiple Spanning Tree Protocol Bridge Protocol Data Units sent MSTP BPDUs Received Multiple Spanning Tree Protocol Bridge Protocol Data Units received EAPOL Frames Received The number of valid EAPOL frames of any type that have been received by this authenticator EAPOL Frames Transmitted The number of EAPOL frames of any type that have been transmitted by this authenticator Time Since Counters Last Cleared The elapsed time in days hours minutes and sec onds since the statistics for this port were last cleared The display parameters when the argument is switchport is as follows Octets Received The total number of octet
105. e Collision Frames A count of the number of successfully transmitted frames on a particular interface for which transmis sion is inhibited by exactly one collision Multiple Collision Frames A count of the number of success fully transmitted frames on a particular interface for which trans mission is inhibited by more than one collision Excessive Collisions A count of frames for which transmission on a particular interface fails due to excessive collisions Port Membership The number of frames discarded on egress for this port due to egress filtering being enabled VLAN Viable Discards The number of frames discarded on this port when a lookup on a particular VLAN occurs while that entry in the VLAN table is being modified or if the VLAN has not been configured BPDU s received The count of BPDU s Bridge Protocol Data Units received in the spanning tree layer BPDU s Transmitted The count of BPDU s Bridge Protocol Data Units transmitted from the spanning tree layer 802 3x Pause Frames Received A count of MAC Control frames received on this interface with an opcode indicating the PAUSE operation This counter does not increment when the interface is operating in half duplex mode GVRP PDU s Received The count of GVRP PDU s received in the GARP layer GVRP PDU s Transmitted The count of GVRP PDU s trans mitted from the GARP layer GVRP Failed Registrations The number of times attempted GVRP registrations coul
106. e User Exec mode commands The User Exec mode commands may also be executed in the Privileged Exec mode The commands available to the operator at any point in time depend upon the mode Entering a question mark at the CLI prompt displays a list of the available commands and descriptions of the commands The CLI provides the following modes User Exec Mode Privileged Exec Mode Global Config Mode When the operator logs into the CLI the User Exec mode is the initial mode The User Exec mode contains a limited set of com mands The command prompt shown at this level is Command Prompt Exec gt To have access to the full suite of commands the operator must enter the Privileged Exec mode The Privileged Exec mode requires password authentication From Privileged Exec mode the operator can issue any Exec command or enter the Global Configuration mode The command prompt shown at this level is Command Prompt Exec This mode permits the operator to make modifications to the run ning configuration General setup commands are grouped in this mode From the Global Configuration mode the operator can enter the System Configuration mode the Physical Port config the Interface Configuration mode or the Protocol Specific modes specified below The command prompt at this level is Command Prompt Config From the Global Config mode the operator may enter the following config modes VLAN Mode Interface Config Mode
107. e based CLI The CLI groups all the commands in appropriate modes according to the nature of the command A sample of the CLI command modes are described below Each of the command modes support specific 7200 Series L2 Switch commands User Exec Mode Privileged Exec Mode Global Config Mode Vlan Mode Interface Config Mode Line Config Mode The Command Mode table captures the command modes the prompts visible in that mode and the exit method from that mode Table 7 1 Command Mode Command Mode Access Method Prompt Exit or Access Next Mode User Exec Mode This is the first level of Switch gt Enter Logout command access Perform basic tasks and list system information Privileged Exec Mode From the User Exec Switch To exit this mode enter Mode enter the enable exit or press Ctrl Z command VLAN Mode From the Privileged Switch Vlan To exit to the Privileged User Exec mode enter Exec mode enter the the vlan database exit command or press command Ctrl Z to switch to user exec mode Mode based CLI 7 1 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Table 7 1 Command Mode continued Command Mode Access Method Prompt Exit or Access Next Mode Global Config Mode From the Privileged Exec mode enter the configure command Switch Config To exit to the Privileged Exec mode enter the exit command or pr
108. e receiver s status enabled or disabled and allows the administrator user to perform actions on this user entry Enable send traps to the receiver Disable do not send traps to the receiver Delete remove the table entry 8 26 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software show trapflags This command displays trap conditions Configure which traps the switch should generate by enabling or disabling the trap condition If a trap condition is enabled and the condition is detected the switch s SNMP agent sends the trap to all enabled trap receivers The switch does not have to be reset to implement the changes Cold and warm start traps are always generated and cannot be disabled Format Mode Authentication Flag Link Up Down Flag Multiple Users Flag Spanning Tree Flag Broadcast Storm Flag DVMRP Traps OSPF Traps PIM Traps show trapflags Privileged EXEC May be enabled or disabled The factory default is enabled Indi cates whether authentication failure traps will be sent May be enabled or disabled The factory default is enabled Indi cates whether link status traps will be sent Multiple Users Flag May be enabled or disabled The factory default is enabled Indi cates whether a trap will be sent when the same user ID is logged into the switch more than once at the same time either via telnet or serial port May be
109. e traps stpmode Mode Global Config no snmp server enable traps stpmode This command disables the sending of new root traps and topology change notification traps Format no snmp server enable traps stpmode Mode Global Config snmptrap This command adds an SNMP trap name The maximum length of name is 16 case sensitive alphanumeric characters Default The default name for the six undefined community names is Delete Format snmptrap lt name gt lt ipaddr gt Mode Global Config no snmptrap This command deletes trap receivers for a community Format no snmptrap lt name gt lt ipaddr gt Mode Global Config 8 32 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software snmptrap ipaddr This command assigns an IP address to a specified community name The maximum length of name is 16 case sensitive alphanumeric characters Note IP addresses in the SNMP trap receiver table must be unique If you make multiple entries using the same IP address the first entry is retained and processed All duplicate entries are ignored Format snmptrap ipaddr lt name gt lt ipaddrold gt lt ipaddrnew gt Mode Global Config snmptrap mode This command activates or deactivates an SNMP trap Enabled trap receivers are active able to receive traps Disabled trap receivers are inactive not able to receive traps Format snmptrap mode lt name gt lt ipaddr gt M
110. e used for the area ID The value of router id must be entered in 4 digit dotted deci mal notation for example 0 0 0 1 A router ID of 0 0 0 0 is invalid This parameter denotes a valid slot number and a valid port num ber For example 0 1 represents slot number 0 and port number 1 The lt slot port gt field is composed of a valid slot number and a valid port number separated by a forward slash 5 2 Command Line Interface Structure December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software logical slot port This parameter denotes a logical slot number and logical port number assigned This is applicable in the case of a port channel LAG The operator can use the logical slot number and the logi cal port number to configure the port channel Conventions Network addresses are used to define a link to a remote host workstation or network Network addresses are shown using the following syntax Table 5 1 Network Address Syntax Address Type Format Range ipaddr A B C D 0 0 0 0 to 255 255 255 255 decimal macaddr YY YY YY YY YY YY hexidecimal digit pairs Double quotation marks such as System Name with Spaces set off user defined strings If the operator wishes to use spaces as part of a name parameter then it must be enclosed in double quotation marks 6666 Empty strings are not valid user defined strings Command completion
111. eadwrite for admin user readonly for all other users Format users snmpv3 accessmode username readonly read write Mode Global Config no users snmpv3 accessmode This command sets the snmpv3 access privileges for the specified login user as read write for admin user readonly for all other users The username is the login user name for which the specified access mode will apply Format no users snmpv3 accessmode username Mode Global Config users snmpv3 authentication This command specifies the authentication protocol to be used for the specified login user The valid authentication protocols are none md5 or sha If md5 or sha are specified the user login password will be used as the snmpv3 authentication password The username is the login user name for which the specified authentication protocol will be used Default no authentication Format users snmpv3 authentication username none md5 sha Mode Global Config 8 92 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software no users snmpv3 authentication This command sets the authentication protocol to be used for the specified login user to none The lt username gt is the login user name for which the specified authentication protocol will be used Format users snmpv3 authentication lt username gt Mode Global Config users snmpv3 encryption This command specifies the e
112. ecurity The user parameter must be a configured user and the listname parameter must be a configured authentication login list Switching Commands 8 95 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Format dot1x login lt user gt lt listname gt Mode Global Config dot1x max req This command sets the maximum number of times the authenticator state machine on this port will transmit an EAPOL EAP Request Identity frame before timing out the supplicant The lt count gt value must be in the range 1 10 Default 2 Format dotl1x max req count Mode Interface Config no dot1x max req This command sets the maximum number of times the authenticator state machine on this port will transmit an EAPOL EAP Request Identity frame before timing out the supplicant to the default value i e 2 Format no dotlx max req Mode Interface Config dot1x port control This command sets the authentication mode to be used on the specified port The control mode may be one of the following force unauthorized The authenticator PAE unconditionally sets the controlled port to unauthorized e force authorized The authenticator PAE unconditionally sets the controlled port to authorized e auto The authenticator PAE sets the controlled port mode to reflect the outcome of the authentication exchanges between the supplicant authenticator and the authentication server De
113. ed The total number of packets that higher level protocols requested be transmitted to a subnetwork unicast address including those that were discarded or not sent Multicast Packets Transmitted The total number of packets that higher level protocols requested be transmitted to a Multicast address including those that were discarded or not sent Broadcast Packets Transmitted The total number of packets that higher level protocols requested be transmitted to the Broad cast address including those that were discarded or not sent Total Errors The sum of Single Multiple and Excessive Colli sions Tx FCS Errors The total number of packets transmitted that had a length excluding framing bits but including FCS octets of between 64 and 1518 octets inclusive but had a bad Frame Check Sequence FCS with an integral number of octets Oversized The total number of frames that exceeded the max permitted frame size This counter has a max increment rate of 815 counts per sec at 10 Mb s 8 8 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Transmit Discards Protocol Statistics Underrun Errors The total number of frames discarded because the transmit FIFO buffer became empty during frame transmission Total Discards The sum of single collision frames discarded multiple collision frames discarded and excessive frames dis carded Singl
114. ed The IP address parameter must match that of a previously configured RADIUS accounting server The following information regarding the statistics of the RADIUS accounting server is displayed Accounting Server IP Address IP Address of the configured RADIUS accounting server Round Trip Time Requests Retransmission Responses Malformed Responses Bad Authenticators Pending Requests Timeouts Unknown Types Packets Dropped The time interval in hundredths of a second between the most recent Accounting Response and the Accounting Request that matched it from the RADIUS accounting server The number of RADIUS Accounting Request packets sent to this accounting server This number does not include retransmissions The number of RADIUS Accounting Request packets retransmit ted to this RADIUS accounting server The number of RADIUS packets received on the accounting port from this server The number of malformed RADIUS Accounting Response pack ets received from this server Malformed packets include packets with an invalid length Bad authenticators and unknown types are not included as malformed accounting responses The number of RADIUS Accounting Response packets contain ing invalid authenticators received from this accounting server The number of RADIUS Accounting Request packets sent to this server that have not yet timed out or received a response The number of accounting timeouts to this server The numb
115. ed Switch Software 802 1x Port Security This field displays the authentication login list assigned to the user for 802 1x port security users defaultlogin This command assigns the authentication login list to use for non configured users when attempting to log in to the system This setting is overridden by the authentication login list assigned to a specific user if the user is configured locally If this value is not configured users will be authenticated using local authentication only Format users defaultlogin lt listname gt Mode Global Config users login This command assigns the specified authentication login list to the specified user for system login The lt user gt must be a configured lt user gt and the lt listname gt must be a configured login list If the user is assigned a login list that requires remote authentication all access to the interface from all CLI web and telnet sessions will be blocked until the authentication is complete Note that the login list associated with the admin user can not be changed to prevent accidental lockout from the switch Format users login lt user gt lt listname gt Mode Global Config System Utilities This section describes system utilities clear config This command resets the configuration to the factory defaults without powering off the switch The switch is automatically reset when this command is processed You are prompted to confirm that the
116. ed Switch Software Format Mode VLAN ID VLAN Name VLAN Type slot port Current Configured Tagging show vlan lt vlanid gt where the ID is a valid VLAN identifica tion number Privileged EXEC and User EXEC There is a VLAN Identifier VID associated with each VLAN The range of the VLAN ID is 1 to 4094 A string associated with this VLAN as a convenience It can be up to 16 alphanumeric characters long including blanks The default is blank VLAN ID 1 always has a name of Default This field is optional Type of VLAN which can be Default WLAN ID 1 a static one that is configured and permanently defined or Dynamic one that is created by GVRP registration Indicates by slot id and port number which port is controlled by the fields on this line It is possible to set the parameters for all ports by using the selectors on the top line Determines the degree of participation of this port in this VLAN The permissible values are Include This port is always a member of this VLAN This is equivalent to registration fixed in the IEEE 802 1Q standard Exclude This port is never a member of this VLAN This is equivalent to registration forbidden in the IEEE 802 1Q standard Autodetect Specifies to allow the port to be dynamically regis tered in this VLAN via GVRP The port will not participate in this VLAN unless join request is received on this port This is equivalent to registration norma
117. eger from 0 to 32 Default None Format network networknumber mask prefixlength Mode DHCP Pool Config no network This command removes the subnet number and mask Format no network Mode DHCP Pool Config service dhcp This command enables the DHCP server and relay agent features on the router Default Disabled Format service dhcp Mode Global Config no service dhcp This command disables the DHCP server and relay agent features Format no service dhcp Mode Global Config DHCP Server Show Commands These commands display the DHCP Server address bindings and statistics 9 6 DHCP Server Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software show ip dhcp binding This command displays address bindings for the specific IP address on the DHCP server If no IP address is specified the bindings corresponding to all the addresses are displayed Format Mode IP address Hardware Address Lease expiration Type show ip dhcp binding address Privileged EXEC and User EXEC The IP address of the client The MAC Address or the client identifier The lease expiration time of the IP Address assigned to the client The manner in which IP Address was assigned to the client show ip dhcp global configuration This command displays address bindings for the specific IP address on the DHCP server If no IP address is specified the bindings correspondin
118. em The following can be specified as the source file for uploading from the switch startup config nvram startup config error log nvram errorlog message log nvram msglog and trap log nvram traplog A URL is specified for the destination The command can also be used to download the startup config or code image by specifying the source as a URL and destination as nvram startup config or system image respectively The command can be used to the save the running config to nvram by specifying the source as system running config and the destination as nvram startup config The command can also be used to download ssh key files as nvram sshkey rsa nvram sshkey rsa2 and nvram sshkey dsa and http secure server certificates as nvram sslpem root nvram sslpem server nvram sslpem dhweak and nvram sslpem dhstrong Default none Format copy nvram startup config url copy nvram errorlog url copy nvram msglog url copy nvram traplog url copy url nvram startup config copy url system image copy system running config nvram startup config copy url nvram sslpem root copy url nvram sslpem server copy url nvram sslpem dhweak copy url nvram sslpem dhstrong copy url nvram sshkey rsal copy url nvram sshkey rsa2 Switching Commands 8 113 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software copy lt url gt nvram sshkey dsa Mode Privileged EXEC
119. enabled or disabled The factory default is enabled Indi cates whether spanning tree traps will be sent May be enabled or disabled The factory default is enabled Indi cates whether broadcast storm traps will be sent May be enabled or disabled The factory default is disabled Indi cates whether DVMRP traps will be sent May be enabled or disabled The factory default is disabled Indi cates whether OSPF traps will be sent May be enabled or disabled The factory default is disabled Indi cates whether PIM traps will be sent snmp server community This command adds and names a new SNMP community A community name is a name associated with the switch and with a set of SNMP managers that manage it with a specified privileged level The length of name can be up to 16 case sensitive characters Note Community names in the SNMP community table must be unique If you make multiple entries using the same community name the first entry is kept and processed and all duplicate entries are ignored Switching Commands 8 27 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Default Two default community names Public and Private You can replace these default community names with unique identifiers for each community The default values for the remaining four community names are blank Format snmp server community lt name gt Mode Global Config no snmp server co
120. eout lt 0 160 gt Config Switching config snmpcommunity Global snmp server community ro lt name gt accessmode lt ro rw gt lt name gt Config Global snmp server community rw lt name gt Config Switching config snmpcommunity create Global snmp server community lt name gt name Config Switching config snmpcommunity delete Global no snmp server community lt name gt lt name gt Config Switching config snmpcommunity ipaddr Global snmp server community ipaddr lt ipaddr gt lt name gt Config lt ipaddr gt lt name gt Global no snmp server community ipaddr Config lt name gt Switching config snmpcommunity ipmask Global snmp server community ipmask lt ipmask gt lt name gt Config lt ipmask gt lt name gt Global no snmp server community ipmask Config lt name gt Switching config snmpcommunity mode Global snmp server community mode enable disable lt name gt Config name A 2 IS CLI Mapping December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Table 9 1 IS CLI Mapping continued CLI Command Package 7200 Series L2 Switch Command Mode Syntax Global no snmp server community mode Config lt name gt Switching config snmptrap create lt name gt Global snmptrap lt name gt lt ipaddr gt lt ipaddr gt Config Switching config snmptrap delete lt name gt Global no snmptrap lt name gt lt ipaddr g
121. er the entire table is displayed This is the same as entering the optional all parameter The user can display the table entry for one MAC Address by specifying the MAC address as an optional parameter Format show mac address table multicast lt macaddr gt all Mode Privileged EXEC Mac Address A unicast MAC address for which the switch has forwarding and or filtering information The format is 6 or 8 two digit hexadeci mal numbers that are separated by colons for example 01 23 45 67 89 AB In an IVL system the MAC address will be displayed as 8 bytes In an SVL system the MAC address will be displayed as 6 bytes Type This displays the type of the entry Static entries are those that are configured by the end user Dynamic entries are added to the table as a result of a learning process or protocol Component The component that is responsible for this entry in the Multicast Forwarding Database Possible values are IGMP Snooping GMREB and Static Filtering Description The text description of this multicast table entry Interfaces The list of interfaces that are designated for forwarding Fwd and filtering Flt Forwarding Interfaces The resultant forwarding list is derived from combining all the component s forwarding interfaces and removing the interfaces that are listed as the static filtering interfaces show mac address table static This command displays the Static MAC Filtering information for all Static MAC Filter
122. er Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software AVL tree Binary tree having the property that for any node in the tree the difference in height between the left and right subtrees of that node is no more than 1 B BPDU See Bridge Protocol Data Unit on page 3 Backbone The part of a network used as a primary path for transporting traffic between network segments Bandwidth The information capacity measured in bits per second that a channel could transmit Bandwidth examples include 10 Mbps for Ethernet 100 Mbps for Fast Ethernet and 1000 Mbps I Gbps for Gigabit Ethernet Baud The signaling rate of a line that is the number of transitions voltage or frequency changes made per second Also known as line speed BootP See Bootstrap Protocol on page 3 Bootstrap Protocol An Internet protocol that enables a diskless workstation to discover its own IP address the IP address of a BootP server on the network and a file to be loaded into memory to boot the machine This enables the workstation to boot without requiring a hard or floppy disk drive Bridge Protocol Data Unit BPDU is the IEEE 802 1D MAC Bridge Management protocol that is the standard implementation of STP Spanning Tree Protocol It uses the STP algorithm to insure that physical loops in the network topology do not result in logical looping of network traffic Using one bridge configured as root for reference the BPDU switches
123. er Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Root Path Cost Value of the Root Path Cost parameter for the common and inter nal spanning tree Root Port Identifier Root Port Max Age Derived value Root Port Bridge Forward Delay Derived value Hello Time Configured value Bridge Hold Time Minimum time between transmission of Configuration Bridge Protocol Data Units BPDUs CST Regional Root Regional Root Path Cost Associated FIDs List of forwarding database identifiers currently associated with this instance Associated VLANs List of VLAN IDs currently associated with this instance When the brief optional parameter is included this command displays spanning tree settings for the bridge In this case the following details are displayed Bridge Priority Configured value Bridge Identifier Bridge Max Age TConfigured value Bridge Hello Time Configured value Bridge Forward Delay Configured value Bridge Hold Time Minimum time between transmission of Configuration Bridge Protocol Data Units BPDUs show spanning tree interface This command displays the settings and parameters for a specific switch port within the common and internal spanning tree The lt slot port gt is the desired switch port The following details are displayed on execution of the command Format show spanning tree interface slot port Mode Privileged EXEC and User EXEC Port mode Enabled or disabled Port Up Time Since
124. er of RADIUS packets of unknown types which were received from this server on the accounting port The number of RADIUS packets received from this server on the accounting port and dropped for some other reason 8 104 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software show authentication This command displays the ordered authentication methods for all authentication login lists Format show authentication Mode Privileged EXEC Authentication Login List This displays the authentication login listname Method 1 This displays the first method in the specified authentication login list if any Method 2 This displays the second method in the specified authentication login list if any Method 3 This displays the third method in the specified authentication login list if any show authentication users This command displays information about the users assigned to the specified authentication login list If the login is assigned to non configured users the user default will appear in the user column Format show authentication users lt listname gt Mode Privileged EXEC User This field displays the user assigned to the specified authentica tion login list Component This field displays the component User or 802 1x for which the authentication login list is assigned show dot1x This command is used to show a summary of the global dot1x co
125. erfaces Format spanning tree bpdumigrationcheck lt slot port gt all Mode Global Config no spanning tree bpdumigrationcheck This command disables BPDU migration check on a given interface The all option disables BPDU migration check on all interfaces Format no spanning tree bpdumigrationcheck lt slot port gt all Mode Global Config 8 66 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software speed This command sets the speed and duplex setting for the interface Format Interface Config Acceptable values are 100h 100f 10h 10f speed all speed 100 10 fhalf duplex full duplex 1000 full duplex Mode 100BASE T half duplex 100BASE T full duplex 10BASE T half duplex 100BASE T full duplex This command sets the speed and duplex setting for all interfaces Format Mode Acceptable values are 100h 100f 10h 10f speed all 100 10 half duplex full duplex 1000 full duplex Global Config 100BASE T half duplex 100BASE T full duplex 10BASE T half duplex 100BASE T full duplex storm control broadcast This command enables broadcast storm recovery mode If the mode is enabled broadcast storm recovery with high and low thresholds is implemented Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software The threshold implementa
126. ers are order dependent The text in bold italics should be replaced with a name or number To use spaces as part of a name parameter enclose it in double quotes like this System Name with Spaces Parameters may be mandatory values optional values choices or a combination parameter The lt gt angle brackets indicate that a mandatory parameter must be entered in place of the brackets and text inside them parameter The square brackets indicate that an optional parameter may be entered in place of the brackets and text inside them choicel choice2 The indicates that only one of the parameters should be entered The curly braces indicate that a parameter must be chosen from the list of choices Values ipaddr macaddr areaid routerid slot port This parameter is a valid IP address made up of four decimal bytes ranging from 0 to 255 The default for all IP parameters consists of zeros that is 0 0 0 1 The interface IP address of 0 0 0 0 1s invalid In some cases the IP address can also be entered as a 32 bit number The MAC address format is six hexadecimal numbers separated by colons for example 00 06 29 32 81 40 Area IDs may be entered in dotted decimal notation for example 0 0 0 1 An area ID of 0 0 0 0 is reserved for the backbone Area IDs have the same form as IP addresses but are distinct from IP addresses The IP network number of the sub netted network may b
127. erver parameters and address pools client identifier This command specifies the unique identifier for a DHCP client Unique identifier is a valid notation in hexadecimal format Default None Format client identifier lt uniqueidentifier gt Mode DHCP Pool Config Mode no client identifier This command deletes the client identifier Format no client identifier Mode DHCP Pool Config Mode client name This command specifies the name for a DHCP client Name is a string consisting of standard ASCII characters Default None Format client name lt name gt Mode DHCP Pool Config Mode no client name This command removes the client name DHCP Server Commands 9 1 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Format no client name Mode DHCP Pool Config Mode default router This command specifies the default router list for a DHCP client address1 address2 address8 are valid IP addresses each made up of four decimal bytes ranging from 0 to 255 IP address 0 0 0 0 is invalid Default None Format default router lt addressl gt lt address2 gt lt address8 gt Mode DHCP Pool Config no default router This command removes the default router list Format no default router Mode DHCP Pool Config dns server This command specifies the IP servers available to a DHCP client address1 address2 address8 are valid IP addresses each made up of four decim
128. es The Address Resolution Protocol ARP cache identifies the MAC addresses of the IP stations communicating with the switch Format show arp switch Mode Privileged EXEC MAC Address A unicast MAC address for which the switch has forwarding and or filtering information The format is 6 two digit hexadecimal Switching Commands 8 1 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software numbers that are separated by colons for example 01 23 45 67 89 AB IP Address The IP address assigned to each interface slot port Valid slot number and a valid port number show eventlog This command displays the event log which contains error messages from the system The event log is not cleared on a system reset Format show eventlog Mode Privileged EXEC File The file in which the event originated Line The line number of the event Task Id The task ID of the event Code The event code Time The time this event occurred Note Event log information is retained across a switch reset show hardware This command displays inventory information for the switch Format show hardware Mode Privileged EXEC Description Text used to identify the product name of this switch Burned in MAC Address Universally assigned network address Software Version The release version revision number of the code currently run ning on the switch show interface This command displays a summary o
129. ess Ctrl Z to switch to user exec mode Interface Config Mode From the Global Configuration mode enter the interface config lt slot port gt command Switch Interface if number To exit to the Global Config mode enter exit To return to user EXEC mode enter ctrl Z Line Config Mode From the Global Configuration mode enter the lineconfig command Switch line To exit to the Global Config mode enter exit To return to User Exec mode enter ctrl Z Mode based Topology The CLI tree is built on a mode concept where the commands are available according to the interface Some of the modes are depicted in the mode based CLI Figure 1 December 2004 202 10010 02 Mode based CLI User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software User Exec commands are also accessible in Privileged Exec mode Return to Exec prompt Privileged v Global Config Circuit Config v Line Config FIGURE 1 Mode based CLI Access to all commands in the Privileged Exec mode and below are restricted through a password Mode based CLI 7 3 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Mode based Command Hierarchy The CLI is divided into various modes The Commands in one mode are not available until the operator switches to that particular mode with the exception of th
130. ets directed to the broadcast address Broadcast Packets Received The total number of good packets received that were directed to the broadcast address Note that this does not include multicast packets Packets Received with MAC Errors Total The total number of inbound packets that contained errors preventing them from being deliverable to a higher layer proto col Switching Commands 8 5 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Jabbers Received The total number of packets received that were longer than 1518 octets excluding framing bits but includ ing FCS octets and had either a bad Frame Check Sequence FCS with an integral number of octets FCS Error or a bad FCS with a non integral number of octets Alignment Error Note that this definition of jabber is different than the definition in IEEE 802 3 section 8 2 1 5 IOBASES and section 10 3 1 4 1OBASE2 These documents define jabber as the condition where any packet exceeds 20 ms The allowed range to detect jabber is between 20 ms and 150 ms Fragments Undersize Received The total number of packets received that were less than 64 octets in length excluding fram ing bits but including FCS octets Alignment Errors The total number of packets received that had a length excluding framing bits but including FCS octets of between 64 and 1518 octets inclusive but had a bad Frame Check Sequence F
131. f statistics for a specific port or a count of all CPU traffic based upon the argument Format show interface lt slot port gt switchport 8 2 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Mode Privileged EXEC The display parameters when the argument is lt slot port gt is as follows Packets Received Without Error The total number of packets including broadcast pack ets and multicast packets received by the processor Packets Received With Error The number of inbound packets that contained errors pre venting them from being deliverable to a higher layer protocol Broadcast Packets Received The total number of packets received that were directed to the broadcast address Note that this does not include multicast packets Packets Transmitted Without Error The total number of packets transmitted out of the interface Transmit Packets Errors The number of outbound packets that could not be transmitted because of errors Collisions Frames The best estimate of the total number of collisions on this Ether net segment Time Since Counters Last Cleared The elapsed time in days hours minutes and sec onds since the statistics for this port were last cleared The display parameters when the argument is switchport is as follows Packets Received Without Error The total number of packets including broadcast pack ets and multicast packets
132. fault auto Format dot1x port control force unauthorized force authorized auto Mode Interface Config 8 96 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software no dot1x port control This command sets the authentication mode to be used on the specified port to auto Format no dot1x port control Mode Interface Config dot1x port control All This command sets the authentication mode to be used on all ports The control mode may be one of the following force unauthorized The authenticator PAE unconditionally sets the controlled port to unauthorized e force authorized The authenticator PAE unconditionally sets the controlled port to authorized e auto The authenticator PAE sets the controlled port mode to reflect the outcome of the authentication exchanges between the supplicant authenticator and the authentication server Default auto Format dot1x port control all force unauthorized force authorized auto Mode Global Config no dot1x port control All This command sets the authentication mode to be used on all ports to auto Format no dot1x port control all Mode Global Config dot1x re authenticate This command begins the re authentication sequence on the specified port This command is only valid if the control mode for the specified port is auto If the control mode is not auto an error will be returned Format dot1x
133. fault value i e a pathcost value based on the Link Speed If the port priority token is specified this command sets the priority for this port within a specific multiple spanning tree instance or the common and internal spanning tree instance depending on the lt mstid gt parameter to the default value i e 128 8 86 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Format no spanning tree mst lt mstid gt cost port priority Mode Interface Config spanning tree mst instance This command adds a multiple spanning tree instance to the switch The instance lt mstid gt is a number within a range of 1 to 4094 that corresponds to the new instance ID to be added The maximum number of multiple instances supported by the 7200 Series L2 Switch is 4 Format spanning tree mst instance lt mstid gt Mode Global Config no spanning tree mst instance This command removes a multiple spanning tree instance from the switch and reallocates all VLANs allocated to the deleted instance to the common and internal spanning tree The instance lt mstid gt is a number that corresponds to the desired existing multiple spanning tree instance to be removed Format no spanning tree mst instance lt mstid gt Mode Global Config spanning tree mst priority This command sets the bridge priority for a specific multiple spanning tree instance The instance lt mstid
134. finishes spelling the command when enough letters of a command are typed to uniquely identify the command word The command may be executed by typing lt enter gt command abbreviation or the command word may be completed by typing the tab or space bar command completion The value Err designates that the requested value was not internally accessible This should never happen and indicates that there is a case in the software that is not handled correctly The value of designates that the value is unknown Command Line Interface Structure 5 8 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Annotations The CLI allows the user to type single line annotations at the command prompt for use when writing test or configuration scripts and for better readability The exclamation point character flags the beginning of a comment The comment flag character can begin a word anywhere on the command line and all input following this character is ignored Any command line that begins with the character is recognized as a comment line and ignored by the parser Some examples are provided below Script file for displaying the ip interface Display information about interfaces show ip interface 0 1 Displays the information about the first interface Display information about the next interface show ip interface 0 2 End of the script file 5 4 Co
135. fo and System Setup Quick Start up Software Version Information Table 6 1 Quick Start up Software Version Information Command Details show hardware in Privileged EXEC Allows the user to see the software version the device contains Software Version current release software loaded in the switch Quick Start up Physical Port Data Table 6 2 Quick Start up Physical Port Data Command Details show port all in Privileged EXEC Displays the Ports slot port Type Indicates if the port is a special type of port Admin Mode Selects the Port Control Administration State Physical Mode Selects the desired port speed and duplex mode Physical Status Indicates the port speed and duplex mode Link Status Indicates whether the link is up or down Link Trap Determines whether or not to send a trap when link status changes LACP Mode Displays whether LACP is enabled or disabled on this port 6 2 Quick Start up December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Quick Start up User Account Management Table 6 3 Quick Start up User Account Management Command Details show users Displays all of the users that are allowed to access the switch in Privileged EXEC Access Mode Shows whether the user is able to change parameters on the switch Read Write or is only able to
136. g The process of combing a set of trunks that are traffic engineered as a unit for the establishment of connections between switching systems in which all of the communications paths are interchangeable U UTP Unshielded twisted pair is the cable used by IOBASE T and 100BASE Tx Ethernet networks V Virtual Local Area Network Operating at the Data Link Layer Layer 2 of the OSI model the VLAN is a means of parsing a single network into logical user groups or organizations as if they physically resided on a dedicated LAN segment of their own In reality this virtually defined community may have individual members peppered across a large extended LAN The VLAN identifier is part of the 802 1Q tag which is added to an Ethernet frame by an 802 1Q compliant switch or router Devices recognizing 802 1Q tagged frames maintain appropriate tables to track VLANs The first three bits of the 802 1Q tag are used by 802 1P to establish priority for the packet VLAN See Virtual Local Area Network on page 18 C 18 Glossary December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software W WAN See Wide Area Network on page 19 Web Also known as World Wide Web WWW or W3 An Internet client server system to distribute information based upon the hypertext transfer protocol HTTP Wide Area Network A WAN is a computer network that spans a relatively large geographical area
137. g A 7 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Table 9 1 IS CLI Mapping continued CLI Command Package 7200 Series L2 Switch Command Mode Syntax Interface no spanning tree mst lt mstid gt cost Config Switching config spanningtree mst port Interface spanning tree mst lt mstid gt priority lt mstid gt lt slot port gt Config port priority 0 240 0 240 Interface no spanning tree mst lt mstid gt Config port priority Switching show inventory Privileged show hardware EXEC Switching show sysinfo Privileged show sysinfo EXEC Switching show arp switch Privileged show arp switch EXEC Switching show forwardingdb table macaddr Privileged show mac addr table lt macaddr gt all EXEC all Switching show stats port detailed lt slot port gt Privileged show interface ethernet lt slot port gt EXEC switchport Switching show stats switch detailed Privileged EXEC Switching show stats port summary lt slot Privileged show interface lt slot port gt port gt EXEC switchport Switching show stats switch summary Privileged EXEC Switching show eventlog Privileged show eventlog EXEC Switching show msglog Privileged show msglog EXEC Switching show traplog Privileged show logging EXEC Switching config sysname lt name gt Global snmp server sysname lt name gt Config A 8 I
138. g config garp gmrp interfacemode Interface set gmrp interfacemode lt slot port all gt lt enable disable gt Config Interface no set gmrp interfacemode Config Global set gmrp interfacemode all Config Global no set gmrp interfacemode all Config IS CLI Mapping A 17 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Table 9 1 IS CLI Mapping continued CLI Command Package 7200 Series L2 Switch Command Mode Syntax Switching config garp gvrp adminmode Privileged set gvrp adminmode lt enable disable gt EXEC Privileged no set gvrp adminmode EXEC Switching config garp gvrp interfacemode Interface set gvrp interfacemode slot port all gt enable disable Config Interface no set gvrp interfacemode Config Global set gvrp interfacemode all Config Global no set gvrp interfacemode all Config Switching config garp jointimer lt slot port all gt Interface set garp timer join 10 1002 10 100 Config Interface no set garp timer join Config Global set garp timer join all 10 100 Config Global no set garp timer join all Config Switching config garp leavetimer slot port Interface set garp timer leave 20 600 all gt 20 600 Config Interface no set garp timer leave Config Global set garp timer leave all lt 20 600 gt Config Global no set garp timer leave all Config Switching config garp le
139. g to all the addresses are displayed Format Mode Service DHCP Number of Ping Packets Excluded Address show ip dhcp global configuration Privileged EXEC and User EXEC The field to display the status of dhcp protocol The maximum number of Ping Packets that will be sent to verify that an ip address id not already assigned The ranges of IP addresses that a DHCP server should not assign to DHCP clients show ip dhcp pool configuration This command displays pool configuration If is specified configuration for all the pools is displayed Format Mode Pool Name Pool Type Lease Time DNS Servers Default Routers show ip dhcp pool configuration lt name gt Privileged EXEC and User EXEC The name of the configured pool The pool type The lease expiration time of the IP Address assigned to the client The list of DNS servers available to the DHCP client The list of the default routers available to the DHCP client DHCP Server Commands 9 7 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Following additional field is displayed for Dynamic pool type Network The network number and the mask for the DHCP address pool Following additional fields are displayed for Manual pool type Client Name Client Identifier Hardware Address Hardware Address Type Host Format Mode Address Pool Automatic bindings Manual bindings Expired bi
140. ged Switch Software Table 9 1 IS CLI Mapping continued CLI Command Package 7200 Series L2 Switch Command Mode Syntax Switching config vlan port tagging enable Interface vlan tagging lt 1 4094 gt disable lt 1 4094 gt lt slot port all gt Config Interface no vlan tagging lt 1 4094 gt Config Global vlan port tagging all lt 1 4094 gt Config Global no vlan port tagging all lt 1 4094 gt Config Switching config vlan port pvid lt 1 4094 gt Interface vlan pvid lt 1 4094 gt lt slot port all gt Config Global vlan port pvid all lt 1 4094 gt Config Switching config vlan port acceptframe lt all Interface vlan acceptframe vlanonly all vlan gt lt slot port all gt Config Interface no vlan acceptframe Config Global vlan port acceptframe all vlanonly Config all Global no vlan port acceptframe all Config Switching config vlan port ingressfilter Interface vlan ingressfilter lt enable disbale gt lt slot port all gt Config Interface no vlan ingressfilter Config Global vlan port ingressfilter all Config Global no vlan port ingressfilter all Config Switching config protocol create Global vlan protocol group lt groupname gt lt groupname gt Config A 16 IS CLI Mapping December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software
141. ged Switch Software Format vlan tagging 1 4094 Mode Interface Config no vlan tagging This command configures the tagging behavior for a specific interface in a VLAN to disabled If tagging is disabled traffic is transmitted as untagged frames The ID is a valid VLAN identification number Format no vlan tagging 1 4094 Mode Interface Config Spanning Tree Commands This section provides detailed explanation of the spanning tree commands The commands are divided into two functional groups e Show commands display spanning tree settings statistics and other information e Configuration Commands configure features and options of the switch For every configuration command there is a show command that displays the configuration setting show spanning tree This command displays spanning tree settings for the common and internal spanning tree when the optional parameter brief is not included in the command The following details are displayed Format show spanning tree brief Mode Privileged EXEC and User EXEC Bridge Priority Configured value Bridge Identifier Time Since Topology Change in seconds Topology Change Count Number of times changed Topology Change Boolean value of the Topology Change parameter for the switch indicating if a topology change is in progress on any port assigned to the common and internal spanning tree Designated Root 8 76 Switching Commands December 2004 202 10010 02 Us
142. gement features Web Based Management Interface 4 1 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Device Management Introduction of the basic icons and management of the device e Interface Operations Describes Web browser requirements and common commands e Product Overview Describes supported SNMP and Web management features e Summary of Features Feature List How to Log In to the Managed Switch The NETGEAR 7200 Series Layer 2 Managed Switch can be configured remotely from Microsoft Internet Explorer browser version 5 0 or above or Netscape Navigator web browser version 4 78 or above 1 Determine the IP address of your managed switch 2 Opena Web browser such as Internet Explorer or Netscape Navigator 3 Loginto the managed switch using whatever IP address the unit is currently configured with Use the default user name of admin and default of no password or whatever LAN address and password you have set up http 192 168 0 1 Figure 4 2 7200 IP address in browser address bar A login window opens Click the Login link 4 2 Web Based Management Interface December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software A user name and password dialog box opens like this one Connect to 66 219 86 164 4l READONLY User name i admin Password Remember my password Figure 4 3 User name
143. gt switchport Privileged EXEC The display parameters when the argument is lt slot port gt is as follows Packets Received Octets Received The total number of octets of data including those in bad packets received on the network excluding framing bits but including FCS octets This object can be used as a rea sonable estimate of ethernet utilization If greater precision is desired the etherStatsPkts and etherStatsOctets objects should be sampled before and after a common interval The result of this equation is the value Utilization which is the percent utiliza tion of the ethernet segment on a scale of 0 to 100 percent Packets Received 64 Octets The total number of packets including bad packets received that were 64 octets in length excluding framing bits but including FCS octets Packets Received 64 Octets The total number of packets including bad packets received that were 64 octets in length excluding framing bits but including FCS octets Packets Received 65 127 Octets The total number of packets including bad packets received that were between 65 and 127 octets in length inclusive excluding framing bits but including FCS octets Packets Received 128 255 Octets The total number of packets including bad packets received that were between 128 and 255 8 4 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software
144. he requested MAC address and all entries following the requested MAC address Format show mac addr table macaddr all Mode Privileged EXEC 8 12 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Mac Address A unicast MAC address for which the switch has forwarding and or filtering information The format is 6 or 8 two digit hexadeci mal numbers that are separated by colons for example 01 23 45 67 89 AB In an IVL system the MAC address will be displayed as 8 bytes In an SVL system the MAC address will be displayed as 6 bytes slot port The port which this address was learned if Index This object indicates the ifIndex of the interface table entry asso ciated with this port Status The status of this entry The meanings of the values are Static The value of the corresponding instance was added by the system or a user when a static MAC filter was defined It cannot be relearned Learned The value of the corresponding instance was learned by observing the source MAC addresses of incoming traffic and is currently in use Management The value of the corresponding instance system MAC address is also the value of an existing instance of dot1dStaticAddress It is identified with interface 0 1 and is cur rently used when enabling VLANs for routing Self The value of the corresponding instance is the address of one of the switch s physical interfaces t
145. he group The possible values for protocol are ip arp and ipx Default none 8 74 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Format vlan protocol group add protocol lt groupid gt lt protocol gt Mode Global Config no vian protocol group add protocol This command removes the lt protocol gt from this protocol based VLAN group that is identified by this lt groupid gt The possible values for protocol are ip arp and ipx Format no vlan protocol group add protocol lt groupid gt proto col gt Mode Global Config vian protocol group remove This command removes the protocol based VLAN group that is identified by this lt groupid gt Format vlan protocol group remove lt groupid gt Mode Global Config vian pvid This command changes the VLAN ID per interface Default 1 Format vlan pvid lt 1 4094 gt Mode Interface Config no vian pvid This command sets the VLAN ID per interface to 1 Format no vlan pvid lt 1 4094 gt Mode Interface Config vlan tagging This command configures the tagging behavior for a specific interface in a VLAN to enabled If tagging is enabled traffic is transmitted as tagged frames If tagging is disabled traffic is transmitted as untagged frames The ID is a valid VLAN identification number Switching Commands 8 75 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Mana
146. he system s own MAC address GMRP Learned The value of the corresponding was learned via GMRP and applies to Multicast Other The value of the corresponding instance does not fall into one of the other categories show msglog This command displays the message log maintained by the switch The message log contains system trace information The trap log contains a maximum of 256 entries that wrap Format show msglog Mode Privileged EXEC Message The message that has been logged Switching Commands 8 13 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Note Message log information is not retained across a switch reset show running config This command is used to display the current setting of different protocol packages supported on switch This command displays only those parameters the values of which differ from default value The output is displayed in the script format which can be used to configure another switch with same configuration Format show running config Mode Privileged EXEC show sysinfo This command displays switch information Format show sysinfo Mode Privileged EXEC Switch Description Text used to identify this switch System Name Name used to identify the switch System Location Text used to identify the location of the switch May be up to 31 alpha numeric characters The factory default is blank System Contact Text used to identify a
147. his show port value has not been configured Not Configured will be dis played This command displays port information Format Mode slot port Type Admin Mode show port lt slot port gt all Privileged EXEC The physical slot and physical port If not blank this field indicates that this port is a special type of port The possible values are Mon this port is a monitoring port Look at the Port Monitoring screens to find out more information Lag this port is a member of a port channel LAG Probe this port is a probe port Selects the Port control administration state The port must be enabled in order for it to be allowed into the network May be enabled or disabled The factory default is enabled Switching Commands 8 59 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Physical Mode Physical Status Link Status Link Trap LACP Mode show port protocol Selects the desired port speed and duplex mode If auto negotia tion support is selected then the duplex mode and speed will be set from the auto negotiation process Note that the port s maxi mum capability full duplex 100M will be advertised Other wise this object will determine the port s duplex mode and transmission rate The factory default is Auto Indicates the port speed and duplex mode Indicates whether the Link is up or down This object determines whether
148. his server Malformed Access Responses The number of malformed RADIUS Access Response Bad Authenticators Pending Requests Timeouts Unknown Types Packets Dropped packets received from this server Malformed packets include packets with an invalid length Bad authenticators or signature attributes or unknown types are not included as malformed access responses The number of RADIUS Access Response packets containing invalid authenticators or signature attributes received from this server The number of RADIUS Access Request packets destined for this server that have not yet timed out or received a response The number of authentication timeouts to this server The number of RADIUS packets of unknown types which were received from this server on the authentication port The number of RADIUS packets received from this server on the authentication port and dropped for some other reason show users authentication This command displays all user and all authentication login information It also displays the authentication login list assigned to the default user Format Mode User System Login show users authentication Privileged EXEC This field lists every user that has an authentication login list assigned This field displays the authentication login list assigned to the user for system login 8 110 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Manag
149. ided into little chunks called packets Each of these packets contains both the sender s Internet address and the receiver s address Any packet is sent first to a gateway computer that understands a small part of the Internet The gateway computer reads the destination address and forwards the packet to an adjacent gateway that in turn reads the destination address and so forth across the Internet until one gateway recognizes the packet as belonging to a computer within its immediate neighborhood or domain That gateway then forwards the packet directly to the computer whose address is specified Because a message is divided into a number of packets each packet can if necessary be sent by a different route across the Internet Packets can arrive in a different order than they were sent The Internet Protocol just delivers them It s up to another protocol the Transmission Control Protocol TCP to put them back in the right order IP is a connectionless protocol which means that there is no continuing connection between the end points that are communicating Each packet that travels through the Internet is treated as an Glossary C 9 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software independent unit of data without any relation to any other unit of data The reason the packets do get put in the right order is because of TCP the connection oriented protocol that keeps track of the packet seque
150. iesie see nena kane nbn na ka ax NRUERRR a aA NAE ER Rau N NAE EX Aaa AERE R Rau n AERaA 8 19 TENT POSES cuc ave sep iR Ero vp beides A N 8 19 HINIacP Ege jo e 8 20 svo de cli RE D o 8 20 network protocol Faces 8 20 ieinotecgn TiaxsessiolS 1s ein aeta dd aU p ou RE ead cag ad d d a ERA RM o 8 20 lie remplecan axes Bose to eI poi ON ANN 8 21 PPE TPIT aiisonieccice d bPei cai ca p Ried EEEa 8 21 n remotecon ATOR E NRI TERES 8 21 sern DEDI BIB SsssecidiotbecHuedMeseeuidiaMe p UI Oedi te du edu DP C UM Os EROR dU boe pullo nee Dud din DPI diu E dd ru senal baudiate oed d pa C RC a RO de Hl a e e eR d RN 8 22 gel NONE eeu ttu Es utbcos Pier sd vsus Dos exu ix enc ous Puer au ce Suc aD ies 8 22 AGB M IP MEN TE SEO CLOS 8 22 Sef POMPI 8 22 show forwardingdb alain e 8 22 SNOW SIS ccscucuo tudin i tente Dco Sa At UNS HH Sene Bab Faune rcge ui dM lara tap uS ORE Erag d ates 8 23 Contents vii December 2004 202 10010 02 SNOW FEMIOIBC ENERO RT show serial show snmpcommunity Sho SP TESI aso o eipEr SDN EE eZ URS BUR Teeter aa LCS R LERRA UE CK M LRER GERE SEM rT 2 show WADTIEUS eroi ro nannten snmp server community no snmp Serner commu EMT OT s 8 28 STP ES COMMA IDOI aiita a 8 28 no snmp server community BAO srna rr arbe IER Rn R ORI E RREPREERLE 8 28 snimpeserver community IBIalslk 41 eese ute Stn ett itaqae
151. ill not be added to the group Default none Format protocol vlan group lt groupid gt 8 42 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Mode Interface Config no protocol vlan group This command removes the lt interface gt from this protocol based VLAN group that is identified by this lt groupid gt If lt all gt is selected all ports will be removed from this protocol group Format no protocol vlan group lt groupid gt Mode Interface Config protocol vian group all This command adds all physical interfaces to the protocol based VLAN identified by lt groupid gt A group may have more than one interface associated with it Each interface and protocol combination can only be associated with one group If adding an interface to a group causes any conflicts with protocols currently associated with the group this command will fail and the interface s will not be added to the group Default none Format protocol vlan group all lt groupid gt Mode Global Config no protocol vian group all This command removes all interfaces from this protocol based VLAN group that is identified by this lt groupid gt Format no protocol vlan group all lt groupid gt Mode Global Config set garp timer join This command sets the GVRP join time per port and per GARP Join time is the interval between the transmission of GARP Protocol Data Units PDUs regis
152. ime to 1 5 LeaveAllTime Permissible values are 200 to 6000 centisec onds 2 to 60 seconds The factory default is 1000 centiseconds 10 seconds The finest granularity of specification is 1 centisec ond 0 01 seconds Indicates the GMRP administrative mode for the port It may be enabled or disabled If this parameter is disabled Join Time Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Port GVRP Mode show igmpsnooping Leave Time and Leave All Time have no effect The factory default is disabled Indicates the GVRP administrative mode for the port It may be enabled or disabled If this parameter is disabled Join Time Leave Time and Leave All Time have no effect The factory default is disabled This command displays IGMP Snooping information Configured information is displayed whether or not IGMP Snooping is enabled Status information is only displayed when IGMP Snooping is enabled Format Mode Admin Mode Query Interval Time Max Response Time show igmpsnooping Privileged EXEC This indicates whether or not IGMP Snooping is active on the switch This displays the IGMP Query Interval Time This is the amount of time a switch will wait for a report for a particular group on a particular interface before it sends a query on that interface This value may be configured This displays the amount of time the switch will wait afte
153. ing those that were discarded or not sent Multicast Packets Transmitted The total number of packets that higher level protocols requested be transmitted to a Multicast address including those that were discarded or not sent Broadcast Packets Transmitted The total number of packets that higher level protocols requested be transmitted to the Broad cast address including those that were discarded or not sent Transmit Packets Discarded The number of outbound packets which were chosen to be discarded even though no errors had been detected to prevent their being deliverable to a higher layer protocol A possible reason for discarding a packet could be to free up buffer space Most Address Entries Ever Used The highest number of For warding Database Address Table entries that have been learned by this switch since the most recent reboot Address Entries in Use The number of Learned and static entries in the Forwarding Database Address Table for this switch Maximum VLAN Entries The maximum number of Virtual LANs VLANs allowed on this switch Most VLAN Entries Ever Used The largest number of VLANs that have been active on this switch since the last reboot Static VLAN Entries The number of presently active VLAN entries on this switch that have been created statically Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Dynamic VLAN Entries The num
154. inks called tunnels The tunnel endpoints are typically workstation class machines having operating system support for IP multicast and running the mrouted multicast routing daemon Multicasting To transmit a message to specific recipients across a network A simple example of multicasting is sending an e mail message to a mailing list Teleconferencing and videoconferencing also use multicasting but require more robust protocols and networks Standards are being developed to support multicasting over a TCP IP network such as the Internet These standards IP Multicast and Mbone will allow users to easily join multicast groups Note that multicasting refers to sending a message to a select group whereas broadcasting refers to sending a message to everyone connected to a network The terms multicast and narrowcast are often used interchangeably although narrowcast usually refers to the business model whereas multicast refers to the actual technology used to transmit the data Multiplexing A function within a layer that interleaves the information from multiple connections into one connection MUX See Multiplexing on page 12 N NAT See Network Address Translation on page 12 netmask Combined with the IP address the IP Subnet Mask allows a device to know which other addresses are local to it and which must be reached through a gateway or router A number that explains which part of an IP address comprises the network address a
155. ion The end to end link is called the channel TSB 67 defines the Basic Link which is the portion of the link that is part of the building infrastructure This excludes patch and equipment cords The maximum basic link length is 295 feet 90 m Return Loss Return loss measures the amount of reflected signal energy resulting from impedance changes in the cabling link The nature of 1000B ASE T renders this measurement very important if too much energy is reflected back on to the receiver the device does not perform optimally Cabling Guidelines B 5 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Unlike IOBASE T and 100BASE TX which use only two of the four pairs of wires within the Category 5 1000BASE T uses all four pairs of the twisted pair Make sure all wires are tested this is important Factors that affect the return loss are The number of transition points as there is a connection via an RJ 45 to another connector a patch panel or device at each transition point Removing the jacket that surrounds the four pairs of twisted cable It is highly recommended that when RJ 45 connections are made this is minimized to 1 1 4 inch 32 mm Untwisting any pair of the twisted pair cabling It is important that any untwisting be minimized to 3 8 inch 10 mm for RJ 45 connections Cabling or bundling of multiple Category 5 cables This is regulated by ANSI
156. itch software The commands can be accessed from the CLI telnet and Web interfaces e Chapter 6 Quick Start up details the procedure to quickly become acquainted with the 7000 Series L3 Managed Switch Software e Chapter 8 Switching Commands describes the Switching commands About This Guide 1 1 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Note Refer to the release notes for the 7000 Series L3 Managed Switch Software application level code The release notes detail the platform specific functionality of the Switching Routing SNMP Config Management and Bandwidth Provisioning packages Typographical Conventions This guide uses the following typographical conventions Table 1 Typographical conventions italics Emphasis bold times roman User input Enter Named keys in text are shown enclosed in square brackets The notation Enter is used for the Enter key and the Return key Ctrl C Two or more keys that must be pressed simultaneously are shown in text linked with a plus sign SMALL CAPS DOS file and directory names Special Message Formats This guide uses the following formats to highlight special messages Note This format is used to highlight information of importance or special interest This manual is written for the 7200 Series L2 Switch according to these specifications Table 1 1 Manual
157. itch Management Overview Fast Ethernet FEN and Gigabit Ethernet GEN switching continues to evolve from high end backbone applications to desktop switching applications The price of the technology continues to decline while performance and feature sets continue to improve Devices that are capable of switching Layers 2 3 and 4 are increasingly in demand The NETGEAR 7200 Series Layer 2 Managed Switch provides a flexible solution to these ever increasing needs The NETGEAR 7200 Series Layer 2 Managed Switch provides the network administrator with a set of comprehensive management functions for managing both the 7200 and the network The network administrator has a choice of three easy to use management methods e Web based e VTIOO interface Note The maximum number of configuration file command lines is 2000 Switch Management Overview 2 1 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software e Simple Network Protocol Management SNMP Each management method enables the network administrator to configure manage and control the managed switch locally or remotely using in band or out of band mechanisms Management is standards based with configuration parameters and a private MIB providing control for functions not completely specified in the MIBs Table 2 1 Management Method Comparing Switch Management Methods Advantages Disadvantages Administration co
158. ket removal and untwist lengths Bundling of cables must be properly installed to meet the requirements in ANSI EIA TIA 568A 3 B 8 December 2004 202 10010 02 Cabling Guidelines Appendix C Glossary Use the list below to find definitions for technical terms used in this manual Numeric 802 1D The IEEE designator for Spanning Tree Protocol STP STP a link management protocol is part of the 802 1D standard for media access control bridges Using the spanning tree algorithm STP provides path redundancy while preventing endless loops in a network An endless loop is created by multiple active paths between stations where there are alternate routes between hosts To establish path redundancy STP creates a logical tree that spans all of the switches in an extended network forcing redundant paths into a standby or blocked state STP allows only one active path at a time between any two network devices this prevents the loops but establishes the redundant links as a backup if the initial link should fail If STP costs change or if one network segment in the STP becomes unreachable the spanning tree algorithm reconfigures the spanning tree topology and reestablishes the link by activating the standby path Without spanning tree in place it is possible that both connections may be simultaneously live which could result in an endless loop of traffic on the LAN 802 1P The IEEE protocol designator for Local Area Network LAN
159. l Mode Interface Config no vian acceptframe This command sets the frame acceptance mode per interface to Admit All For Admit All mode untagged frames or priority frames received on this interface are accepted and assigned the value of the interface VLAN ID for this port With either option VLAN tagged frames are forwarded in accordance with the IEEE 802 1Q VLAN Specification Format vlan acceptframe vlanonly all Mode Interface Config vlan ingressfilter This command enables ingress filtering If ingress filtering is disabled frames received with VLAN IDs that do not match the VLAN membership of the receiving interface are admitted and forwarded to ports that are members of that VLAN Default Disabled Format vlan ingressfilter Mode Interface Config no vlan ingressfilter This command disables ingress filtering If ingress filtering is disabled frames received with VLAN IDs that do not match the VLAN membership of the receiving interface are admitted and forwarded to ports that are members of that VLAN Format no vlan ingressfilter Mode Interface Config 8 70 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software vlan makestatic This command changes a dynamically created VLAN one that is created by GVRP registration to a static VLAN one that is permanently configured and defined The ID is a valid VLAN identification number VLAN range is 2 40
160. l in the IEEE 802 1Q standard Determines the configured degree of participation of this port in this VLAN The permissible values are Include This port is always a member of this VLAN This is equivalent to registration fixed in the IEEE 802 1Q standard Exclude This port is never a member of this VLAN This is equivalent to registration forbidden in the IEEE 802 1Q standard Autodetect Specifies to allow the port to be dynamically regis tered in this VLAN via GVRP The port will not participate in this VLAN unless join request is received on this port This is equivalent to registration normal in the IEEE 802 1Q standard Select the tagging behavior for this port in this VLAN 8 62 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software show vlan brief Tagged specifies to transmit traffic for this VLAN as tagged frames Untagged specifies to transmit traffic for this VLAN as untagged frames This command displays a list of all configured VLANs Format Mode VLAN ID VLAN Name VLAN Type show vlan port show vlan brief Privileged EXEC and User EXEC There is a VLAN Identifier vlanid associated with each VLAN The range of the VLAN ID is 1 to 4094 A string associated with this VLAN as a convenience It can be up to 16 alphanumeric characters long including blanks The default is blank VLAN ID 1 always has a name of Default
161. l no spanning tree configuration Config revision Switching config spanningtree port mode Interface spanning tree port mode all lt slot port all gt lt enable disbale gt Config Interface no spanning tree port mode Config Switching config spanningtree port mode Global spanning tree port mode all lt slot port all gt lt enable disbale gt Config Global no spanning tree port mode all Config Switching config spanningtree port Global spanning tree bpdumigrationcheck migrationcheck lt slot port all gt Config lt slot port gt all lt enable disable gt Global no spanning tree Config bpdumigrationcheck lt slot port gt all Switching config spanningtree bridge maxage Global spanning tree max age lt 6 40 gt lt 6 40 gt Config Global no spanning tree max age Config Switching config spanningtree bridge Global spanning tree hello time lt 1 10 gt hellotime lt 1 10 gt Config Global no spanning tree hello time Config Switching config spanningtree bridge Global spanning tree forward time 4 30 forwarddelay 4 30 Config Global no spanning tree forward time Config A 6 IS CLI Mapping December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Table 9 1 IS CLI Mapping continued CLI Command Package 7200 Series L2 Switch Command Mode Syntax Switching config spanningtree bridge priority Removed lt 0 61440 gt Swit
162. lays 802 1x port security user information for locally configured users Format show dot1x users lt slot port gt Mode Privileged EXEC User Users configured locally to have access to the specified port show radius This command is used to display the various RADIUS configuration items for the switch as well as the configured RADIUS servers If the optional token servers is not included the following RADIUS configuration items will be displayed Format show radius servers Mode Privileged EXEC 8 108 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Primary Server IP Address Indicates the configured server currently in use for authenti cation Number of configured servers The configured IP address of the authentication server Max number of retransmits The configured value of the maximum number of times a request packet is retransmitted Timeout Duration The configured timeout value in seconds for request re trans missions Accounting Mode Yes or No If the optional token servers is included the following information regarding the configured RADIUS servers is displayed IP Address IP Address of the configured RADIUS server Port The port in use by this server Type Primary or secondary Secret Configured Yes No show radius statistics This command is used to display the statistics for RADIUS or configured server To show the configured RADIU
163. le spanning tree instance Root Path Cost Path Cost to the Designated Root for this multiple spanning tree instance Root Port Identifier Port to access the Designated Root for this multiple spanning tree instance Associated FIDs List of forwarding database identifiers associated with this instance Associated VLANs List of VLAN IDs associated with this instance 8 78 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software show spanning tree mst port detailed This command displays the detailed settings and parameters for a specific switch port within a particular multiple spanning tree instance The instance lt mstid gt is a number that corresponds to the desired existing multiple spanning tree instance The lt slot port gt is the desired switch port Format show spanning tree mst port detailed lt mstid gt lt slot port gt Mode Privileged EXEC and User EXEC MST Instance ID Port Identifier Port Priority Port Forwarding State Current spanning tree state of this port Port Role Port Path Cost Configured value of the Internal Port Path Cost parameter Designated Root The Identifier of the designated root for this port Designated Port Cost Path Cost offered to the LAN by the Designated Port Designated Bridge Bridge Identifier of the bridge with the Designated Port Designated Port Identifier Port on the Designated Bridge that offers the lowest cost to the
164. lt 5 Format no remotecon timeout Mode Privileged EXEC serial baudrate This command specifies the communication rate of the terminal interface The supported rates are 1200 2400 4800 9600 19200 38400 57600 115200 Default 9600 Switching Commands 8 21 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Format serial baudrate 1200 2400 4800 9600 19200 38400 57600 115200 Mode Line Config no serial baudrate This command sets the communication rate of the terminal interface to 9600 Format no serial baudrate Mode Line Config serial timeout This command specifies the maximum connect time in minutes without console activity A value of 0 indicates that a console can be connected indefinitely The time range is 0 to 160 Default 5 Format serial timeout 0 160 Mode Line Config no serial timeout This command sets the maximum connect time in minutes without console activity to 5 Format no serial timeout Mode Line Config set prompt This command changes the name of the prompt The length of name may be up to 64 alphanumeric characters Format set prompt prompt string gt Mode privileged EXEC show forwardingdb agetime This command displays the timeout for address aging In an IVL system the fdbid all parameter is required In an SVL system the fdbid all parameter is not used and will be ignored if entered 8 22 Swi
165. lud ing FCS octets Packets Transmitted 128 255 Octets The total number of packets including bad packets received that were between 128 and 255 octets in length inclusive excluding framing bits but including FCS octets Packets Transmitted 256 511 Octets The total number of packets including bad packets received that were between 256 Switching Commands 8 7 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software and 511 octets in length inclusive excluding framing bits but including FCS octets Packets Transmitted 512 1023 Octets The total number of packets including bad packets received that were between 512 and 1023 octets in length inclusive excluding framing bits but including FCS octets Packets Transmitted 1024 1518 Octets The total number of packets including bad packets received that were between 1024 and 1518 octets in length inclusive excluding framing bits but including FCS octets Packets Transmitted 1519 1522 Octets The total number of packets including bad packets received that were between 1519 and 1522 octets in length inclusive excluding framing bits but including FCS octets Max Info The maximum size of the Info non MAC field that this port will receive or transmit Packets Transmitted Successfully Transmit Errors Total The number of frames that have been transmitted by this port to its segment Unicast Packets Transmitt
166. mand Mode Syntax Switching show lags summary Privileged EXEC and User EXEC show port channel brief Switching show vlan summary Privileged EXEC and User EXEC show vlan brief Switching show vlan detailed lt vlan id gt Privileged EXEC and User EXEC show vlan vlanid Switching Switching Switching show vlan port lt slot port gt show protocol lt groupid all gt show garp info Privileged EXEC and User EXEC Privileged EXEC Privileged EXEC and User EXEC show vlan port lt slot port gt all show port protocol lt groupid gt all show garp Switching show garp interface lt slot port all gt Privileged EXEC and User EXEC show gmrp configuration lt slot port gt all Switching Switching show igmpsnooping show mfdb table macaddr all Privileged EXEC and User EXEC Privileged EXEC Privileged EXEC show gvrp configuration lt slot port gt all show igmpsnooping show mac address table multicast lt macadadr gt all IS CLI Mapping December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Table 9 1 IS CLI Mapping continued CLI Command Package 7200 Series L2 Switch Command Mode Syntax Switching show mfdb gmrp Privileged show mac address table gmrp
167. mand sets the IGMP Group Membership Interval time on the system to 260 seconds 8 50 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Format no set igmp groupmembershipinterval Mode Global Config set igmp interfacemode all This command enables IGMP Snooping on all interfaces If an interface which has IGMP Snooping enabled is enabled for routing or is enlisted as a member of a port channel LAG IGMP Snooping functionality will be disabled on that interface IGMP Snooping functionality will subsequently be re enabled if routing is disabled or port channel LAG membership is removed from an interface that has IGMP Snooping enabled Default Disabled Format set igmp interfacemode all Mode Global Config no set igmp interfacemode all This command disables IGMP Snooping on all interfaces Format no set igmp interfacemode all Mode Global Config set igmp maxresponse This command sets the IGMP Maximum Response time on the system The Maximum Response time is the amount of time in seconds that a switch will wait after sending a query on an interface because it did not receive a report for a particular group in that interface This value must be less than the IGMP Query Interval time value The range is 1 to 3600 seconds Default 10 seconds Format set igmp maxresponse lt 1 3600 gt Mode Global Config no set igmp maxresponse This command sets the IGMP
168. mechanism that allows Bridges and end stations to dynamically register and subsequently de register Group membership information with the MAC Bridges attached to the same LAN segment and for that information to be disseminated across all Bridges in the Bridged LAN that support Extended Filtering Services The operation of GMRP relies upon the services provided by the GARP GARP VLAN Registration Protocol GVRP allows workstations to request admission to a particular VLAN for multicast purposes Gateway A local device usually a router that connects hosts on a local network to other networks GE See Gigabit Ethernet on page 8 Generic Attribute Registration Protocol GARP provides a generic attribute dissemination capability that is used by participants in GARP Applications called GARP Participants to register and de register attribute values with other GARP Participants within a Bridged LAN The definition of the attribute types the values that they can carry and Glossary C 7 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software the semantics that are associated with those values when registered are specific to the operation of the GARP Application concerned Gigabit Ethernet An Ethernet system that is designed to operate at 1000 Mbps 1 Gbps GIP See GARP Information Propagation on page 7 GMRP See GARP Multicast Registration Protocol on page 7 GVD GARP VLAN
169. mmand Line Interface Structure December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Chapter 6 Quick Start up The CLI Quick Start up details procedures to quickly become acquainted with the 7200 Series L2 Switch Quick Starting the Switch 1 Read the device Installation Guide for the connectivity procedure In band connectivity allows access to the 7200 Series L2 Switch locally or from a remote workstation The device must be configured with IP information IP address subnet mask and default gateway 2 Turn the Power ON 3 Allow the device to load the software until the login prompt appears The device initial state is called the default mode 4 When the prompt asks for operator login execute the following steps Type the word admin in the login area Since a number of the Quick Setup commands require administrator account rights NETGEAR suggests logging into an administrator account e Do not enter a password because there is no password in the default mode e Press the enter key two times e The CLI User EXEC prompt will be displayed e Use enable to switch to the Privileged EXEC mode from User EXEC e Use configure to switch to the Global Config mode from Privileged EXEC e Use exit to return to the previous mode Quick Start up 6 1 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software System In
170. mmand sets the value in seconds of the timer used by the authenticator state machine on this port to the default values Depending on the token used the corresponding default values are set Format no dot1x timeout reauth period quiet period tx period supp timeout server timeout Mode Interface Config Switching Commands 8 99 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software dot1x user This command adds the specified user to the list of users with access to the specified port or all ports The lt user gt parameter must be a configured user Format dot1x user user lt slot port gt all Mode Global Config no dot1x user This command removes the user from the list of users with access to the specified port or all ports Format no dot1x user user lt slot port gt all Mode Global Config radius accounting mode This command is used to enable the RADIUS accounting function Default Disabled Format radius accounting mode Mode Global Config no radius accounting mode This command is used to set the RADIUS accounting function to the default value i e the RADIUS accounting function is disabled Format no radius accounting mode Mode Global Config radius server host This command is used to configure the RADIUS authentication and accounting server 8 100 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200
171. mmunity This command removes this community name from the table The name is the community name to be deleted Format no snmp server community lt name gt Mode Global Config snmp server community ipaddr This command sets a client IP address for an SNMP community The address is the associated community SNMP packet sending address and is used along with the client IP mask value to denote a range of IP addresses from which SNMP clients may use that community to access the device A value of 0 0 0 0 allows access from any IP address Otherwise this value is ANDed with the mask to determine the range of allowed client IP addresses The name is the applicable community name Default 0 0 0 0 Format snmp server community ipaddr lt ipaddr gt lt name gt Mode Global Config no snmp server community ipaddr This command sets a client IP address for an SNMP community to 0 0 0 0 The name is the applicable community name Format no snmp server community ipaddr name Mode Global Config 8 28 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software snmp server community ipmask This command sets a client IP mask for an SNMP community The address is the associated community SNMP packet sending address and is used along with the client IP address value to denote a range of IP addresses from which SNMP clients may use that community to access the device A value of 255
172. n Console Telnet Interface The administration console is an internal character oriented VT 100 ANSI menu driven user interface for performing management activities Using this method you can view the administration console from a terminal PC Apple Macintosh or UNIX workstation connected to the switch s console port Figure 3 1 shows an example of this management method EE lgl xi NETGEAR 7000 Series me px em of muir ihe x Managed Switch ols 213 olal eel 3 VHEEELEIHELEEEEEEEEEEEEEEEELEEEEEEEL EE EE E ELE LE L 4 amp Attaching interface lo8 done Adding 18723 symbols for standalone PC GSM7224 User admin Password NOTE Enter for Command Help Command help displays all options hat are valid for the normal and no command forms For the syntax of a particular command form please consult the documentation 4 UNX amp GSM7224 gt Workstation enable Enter into user privilege mode help Display help for various special keys logout Exit this session flny unsaved changes are lost ping Send ICMP echo packets to a specified IP address show Display switch options and settings GSM7224 gt 4 amp Macintosh Connected 23638 Who 00 f MM Figure 3 1 Administration Console Management Method Set Up Your Switch Using Direct Console Access The direct access management method is required when you initially set up your switch Thereafter the convenience
173. n using the serial port Telnet or Web A new user may be added to the switch by entering a name in a blank entry The user name may be up to eight characters and is not case sensitive Two users are included as the factory default admin and guest Access Mode Shows whether the operator is able to change parameters on the switch Read Write or is only able to view them Read Only As a factory default admin has Read Write access and guest has Read Only access There can only be one Read Write user and up to five Read Only users SNMPv3 AccessMode This field displays the SNMPv3 Access Mode If the value is set to ReadWrite the SNMPv3 user will be able to set and retrieve parameters on the system If the value is set to ReadOnly the SNMPv3 user will only be able to retrieve parameter information The SNMPv3 access mode may be different than the CLI and Web access mode 8 90 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software SNMPv3 Authentication This field displays the authentication protocol to be used for the specified login user SNMPv3 Encryption This field displays the encryption protocol to be used for the specified login user users name This command adds a new user account if space permits The account lt username gt can be up to eight characters in length The name may be comprised of alphanumeric characters as well as the dash and u
174. nabled is enabled for routing or is enlisted as a member of a port channel LAG GARP functionality will be disabled on that interface GARP functionality will subsequently be re enabled if routing is disabled and port channel LAG membership is removed from an interface that has GARP enabled Format no set gmrp interfacemode Mode Interface Config Switching Commands 8 47 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software set gmrp interfacemode all This command enables GARP Multicast Registration Protocol on all interfaces If an interface which has GARP enabled is enabled for routing or is enlisted as a member of a port channel LAG GARP functionality will be disabled on that interface GARP functionality will subsequently be re enabled if routing is disabled and port channel LAG membership is removed from an interface that has GARP enabled Default Disabled Format set gmrp interfacemode all Mode Global Config no set gmrp interfacemode all This command disables GARP Multicast Registration Protocol on a selected interface Format no set gmrp interfacemode all Mode Global Config set gvrp adminmode This command enables GVRP Default Disabled Format set gvrp adminmode Mode Privileged EXEC no set gvrp adminmode This command disables GVRP Format no set gvrp adminmode Mode Privileged EXEC set gvrp interfacemode This command enables GVRP GARP VLAN Registra
175. nce in a message In the Open Systems Interconnection OSI communication model IP is in Layer 3 the Networking Layer The most widely used version of IP today is IP version 4 IPv4 However IP version 6 IPv6 is also beginning to be supported IPv6 provides for much longer addresses and therefore for the possibility of many more Internet users IPv6 includes the capabilities of IPv4 and any server that can support IPv6 packets can also support IPv4 packets L LAN See Local Area Network on page 10 Learning The bridge examines the Layer 2 source addresses of every frame on the attached networks called listening and then maintains a table or cache of which MAC addresses are attached to each of its ports Link State In routing protocols the declared information about the available interfaces and available neighbors of a router or network The protocol s topological database is formed from the collected link state declarations Load balancing The ability to distribute traffic across various ports of a device such as a switch to provide efficient optimized traffic throughout the network Local Area Network A communications network serving users within a limited area such as one floor of a building A LAN typically connects multiple personal computers and shared network devices such as storage and printers Although many technologies exist to implement a LAN Ethernet is the most common for connecting personal computers and is
176. ncryption protocol and key to be used for the specified login user The valid encryption protocols are none or des The des protocol requires a key which can be specified on the command line The key may be up to 16 characters long If the des protocol is specified but a key is not provided the user will be prompted for the key If none is specified a key must not be provided The lt username gt is the login user name for which the specified encryption protocol will be used Default no encryption Format users snmpv3 encryption username none des key Mode Global Config no users snmpv3 encryption This command sets the encryption protocol to none The lt username gt is the login user name for which the specified encryption protocol will be used Format no users snmpv3 encryption lt username gt Mode Global Config Security Commands This section describes commands used for configuring security settings for login users and port users Switching Commands 8 93 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software authentication login This command creates an authentication login list The lt listname gt is up to 15 alphanumeric characters and is not case sensitive Up to 10 authentication login lists can be configured on the switch When a list is created the authentication method local is set as the first method When the optional parameters Option1
177. nd port as well The administrator places a protocol analyzer on the port receiving the mirrored data to monitor each segment separately The analyzer captures and evaluates the data without affecting the client on the original port The monitor port may be a port on the same SwitchModule with an attached RMON probe a port on a different SwitchModule in the same hub or the SwitchModule processor Port mirroring can consume significant CPU resources while active Better choices for long term monitoring may include a passive tap like an optical probe or an Ethernet repeater Port monitoring The ability to monitor the traffic passing through a port on a device to analyze network characteristics and perform troubleshooting Port speed The speed that a port on a device uses to communicate with another device or the network Port trunking The ability to combine multiple ports on a device to create a single high bandwidth connection Protocol A set of rules for communication between devices on a network Protocol Data Unit PDU is a packet of data passed across a network The term implies a specific layer of the OSI model and a specific protocol Q QoS See Quality of Service on page 14 Quality of Service QoS is a networking term that specifies a guaranteed level of throughput Throughput is the amount of data transferred from one device to another or processed in a specified amount of time typically throughputs are measured in b
178. nd which part is the host address on that network It can be expressed in dotted decimal notation or as a number appended to the IP address For example a 28 bit mask starting from the MSB can be shown as 255 255 255 192 or as 28 appended to the IP address Network Address Translation Sometimes referred to as Transparent Proxying IP Address Overloading or IP Masquerading Involves use of a device called a Network Address Translator which assigns a contrived or logical IP address and port number to each node on an organization s internal network and passes packets using these assigned addresses C 12 Glossary December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software nm Nanometer 1 x 10e meters non stub area Resource intensive OSPF area that carries a default route static routes intra area routes interarea routes and external routes Non stub areas are the only OSPF areas that can have virtual links configured across them and are the only areas that can contain an ASBR Compare with stub area See also ASAM and OSPF Cisco Systems Inc O Open Systems Interconnection OSI is a seven 7 layer architecture model for communications systems developed by the ISO for the interconnection of data communications systems Each layer uses and builds on the services provided by those below it OSI See Open Systems Interconnection on page 13 P packet A block of inform
179. nderscore _ The username is not case sensitive Six user names can be defined Format users name lt username gt Mode Global Config no users name This command removes an operator Format no users name lt username gt Mode Global Config Note The admin user account cannot be deleted users passwd This command changes the password of an existing operator User password should not be more than eight characters in length If a user is authorized for authentication or encryption is enabled password must be eight alphanumeric characters in length The username and password are not case sensitive When a password is changed a prompt will ask for the operator s former password If none press enter Default No Password Format users passwd lt username gt Mode Global Config Switching Commands 8 91 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software no users passwd This command sets the password of an existing operator to blank When a password is changed a prompt will ask for the operator s former password If none press enter Format no users passwd lt username gt Mode Global Config users snmpv3 accessmode This command specifies the snmpv3 access privileges for the specified login user The valid accessmode values are readonly or readwrite The lt username gt is the login user name for which the specified access mode will apply Default r
180. ndings Malformed messages Message Received DHCPREQUEST DHCPDECLINE DHCPRELEASE DHCPINFORM Message Sent The name of a DHCP client The unique identifier of a DHCP client The hardware address of a DHCP client The protocol of the hardware platform The IP address and the mask for a manual binding to a DHCP cli ent show ip dhcp server statistics This command displays DHCP server statistics show ip dhcp server statistics Privileged EXEC and User EXEC The number of configured address pools in the DHCP server The number of IP addresses that have been automatically mapped to the MAC addresses of hosts that are found in the DHCP data base The number of IP addresses that have been manually mapped to the MAC addresses of hosts that are found in the DHCP database The number of expired leases The number of truncated or corrupted messages that were received by the DHCP server The number of DHCPREQUEST messages that were received by the server The number of DHCPDECLINE messages that were received by the server The number of DHCPRELEASE messages that were received by the server The number of DHCPINFORM messages that were received by the server DHCP Server Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software DHCPOFFER The number of DHCPOFFER messages that were sent by the server DHCPACK The number of DHCPPACK messages that were sen
181. nect The available values are 1200 2400 4800 9600 19200 38400 57600 and 115200 baud The factory Default is 9600 baud The number of bits in a character The number of bits is always 8 Whether Hardware Flow Control is enabled or disabled Hard ware Flow Control is always disabled The number of Stop bits per character The number of Stop bits is always 1 The Parity Method used on the Serial Port The Parity Method is always None show snmpcommunity This command displays SNMP community information Six communities are supported You can add change or delete communities The switch does not have to be reset for changes to take effect The SNMP agent of the switch complies with SNMP Version 1 for more about the SNMP specification see the SNMP RFCs The SNMP agent sends traps through TCP IP to an external SNMP manager based on the SNMP configuration the trap receiver and other SNMP community parameters Format Mode show snmpcommunity Privileged EXEC SNMP Community Name The community string to which this entry grants access A valid Client IP Address entry is a case sensitive alphanumeric string of up to 16 charac ters Each row of this table must contain a unique community name An IP address or portion thereof from which this device will accept SNMP packets with the associated community The requesting entity s IP address is ANDed with the Subnet Mask Switching Commands 8 25 December 20
182. net Interface December 2004 202 10010 02 Chapter 4 Web Based Management Interface Your NETGEAR 7200 Series Layer 2 Managed Switch provides a built in browser interface that lets you configure and manage it remotely using a standard Web browser such as Microsoft Internet Explorer 5 0 or later or Netscape Navigator 6 0 or later This interface also allows for system monitoring and management of the switch The help page covers many of the basic functions and features of the switch and it s web interface When you configure the switch for the first time from the console you can assign an IP address and subnet mask to the switch Thereafter you can access the switch s Web interface directly using your Web browser by entering the switch s IP address into the address bar In this way you can use your Web browser to manage the switch from a central location just as if you were directly connected to the switch s console port Figure 4 1 shows this management method NETGEAR 7000 Series Managed Switch PC UNIX Workstation Macintosh Terminal Figure 4 1 Web Management Method Web Based Management Overview The menu options available are System Management Switch Routing Traffic Management and Smart Wizard There is a help menu in the top of right side of screen you can click the help or the question mark to read the help menu The help menu contains e Web Based Management Introduction to the Web mana
183. nfiguration summary information of the dot1x configuration for a specified port or all ports the detailed dot1x configuration for a specified port and the dot1x statistics for a specified port depending on the tokens used Format show dot1x summary lt slot port gt all detail lt slot port gt statistics lt slot port gt Mode Privileged EXEC Switching Commands 8 105 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software If none of the optional parameters are used the global dot1x configuration summary is displayed Administrative mode Indicates whether authentication control on the switch is enabled or disabled If the optional parameter summary lt slot port gt all is used the dot1x configuration for the specified port or all ports are dis played Port The interface whose configuration is displayed Control Mode The configured control mode for this port Possible values are force unauthorized force authorized auto Operating Control Mode The control mode under which this port is operating Possible values are authorized unauthorized Reauthentication Enabled Indicates whether re authentication is enabled on this port Key Transmission Enabled Indicates if the key is transmitted to the supplicant for the specified port If the optional parameter detail lt slot port gt is used the detailed dotlx configuration for the specified port are displ
184. nfiguration and was not created using config authentication login create The default login list cannot be deleted Format no authentication login lt listname gt Mode Global Config 8 94 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software clear dot1x statistics This command resets the 802 1x statistics for the specified port or for all ports Format clear dot1x statistics lt slot port gt all Mode Privileged EXEC clear radius statistics This command is used to clear all RADIUS statistics Format clear radius statistics Mode Privileged EXEC dot1x defaultlogin This command assigns the authentication login list to use for non configured users for 802 1x port security This setting is over ridden by the authentication login list assigned to a specific user if the user is configured locally If this value is not configured users will be authenticated using local authentication only Format dot1x defaultlogin lt listname gt Mode Global Config dot1x initialize This command begins the initialization sequence on the specified port This command is only valid if the control mode for the specified port is auto If the control mode is not auto an error will be returned Format dot1x initialize lt slot port gt Mode Privileged EXEC dot1x login This command assigns the specified authentication login list to the specified user for 802 1x port s
185. ns and data types and party based security from SNMPsec SNMPv2c experimental This version of the protocol is called community string based SNMPv2 It is an update of the protocol operations and data types of SNMPv2p and uses community based security from SNMPvI SNMPv2u experimental This version of the protocol uses the protocol operations and data types of SNMPv2c and security based on users SNMPv2 experimental This version combined the best features of SNMPv2p and SNMPv2u It is also called SNMPv2star The documents defining this version were never published as RFCs SNMPv3 proposed This version of the protocol is a combination of user based security and the protocol operations and data types from SNMPv2p and support for proxies The security is based on that found in SNMPv2u and SNMPv2 and updated after much review The documents defining this protocol will soon be published as RFCs SimpleX signaling SX is one of IEEE 802 3 s designations for media For example 1000SX indicates 1000 gigabit Ethernet over short haul or short wavelength optical fiber SMII Serial Media Independent Interface SNMP See Simple Network Management Protocol on page 16 Spanning Tree A technique that detects loops in a network and logically blocks the redundant paths ensuring that only one route exists between any two LANs C 16 Glossary December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed S
186. nsole Out of band access via direct cable connection means network bottlenecks crashes and downtime do not slow or prevent access No IP address or subnet needed Menu or CLI based HyperTerminal access to full functionality HyperTerminal are built into Microsoft Windows 95 98 NT 2000 operating systems Secure make sure the switch is installed in a secure area Must be near switch or use dial up connection Not convenient for remote users Not graphical Web browser Can be accessed from any location via the Security can be compromised hackers ior Telnet switch s IP address can attack if they know IP address Ideal for configuring the switch remotely e May encounter lag times on poor Compatible with Internet Explorer and connections Netscape Navigator Web browsers Displaying graphical objects over a e Familiar browser interface browser interface may slow navigation Graphical data available e Most visually appealing Menu or CLI interfaces available SNMP Agent Communicates with switch functions at the Requires SNMP manager software Management Information Base MIB level p Least visually appealing of all three Based on open standards methods Limited amount of information available Some settings require calculations Security can be compromised hackers need only know the community name 2 2 Switch Management Overview December 2004 202 10010 02 Chapter 3 Administratio
187. nsport Layer Security TLS is a protocol that guarantees privacy and data integrity between client server applications communicating over the Internet The TLS protocol is made up of two layers The TLS Record Protocol ensures that a connection is private by using symmetric data encryption and ensures that the connection is reliable The second TLS layer is the Glossary C 17 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software TLS Handshake Protocol which allows authentication between the server and client and the negotiation of an encryption algorithm and cryptographic keys before data is transmitted or received Based on Netscape s SSL 3 0 TLS supercedes and is an extension of SSL TLS and SSL are not interoperable Telnet A TCP IP application protocol that provides a virtual terminal service allowing a user to log into another computer system and access a device as if the user were connected directly to the device Traffic prioritization Giving time critical data traffic a higher quality of service over other non critical data traffic Trivial File Transfer Protocol TFTP is a simple form of the File Transfer Protocol FTP TFTP uses the User Datagram Protocol UDP a direct protocol used to communicate datagrams over a network with little error recovery and provides no security features It is often used by servers to boot diskless workstations X terminals and routers Trunkin
188. nu by right clicking on the image of the switch and browsing to the menu you want to use Port Specific Popup Menus The 7200 Series L2 Switch also provides several popup menus for each port You can access a port specific popup menu by right clicking on the port in the image of the switch and browsing to the menu you want to use 4 4 Web Based Management Interface December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Chapter 5 Command Line Interface Structure The Command Line Interface CLD syntax conventions and terminology are described in this section Each CLI command is illustrated using the structure outlined below CLI Command Format Commands are followed by values parameters or both Example 1 network parms lt ipaddr gt lt netmask gt lt gateway gt network parms is the command name e lt ipaddr gt lt netmask gt are the required values for the command e gateway is the optional value for the command Example 2 snmp server location loc snmp server location isthe command name e loc is the required parameter for the command Example 3 clear vlan clear vlanisthe command name Command The text in bold non italic font must be typed exactly as shown Command Line Interface Structure 5 1 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Parameters Paramet
189. o registra tion normal vlan participation all This command configures the degree of participation for all interfaces in a VLAN The ID is a valid VLAN identification number Format vlan participation all exclude include auto lt 1 4094 Mode Global Config Participation options are include The interface is always a member of this VLAN This is equiva lent to registration fixed exclude The interface is never a member of this VLAN This is equivalent to registration forbidden auto The interface is dynamically registered in this VLAN by GVRP The interface will not participate in this VLAN unless a join request is received on this interface This is equivalent to registra tion normal vlan port acceptframe all This command sets the frame acceptance mode for all interfaces For VLAN Only mode untagged frames or priority frames received on this interface are discarded For Admit All mode untagged frames or priority frames received on this interface are accepted and assigned the value of the interface VLAN ID for this port With either option VLAN tagged frames are forwarded in accordance with the IEEE 802 1Q VLAN Specification Default Admit All Format vlan port acceptframe all vlanonly all Mode Global Config 8 72 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software no vian port acceptframe all This command sets the frame acceptance
190. ode Global Config no snmptrap mode This command deactivates an SNMP trap Disabled trap receivers are inactive not able to receive traps Format no snmptrap mode lt name gt lt ipaddr gt Mode Global Config telnet This command regulates new telnet sessions If sessions are enabled new telnet sessions can be established until there are no more sessions available If sessions are disabled no new telnet sessions are established An established session remains active until the session is ended or an abnormal network error ends it Default Enabled Format telnet Mode Privileged EXEC Switching Commands 8 33 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software no telnet This command disables telnet sessions If sessions are disabled no new telnet sessions are established Format no telnet Mode Privileged EXEC HTTP Commands ip http secure port This command is used to set the sslt port where port can be 1 65535 and the default is port 443 Default 443 Format ip http secure port lt portid gt Mode Privileged EXEC no ip http secure port This command is used to reset the sslt port to the default value Format no ip http secure port Mode Privileged EXEC ip http secure protocol This command is used to set protocol levels versions The protocol level can be set to TLS1 SSL3 or to both TLS1 and SSL3 Default SSL3 and TLS1 Format ip http secure protocol
191. ode all This command sets the Administrative Switch Port State for all ports to disabled Format no spanning tree port mode all Mode Global Config User Account Management Commands These commands manage user accounts disconnect This command closes a telnet session Format disconnect lt sessionID gt all Mode Privileged EXEC show loginsession This command displays current telnet and serial port connections to the switch Format show loginsession Switching Commands 8 89 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Mode Privileged EXEC ID Login Session ID User Name The name the user will use to login using the serial port or Telnet A new user may be added to the switch by entering a name in a blank entry The user name may be up to 8 characters and is not case sensitive Two users are included as the factory default admin and guest Connection From IP address of the telnet client machine or EIA 232 for the serial port connection Idle Time Time this session has been idle Session Time Total time this session has been connected show users This command displays the configured user names and their settings This command is only available for users with readwrite privileges The SNMPv3 fields will only be displayed if SNMP is available on the system Format show users Mode Privileged EXEC User Name The name the user will use to logi
192. ols how frequently LeaveAll PDUs are generated A LeaveAll PDU indicates that all registrations will shortly be deregistered Participants will need to rejoin in order to maintain registration There is an instance of this timer on a per Port per GARP participant basis The Leave AII Period Timer is set to a random value in the range of LeaveAllTime to 1 5 LeaveAllTime Permissible values are 200 to 6000 centisec onds 2 to 60 seconds The factory default is 1000 centiseconds 10 seconds The finest granularity of specification is 1 centisec ond 0 01 seconds Indicates the GMRP administrative mode for the port It may be enabled or disabled If this parameter is disabled Join Time Leave Time and Leave All Time have no effect The factory default is disabled Indicates the GVRP administrative mode for the port It may be enabled or disabled If this parameter is disabled Join Time Leave Time and Leave All Time have no effect The factory default is disabled Switching Commands 8 53 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software show gvrp configuration This command displays Generic Attributes Registration Protocol GARP information for one or all interfaces Format show gvrp configuration lt slot port gt all Mode privileged EXEC and User EXEC Interface Join Timer Leave Timer LeaveAll Timer Port GMRP Mode This displays the slot port of the
193. on VLAN tagged frames are forwarded in accordance to the 802 1Q VLAN specification May be enabled or disabled When enabled the frame is dis carded if this port is not a member of the VLAN with which this frame is associated In a tagged frame the VLAN is identified by the VLAN ID in the tag In an untagged frame the VLAN is the Port VLAN ID specified for the port that received this frame When disabled all frames are forwarded in accordance with the 802 1Q VLAN bridge specification The factory default is dis abled May be enabled or disabled The 802 1p priority assigned to tagged packets arriving on the port Enabled shutdown Interface Config no shutdown Interface Config This command disables all ports Default Enabled Format shutdown all Mode Global Config 8 64 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software no shutdown all This command enables all ports Format no shutdown all Mode Global Config snmp trap link status This command enables link status traps by interface Note This command is valid only when the Link Up Down Flag is enabled See snmp server enable traps linkmode command Format snmp trap link status Mode Interface Config no snmp trap link status This command disables link status traps by interface Note This command is valid only when the Link Up Down Flag is enabled See snmp server en
194. on that this switch is currently using The Configuration Identifier Revision Level is a number in the range of 0 to 65535 Default 0 Format spanning tree configuration revision 0 65535 Mode Global Config no spanning tree configuration revision This command sets the Configuration Identifier Revision Level for use in identifying the configuration that this switch is currently using to the default value i e 0 Format no spanning tree configuration revision Mode Global Config spanning tree edgeport This command specifies that this port is an Edge Port within the common and internal spanning tree This will allow this port to transition to Forwarding State without delay Format spanning tree edgeport Mode Interface Config no spanning tree edgeport This command specifies that this port is not an Edge Port within the common and internal spanning tree Format no spanning tree edgeport Mode Interface Config spanning tree forceversion This command sets the Force Protocol Version parameter to a new value The Force Protocol Version can be one of the following Switching Commands 8 83 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software e 802 1d ST BPDUs are transmitted rather than MST BPDUs IEEE 802 1d functionality supported e 802 1w RST BPDUs are transmitted rather than MST BPDUs IEEE 802 1w functionality supported e 802 1s MST BPDUs are transmitted
195. op down box labeled Connect Using click the arrow and choose the COM port to which the switch will connect In the example below COMI is the port selected Click OK B GSM7224 Enter details for the phone number that you want to dial Country region United States of America 1 ha Area code 408 Phone number Corect ving a 1 Cone Figure 3 3 COM Port Selection 3 2 Administration Console Telnet Interface December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software 4 When the following screen appears make sure that the port setting are as follows Baud Rate 9600 Data Bits 8 Parity None Stop Bits 1 Flow Control None LT 2x Post Setiegs Dispersed x S bum fe 3l Beaty ure z sew Bow corno Bestore Delate OQ Cane Sco Figure 3 4 Connection Settings 5 Click OK The HyperTerminal window will open and you should be connected to the switch If you do not get a welcome screen or a system menu press the return key When attached to the User Interface via a Telnet Session the following must be set in order to use the arrow keys Under the terminal pull down menu choose Properties and make sure the VT100 Arrows option is turned on Administration Console Telnet Interface 3 3 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software 3 4 Administration Console Tel
196. ormat Show gmrp configuration slot port all Mode Privileged EXEC and User EXEC Interface This displays the slot port of the interface that this row in the table describes 8 52 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Join Timer Leave Timer LeaveAll Timer Port GMRP Mode Port GVRP Mode Specifies the interval between the transmission of GARP PDUs registering or re registering membership for an attribute Cur rent attributes are a VLAN or multicast group There is an instance of this timer on a per Port per GARP participant basis Permissible values are 10 to 100 centiseconds 0 1 to 1 0 sec onds The factory default is 20 centiseconds 0 2 seconds The finest granularity of specification is 1 centisecond 0 01 seconds Specifies the period of time to wait after receiving an unregister request for an attribute before deleting the attribute Current attributes are a VLAN or multicast group This may be consid ered a buffer time for another station to assert registration for the same attribute in order to maintain uninterrupted service There is an instance of this timer on a per Port per GARP participant basis Permissible values are 20 to 600 centiseconds 0 2 to 6 0 seconds The factory default is 60 centiseconds 0 6 seconds The finest granularity of specification is 1 centisecond 0 01 sec onds This Leave All Time contr
197. ort physical mode See speed command Format port channel lt name gt Mode Global Config port channel adminmode This command enables a port channel LAG The interface is a logical slot and port for a configured port channel The option a11 sets every configured port channel with the same administrative mode setting Format port channel adminmode logical slot port gt all Mode Global Config no port channel adminmode This command disables a port channel LAG The interface is a logical slot and port for a configured port channel The option a11 sets every configured port channel with the same administrative mode setting Format no port channel adminmode lt logical slot port gt all Mode Global Config port channel linktrap This command enables link trap notifications for the port channel LAG The interface is a logical slot and port for a configured port channel The option a11 sets every configured port channel with the same administrative mode setting Default Enabled Format port channel linktrap logical slot port gt all Mode Global Config no port channel linktrap This command disables link trap notifications for the port channel LAG The interface is a logical slot and port for a configured port channel The option a11 sets every configured port channel with the same administrative mode setting Format no port channel linktrap logical slot port gt all Switching Commands 8 41
198. otherwise Point To Point MAC Status Derived value indicating if this port is part of a point to point link CST Regional Root The regional root identifier in use for this port CST Port Cost The configured path cost for this port show spanning tree mst port summary This command displays the settings of one or all ports within the specified multiple spanning tree instance The parameter lt mstid gt indicates a particular MST instance The parameter lt slot port gt all indicates the desired switch port or all ports If 0 defined as the default CIST ID is passed as the lt mstid gt then the status summary is displayed for one or all ports within the common and internal spanning tree Format show spanning tree mst port summary lt mstid gt lt slot port gt all Mode Privileged EXEC and User EXEC MST Instance ID The MST instance associated with this port Slot Port The interface being displayed Type Currently not used STP State The forwarding state of the port in the specified spanning tree instance Port Role The role of the specified port within the spanning tree Link Status The operational status of the link Possible values are Up or Down Link Trap The link trap configuration for the specified interface 8 80 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software show spanning tree mst summary This command displays summar
199. otocol group T me 8 74 vlan protocol group add protocol 2uiiadssididance sen Dspes emi cux b dugndbnr dice niae sit nai F aged 8 74 no vlan protocol group add protocol iue inertes E E E Yan enel Ero PHI M NOI DL S A UN OU cesset at os whan Hoo ao rst dad osbxasp tyes oun reti dari Susa d tees E dar Safe 8 75 no vlan pvid ios 8 75 SIE TOUICINIC baeo ordi t oda ana D Pra bc n Fa c pr ER B Ea FER ua Lac epa 8 75 HEU INEO UD DEOR ris Ms Pu eds MEE t LL 8 76 Xii Contents December 2004 202 10010 02 show spanning tree interface show spanning tree mst detailed ee seus inni neces dd ieu riens 8 78 show spanning tree mst port detailed 0 0 0 eccccecececssseceeeeecsseeeseeeeeeseeeeeseeeseas 8 79 show SPANNING WES IL SUMMAN scssicsansrosccssssdnssveractsseres cogebat narra dcr ri sound 8 81 show spanning TS SUMMAN Aem SHOW Spanning RITIRO T D LS spanning tree sssrinin M MP Ono NESCIT T OE Uu spanning ASS configuration MAME cassis icoasu eitis nada ani Roanne B 8 82 no spanning tree configuration name 12 5 22 ena iicse reed nddee rasan tuu uasa sace c essei untur OO spanning tree configurator revision uiis osse reris hd soto ner rh Er id eei n euer DO no spanning tree configuration revision sessssseseeeeeene 8 83 spanning tree edgeport gt a no SPANNING ATES TORCOVE
200. p T ossa oerisi erholen ba diac ra er nian Rapp RO cR 7 6 Chapter 8 Switching Commands System Information and Statistics Commands sese 8 1 DOG CEDE CDL EU DL 8 1 Son BED Sodio toG D cnn RETE eti va ba trap Do t n ER DRE 8 2 EH BOTONES nsque on EIE tus x AIR Eoo S can UU Hes NEP ER SU MEER CU EZ UR E 8 2 CywcArhLI Mer 8 2 show IIS eT BEPIBE 1o aad Aid eb Ra Put t ER oci Rada Hua Hp br pa hid 8 4 show logging E show oodd bo eM N EERE Map I uM MM vi Contents December 2004 202 10010 02 neto won xin adsis e T teamed 8 15 Dor Po ORIS cca cusa stan cit EUMSUd E UE OL Y ass UU Hob GE HIR CUR EUR RR uL ER dS o 8 15 classoiservice dollpmapping sussvaactumsqaast rues iaa tu eie P aa trad Ras Id 8 15 show classofservice dotipmapping eevesse vernis tetro cene t 1 i dug qe dro ri SAUD Ptr co M 8 16 vlan priority ieee 8 16 LAG Port Channel 802 gad C Commando mo port ehannel staiecapaBiliy Mee E On 1 no port channel staticcapability didis ERE EAD RaE 8 16 show aser rcr bd ECC D D 8 17 Management Commands uite rii be tt tn sa toas p ASS beta o dd eF seals ET istud DEA RISE MET a DL E ea OE ades IN iul NETT TS 8 18 no ee javamode m 8 19 network mac address ecc
201. ports in the VLAN Format set igmp Mode Global Config Switching Commands 8 49 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software no set igmp This command disables IGMP Snooping on the system Format no set igmp Mode Global Config set igmp This command enables IGMP Snooping on a selected interface If an interface which has IGMP Snooping enabled is enabled for routing or is enlisted as a member of a port channel LAG IGMP Snooping functionality will be disabled on that interface IGMP Snooping functionality will subsequently be re enabled if routing is disabled or port channel LAG membership is removed from an interface that has IGMP Snooping enabled Default Disabled Format set igmp Mode Interface Config no set igmp This command disables IGMP Snooping on a selected interface Format no set igmp Mode Interface Config set igmp groupmembershipinterval This command sets the IGMP Group Membership Interval time on the system The Group Membership Interval time is the amount of time in seconds that a switch will wait for a report from a particular group on a particular interface before deleting the interface from the entry This value must be greater than the IGMP Maximum Response time value The range is 1 to 3600 seconds Default 260 seconds Format set igmp groupmembershipinterval lt 1 3600 gt Mode Global Config no set igmp groupmembershipinterval This com
202. r 2 Managed Switch Software Table 9 1 IS CLI Mapping continued CLI Command Package 7200 Series L2 Switch Command Mode Syntax Switching transfer download path lt path gt Switching transfer download filename lt name gt Switching transfer download datatype lt code config gt Switching transfer download start Switching clear transfer Switching save config Privileged copy system running config EXEC nvram startup config Switching clear config Privileged clear config EXEC Switching clear pass Privileged clear pass EXEC Switching clear traplog Privileged clear traplog EXEC Switching clear vlan Privileged clear vlan EXEC Switching clear lag Privileged clear port channel EXEC Switching clear stats port lt slot port gt Privileged clear counters lt slot port gt EXEC Switching clear stats switch Privileged EXEC Switching clear igmpsnooping Privileged clear igmpsnooping EXEC Switching logout Privileged logout EXEC Switching show users info Privileged show users EXEC A 10 IS CLI Mapping December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Table 9 1 IS CLI Mapping continued CLI Command Package 7200 Series L2 Switch Command Mode Syntax Switching show loginsession Privileged show loginsession EX
203. r cable gain access A Address Resolution Protocol An Internet Protocol that dynamically maps Internet addresses to physical hardware addresses on a LAN Advanced Network Device Layer Software Term for the Device Driver level Aging When an entry for a node is added to the lookup table of a switch it is given a timestamp Each time a packet is received from a node the timestamp is updated The switch has a user configurable timer that erases the entry after a certain length of time with no activity from that node Area Border Router A router located on the border of one or more OSPF areas that connects those areas to the backbone network ABRs are considered members of both the OSPF backbone and the attached areas They therefore maintain routing tables describing both the backbone topology and the topology of the other areas Cisco Systems Inc ARP See Address Resolution Protocol on page 2 Auto negotiation A feature that allows twisted pair ports to advertise their capabilities for speed duplex and flow control When connected to a port that also supports auto negotiation the link can automatically configure itself to the optimum setup Auto Uplink Auto Uplink technology also called MDI MDIX eliminates the need to worry about crossover vs straight through Ethernet cables Auto Uplink will accommodate either type of cable to make the right connection C 2 Glossary December 2004 202 10010 02 Us
204. r gt lt ipaddr gt Config Security show radius summary Privileged show radius servers EXEC IS CLI Mapping A 21 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Table 9 1 IS CLI Mapping continued CLI Command Package 7200 Series L2 Switch Command Mode Syntax Security show radius server summary Privileged EXEC Security show radius server stats lt ipaddr gt Privileged show radius statistics lt ipaddr gt EXEC Security show radius accounting summary Privileged show radius accounting statistics EXEC lt ipaddr gt Security show radius accounting stats Privileged lt ipaddr gt EXEC Security show radius stats Privileged show radius statistics EXEC Security clear radius stats Privileged clear radius statistics EXEC Security config dot1x adminmode enable Global dot1x system auth control disable gt Config Global no dot1x system auth control Config Security config dot1x port initialize lt slot Privileged dot1x initialize lt slot port gt port gt EXEC Security config dot1x port reauthenticate Privileged dotix re authenticate lt slot port gt lt slot port gt EXEC Security config dot1x port controldir lt slot Removed port all gt lt both in gt Security config dot1x port controlmode Global dot1x port control all lt slot port all gt lt forceunauthorized Config force unauthorized force
205. r send ing a query on an interface because it did not receive a report for a particular group on that interface This value may be configured Multicast Router Present Expiration Time Ifa query is not received on an interface within this amount of time the interface is removed from the list of interfaces with multicast routers attached This value may be configured Interfaces Enabled for IGMP Snooping This is the list of interfaces on which IGMP Snooping is enabled The following status values are only displayed when IGMP Snooping is enabled Multicast Control Frame Count This displays the number of multicast control frames that are processed by the CPU Switching Commands 8 55 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software show mac address table gmrp This command displays the GARP Multicast Registration Protocol GMRP entries in the Multicast Forwarding Database MFDB table Format Mode Mac Address Type Description Interfaces show mac address table gmrp Privileged EXEC A unicast MAC address for which the switch has forwarding and or filtering information The format is 6 or 8 two digit hexadeci mal numbers that are separated by colons for example 01 23 45 67 89 AB In an IVL system the MAC address will be displayed as 8 bytes In an SVL system the MAC address will be displayed as 6 bytes This displays the type of the entry Static entries
206. re added to the table as a result of a learning process or protocol The text description of this multicast table entry The list of interfaces that are designated for forwarding Fwd and filtering Flt show mac address table stats This command displays the Multicast Forwarding Database MFDB statistics Format Mode Total Entries show mac address table stats Privileged EXEC This displays the total number of entries that can possibly be in the Multicast Forwarding Database table 8 58 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Most MFDB Entries Ever Used This displays the largest number of entries that have been Current Entries show monitor present in the Multicast Forwarding Database table This value is also known as the MFDB high water mark This displays the current number of entries in the Multicast For warding Database table This command displays the Port monitoring information for the system Format Mode Port Monitor Mode Probe Port slot port show monitor Privileged EXEC indicates whether the Port Monitoring feature is enabled or dis abled The possible values are enable and disable is the slot port that is configured as the probe port If this value has not been configured Not Configured will be displayed Monitored Port slot port is the slot port that is configured as the monitored port If t
207. received and transmitted on the physical monitored port It is not necessary to disable port monitoring before modifying the probe and monitored ports Default Disabled Format monitor session mode Mode Global Config Switching Commands 8 39 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software no monitor session mode This command sets the monitor session port monitoring mode to disable Format no monitor session mode Mode Global Config port lacpmode This command enables Link Aggregation Control Protocol LACP on a port Default Disabled Format port lacpmode Mode Interface Config no port lacpmode This command disables Link Aggregation Control Protocol LACP on a port Format no port lacpmode Mode Interface Config port lacpmode all This command enables Link Aggregation Control Protocol LACP on all ports Format port lacpmode all Mode Global Config no port lacpmode all This command disables Link Aggregation Control Protocol LACP on all ports Format no port lacpmode all Mode Global Config port channel This command configures a new port channel LAG and generates a logical slot and port number for it Display this number using the show port channel 8 40 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Note Before including a port in a port channel set the p
208. received by the processor Broadcast Packets Received The total number of packets received that were directed to the broadcast address Note that this does not include multicast packets Packets Received With Error The number of inbound packets that contained errors pre venting them from being deliverable to a higher layer protocol Packets Transmitted Without Error The total number of packets transmitted out of the interface Broadcast Packets Transmitted The total number of packets that higher level protocols requested to be transmitted to the Broadcast address including those that were discarded or not sent Transmit Packet Errors The number of outbound packets that could not be transmitted because of errors Switching Commands 8 3 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Address Entries Currently In Use The total number of Forwarding Database Address Table entries now active on the switch including learned and static entries VLAN Entries Currently In Use The number of VLAN entries presently occupying the VLAN table Time Since Counters Last Cleared The elapsed time in days hours minutes and sec onds since the statistics for this switch were last cleared show interface ethernet This command displays detailed statistics for a specific port or for all CPU traffic based upon the argument Format Mode show interface ethernet lt slot port
209. ror control and informational messages The PING command for example uses ICMP to test an Internet connection Internet Group Management Protocol IGMP is the standard for IP Multicasting on the Internet IGMP is used to establish host memberships in particular multicast groups on a single network The mechanisms of the protocol allow a host to inform its local router using Host Membership Reports that it wants to receive messages addressed to a specific multicast group All hosts conforming to Level 2 of the IP Multicasting specification require IGMP IP See Internet Protocol on page 9 IP Multicasting Sending out data to distributed servers on the MBone Multicast Backbone For large amounts of data IP Multicast is more efficient than normal Internet transmissions because the server can broadcast a message to many recipients simultaneously Unlike traditional Internet traffic that requires separate connections for each source destination pair IP Multicasting allows many recipients to share the same source This means that just one set of packets is transmitted for all the destinations Internet Protocol The method or protocol by which data is sent from one computer to another on the Internet Each computer known as a host on the Internet has at least one IP address that uniquely identifies it among all other computers on the Internet When you send or receive data for example an e mail note or a Web page the message gets div
210. s EAP an extension to PPP supports such authentication methods as token cards Kerberos one time passwords certificates public key authentication and smart cards In wireless communications using EAP a user requests connection to a WLAN through an AP which then requests the identity of the user and transmits that identity to an authentication server such as RADIUS The server asks the AP for proof of identity which the AP gets from the user and then sends back to the server to complete the authentication EAP is defined by RFC 2284 Endstation A computer printer or server that is connected to a network Ethernet A LAN specification developed jointly by Xerox Intel and Digital Equipment Corporation Ethernet networks transmit packets at a rate of 10 Mbps F Fast Ethernet An Ethernet system that is designed to operate at 100 Mbps Fault isolation A technique for identifying and alerting administrators about connections such as those associated with switch ports that are experiencing congestion or failure or exceeding an administrator defined threshold Fast STP A high performance Spanning Tree Protocol See STP on page 17 for more information Filtering The process of screening a packet for certain characteristics such as source address destination address or protocol Filtering is used to determine whether traffic is to be forwarded and can also prevent unauthorized access to a network or network devices
211. s If lt all gt is selected all the Static MAC Filters in the system are displayed If a macaddr is entered a vlan must also be entered and the Static MAC Filter information will be displayed only for that MAC address and VLAN Switching Commands 8 57 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Format Mode MAC Address VLAN ID Source Port s Destination Port s show mac address table static lt macaddr gt lt vlanid gt all Privileged EXEC Is the MAC Address of the static MAC filter entry Is the VLAN ID of the static MAC filter entry Indicates the source port filter set s slot and port s Indicates the destination port filter set s slot and port s show mac address table staticfiltering This command displays the Static Filtering entries in the Multicast Forwarding Database MFDB table Format Mode Mac Address Type Description Interfaces show mac address table staticfiltering Privileged EXEC A unicast MAC address for which the switch has forwarding and or filtering information The format is 6 or 8 two digit hexadeci mal numbers that are separated by colons for example 01 23 45 67 89 AB In an IVL system the MAC address will be displayed as 8 bytes In an SVL system the MAC address will be displayed as 6 bytes This displays the type of the entry Static entries are those that are configured by the end user Dynamic entries a
212. s authenticator EAPOL Start Frames Received The number of EAPOL start frames that have been received by this authenticator EAPOL Logoff Frames Received The number of EAPOL logoff frames that have been received by this authenticator Switching Commands 8 107 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Last EAPOL Frame Version The protocol version number carried in the most recently received EAPOL frame Last EAPOL Frame Source The source MAC address carried in the most recently received EAPOL frame EAP Response ld Frames Received The number of EAP response identity frames that have been received by this authenticator EAP Response Frames Received The number of valid EAP response frames other than resp id frames that have been received by this authenticator EAP Request Id Frames Transmitted The number of EAP request identity frames that have been transmitted by this authenticator EAP Request Frames Transmitted The number of EAP request frames other than request identity frames that have been transmitted by this authenticator Invalid EAPOL Frames Received The number of EAPOL frames that have been received by this authenticator in which the frame type is not rec ognized EAP Length Error Frames Received The number of EAPOL frames that have been received by this authenticator in which the frame type is not rec ognized show dot1x users This command disp
213. s of data received by the processor excluding framing bits but including FCS octets Total Packets Received Without Error The total number of packets including broadcast packets and multicast packets received by the processor Unicast Packets Received The number of subnetwork unicast packets delivered to a higher layer protocol Multicast Packets Received The total number of packets received that were directed to a multicast address Note that this number does not include packets directed to the broadcast address 8 10 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Broadcast Packets Received The total number of packets received that were directed to the broadcast address Note that this does not include multicast packets Receive Packets Discarded The number of inbound packets which were chosen to be discarded even though no errors had been detected to prevent their being deliverable to a higher layer protocol A possible reason for discarding a packet could be to free up buffer space Octets Transmitted The total number of octets transmitted out of the interface including framing characters Packets Transmitted without Errors The total number of packets transmitted out of the interface Unicast Packets Transmitted The total number of packets that higher level protocols requested be transmitted to a subnetwork unicast address includ
214. show current management settings bridge aging time This command configures the forwarding database address aging timeout in seconds In an IVL system the fdbid all parameter is required In an SVL system the fdbid all parameter is not used and will be ignored if entered Default 300 Format bridge aging time lt 10 1 000 000 gt fdbid all Mode Global Config Switching Commands 8 17 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Seconds The lt seconds gt parameter must be within the range of 10 to 1 000 000 seconds Forwarding Database ID Fdbid Forwarding database ID indicates which forwarding database s aging timeout is being configured All is used to con figure all forwarding database s agetime In an SVL system the fdbid all parameter is not used and will be ignored if entered no bridge aging time This command sets the forwarding database address aging timeout to 300 seconds In an IVL system the fdbid all parameter is required In an SVL system the fdbid all parameter is not used and will be ignored if entered Format no bridge aging time fdbid all Mode Global Config Forwarding Database ID Fdbid Forwarding database ID indicates which forwarding database s aging timeout is being configured All is used to con figure all forwarding database s agetime In an SVL system the fdbid all parameter is not used and will be ignored if entered
215. show spanning tree mst detailed lt mstid gt EXECand lt 1 4094 gt User EXEC Switching show spanningtree cst port Privileged show spanning tree mst port summary lt mstid gt lt slot port all gt EXECand summary 0 lt slot port gt all User EXEC Switching show spanningtree cst port Privileged show spanning tree mst port detailed detailed lt mstid gt lt slot port gt EXECand 0 lt slot port gt User EXEC Switching show spanningtree vlan lt vlan gt Privileged show spanning tree vlan lt 1 4094 gt EXEC and User EXEC Switching config spanningtree adminmode Global spanning tree lt enable disable gt Config Global no spanning tree Config Switching config spanningtree forceversion Global spanning tree forceversion 802 1d lt 802 1d 802 lw 802 Is gt Config 802 Iw 802 Is Global no spanning tree forceversion Config Switching config spanningtree configuration Global spanning tree configuration name name lt name gt Config lt name gt IS CLI Mapping A 5 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Table 9 1 IS CLI Mapping continued CLI Command Package 7200 Series L2 Switch Command Mode Syntax Global no spanning tree configuration name Config Switching config spanningtree configuration Global spanning tree configuration revision revision lt 0 65535 gt Config lt 0 65535 gt Globa
216. show spanning tree vlan lt vlanid gt Mode Privileged EXEC and User EXEC VLAN Identifier Associated Instance Identifier for the associated multiple spanning tree instance or CST if associated with the common and internal spanning tree spanning tree This command sets the spanning tree operational mode to enabled Default Disabled Format spanning tree Mode Global Config no spanning tree This command sets the spanning tree operational mode to disabled While disabled the spanning tree configuration is retained and can be changed but is not activated Format no spanning tree Mode Global Config spanning tree configuration name This command sets the Configuration Identifier Name for use in identifying the configuration that this switch is currently using The lt name gt is a string of at most 32 characters Default The base MAC address displayed using hexadecimal notation as specified in IEEE 802 standard Format spanning tree configuration name lt name gt Mode Global Config no spanning tree configuration name This command resets the Configuration Identifier Name to its default Format no spanning tree configuration name Mode Global Config 8 82 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software spanning tree configuration revision This command sets the Configuration Identifier Revision Level for use in identifying the configurati
217. specifiedserver Default radius server msgauth lt ipaddr gt Mode Global Config radius server primary This command is used to configure the primary RADIUS authentication server for this RADIUS client The primary server is the one that is used by default for handling RADIUS requests The remaining configured servers are only used if the primary server cannot be reached A maximum of three servers can be configured on each client Only one of these servers can be configured as the primary If a primary server is already configured prior to this command being executed the server specified by the IP address specified used in this command will become the new primary server The IP address must match that of a previously configured RADIUS authentication server Format radius server primary lt ipaddr gt Mode Global Config radius server retransmit This command sets the maximum number of times a request packet is re transmitted when no response is received from the RADIUS server The retries value is an integer in the range of 1 to 15 Default 10 8 102 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Format radius server retransmit lt retries gt Mode Global Config no radius server retransmit This command sets the maximum number of times a request packet is re transmitted when no response is received from the RADIUS server to the default value i e 10
218. ss is an individual address b 0 or a group address b 1 e The second character of the twelve character macaddr must be 2 6 A or E A locally administered address must have bit 6 On b 1 and bit 7 Off b 0 Format network mac address macaddr Mode Privileged EXEC network mac type This command specifies whether the burned in MAC address or the locally administered MAC address is used Default burnedin Format network mac type local burnedin Switching Commands 8 19 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Mode Privileged EXEC no network mac type This command resets the value of MAC address to its default Format no network mac type Mode Privileged EXEC network parms This command sets the IP Address subnet mask and gateway of the router The IP Address and the gateway must be on the same subnet Format network parms lt ipaddr gt lt netmask gt lt gateway gt Mode Privileged EXEC network protocol This command specifies the network configuration protocol to be used If you modify this value change is effective immediately Default None Format network protocol none bootp dhcp where bootp indicates that the switch periodically sends requests to a Boot strap Protocol BootP server or a dhcp server until a response is received none indicates that the switch should be manually con figured with IP information
219. st fora VLAN or a multicast group before deleting the VLAN entry This can be considered a buffer time for another station to assert registration for the same attribute in order to maintain uninterrupted service time is 20 to 600 centiseconds Note This command has an effect only when GVRP is enabled 8 44 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Default 60 centiseconds 0 6 seconds Format set garp timer leave lt 20 600 gt Mode Interface Config no set garp timer leave This command sets the GVRP leave time per port to 60 centiseconds 0 6 seconds Note This command has an effect only when GVRP is enabled Format no set garp timer leave Mode Interface Config set garp timer leave all This command sets the GVRP leave time for all ports Leave time is the time to wait after receiving an unregister request for a VLAN or a multicast group before deleting the VLAN entry This can be considered a buffer time for another station to assert registration for the same attribute in order to maintain uninterrupted service time is 20 to 600 centiseconds Note This command has an effect only when GVRP is enabled Default 60 centiseconds 0 6 seconds Format set garp timer leave all 20 600 Mode Global Config no set garp timer leave all This command sets the GVRP leave time for all ports to the default 60 centiseconds 0 6 seconds Note This
220. t lt ipaddr gt Config Switching config snmptrap ipaddr Global snmptrap ipaddr lt name gt lt ipaddrold gt lt ipaddrold gt lt name gt lt ipaddrnew gt Config lt ipaddrnew gt Switching config snmptrap mode lt enable Global snmptrap mode lt name gt lt ipaddr gt disable gt lt name gt lt ipaddr gt Config Global no snmptrap mode lt name gt lt ipaddr gt Config Switching config trapflags authentication Global snmp server enable traps lt enable disable gt Config Global no snmp server enable traps Config Switching config trapflags bcaststorm Global snmp server enable traps bcaststorm lt enable disable gt Config Global no snmp server enable traps Config bcaststorm Switching config trapflags linkmode enable Global snmp server enable traps linkmode disable Config Global no snmp server enable traps Config linkmode Switching config trapflags multiusers enable Global snmp server enable traps multiusers disable Config Global no snmp server enable traps Config multiusers Switching config trapflags stpmode enable Global snmp server enable traps stpmode disable Config IS CLI Mapping A 3 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Table 9 1 IS CLI Mapping continued CLI Command Package 7200 Series L2 Switch Command Mode Syntax Global no snmp server enable traps Config stpmode
221. t by the server DHCPNACK The number of DHCPNACK messages that were sent by the server DHCP Server Clear Commands These commands clears the DHCP Server address bindings and statistics clear ip dhcp binding This command deletes an automatic address binding from the DHCP server database If is specified the bindings corresponding to all the addresses are deleted address is a valid IP address made up of four decimal bytes ranging from 0 to 255 IP address 0 0 0 0 is invalid Default None Format clear ip dhcp binding address gt Mode Privileged EXEC clear ip dhcp server statistics This command clear DHCP server statistics counters Format clear ip dhcp server statistics Mode Privileged EXEC DHCP Server Commands 9 9 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software 9 10 DHCP Server Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Appendix A IS CLI Mapping This chapter illustrates the mapping between CLI commands and the previous 7200 Series L2 Switch commands The Package column indicates the 7200 Series L2 Switch package in which the command is located Table 9 1 IS CLI Mapping CLI Command Package 7200 Series L2 Switch Command Mode Syntax Switching show serviceport Privileged show serviceport EXEC Switching show snmpcommunit
222. t channel Format deleteport logical slot port Mode Interface Config 8 38 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software deleteport This command deletes all configured ports from the port channel LAG The interface is a logical slot and port number of a configured port channel Format deleteport lt logical slot port gt all Mode Global Config monitor session This command configures a probe port and a monitored port for monitor session port monitoring The first slot port is the source monitored port and the second slot port is the destination probe port If this command is executed while port monitoring is enabled it will have the effect of changing the probe and monitored port values Format monitor session source lt slot port gt destination lt slot port gt Mode Global Config no monitor session This command removes the monitor session port monitoring designation from both the source probe port and the destination monitored port and removes the probe port from all VLANs The port must be manually re added to any desired VLANs Format no monitor session Mode Global Config monitor session mode This command configures the monitor session port monitoring mode to enable The probe and monitored ports must be configured before monitor session port monitoring can be enabled If enabled the probe port will monitor all traffic
223. t gt all Switching config lag linktrap lt logical slot port Global port channel linktrap lt logical slot all gt lt enable disable gt Config port gt all Global no port channel linktrap lt logical slot Config port gt all Switching config lag name lt logical slot port Global port channel name lt logical slot all gt lt name gt Config port gt all lt name gt Switching config lag deletelag lt logical slot Interface delete interface lt logical slot port gt port all gt Config all Switching config lag stpmode logical slot Interface spannig tree logical slot port gt all port all gt off 802 1d fast Config off 802 1d fast Switching config vlan create lt 2 4094 gt VLAN vlan lt 1 4094 gt database VLAN no vlan lt 1 4094 gt database Switching config vlan name lt name gt VLAN vlan name lt 1 4094 gt lt newname gt lt 2 4094 gt database Switching config vlan delete lt 2 4094 gt VLAN no vlan name lt 1 4094 gt database Switching config vlan makestatic lt 2 4094 gt VLAN vlan makestatic lt 1 4094 gt database Switching config vlan participation exclude Interface vlan participation exclude include include auto lt 1 4094 gt slot port Config auto lt 1 4094 gt all gt Global vlan participation all exclude Config include auto lt 1 4094 gt IS CLI Mapping A 15 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Mana
224. t radius server host auth acct lt ipaddr gt lt port gt Mode Global Config no radius server host This command is used to remove the configured RADIUS authentication server or the RADIUS accounting server If the auth token is used the previously configured RADIUS authentication server is removed from the configuration Similarly if the acct token is used the previously configured RADIUS accounting server is removed from the configuration The lt ipaddr gt parameter must match the IP address of the previously configured RADIUS authentication accounting server Format no radius server host auth acct lt ipaddress gt Mode Global Config Switching Commands 8 101 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software radius server key This command is used to configure the shared secret between the RADIUS client and the RADIUS accounting authentication server Depending on whether the auth or acct token is used the shared secret will be configured for the RADIUS authentication or RADIUS accounting server The IP address provided must match a previously configured server When this command is executed the secret will be prompted The secret must be an alphanumeric value not exceeding 20 characters Format radius server key auth acct lt ipaddr gt Mode Global Config radius server msgauth This command enables the message authenticator attribute for a
225. tching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Default Format Mode Forwarding DB ID Agetime show network all show forwardingdb agetime fdbid all Privileged EXEC Fdbid Forwarding database ID indicates the forwarding data base whose aging timeout is to be shown The all option is used to display the aging timeouts associated with all forwarding data bases This field displays the forwarding database ID in an IVL system This field will not be displayed in an SVL system Displays the address aging timeout for the associated forwarding database in IVL In an SVL system this will display the system s address aging timeout value in seconds This command displays configuration settings associated with the switch s network interface The network interface is the logical interface used for in band connectivity with the switch via any of the switch s front panel ports The configuration parameters associated with the switch s network interface do not affect the configuration of the front panel ports through which traffic is switched or routed Format Mode IP Address Subnet Mask Default Gateway show network Privileged EXEC and User EXEC The IP address of the interface The factory default value is 0 0 0 0 The IP subnet mask for this interface The factory default value is 0 0 0 0 The default gateway for this IP interface The factory def
226. ted with the node where the mandatory parameters are fetched The call back function then takes care of the optional parameters 4 Oncethe control has reached the callback function the callback function has complete information about the parameters entered by the operator No Form of a Command No is a specific form of an existing command and does not represent a new or distinct command Only the configuration commands are available in the no form The behavior and the support details of the no form is captured as part of the mapping sheets The mapping sheets are contained in the Appendix A IS CLI Mapping section Support for No Form Almost every configuration command has a no form In general use the no form to reverse the action of a command or reset a value back to the default For example the no shutdown interface configuration command reverses the shutdown of an interface Use the command without the keyword no to re enable a disabled feature or to enable a feature that is disabled by default Behavior of Command Help The no form is treated as a specific form of an existing command and does not represent a new or distinct command This implies that the behavior of the and help text is the same for the no form e The help message is the same for all forms of the command The help string may be augmented with details about the no form behavior 7 6 Mode base
227. tering or re registering membership fora VLAN or multicast group This command has an effect only when GVRP is enabled The time is from 10 to 100 centiseconds Default 20 centiseconds 0 2 seconds Switching Commands 8 43 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Format set garp timer join lt 10 100 gt Mode Interface Config no set garp timer join This command sets the GVRP join time per port and per GARP to 20 centiseconds 0 2 seconds This command has an effect only when GVRP is enabled Format no set garp timer join Mode Interface Config set garp timer join all This command sets the GVRP join time for all ports and per GARP Join time is the interval between the transmission of GARP Protocol Data Units PDUs registering or re registering membership for a VLAN or multicast group This command has an effect only when GVRP is enabled The time is from 10 to 100 centiseconds Default 20 centiseconds 0 2 seconds Format set garp timer join all lt 10 100 gt Mode Global Config no set garp timer join all This command sets the GVRP join time for all ports and per GARP to 20 centiseconds 0 2 seconds This command has an effect only when GVRP is enabled Format no set garp timer join all Mode Global Config set garp timer leave This command sets the GVRP leave time per port Leave time is the time to wait after receiving an unregister reque
228. tion Protocol for a specific port Default Disabled Format set gvrp interfacemode 8 48 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Mode Interface Config no set gvrp interfacemode This command disables GVRP GARP VLAN Registration Protocol for a specific port If GVRP is disabled Join Time Leave Time and Leave All Time have no effect Format no set gvrp interfacemode Mode Interface Config set gvrp interfacemode all This command enables GVRP GARP VLAN Registration Protocol for all ports Default Disabled Format set gvrp interfacemode all Mode Global Config no set gvrp interfacemode all This command disables GVRP GARP VLAN Registration Protocol for all ports If GVRP is disabled Join Time Leave Time and Leave All Time have no effect Format no set gvrp interfacemode all Mode Global Config set igmp This command enables IGMP Snooping on the system The default value is disable Note The IGMP application supports the following e Global configuration or per interface configuration Per VLAN configuration is unsupported in the IGMP snooping application e Validation of the IP header checksum as well as the IGMP header checksum and discarding of the frame upon checksum error Maintenance of the forwarding table entries based on the MAC address versus the IP address e Flooding of unregistered multicast data packets to all
229. tion follows a percentage pattern If the broadcast traffic on any Ethernet port exceeds the high threshold percentage as represented in Broadcast Storm Recovery Thresholds table of the link speed the switch discards the broadcasts traffic until the broadcast traffic returns to the low threshold percentage or less The full implementation is depicted in the Broadcast Storm Recovery Thresholds table Table 8 1 Broadcast Storm Recovery Thresholds Link Speed High Low 10M 20 10 100M 2 1000M 2 Format switchconfig storm control broadcast Mode Global Covnfig no storm control broadcast This command disables broadcast storm recovery mode The threshold implementation follows a percentage pattern If the broadcast traffic on any Ethernet port exceeds the high threshold percentage as represented in Broadcast Storm Recovery Thresholds table of the link speed the switch discards the broadcasts traffic until the broadcast traffic returns to the low threshold percentage or less The full implementation is depicted in the Broadcast Storm Recovery Thresholds table Table 8 2 Broadcast Storm Recovery Thresholds Link Speed High Low 10M 20 10 100M 5 2 1000M 5 2 Format no switchconfig storm control broadcast Mode Global Config 8 68 Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software storm control
230. traps are sent only if the broadcast storm recovery mode setting associated with the port is enabled Format no snmp server enable traps bcaststorm Mode Global Config snmp server enable traps linkmode This command enables Link Up Down traps for the entire switch When enabled link traps are sent only if the Link Trap flag setting associated with the port is enabled see snmp trap link status command Default Enabled Format snmp server enable traps linkmode Mode Global Config no snmp server enable traps linkmode This command disables Link Up Down traps for the entire switch Format no snmp server enable traps linkmode Mode Global Config snmp server enable traps multiusers This command enables Multiple User traps When the traps are enabled a Multiple User Trap is sent when a user logs in to the terminal interface EIA 232 or telnet and there is an existing terminal interface session Default Enabled Format snmp server enable traps multiusers Mode Global Config Switching Commands 8 31 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software no snmp server enable traps multiusers This command disables Multiple User traps Format no snmp server enable traps multiusers Mode Global Config snmp server enable traps stpmode This command enables the sending of new root traps and topology change notification traps Default Enabled Format snmp server enabl
231. ult is enabled This object determines whether or not to send a trap when link status changes The factory default is enabled The Spanning Tree Protocol Administrative Mode associated with the port or port channel LAG The possible values are Disable Spanning tree is disabled for this port Enable Spanning tree is enabled for this port A listing of the ports that are members of this port channel LAG in slot port notation There can be a maximum of eight ports assigned to a given port channel LAG Speed of the port channel port This field displays the status designating whether a particular port channel LAG is statically or dynamically maintained The possible values of this field are Static indicating that the port channel is statically maintained and Dynamic indicating that the port channel is dynamically maintained This field lists the ports that are actively participating in the port channel LAG This command displays switch configuration information Format Mode show storm control Privileged EXEC Broadcast Storm Recovery Mode May be enabled or disabled The factory default is disabled 802 3x Flow Control Mode May be enabled or disabled The factory default is disabled show vian This command displays detailed information including interface information for a specific VLAN Switching Commands December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Manag
232. ver ports called MDI X or normal ports Auto Uplink technology automatically senses which connection MDI or MDI X is needed and makes the right connection Figure 9 1 illustrates straight through twisted pair cable Key A UPLINK OR MDI PORT as on a PC B Normal or MDI X port as on a hub or switch 1 2 3 6 Pin numbers Figure 9 1 Straight Through Twisted Pair Cable Cabling Guidelines B 3 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Figure 9 2 illustrates crossover twisted pair cable Key B Normal or MDI X port as on a hub or switch 1 2 3 6 Pin numbers Figure 9 2 Crossover Twisted Pair Cable Patch Panels and Cables If you are using patch panels make sure that they meet the 1OOBASE TX requirements Use Category 5 UTP cable for all patch cables and work area cables to ensure that your UTP patch cable rating meets or exceeds the distribution cable rating To wire patch panels you need two Category 5 UTP cables with an RJ 45 plug at each end as shown here Key 5525 1 1 RJ 45 plug 2 Category 5 UTP patch cable Figure 9 3 Category 5 UTP Cable with Male RJ 45 Plug at Each End B 4 Cabling Guidelines December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Note Flat silver satin telephone cable may have the same RJ 45 plug However using telephone cable results in e
233. view then Read Only As a factory default admin has Read Write access and guest has Read Only access There can only be one Read Write user and up to 5 Read Only users show loginsession Displays all of the login session information in User EXEC users passwd lt username gt Allows the user to set passwords or change passwords needed in Global Config to login A prompt will appear after the command is entered requesting the users old password In the absence of an old password leave the area blank The operator must press enter to execute the command The system then prompts the user for a new password then a prompt to confirm the new password If the new password and the confirmed password match a message will be displayed User password should not be more than eight characters in length copy system running config This will save passwords and all other changes to the device nvram startup config If you do not save config all configurations will be lost when a in Privileged EXEC power cycle is performed on the switch or when the switch is reset logout Logs the user out of the switch in User EXEC and Privileged EXEC Quick Start up IP Address To view the network parameters the operator can access the device by the following three methods e Simple Network Management Protocol SNMP Telnet Quick Start up 6 3 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed
234. which each transmitted message is identified with a numerical value based on the number of set bits in the message The receiving station then applies a formula to the message and checks to make sure the accompanying numerical value is the same If not the receiver can assume that the message has been corrupted Class of Service A term to describe treating different types of traffic with different levels of service priority Higher priority traffic gets faster treatment during times of switch congestion CLI See Command Line Interface on page 4 Collision A term used to describe two colliding packets in an Ethernet network Collisions are a part of normal Ethernet operation but a sudden prolonged increase in the number of collisions can indicate a problem with a device particularly if it is not accompanied by a general increase in traffic Command Line Interface CLI is a line item interface for configuring systems D DHCP See Dynamic Host Configuration Protocol on page 5 C 4 Glossary December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Differentiated Services Diffserv is a protocol for specifying and controlling network traffic by class so that certain types of traffic get precedence for example voice traffic which requires a relatively uninterrupted flow of data might get precedence over other kinds of traffic Differentiated Services is the most advanced metho
235. witch Software Spanning Tree Protocol STP A protocol that finds the most efficient path between segments of a multi looped bridged network STP allows redundant switches and bridges to be used for network resilience without the broadcast storms associated with looping If a switch or bridge falls a new path to a redundant switch or bridge is opened SRAM Static Random Access Memory STP Spanning Tree Protocol See 802 1D on page for more information stub area OSPF area that carries a default route intra area routes and interarea routes but does not carry external routes Virtual links cannot be configured across a stub area and they cannot contain an ASBR Compare with non stub area See also OSPF Cisco Systems Inc Subnet Mask Combined with the IP address the IP Subnet Mask allows a device to know which other addresses are local to it and which must be reached through a gateway or router Switch A device that interconnects several LANs to form a single logical LAN that comprises of several LAN segments Switches are similar to bridges in that they connect LANs of a different type however they connect more LANs than a bridge and are generally more sophisticated SX See SimpleX signaling on page 16 T Telnet A character based UNIX application that enables users with a Telnet server account to log on to a UNIX computer and utilize its resources TFTP See TLS on page 17 TLS Short for Tra
236. xcessive collisions causing the attached port to be partitioned or disconnected from the network Using 1000BASE T Gigabit Ethernet over Category 5 Cable When using the new 1000BASE T standard the limitations of cable installations and the steps necessary to ensure optimum performance must be considered The most important components in your cabling system are patch panel connections twists of the pairs at connector transition points the jacket around the twisted pair cable bundling of multiple pairs on horizontal runs and punch down blocks All of these factors affect the performance of 1OOOBASE T technology if not correctly implemented The following sections are designed to act as a guide to correct cabling for 1000BASE T Cabling The 1000B ASE T product is designed to operate over Category 5 cabling To further enhance the operation the cabling standards have been amended The latest standard is Category 5e which defines a higher level of link performance than is available with Category 5 cable If installing new cable we recommend using Category 5e cable since it costs about the same as Category 5 cable If using the existing cable be sure to have the cable plant tested by a professional who can verify that it meets or exceeds either ANSI EIA TIA 568 A 1995 or ISO IEC 11801 1995 Category 5 specifications Length The maximum distance limitation between two pieces of equipment is 100 m as per the original Ethernet specificat
237. y Privileged show snmpcommunity EXEC Switching show snmptrap Privileged show snmptrap EXEC Switching show trapflags Privileged show trapflags EXEC Switching show telnet Privileged show remotecon EXEC and User EXEC Switching show forwardingdb agetime fdbid Privileged show forwardingdb agetime lt fdbid gt all EXEC all Switching config network parms lt ipaddr gt Privileged network parms lt ipaddr gt lt netmask gt lt netmask gt gateway EXEC lt gateway gt Switching config network protocol lt none Privileged network protocol none bootp bootp dhcp gt EXEC dhcp Switching config network webmode lt enable Privileged ip http server disable gt EXEC IS CLI Mapping A 1 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Table 9 1 IS CLI Mapping continued CLI Command Package 7200 Series L2 Switch Command Mode Syntax Privileged no ip http server EXEC Switching config network javamode enable Privileged network javamode disable gt EXEC Privileged no network javamode EXEC Switching config prompt lt system prompt gt Privileged set prompt lt promptstring gt EXEC Switching config serial baudrate lt speed gt Line serial baudrate 1200 2400 4800 Config 9600 19200 38400 57600 115200 Switching config serial timeout lt 0 160 gt Line serial tim
238. y information about all multiple spanning tree instances in the switch On execution the following details are displayed Format show spanning tree mst summary Mode Privileged EXEC and User EXEC MST Instance ID List List of multiple spanning trees IDs currently configured For each MSTID Associated FIDs List of forwarding database identifiers associated with this instance Associated VLANs List of VLAN IDs associated with this instance show spanning tree summary This command displays spanning tree settings and parameters for the switch The following details are displayed on execution of the command Format show spanning tree summary Mode Privileged EXEC and User EXEC Spanning Tree Adminmode Enabled or disabled Spanning Tree Version Version of 802 1 currently supported IEEE 802 1s IEEE 802 1w or IEEE 802 1d based upon the Force Protocol Version parame ter Configuration Name TConfigured name Configuration Revision Level Configured value Configuration Digest Key Calculated value Configuration Format Selector Configured value MST Instances List of all multiple spanning tree instances configured on the switch show spanning tree vlan This command displays the association between a VLAN and a multiple spanning tree instance The vlanid corresponds to an existing VLAN ID Switching Commands 8 81 December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software Format
239. ytes per second Bps C 14 Glossary December 2004 202 10010 02 User Manual for the NETGEAR 7200 Series Layer 2 Managed Switch Software R RADIUS Short for Remote Authentication Dial In User Service RADIUS is an authentication system Using RADIUS you must enter your user name and password before gaining access to a network This information is passed to a RADIUS server which checks that the information is correct and then authorizes access Though not an official standard the RADIUS specification is maintained by a working group of the IETF Real Time Operating System RTOS is a component of the OSAPI module that abstracts operating systems with which other systems can interface Resource Reservation Setup Protocol RSVP is a new Internet protocol being developed to enable the Internet to support specified Qualities of Service QoS Using RSVP an application will be able to reserve resources along a route from source to destination RS VP enabled routers will then schedule and prioritize packets to meet the prioritization assigned by QoS RSVP is a chief component of a new type of Internet being developed known broadly as an integrated services Internet The general idea is to enhance the Internet to support transmission of real time data router A device that forwards data between networks An IP router forwards data based on IP source and destination addresses RIPng Routing Information Protocol new generation
Download Pdf Manuals
Related Search