config ip - Avaya Support

Part No. 317360-C
June 2005
4655 Great America Parkway
Santa Clara, CA 95054
CLI Command Line Reference
for the Ethernet Routing
Switch 8300
Software Release 2.2
*317360-C*
2
Copyright © Nortel Networks Limited 2005. All rights reserved.
The information in this document is subject to change without notice. The statements, configurations, technical data, and
recommendations in this document are believed to be accurate and reliable, but are presented without express or implied
warranty. Users must take full responsibility for their applications of any products specified in this document. The
information in this document is proprietary to Nortel Networks Inc.
The software described in this document is furnished under a license agreement and may be used only in accordance
with the terms of that license. The software license agreement is included in this document.
Trademarks
Nortel Networks, the Nortel Networks logo, the Globemark, Unified Networks, Passport, and BayStack are trademarks
of Nortel Networks.
Adobe and Acrobat Reader are trademarks of Adobe Systems Incorporated.
Microsoft, Windows, and Windows NT are trademarks of Microsoft Corporation.
The asterisk after a name denotes a trademarked item.
Restricted rights legend
Use, duplication, or disclosure by the United States Government is subject to restrictions as set forth in subparagraph
(c)(1)(ii) of the Rights in Technical Data and Computer Software clause at DFARS 252.227-7013.
Notwithstanding any other license agreement that may pertain to, or accompany the delivery of, this computer software,
the rights of the United States Government regarding its use, reproduction, and disclosure are as set forth in the
Commercial Computer Software-Restricted Rights clause at FAR 52.227-19.
Statement of conditions
In the interest of improving internal design, operational function, and/or reliability, Nortel Networks Inc. reserves the
right to make changes to the products described in this document without notice.
Nortel Networks Inc. does not assume any liability that may occur due to the use or application of the product(s) or
circuit layout(s) described herein.
Portions of the code in this software product may be Copyright © 1988, Regents of the University of California. All
rights reserved. Redistribution and use in source and binary forms of such portions are permitted, provided that the above
copyright notice and this paragraph are duplicated in all such forms and that any documentation, advertising materials,
and other materials related to such distribution and use acknowledge that such portions of the software were developed
by the University of California, Berkeley. The name of the University may not be used to endorse or promote products
derived from such portions of the software without specific prior written permission.
SUCH PORTIONS OF THE SOFTWARE ARE PROVIDED “AS IS” AND WITHOUT ANY EXPRESS OR IMPLIED
WARRANTIES, INCLUDING, WITHOUT LIMITATION, THE IMPLIED WARRANTIES OF
MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.
In addition, the program and information contained herein are licensed only pursuant to a license agreement that contains
restrictions on use and disclosure (that may incorporate by reference certain limitations and notices imposed by third
parties).
317360-C
3
Nortel Networks Inc. software license agreement
This Software License Agreement (“License Agreement”) is between you, the end-user (“Customer”) and Nortel
Networks Corporation and its subsidiaries and affiliates (“Nortel Networks”). PLEASE READ THE FOLLOWING
CAREFULLY. YOU MUST ACCEPT THESE LICENSE TERMS IN ORDER TO DOWNLOAD AND/OR USE THE
SOFTWARE. USE OF THE SOFTWARE CONSTITUTES YOUR ACCEPTANCE OF THIS LICENSE
AGREEMENT. If you do not accept these terms and conditions, return the Software, unused and in the original shipping
container, within 30 days of purchase to obtain a credit for the full purchase price.
“Software” is owned or licensed by Nortel Networks, its parent or one of its subsidiaries or affiliates, and is copyrighted
and licensed, not sold. Software consists of machine-readable instructions, its components, data, audio-visual content
(such as images, text, recordings or pictures) and related licensed materials including all whole or partial copies. Nortel
Networks grants you a license to use the Software only in the country where you acquired the Software. You obtain no
rights other than those granted to you under this License Agreement. You are responsible for the selection of the
Software and for the installation of, use of, and results obtained from the Software.
1. Licensed Use of Software. Nortel Networks grants Customer a nonexclusive license to use a copy of the Software
on only one machine at any one time or to the extent of the activation or authorized usage level, whichever is applicable.
To the extent Software is furnished for use with designated hardware or Customer furnished equipment (“CFE”),
Customer is granted a nonexclusive license to use Software only on such hardware or CFE, as applicable. Software
contains trade secrets and Customer agrees to treat Software as confidential information using the same care and
discretion Customer uses with its own similar information that it does not wish to disclose, publish or disseminate.
Customer will ensure that anyone who uses the Software does so only in compliance with the terms of this Agreement.
Customer shall not a) use, copy, modify, transfer or distribute the Software except as expressly authorized; b) reverse
assemble, reverse compile, reverse engineer or otherwise translate the Software; c) create derivative works or
modifications unless expressly authorized; or d) sublicense, rent or lease the Software. Licensors of intellectual property
to Nortel Networks are beneficiaries of this provision. Upon termination or breach of the license by Customer or in the
event designated hardware or CFE is no longer in use, Customer will promptly return the Software to Nortel Networks or
certify its destruction. Nortel Networks may audit by remote polling or other reasonable means to determine Customer’s
Software activation or usage levels. If suppliers of third party software included in Software require Nortel Networks to
include additional or different terms, Customer agrees to abide by such terms provided by Nortel Networks with respect
to such third party software.
2. Warranty. Except as may be otherwise expressly agreed to in writing between Nortel Networks and Customer,
Software is provided “AS IS” without any warranties (conditions) of any kind. NORTEL NETWORKS DISCLAIMS
ALL WARRANTIES (CONDITIONS) FOR THE SOFTWARE, EITHER EXPRESS OR IMPLIED, INCLUDING,
BUT NOT LIMITED TO THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
PARTICULAR PURPOSE AND ANY WARRANTY OF NON-INFRINGEMENT. Nortel Networks is not obligated to
provide support of any kind for the Software. Some jurisdictions do not allow exclusion of implied warranties, and, in
such event, the above exclusions may not apply.
3. Limitation of Remedies. IN NO EVENT SHALL NORTEL NETWORKS OR ITS AGENTS OR SUPPLIERS BE
LIABLE FOR ANY OF THE FOLLOWING: a) DAMAGES BASED ON ANY THIRD PARTY CLAIM; b) LOSS OF,
OR DAMAGE TO, CUSTOMER’S RECORDS, FILES OR DATA; OR c) DIRECT, INDIRECT, SPECIAL,
INCIDENTAL, PUNITIVE, OR CONSEQUENTIAL DAMAGES (INCLUDING LOST PROFITS OR SAVINGS),
WHETHER IN CONTRACT, TORT OR OTHERWISE (INCLUDING NEGLIGENCE) ARISING OUT OF YOUR
USE OF THE SOFTWARE, EVEN IF NORTEL NETWORKS, ITS AGENTS OR SUPPLIERS HAVE BEEN
ADVISED OF THEIR POSSIBILITY. The foregoing limitations of remedies also apply to any developer and/or supplier
of the Software. Such developer and/or supplier is an intended beneficiary of this Section. Some jurisdictions do not
allow these limitations or exclusions and, in such event, they may not apply.
4.
General
a.
If Customer is the United States Government, the following paragraph shall apply: All Nortel Networks
Software available under this License Agreement is commercial computer software and commercial computer
software documentation and, in the event Software is licensed for or on behalf of the United States
CLI Command Line Reference for the Ethernet Routing Switch 8300
4
Government, the respective rights to the software and software documentation are governed by Nortel
Networks standard commercial license in accordance with U.S. Federal Regulations at 48 C.F.R. Sections
12.212 (for non-DoD entities) and 48 C.F.R. 227.7202 (for DoD entities).
b.
Customer may terminate the license at any time. Nortel Networks may terminate the license if Customer fails
to comply with the terms and conditions of this license. In either event, upon termination, Customer must
either return the Software to Nortel Networks or certify its destruction.
c.
Customer is responsible for payment of any taxes, including personal property taxes, resulting from
Customer’s use of the Software. Customer agrees to comply with all applicable laws including all applicable
export and import laws and regulations.
d.
Neither party may bring an action, regardless of form, more than two years after the cause of the action arose.
e.
The terms and conditions of this License Agreement form the complete and exclusive agreement between
Customer and Nortel Networks.
f.
This License Agreement is governed by the laws of the country in which Customer acquires the Software. If
the Software is acquired in the United States, then this License Agreement is governed by the laws of the state
of New York.
317360-C
5
Contents
Contents . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5
Preface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15
Before you begin . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15
Text conventions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16
Hard-copy technical manuals . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 18
How to get help . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 18
Chapter 1: System management commands . . . . . . . . . . . . . . . . . . . . . . . 21
.. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 24
attribute . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 24
back . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 24
boot . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 25
box . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 25
cd . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26
clear . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26
clear ip . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27
clear ports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27
copy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 28
cp . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 28
cwc . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29
date . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29
directory . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29
dos-chkdsk . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 30
dos-format . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 30
edit . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 30
exit . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31
format-flash . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31
grep . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31
CLI Command Line Reference for the Ethernet Routing Switch 8300
6 Contents
help . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 32
help commands mode . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 32
help modes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 33
history . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 33
install . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 34
login . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 34
logout . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 35
ls . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 35
mkdir . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 35
more . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 36
mv . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 36
pcmcia-stop . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 36
peer . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37
ping . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37
pwc . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 38
pwd . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 38
quit . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 38
remove . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 39
rename . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 39
reset . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 40
rlogin . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 40
rm . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 40
rsh . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 41
save . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 41
show interfaces gbic-info . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 42
show system verbose . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 42
shutdown . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43
source . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43
telnet . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 44
top . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 44
trace . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 44
traceroute . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 46
Chapter 2: config commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 47
config . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 52
317360-C
Contents 7
config bootconfig . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 53
config bootconfig bootp . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 53
config bootconfig choice . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 54
config bootconfig cli . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 55
config bootconfig flags . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 56
config bootconfig host . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 58
config bootconfig net . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 59
config bootconfig show . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 61
config bootconfig sio . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 61
config bootconfig tz . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 62
config cli . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 63
config cli banner . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 65
config cli monitor . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 66
config cli motd . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 67
config cli password . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 68
config diag bootp . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 69
config diag mirror-by-port . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 70
config diag vct . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 71
config ethernet . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 72
config eth eap . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 74
config ethernet <slot/port> bcast-mcast-rate-limit <percent allowed> enable . . . . . . . 76
config ethernet eapol guest-vlan . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 77
config ethernet eapol guest-vlan-id . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 77
config ethernet eapol multi-host . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 78
config ethernet eapol max-multi-hosts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 78
config ethernet eapol allow-non-eap-clients . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 78
config ethernet eapol max-non-eap-clients . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 78
config ethernet eapol non-eap-mac add . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 79
config ethernet eapol non-eap-mac remove . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 79
config ethernet eapol non-eap-mac clear . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 79
config ethernet eapol non-eap-mac info . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 80
config ethernet auto-negotiate-advertisements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 80
config ethernet filter . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 81
config mlt <mid> perform-tagging <enable/disable> . . . . . . . . . . . . . . . . . . . . . . . . . . 81
config ethernet qos . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 82
CLI Command Line Reference for the Ethernet Routing Switch 8300
8 Contents
config ethernet stg . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 83
config ethernet unknown-mac-discard . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 85
config ethernet vct . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 85
config filter acl create . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 85
config filter acl action . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 86
config filter acl debug . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 89
config filter acl delete . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 90
config filter acl ethernet . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 90
config filter acl ip . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 92
config filter acl port . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 94
config filter acl protocol . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 95
config filter acg create . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 98
config filter acg delete . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 98
config filter acg modify . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 99
config filter act ethernet . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 99
config filter act ip . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 101
config filter act delete . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 104
config ip . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 104
config ip arp . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 105
config ip circuitless-ip-int . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 107
config ip dhcp-relay . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 107
config ip dhcp-relay created-fwd-path agent . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 107
config ip dhcp-relay enable-fwd-path agent . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 108
config ip dhcp-relay disable-fwd-path agent . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 108
config ip dhcp-relay delete-fwd-path agent . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 109
config ip forwarding . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 109
config ip igmp interface access-list . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 110
config ip ospf accept . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 111
config ip ospf accept adv-rtr . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 111
config ip ospf redistribute . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 113
config ip ospf redistribute . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 113
config ip prefix-list . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 115
config ip rip . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 116
config ip rip interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 118
config ip route-discovery . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 122
317360-C
Contents 9
config ip route-policy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 123
config ip route preference . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 127
config ip static-route . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 128
config ip udpfwd interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 129
config ip udpfwd portfwd . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 130
config ip udpfwd portfwdlist . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 131
config ip udpfwd protocol . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 132
config log . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 133
config log filter add . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 134
config log filter delete . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 135
config log filter info . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 136
config mlt . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 136
config mlt add . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 137
config mlt <mid> add ports <ports> . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 137
config mlt <mid> add vlan <vid> . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 138
config mlt <mid> create . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 139
config mlt <mid> delete . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 139
config mlt <mid> ntstg disable . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 140
config mlt <mid> remove ports <ports> . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 140
config mlt remove . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 141
config mlt <mid> remove vlan <vid> . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 141
config poe card admin . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 142
config poe card info . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 143
config poe card notification-control . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 143
config poe card power-priority . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 144
config poe card power-usage-threshold . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 144
config poe port admin . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 145
config poe port info . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 145
config poe port power-detection-control . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 146
config poe port power-limit . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 146
config poe port power-priority . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 147
config poe port type . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 147
config qos egress-counter-set . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 148
config qos mac-qos-level-override . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 149
config qos map . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 150
CLI Command Line Reference for the Ethernet Routing Switch 8300
10 Contents
config qos policy create . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 152
config qos policy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 154
config radius . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 156
config radius server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 158
config rmon . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 161
config slot . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 164
config snmp-server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 165
config snmp-v3 community . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 165
config snmp-v3 group-access . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 167
config snmp-v3 group-member . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 169
config snmp-v3 mib-view . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 171
config snmp-v3 usm . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 172
config stg . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 173
config sys access-policy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 175
config sys access-policy policy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 176
config sys access-policy policy service . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 178
config sys info . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 179
config sys link-flap-detect . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 179
config sys mcast-software-forwarding . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 180
config sys set . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 181
config sys set action . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 182
config sys set eapol . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 183
config sys set eapol default-guest-vlan . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 184
config sys set eapol guest-vlan . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 184
config sys set snmp . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 184
config sys syslog . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 185
config sys syslog host . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 186
config vlan . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 188
config vlan create . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 189
config vlan ip dhcp-relay broadcast . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 191
config vlan ip dhcp-relay . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 191
config vlan ip dhcp-relay max-hop . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 191
config vlan ip dhcp-relay min-sec . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 191
config vlan ip dhcp-relay mode . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 192
config vlan ip dhcp-relay info . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 192
317360-C
Contents 11
config ip dhcp-relay info mode . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 192
config vlan fdb-entry . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 192
config vlan fdb-filter . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 193
config vlan fdb-static . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 194
config vlan ip . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 195
config vlan ip arp-response . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 196
config vlan ip igmp . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 197
config vlan ip igmp fast-leave-members . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 198
config vlan ip igmp static-members . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 199
config vlan <vid> ip rip . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 201
config vlan ip proxy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 204
config vlan ports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 204
config vlan static-mcastmac . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 205
config web-server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 206
Chapter 3: show commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 209
monitor mlt stats interface utilization [<mid>] . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 211
show bootconfig . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 212
show cli . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 213
show config . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 213
show date . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 214
show diag mirror-by-port . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 214
show filter acg . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 215
show filter acl ace . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 215
show filter acl action . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 215
show filter acl debug . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 216
show filter acl ethernet . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 216
show filter acl info . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 217
show filter acl ip . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 217
show filter acl port . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 217
show filter acl protocol . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 218
show filter acl statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 218
show filter act ethernet . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 219
show filter act ip . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 219
show ip . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 219
CLI Command Line Reference for the Ethernet Routing Switch 8300
12 Contents
show ip arp . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 220
show ip circuitless info . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 221
show ip dhcp-relay fwd-path . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 221
show ip dhcp-relay counters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 221
show ip forwarding . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 221
show ip igmp . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 222
show ip interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 222
show ip ospf accept info . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 223
show ip ospf redistribute info . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 223
show ip prefix-list . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 223
show ip route-discovery . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 223
show ip route info . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 224
show ip route-policy info . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 224
show ip route preference info . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 224
show ip static-route info . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 225
show ip tcp . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 225
show ip udpfwd interface info . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 226
show ip udpfwd portfwd . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 226
show ip udpfwd portfwdlist . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 227
show ip udpfwd protocol info . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 227
show license . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 227
show log . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 227
show mlt . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 228
show mlt error . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 229
show mlt error collision . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 230
show mlt error main [<mid>] . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 230
show mlt info . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 231
show mlt stats [<mid>] . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 231
show poe card info . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 231
show poe port stats . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 231
show poe port info . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 232
show poe port power-measurement . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 232
show poe sys info . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 232
show qos egress-stats . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 232
show qos egress-counter-set . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 233
317360-C
Contents 13
show qos info . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 233
show qos map 8021p-to-dscp-map . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 233
show qos policy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 233
show qos policy-stats . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 234
show qos map 8021p-to-class-map . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 234
show qos map 8021p-to-drop-precedence-map . . . . . . . . . . . . . . . . . . . . . . . . . . . . 234
show qos map class-to-8021p-map . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 235
show qos map class-to-8021p-policed-map . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 235
show qos map dscp-to-cos-policed-map . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 235
show ports error . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 236
show ports info . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 236
show ports stats dhcp-relay . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 238
show ports stats . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 238
show ports stats interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 239
show radius . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 239
show rmon . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 240
show slot . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 241
show stg info . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 241
show sys . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 242
show sys access-policy info . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 244
show sys syslog general-info . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 244
show sys syslog host info . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 244
show tech . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 245
show test . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 245
show trace . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 245
show vlan info . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 246
show web-server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 248
CLI Command Line Reference for the Ethernet Routing Switch 8300
14 Contents
317360-C
15
Preface
The Nortel* Ethernet Routing Switch 8300 is a flexible and multifunctional
Layer 2/Layer 3 switch that supports diverse network architectures and protocols.
The Ethernet Routing Switch 8300 provides security and control features such as
Extensible Authentication Protocol over LAN (EAPoL), Simple Network
Management Protocol, Version 3 (SNMP3), and Secure Shell (SSH). The Ethernet
Routing Switch 8300 provides quality of service (QoS) for a high number of
attached devices and supports future network requirements for QoS for critical
applications, such as Voice over IP (VoIP).
This guide describes the commands that you can execute using the Ethernet
Routing Switch 8300 command line interface (CLI).
To learn the basic structure and operation of the Ethernet Routing Switch 8300
CLI, refer to CLI Command Line Reference for the Ethernet Routing Switch
8300 (317360-C). This reference guide describes the function and syntax of each
CLI command.
Before you begin
This guide is intended for network administrators who have the following
background:
•
•
•
•
basic knowledge of networks, Ethernet bridging, and IP routing
familiarity with networking concepts and terminology
experience with windowing systems or GUIs
basic knowledge of network topologies
Before using this guide, you must complete the following procedures. For a new
switch:
1
Install the switch.
CLI Command Line Reference for the Ethernet Routing Switch 8300
16 Preface
For installation instructions, see Installing and Maintaining the Ethernet
Routing Switch 8306 and 8310 Chassis (316795-C) and Installing Ethernet
Routing Switch 8300 Series Modules (316796-C).
2
Connect the switch to the network.
For more information, see Getting Started (316799-C).
Ensure that you are running the latest version of Nortel Ethernet Routing
Switch 8300 software. For information about upgrading the Ethernet Routing
Switch 8300, see Upgrading to Ethernet Routing Switch 8300 Software
Release 2.2 (318769-C).
Text conventions
This guide uses the following text conventions:
angle brackets (< >)
Indicate that you choose the text to enter based on the
description inside the brackets. Do not type the
brackets when entering the command.
Example: If the command syntax is
ping <ip_address>, you enter
ping 192.32.10.12
317360-C
bold body text
Indicates objects such as window names, dialog box
names, and icons, as well as user interface objects such
as buttons, tabs, and menu items.
bold Courier text
Indicates command names, options, and text that you
must enter.
Example: Use the dinfo command.
Example: Enter show ip {alerts|routes}.
braces ({})
Indicate required elements in syntax descriptions where
there is more than one option. You must choose only
one of the options. Do not type the braces when
entering the command.
Example: If the command syntax is
show ip {alerts|routes}, you must enter either
show ip alerts or show ip routes, but not both.
Preface 17
brackets ([ ])
Indicate optional elements in syntax descriptions. Do
not type the brackets when entering the command.
Example: If the command syntax is
show ip interfaces [-alerts], you can enter
either show ip interfaces or
show ip interfaces -alerts.
ellipsis points (. . . )
Indicate that you repeat the last element of the
command as needed.
Example: If the command syntax is
ethernet/2/1 [<parameter> <value>]... ,
you enter ethernet/2/1 and as many
parameter-value pairs as needed.
italic text
Indicates variables in command syntax descriptions.
Also indicates new terms and book titles. Where a
variable is two or more words, the words are connected
by an underscore.
Example: If the command syntax is
show at <valid_route>,
valid_route is one variable and you substitute one
value for it.
plain Courier
text
Indicates command syntax and system output, for
example, prompts and system messages.
Example: Set Trap Monitor Filters
separator ( > )
Shows menu paths.
Example: Protocols > IP identifies the IP command on
the Protocols menu.
vertical line ( | )
Separates choices for command keywords and
arguments. Enter only one of the choices. Do not type
the vertical line when entering the command.
Example: If the command syntax is
show ip {alerts|routes}, you enter either
show ip alerts or show ip routes, but not
both.
CLI Command Line Reference for the Ethernet Routing Switch 8300
18 Preface
Hard-copy technical manuals
You can download current versions of technical documentation for your Ethernet
Routing Switch 8300 from the Nortel customer support web site at
www.nortel.com/support.
If, for any reason, you cannot find a specific document, use the Search function:
1
Click Search at the top right-hand side of the web page.
The Search page opens.
2
Ensure the Support tab is selected.
3
Enter the title or part number of the document in the Search field.
4
Click Search.
You can print the technical manuals and release notes free, directly from the
Internet. Use Adobe* Acrobat Reader* to open the manuals and release notes,
search for the sections you need, and print them on most standard printers. Go to
Adobe Systems at the www.adobe.com URL to download a free copy of the
Adobe Acrobat Reader.
How to get help
If you purchased a service contract for your Nortel product from a distributor or
authorized reseller, contact the technical support staff for that distributor or
reseller for assistance.
If you purchased a Nortel service program, contact Nortel Technical Support. To
obtain contact information online, go to the www.nortel.com/contactus web page
and click Technical Support.
Information about the Nortel Technical Solutions Centers is available from the
www.nortel.com/callus web page.
317360-C
Preface 19
An Express Routing Code (ERC) is available for many Nortel products and
services. When you use an ERC, your call is routed to a technical support person
who specializes in supporting that product or service. To locate the ERC for your
product or service, go to the www.nortel.com/erc web page.
CLI Command Line Reference for the Ethernet Routing Switch 8300
20 Preface
317360-C
21
Chapter 1
System management commands
This chapter describes the Ethernet Routing Switch 8300 Series Switch system
management commands.
Command
Page
..
24
attribute
24
back
24
boot
25
box
25
cd
26
clear
26
clear ip
27
clear ports
27
copy
28
cp
28
cwc
29
date
29
directory
29
dos-chkdsk
30
dos-format
30
edit
30
exit
31
format-flash
31
grep
31
CLI Command Line Reference for the Ethernet Routing Switch 8300
22 Chapter 1 System management commands
317360-C
Command
Page
help
32
help commands mode
32
help modes
33
history
33
install
34
login
34
logout
35
ls
35
mkdir
35
more
36
mv
36
pcmcia-stop
36
peer
37
ping
37
pwc
38
pwd
38
quit
38
remove
39
rename
39
reset
40
rlogin
40
rm
40
rsh
41
save
41
show interfaces gbic-info
42
show system verbose
42
shutdown
43
source
43
telnet
44
top
44
Chapter 1 System management commands 23
Command
Page
trace
44
traceroute
46
CLI Command Line Reference for the Ethernet Routing Switch 8300
24 Chapter 1 System management commands
..
This command takes you back one level (performs the same function as the back
command).
Syntax
..
attribute
This command modifies the MS-DOS file attributes.
Syntax
attribute <file> <attributes>
where:
•
•
file is the file name.
attributes is {+ | - | A | S | H | R} (string length is 1 to 1024).
back
This command takes you back up one level.
Syntax
back
317360-C
Chapter 1 System management commands 25
boot
This command boots the switch. The command options let you specify the boot
source (flash, PCMCIA card, or TFTP server) and file name. If you do not specify
a device and file, the Run-Time CLI uses the software and configuration files on
the primary boot device that is defined by the Boot Monitor choice command.
Syntax
boot [<file>] [config <value>] [-y]
where:
•
•
•
<file> is the software image device and file name in the format
a.b.c.d:<file> | /pcmcia/<file> | /flash/<file>. The file name, including
the directory structure, can be up to 1536 characters.
config <value> is the software configuration device and file name in the
format a.b.c.d:<file> | /pcmcia/<file> | /flash/<file>. The file name,
including the directory structure, can be up to 1536 characters.
-y suppresses the confirmation message before the switch reboots. If you
omit this parameter, you are asked to confirm the action before the switch
reboots.
box
This command takes you to the top or the box level.
Syntax
box
CLI Command Line Reference for the Ethernet Routing Switch 8300
26 Chapter 1 System management commands
cd
This command changes the current file system directory path.
Syntax
cd <dir>
where dir is a directory path name up to 1536 characters.
clear
This command clears statistics from the switch or ends a Telnet session.
Syntax
clear
Parameter
This command includes the following option:
clear
followed by:
telnet <session id>
317360-C
Ends the specified Telnet session.
session id is a number between 0 and 7.
Chapter 1 System management commands 27
clear ip
This command clears ARP entries from the ARP table or route entries from the
route table.
Syntax
clear ip
Parameters
This command includes the following options:
clear ip
followed by:
arp vlan <vid>
Clears ARP entries associated with the specified
virtual LAN. vid is the vlan id with a range of 1 to
2000.
route vlan <vid>
Clears route entries associated with the
specified virtual LAN.
vid is the vlan id with a range of 1 to 2000.
clear ports
This command clears port statistics from the switch counters.
Syntax
clear ports
CLI Command Line Reference for the Ethernet Routing Switch 8300
28 Chapter 1 System management commands
Parameter
This command includes the following option:
clear ports
followed by:
stats [<ports>]
Clears statistics from the specified port.
• ports specifies one or more ports , shown as
{slot/port[-slot/port][,...]}.
copy
This command copies a file from one device to another; it can be used with a
wildcard pattern.
Syntax
copy <srcfile> <destfile>
where:
•
•
srcfile specifies the source device and file name (1 to 1536 characters).
destfile specifies the destination device and file name (1 to 99 characters).
cp
This command copies a file from one device to another; it can be used with a
wildcard pattern.
Syntax
cp <srcfile> <destfile> [-y]
317360-C
Chapter 1 System management commands 29
where:
•
•
•
srcfile specifies the source device and file name (1 to 1536 characters).
destfile specifies the destination device and file name (1 to 99 characters).
-y skips the confirmation prompt.
cwc
This command changes the current working level.
Syntax
cwc [..]
where: . . specifies to go back one level.
date
This command displays the current calendar time for the switch.
Syntax
date
directory
This command lists the files in MS-DOS format.
Syntax
directory [<dir>] [-l]
CLI Command Line Reference for the Ethernet Routing Switch 8300
30 Chapter 1 System management commands
where:
•
•
dir is the destination device and file name, up to 1536 characters.
-l provides details.
dos-chkdsk
This command runs a check of the file system for inconsistencies.
Syntax
dos-chkdsk <device> [repair]
where:
•
device is the device name, for example /flash | /pcmcia, up to 1536
•
characters.
repair repairs the errors found.
dos-format
This command formats the device (flash or PCMCIA card) with an MS-DOS file
system.
Syntax
dos-format <device>
where device is the device name (for example, /flash or /pcmcia) up to 1536
characters.
edit
This command is a simple vi line editor to modify script files.
317360-C
Chapter 1 System management commands 31
Syntax
edit <file>
where file is the file name.
exit
This command lets you exit the CLI session
Syntax
exit
format-flash
This command formats the on-board flash with FTL and MS-DOS file system.
Syntax
format-flash
grep
This commands displays all lines in a file that have one or more matching strings
within the file.
Syntax
grep <string> <file>
CLI Command Line Reference for the Ethernet Routing Switch 8300
32 Chapter 1 System management commands
where:
•
•
string is the character string to be matched, from 1 to 1536 characters.
file is a file name, in the form /pcmcia/<file> or /flash/<file> from 1
to 1536 characters.
help
This command displays an explanation of the available types of online Help.
Syntax
help [commands|ttychars|<command>]
where:
•
commands provides a list of commands you can enter from the current
prompt.
•
•
ttychars provides a list of special terminal editing characters.
<command> describes a specific command or provides a list of
sub-commands that you can enter from within the specified command.
help commands mode
This command displays the list of commands available on the device, either for
the current mode of operation or as a complete list of all the commands available
on the device.
Syntax
help commands [mode (current | exec | privExec | config |
ifconfig)]
317360-C
Chapter 1 System management commands 33
where:
•
•
•
•
•
•
mode displays commands either in the current mode
current displays only commands in the current mode
exec displays the Exec commands
privExec displays the Privileged Exec commands
config displays the Configure commands
ifconfig displays the Interface configuration commands
help modes
This command displays information regarding the available CLI modes on the
switch.
Syntax
help [modes]
where mode displays the modes available on the switch.
history
This command lists the commands that you have entered during the current
session.
Syntax
history
CLI Command Line Reference for the Ethernet Routing Switch 8300
34 Chapter 1 System management commands
Parameters
This command includes the following options:
history
followed by:
!!
Reenters the most recently entered command.
!<number>
Enters the command identified in the command
history by the variable number
!<str>
Runs the last command that matches the given
string str.
!?<substr>
Runs the last command that matches the given
substring substr.
^<sstr>^<rstr>
Enters the most recent command but substitutes
a new string for a given string.
install
This command starts the 8300 Series Setup Utility
Syntax
install
login
This command logs you in to a different access level.
Syntax
login
317360-C
Chapter 1 System management commands 35
logout
This command logs you out of the system.
Syntax
logout
ls
This commands lists the files in UNIX format.
Syntax
ls [<dir>] [-r]
where:
•
•
dir is the directory path name.
-r recurs into directories to include the contents of all subdirectories.
mkdir
This command creates a directory, from 1 to 1536 characters.
Syntax
mkdir <dir>
where dir is the directory name.
CLI Command Line Reference for the Ethernet Routing Switch 8300
36 Chapter 1 System management commands
more
This command displays the contents of a file.
Syntax
more <file> [type]
where:
•
file is the device and file name with a string length of 1 to 1536 characters
(a.b.c.d:<file> | /pcmcia/<file> | /flash/<file>).
•
type is the file type of either {binary|ascii}.
mv
This command moves or renames a file; it can be used with a wildcard pattern.
You cannot use the mv command to move a file between two devices. Use the cp
or the copy command instead.
Syntax
mv <old> <new>
where:
•
•
old is the old device and file name with a string length of 1 to 1536
characters
( /pcmcia/<file> | /flash/<file>).
new is the new device and file name with a string length of 1 to 99 characters
(/pcmcia/<file> | /flash/<file>).
pcmcia-stop
This command enables you to terminate access to the PCMCIA card.
317360-C
Chapter 1 System management commands 37
Syntax
pcmcia-stop <file>
peer
This command enables you to use Telnet or rlogin to access the standby CPU. You
can use this command to make changes to the standby CPU without reconnecting
to the console port on that module.
Syntax
peer <operation>
where operation is either telnet or rlogin.
Note: You must set an rlogin access policy on the standby CPU before you can use the
peer command to access it from the master CPU using rlogin. To set an access policy on
the standby CPU, connect a terminal to the Console port on the standby CPU.
ping
This command tests the network connection to another network device. The
command sends an Internet Control Message Protocol (ICMP) packet from the
switch to the target device. If the device receives the packet, it sends a ping reply.
When the switch receives the reply, it displays a message indicating that the
specified IP address is alive. If no reply is received, a message indicates that the
address is not responding.
Syntax
ping <ipaddr> [datasize <value>] [count <value>] [-s]
[-I <value>] [-t <value>] [-d]
CLI Command Line Reference for the Ethernet Routing Switch 8300
38 Chapter 1 System management commands
where:
•
•
•
•
•
•
•
ipaddr is the IP address {a.b.c.d} of the other network device.
datasize <value> is the size of the ping data (16 to 4076 bytes).
count <value> is the number of times to ping (1 to 9999). The default is 1.
-s is a continuous ping at the interval rate defined by [-I <value>].
-I <value> is the interval between transmissions in seconds (1 to 60).
-t <value> is the no-answer timeout value in seconds (1 to 120).
-d sets ping debug mode. In debug mode, the ping reply includes additional
information about the device being pinged.
pwc
This command displays the current working context.
Syntax
pwc
pwd
This command prints the current working directory in the file system.
Syntax
pwd
quit
This command quits out of the CLI session.
317360-C
Chapter 1 System management commands 39
Syntax
quit
remove
This command deletes a file from a boot device.
Syntax
remove <file> [-y]
where:
•
•
file is the destination device and file name.
-y skips the confirmation prompt.
rename
This command moves or renames the file or directory; it can be used with a
wildcard pattern.
Syntax
rename <old> <new>
where:
•
•
old is the old device and file name with a string length of 1 to 1536
characters
( /pcmcia/<file> | /flash/<file>).
new is the new device and file name with a string length of 1 to 99 characters
(/pcmcia/<file> | /flash/<file>).
CLI Command Line Reference for the Ethernet Routing Switch 8300
40 Chapter 1 System management commands
reset
This command resets the switch. When you reset the switch, the most recently
saved configuration file is used to reload the system parameters.
Syntax
reset [-y]
where -y skips the confirmation prompt.
rlogin
This command allows login to a remote host.
Syntax
rlogin <ipaddr>
where ipaddr is the IP address of the remote device.
rm
This command removes a file or directory and can be used with a wildcard
pattern.
Syntax
rm <file> [-y]
where:
317360-C
•
file is the file name with a string length of 1 to 1536 characters
( /pcmcia/<file> | /flash/<file>).
•
-y skips the confirmation prompt.
Chapter 1 System management commands 41
rsh
This command executes a shell command on a remote machine.
Syntax
rsh <ipaddr> -l <value> <cmd>
where:
•
•
•
ipaddr is the IP address {a.b.c.d} of the remote device.
-l <value> is the user login name, from 0 to 1536 characters.
cmd is the command to execute on the remote host (string length 1 to 1536).
save
This command saves the running configuration to a file.
Syntax
save <savetype> [file <value>] [verbose] [standby <value>]
[backup <value>]
where:
•
savetype specifies the type of file to save; options are config,
bootconfig, log, and trace.
•
file <value> is the device and file name with a string length of 1 to 99
characters (a.b.c.d:<file> | /pcmcia/<file> | /flash/<file>).
verbose saves default and current configuration. If you omit the [verbose]
parameter, only the current configuration is saved.
standby <value> saves the specified file name to the standby CPU
( /pcmcia/<file> | /flash/<file>).
backup <value> saves the specified file name and identifies the file as a
backup file (a.b.c.d:<file> | /pcmcia/<file> | /flash/<file>).
•
•
•
CLI Command Line Reference for the Ethernet Routing Switch 8300
42 Chapter 1 System management commands
show interfaces gbic-info
This command displays hardware specifications for GBICs on the switch.
Note: Detailed GBIC information is now also available to users through the Console,
Web-based management, and SNMP when the GBIC is plugged in.
Syntax
show interfaces [gbic-info | name] [<portList>]
where:
•
gbic-info specifies the type of information to be available to the user,
•
•
including GBIC Type, Vendor Name, Vendor OUI, Vendor Part #, Vendor
Revision, Vendor Serial #, HW Options, Date Code, Vendor Data.
name is the name of the hardware.
portList lists the GBIC port information.
show system verbose
This command displays additional system characteristics including the status of
switch fans, the power status and the serial number of the switch.
Note: Detailed fan status information is now also available to users through the
Console, Web-based management, SNMP and Device Manager.
Syntax
show system [verbose]
where verbose provides a complete dump of all the information contained in the
show sys-info and show stack-info commands, organized into a section of
the global system information, followed by blocks of information about each unit
in the stack.
317360-C
Chapter 1 System management commands 43
shutdown
This command resets the switch one to ten minutes after saving the configuration.
Users are informed that they have between one and ten minutes to unplug the
switch; otherwise, the switch is reset.
Note: The shutdown command is also available from the Console Interface.
Syntax
shutdown
Parameters
This command includes the following options:
trace
followed by:
minutes-to-wait]
Displays the trace message file. The
minutes-to-wait option allows you set the time
to wait until reset from 1 to 10 minutes. The default
wait time is 2 minutes.
source
This command merges a configuration file into the running configuration without
having to reboot the switch.
Syntax
source <file> [stop] [debug] [syntax]
CLI Command Line Reference for the Ethernet Routing Switch 8300
44 Chapter 1 System management commands
where:
•
file is the device and file name of the new configuration file with a string
length of 1 to 1536 characters (a.b.c.d:<file> | /pcmcia/<file> | /
flash/<file>).
•
•
•
stop stops the script when it finds an error in the file.
debug provides a debug script output.
syntax verifies the script’s syntax.
telnet
This command sets up a Telnet session to a remote device, for example, to the
standby CPU.
Syntax
telnet [<ipaddr>]
where ipaddr is the IP address {a.b.c.d} of the remote device.
top
This command takes you to the box or top level (same as the box command).
Syntax
top
trace
This command displays the status of the switch at any given time.
317360-C
Chapter 1 System management commands 45
Syntax
trace
Parameters
This command includes the following options:
trace
followed by:
info [tail]
Displays the trace message file. The tail option
allows you to view the log in reverse order, with the
most recent information first.
clear
Clears the trace file.
filter
Filters trace messages.
grep
Performs a comparison of trace messages.
level <modid>
[<level>]
Displays the trace level on a software module for
the specified module ID when the optional level
parameter is omitted. Use the modid-list
parameter to see a list of module ID numbers.
Sets the trace level on a software module for the
specified module ID when the optional level
parameter is included.
The level is one of the following values:
• 0 = Disabled
• 1 = Very terse
• 2 = Terse
• 3 = Verbose
• 4 = Very verbose
modid-list
Displays the module ID numbers which can be
traced.
off
Disables tracing on a module.
route-policy
Traces a route policy.
screen [<setting>]
Enables or disables displaying the trace file.
setting is on or off.
CLI Command Line Reference for the Ethernet Routing Switch 8300
46 Chapter 1 System management commands
traceroute
This command traces the route to a remote host. It is a valuable tool for
troubleshooting because it shows all the routes that are used or indicates that the
remote network cannot be reached.
Syntax
traceroute <ipaddr> [<datasize>] [-m <value>] [-p <value>]
[-q <value>] [-w <value>] [-v]
where:
•
•
•
•
•
•
•
317360-C
ipaddr is the IP address {a.b.c.d} of the remote host.
datasize is the size of the probe packet (1 to 1464).
-m <value> is maximum time-to-live (TTL) value (1 to 255).
-p <value> is the base UDP port number (0 to 65535).
-q <value> is the number of probes per TTL (1 to 255).
-w <value> is the wait time per probe (1 to 255).
-v is the verbose mode (showing all).
47
Chapter 2
config commands
This chapter describes all Ethernet Routing Switch 8300 Series Switch config
commands and their parameters.
config Command
Page
config
52
config bootconfig
53
config bootconfig choice
54
config bootconfig cli
55
config bootconfig flags
56
config bootconfig host
58
config bootconfig net
59
config bootconfig show
61
config bootconfig sio
61
config bootconfig tz
62
config cli
63
config cli banner
65
config cli monitor
66
config cli motd
67
config cli password
68
config diag bootp
69
config diag mirror-by-port
70
config diag vct
71
config ethernet
72
config ethernet <slot/port> bcast-mcast-rate-limit
<percent allowed> enable
76
CLI Command Line Reference for the Ethernet Routing Switch 8300
48 Chapter 2 config commands
317360-C
config Command
Page
config eth eap
74
config ethernet eapol guest-vlan
77
config ethernet eapol guest-vlan-id
77
config ethernet eapol multi-host
78
config ethernet eapol max-multi-hosts
78
config ethernet eapol allow-non-eap-clients
78
config ethernet eapol max-non-eap-clients
78
config ethernet eapol non-eap-mac add
79
config ethernet eapol non-eap-mac remove
79
config ethernet eapol non-eap-mac clear
79
config ethernet eapol non-eap-mac info
80
config ethernet auto-negotiate-advertisements
80
config ethernet stg
83
config ethernet vct
85
config filter acl create
85
config filter acl action
86
config filter acl debug
89
config filter acl delete
90
config filter acl ethernet
90
config filter acl ip
92
config filter acl port
94
config filter acl protocol
95
config filter acg create
98
config filter acg delete
98
config filter acg modify
99
config filter act ethernet
99
config filter act ip
101
config filter act delete
104
config ip
104
config ip arp
105
Chapter 2 config commands 49
config Command
Page
config ip circuitless-ip-int
107
config ip dhcp-relay enable-fwd-path agent
108
config ip dhcp-relay enable-fwd-path agent
108
config ip dhcp-relay enable-fwd-path agent
108
config ip forwarding
109
config ip igmp interface access-list
110
config ip ospf accept
111
config ip ospf accept adv-rtr
111
config ip ospf redistribute
113
config ip prefix-list
115
config ip rip
116
config ip rip interface
118
config ip route-discovery
122
config ip route-policy
123
config ip route preference
127
config ip static-route
128
config ip udpfwd interface
129
config ip udpfwd portfwd
130
config ip udpfwd portfwdlist
131
config ip udpfwd protocol
132
config log
133
config mlt
136
config mlt add
137
config mlt <mid> add ports <ports>
137
config mlt <mid> add vlan <vid>
138
config mlt <mid> create
139
config mlt <mid> delete
139
config mlt <mid> ntstg disable
140
config mlt <mid> perform-tagging <enable/disable>
81
config mlt <mid> remove ports <ports>
140
CLI Command Line Reference for the Ethernet Routing Switch 8300
50 Chapter 2 config commands
317360-C
config Command
Page
config mlt remove
141
config mlt <mid> remove vlan <vid>
141
config mlt <mid> remove vlan <vid>
141
config mlt <mid> remove vlan <vid>
141
config poe card info
143
config poe card notification-control
143
config poe card power-priority
144
config poe card power-usage-threshold
144
config poe port admin
145
config poe port info
145
config poe port power-detection-control
146
config poe port power-limit
146
config poe port power-priority
147
config poe port type
147
config qos egress-counter-set
148
config qos mac-qos-level-override
149
config qos map
150
config qos policy create
152
config qos policy
154
config radius
156
config radius server
158
config rmon
161
config slot
164
config snmp-v3 community
165
config snmp-v3 group-access
167
config snmp-v3 group-member
169
config snmp-v3 mib-view
171
config snmp-v3 usm
172
config stg
173
config sys access-policy
175
Chapter 2 config commands 51
config Command
Page
config sys access-policy policy
176
config sys access-policy policy service
178
config sys info
179
config sys link-flap-detect
179
config sys mcast-software-forwarding
180
config sys set action
182
config sys set eapol
183
config sys set eapol default-guest-vlan
184
config sys set eapol guest-vlan
184
config sys syslog
185
config sys syslog host
186
config vlan
188
config vlan create
189
config vlan fdb-entry
192
config vlan fdb-filter
193
config vlan fdb-static
194
config vlan ip
195
config vlan ip arp-response
196
config vlan ip dhcp-relay broadcast
191
config vlan ip dhcp-relay
191
config vlan ip dhcp-relay max-hop
191
config vlan ip dhcp-relay min-sec
191
config vlan ip dhcp-relay mode
192
config vlan ip dhcp-relay info
192
config ip dhcp-relay info mode
192
config vlan ip igmp
197
config vlan ip igmp
197
config vlan ip igmp
197
config vlan ip igmp fast-leave-members
198
config vlan ip igmp static-members
199
CLI Command Line Reference for the Ethernet Routing Switch 8300
52 Chapter 2 config commands
config Command
Page
config vlan ip igmp static-members
199
config vlan ip proxy
204
config vlan ports
204
config vlan ports
204
config vlan static-mcastmac
205
config vlan static-mcastmac
205
config web-server
206
config web-server
206
config
This command sets the calendar time.
Syntax
config
Parameters
This command includes the following parameters:
config
followed by:
info
Displays current level parameter settings and next
level directories.
license load licensefile
Specifies the license file.
load-module <3DES|DES>
<sourcefile>
Specifies the source file for the load module.
setdate <MMddyyyyhhmmss> Sets the calendar time in the format month, day,
year, hour, minutes, seconds. You must be logged
in as rwa to use this command.
317360-C
Chapter 2 config commands 53
config bootconfig
This command configures the Boot Monitor CLI while you are in the Run-Time
CLI.
Syntax
config bootconfig
Parameters
This command includes the following options:
config bootconfig
followed by:
info
Displays the configured values for delay, master, and
multicast.
delay <seconds>
Sets the number of seconds a standby CPU should wait
(delay) before trying to become the master CPU. This
command applies only during a cold start and does not apply
to a failover start. The default is 2 seconds delay.
logfile
Specifies the following:
minFreeSpace, maxFileSize, maxoccupyPercentage.
master <cpu-slot> Indicates which CPU should become master when the switch
is turned on. The master CPU performs a loopback test to
test the switch fabric. The default master is set for slot 5.
• cpu-slot specifies the module position, either slot 5 or slot
6
config bootconfig bootp
This command specifies the current bootp.
Syntax
config bootconfig bootp image-name <image-name>
[<slot number>] info
CLI Command Line Reference for the Ethernet Routing Switch 8300
54 Chapter 2 config commands
where bootconfig is the order that the specified bootp device is accessed when
the switch is rebooted.
Parameters
This command includes the following options:
config bootconfig bootp
followed by:
image-name <file> Identifies the bootp image file name.
file is the device and file name.
[<slot-number>]
Identifies the slot number.
info
Displays the current bootp choices and associated files.
config bootconfig choice
This command changes the order in which the boot sources (flash and PCMCIA
card) are accessed.
Syntax
config bootconfig choice [primary | secondary | tertiary]
<bootconfig>
where bootconfig is the order that the specified boot device is accessed when
the switch is rebooted. The options are primary, secondary, or tertiary.
317360-C
Chapter 2 config commands 55
Parameters
This command includes the following options:
config bootconfig choice <bootconfig>
followed by:
info
Displays the current boot choices and associated files.
config-file
<file>
Identifies the run-time configuration file to load.
• file is the device and file name.
image-file <file> Identifies the run-time image file to load.
• file is the device and file name.
backup-configfile <file>
Specifies the name of the back-up configuration file.
config bootconfig cli
This command changes the Boot Monitor CLI while you are in the Run-Time
CLI.
Syntax
config bootconfig cli
CLI Command Line Reference for the Ethernet Routing Switch 8300
56 Chapter 2 config commands
Parameters
The config bootconfig cli commands include the following options:
config bootconfig cli
followed by:
info
Displays the current settings for the Boot Monitor
CLI.
more <true|false>
Sets scrolling for the output display. The default is
true.
• true sets output display scrolling to one page at a
time.
• false sets the output display to continuous
scrolling.
prompt <value>
Changes the Boot Monitor prompt to the defined
string.
• value is a string from 1 to 32 characters.
rlogin-sessions <value>
Sets the allowable number of inbound remote Boot
Monitor CLI login sessions; the default is 8.
• value is the number of sessions (0 to 8).
screenlines <value>
Sets the number of lines in the output display; the
default is 23.
• value is the number of lines (1 to 64).
telnet-sessions <value>
Sets the allowable number of inbound Telnet
sessions; the default is 1.
• value is the number of sessions (o to 8).
timeout <seconds>
Sets the idle timeout period before automatic
logout for CLI sessions; the default is 900
seconds.
• seconds is the timeout period in seconds (0 to
65536).
config bootconfig flags
This command sets system flags to true or false. Changes to certain flags
(factorydefaults, ftpd, tftpd, wdt) take effect only after you save changes to the
boot configuration file and reset the switch.
317360-C
Chapter 2 config commands 57
Syntax
config bootconfig flags
Parameters
This command includes the following options:
config bootconfig flags
followed by:
info
Displays current flag settings.
autoboot <true|false>
Controls whether the switch automatically runs the
run-time image after being reset or stops at the
monitor prompt. Setting autoboot to false is useful
for some debugging tasks. The default is true.
block-snmp <true|false>
True blocks the Simple Network Management
Protocol (SNMP) access and false unblocks it. The
default is false.
NOTE: The SSH secure mode must be disabled
before the block-snmp boot flag can be set to
false.
daylight-saving-time
<true|false>
Enables or disables daylight saving time on the
switch. The default is false.
debugmode <true|false>
Controls whether the switch stops in debug mode
following a fatal error. Debug mode provides
information equivalent to the trace commands.
• true means the switch stops in debug mode
following a fatal error. A list of options is displayed
that allows you to select a software module to debug.
• false means the switch is automatically rebooted
following a fatal error.
The default is false.
debug-config
<true|false>
Enables or disables run-time debugging of the
configuration file. The default is false.
factorydefaults
<true|false>
Sets the runtime switch configuration to factory
default settings. The default is false.
ftpd <true|false>
Enables or disables FTP server on the switch. The
default is false.
logging <true|false>
Enables or disables system logging to a file on the
PCMCIA card. The default is true.
CLI Command Line Reference for the Ethernet Routing Switch 8300
58 Chapter 2 config commands
config bootconfig flags
followed by:
nncli <true|false>
True enables Nortel Networks Command Line
Interface (NNCLI) services on a switch and false
disables NNCLI services.
NOTE: Passport Command Line Interface (PPCLI)
services are provided when NNCLI is disabled.
reboot <true|false>
Enables or disables the option to reboot on fatal
error. The default is true.
rlogind <true|false>
Enables or disables the rlogin/rsh server. The
default is false.
savetostandby
<true|false>
Allows you to save a configuration to a standby
CPU if one is available. The default is false.
telnetd <true|false>
Enables or disables the Telnet server. The default
is false.
tftpd <true|false>
Enables or disables the TFTP server. The default
is false.
trace-logging
<true|false>
Enables or disables system tracing to a file on the
PCMCIA card. The default is false.
verify-config
<true|false>
Enables syntax checking of the configuration file
and prevents execution of the file if an error is
found. The factory default configuration file will be
loaded instead. The default is false.
vid-max4k <true|false>
The default is false.
wdt <true|false>
Enables or disables the hardware watchdog timer,
which monitors a hardware circuit. The watchdog
timer reboots the switch based on software errors.
The default for this command is true.
config bootconfig host
This command defines conditions for remote host login.
Syntax
config bootconfig host
317360-C
Chapter 2 config commands 59
Parameters
This command includes the following options:
config bootconfig host
followed by:
info
Displays current settings for remote host login.
ftp-debug
Enables or disables debug mode on FTP/FTP. The default is
false.
<true|false>
password <value>
Sets the FTP password, where value is the password,
from 0 to 16 characters. This command enables FTP
transfers.
tftp-debug
Enables or disables debug mode on TFTP. The default is
false.
<true|false>
<true|false>
Enables or disables the TFTP hash bucket display. The
default is false.
tftp-rexmit
<seconds>
Sets the TFTP retransmission timeout.
• seconds is 1 to 2147483647. The default is 6.
tftp-timeout
<seconds>
Sets TFTP transfer timeout.
• seconds is 1 to 2147483647
user <value>
Sets the remote user login name.
• value is the user login name, from 0 to 16 characters. The
default is target.
tftp-hash
config bootconfig net
This command configures the CPU network port devices. The three network ports
are the management port, the CPU port, and the PCMCIA card, if it is acting as a
network port.
Syntax
config bootconfig net <cpu-net-port>
where cpu-net-port is mgmt.
CLI Command Line Reference for the Ethernet Routing Switch 8300
60 Chapter 2 config commands
Parameters
This command includes the following options:
config bootconfig net <cpu-net-port>
followed by:
info
Displays information about the current configuration of the
specified port.
autonegotiate
Enables or disables autonegotiation for the specified port.
The default is:
• For mgmt: true
<true|false>
bootp <true|false>
Enables or disables the Bootstrap Protocol (BootP) for the
specified port. The default is true for all specified port types.
enable <true|false>
Enables or disables the specified network port. The default
is:
• For mgmt: true
fullduplex
Enables or disables full-duplex mode for the specified port.
The default is:
• For mgmt: false
<true|false>
ip <ipaddr/mask>
317360-C
[cpu-slot <value>]
Specifies the IP address/mask for the specified port. The
default is 0.0.0.0.
restart
Shuts down and reinitializes the specified port.
route [add|del]
<netaddr/mask>
<gateway>
Enables or disables a route for the specified port.
• add|del adds or deletes the specified route.
• netaddr is the IP address of the destination network.
• mask is the IP address of the mask.
• gateway is the IP address of the gateway.
speed <10|100>
Sets the connection speed for the port to 10 Mb/s or to
100 Mb/s. The default is:
• For mgmt: 10
tftp <ipaddr>
Specifies the TFTP server ip address for the specified port.
The default is 0.0.0.0.
Chapter 2 config commands 61
config bootconfig show
This command displays the current configuration of the Boot Monitor and the
Boot Monitor CLI.
Syntax
config bootconfig show
Parameters
This command includes the following options:
config bootconfig show
followed by:
info
Displays the current boot monitor settings.
bootp
Displays the boot parameter configuration.
choice
Displays the boot configuration choices.
cli
Displays the CLI configuration.
config [verbose]
Displays the current boot configuration.
Optional parameter:
verbose displays all possible information.
flags
Displays the flags settings.
host
Displays the host configuration.
master
Displays the current CPU slot set as master.
net
Displays the current configuration of the CPU network ports.
sio
Displays the current configuration of CPU serial ports.
tz
Displays the switch’s time zone setting.
config bootconfig sio
This command configures the CPU serial port devices.
CLI Command Line Reference for the Ethernet Routing Switch 8300
62 Chapter 2 config commands
Syntax
config bootconfig sio <cpu-sio-port>
where cpu-sio-port is console.
Parameters
This command includes the following options:
config bootconfig sio <cpu-sio-port>
followed by:
info
Displays configuration information about the
specified port.
baud <rate>
Sets the baud rate for the port. The default is
9600.
8databits
<true|false>
Specifies either 8 (true) or 7 (false) data bits
per byte for software to interpret. The default is
false.
enable <true|false>
Enables or disables the port. The default is true.
restart
Shuts down and reinitializes the port.
config bootconfig tz
This command sets the relation of the switch time zones.
Syntax
config bootconfig tz
317360-C
Chapter 2 config commands 63
Parameters
This command includes the following options:
config bootconfig tz
followed by:
info
Displays information about the current time zone
settings for the switch.
dst-end <Mm.n.d/
hhmm|MMddhhmm>
Sets the ending date of daylight saving time. You can
specify the time in one of two ways:
• Specify an hour on the nth occurrence of a weekday in a
month. For example, M10.5.0/0200 means the 5th
occurrence of Sunday in the 10th month (October) at
2:00 a.m.
• Specify a month, day, hour, and minute. For example,
10310200 means October 31 at 2:00 a.m.
dst-name <dstname> Sets an abbreviated name for the daylight saving local
time zone, up to 7 characters.
• dstname is the name (for example, “pdt” is Pacific
Daylight Time)
dst-offset
<minutes>
Sets the daylight saving adjustment in minutes.The
range is -240 to 240.
dst-start <Mm.n.d/ Sets the starting date of daylight saving time. The
hhmm|MMddhhmm>
format is the same as for setting the ending date.
offset-from-utc
<minutes>
Sets the time zone offset, in minutes to subtract from
UTC, where positive numbers mean west of
Greenwich and negative numbers mean east of
Greenwich. The range is -840 to 840.
name <tz>
Sets an abbreviated name for the local time zone, up
to 7 characters.
• tz is the name (for example, “pst” is Pacific Standard
Time).
config cli
This command configures and manages the command line interface.
CLI Command Line Reference for the Ethernet Routing Switch 8300
64 Chapter 2 config commands
Syntax
config cli
Parameters
This command includes the following options:
config cli
followed by:
317360-C
info
Displays the current CLI parameter settings.
defaultlogin
<true|false>
Enables or disables using the default login
string. false displays the user-defined login
string and true displays the default login
string. The default value is true.
defaultpassword
<true|false>
Enables or disables using the default
password string. false displays the
user-defined password string and true
displays the default password string. The
default value is true.
loginprompt <string>
Changes the CLI login prompt. Enclose the
string in quotation marks if it contains more
than one word.
• string is an ASCII string from 1 to 1536
characters.
more <true|false>
Sets scrolling for the output display. The
default is true.
• true sets output display scrolling to one page
at a time.
• false sets the output display to continuous
scrolling.
passwordprompt <string>
Changes the CLI password prompt. Enclose
the string in quotation marks if it contains
more than one word.
• string is an ASCII string from 1 to 1536
characters.
Chapter 2 config commands 65
config cli
followed by:
prompt <prompt>
Sets the root level prompt to a defined string.
Enclose the string in quotation marks if it
contains more than one word.
• prompt is a string from 1 to 255 characters.
If you set the string length to 0, the prompt
become none:<master cpu #>
rlogin-sessions
<nsessions>
Sets the allowable number of inbound remote
CLI login sessions; the default is 8.
• nsessions is the number of sessions (0 to
8).
screenlines <nlines>
Sets the number of lines in the output display;
the default is 23.
• nlines is the number of lines (8 to 64).
telnet-sessions
<nsessions>
Sets the allowable number of inbound Telnet
sessions; the default is 8.
• nsessions is the number of sessions
(0 to 8).
timeout <seconds>
Sets the idle timeout period before automatic
logout for CLI sessions; the default is 900.
• seconds is the timeout period in seconds
(0 to 65535).
config cli banner
This command configures and manages the CLI login banner.
Syntax
config cli banner
CLI Command Line Reference for the Ethernet Routing Switch 8300
66 Chapter 2 config commands
Parameters
This command includes the following options:
config cli banner
followed by:
info
Displays the text that was added to the login
banner using the add option.
add <string>
Adds lines of text to the user-customized CLI
login banner. Enclose the text in quotation
marks if it contains more than one word.
• string is an ASCII string from 1 to 80
characters.
defaultbanner
<true|false>
Enables or disables using the default CLI
login banner.
delete
Deletes an existing customized login banner.
config cli monitor
This command configures and manages monitor duration (refresh rate).
Syntax
config cli monitor
317360-C
Chapter 2 config commands 67
Parameters
This command includes the following options:
config cli monitor
followed by:
info
Displays the current setting for the monitor
duration and interval used by the monitor
commands.
duration <integer>
Changes the monitoring time duration
(refresh rate) for the monitor commands.
• integer is the time duration in seconds (1 to
1800).
The default is 300.
interval <integer>
Changes the monitoring time interval
between screen updates set by the monitor
commands.
• integer is the time duration in seconds (1 to
600).
The default is 5.
config cli motd
This command configures and manages the message of the day (motd).
Syntax
config cli motd
CLI Command Line Reference for the Ethernet Routing Switch 8300
68 Chapter 2 config commands
Parameters
This command includes the following options:
config cli motd
followed by:
info
Displays information about the message of
the day.
add <string>
Creates a “message of the day” that can be
displayed with the login banner. Enclose the
string in quotation marks if it contains more
than one word.
• string is an ASCII string from 1 to 1536
characters.
displaymotd <true|false>
Displays (true) or does not display (false)
the message of the day.
delete
Deletes the existing customized message of
the day.
config cli password
This command changes the login or password for the different access levels of the
switch. The optional parameter password is the password associated with the
user name or login name. You must have read-write-all privileges in order to view
or change passwords.
Syntax
config cli password
317360-C
Chapter 2 config commands 69
Parameters
This command includes the following options:
config cli password
followed by:
info
Displays current login and password settings.
The output from this command is the same as
the output from show cli password.
ro <username>
[<password>]
Sets the Read-Only login and/or password.
The default login and passward are ro.
l1 <username>
[<password>]
Sets the layer 1 Read/Write login and/or
password. The default login and password are
l1.
l2 <username>
[<password>]
Sets the layer 2 Read/Write login and/or
password. The default login and password are
l2.
l3 <username>
[<password>]
Sets the layer 3 Read/Write login and/or
password. The default login and password are
l3.
rw <username>
[<password>]
Sets the Read/Write login and/or password.
rwa <username>
[<password>]
Sets the Read/Write/All login and/or password.
config diag bootp
This command diagnoses the system by monitoring bootp.
Syntax
config diag bootp
CLI Command Line Reference for the Ethernet Routing Switch 8300
70 Chapter 2 config commands
Parameters
This command includes the following options:
config cli bootp
followed by:
Displays current bootp settings.
info
command
Controls diagnostics by slot number.
<run|stop|normal>[<slotnumber>]
config diag mirror-by-port
This command diagnoses the system by monitoring/mirroring a port.
Syntax
config diag mirror-by-port <id>
where id is the mirror-by-port entry ID with a value range of 1 to 383.
Note: One mirroring port and up to 10 mirrored ports can be configured.
317360-C
Chapter 2 config commands 71
Parameters
This command includes the following options:
config diag mirror-by-port <id>
followed by:
info
Displays current port mirroring settings.
create
in-port <value>
out-port <value>
[mode <value>]
[enable <value>]
Creates a new mirror-by-port table entry.
• in-port <value> is the mirrored port.
value specifies the port in the slot/port form.
• out-port <value> is the mirroring port.
value specifies the port in the slot/port form.
• mode <value> sets the mirror mode.
value see the description for mode in this table.
• enable <value> enables the mirroring port. When this
feature is enabled, the mirrored (source) port’s ingress or egress
packets are forwarded normally and a copy of the packets is sent
out the mirrored port to the mirroring (destination) port.
value is true or false.
enable
<true|false>
Enables or disables a mirroring port already created in the
mirror-by-port table.
delete
Deletes an entry from the mirror-by-port table.
mirrored-port
<port>
Specifies the mirrored port.
• port specifies the port in the slot/port form.
mirroring-port
<port>
Specifies the mirroring port.
• port specifies the port in the slot/port form.
mode <tx|rx|both> Sets the mirroring mode.
• tx mirrors transmit packets.
• rx mirrors receive packets.
• both mirrors both transmit and receive packets.
config diag vct
This command initiates a virtual cable test or displays Virtual Cable Tester (VCT)
information for a range of ports.
CLI Command Line Reference for the Ethernet Routing Switch 8300
72 Chapter 2 config commands
Syntax
config diag vct
Parameters
This command includes the following parameters:
config diag vct
followed by:
info <portlist>
Displays the results of the last virtual cable test.
portlist specify the ports in the portlist form
{slot/port[-slot/port][, ...]}.
test <portlist>
Starts a virtual cable test on the specified ports.
portlist specify the ports in the portlist form
{slot/port[-slot/port][, ...]}.
config ethernet
This command sets parameters for specified switch ports.
Syntax
config ethernet <ports>
where ports specify the ports in the portlist form {slot/port[-slot/port]
[, ...]}.
317360-C
Chapter 2 config commands 73
Parameters
This command includes the following options:
config ethernet <ports>
followed by:
action <action
choice>
Specifies the action.
info
Displays the current port settings.
auto-negotiate
<enable|disable>
Enables or disables autonegotiation (adjusting
between 10 Mb/s and 100 Mb/s and half- or
full-duplex) on selected ports. The default is
enable.
bcast-mcast-rate-li Sets the broadcast rate limit on ports.
mit <value>
value is the broadcast-rate-limit with a range of 1
[<enable|disable>] to 100.
Optional parameter:
enable|disable enables or disables the
broadcast-rate-limit.
cp-limit
<enable|disable>
[multicast-limit
<value>]
[broadcast-limit
<value>]
• cp-limit <enable|disable> enables or
disables control packet rate limit (CP-Limit). The
default setting is enable.
Note: After a CP-Limit has been disabled on a port, it
can only be re-enabled by disabling and re-enabling the
port with command: config ethernet <slot/
port> state <disable | enable>.
Optional parameters:
• multicast-limit <value> sets the multicast
control frame packet per second rate (1000 to 100000).
• broadcast-limit <value> sets the broadcast
frame packet per second rate (1000 to 100000).
default-vlan-id
<vid>
Defines the default vlan identification on selected
ports.
vid is the vlan id with a range of 1 to 4094.
duplex <half|full>
Sets the operating mode of the port to half-duplex or
full-duplex when autonegotiation is disabled. The
default is half.
linktrap
<enable|disable>
Enables or disables the link up/down trap for a port.
The default is enabled.
CLI Command Line Reference for the Ethernet Routing Switch 8300
74 Chapter 2 config commands
config ethernet <ports>
followed by:
lock <true|false>
Locks a port for exclusive use if the portlock feature
is globally enabled by the config sys set
portlock on|off command. The default is
false.
name <name>
Assigns a name to the specified port or ports.
• name is a string up to 20 characters long.
perform-tagging
<enable|disable>
Enables or disables the perform tagging option on
selected ports.
speed <10|100>
Sets the port speed to 10 Mb/s or 100 Mb/s when
autonegotiation is disabled. The default is 10.
state
Specifies the administrative state on the port as up,
<enable|disable|tes down, or test. The default is up (enable).
t>
tx-queue
Sets the transmit queue parameters.
untagged-frames-dis Enables or disables the discard untagged frames
card
option.
<enable|disable>
untag-port-default- Untag frames egressing on the default VLAN of the
vlan
port.
config eth eap
This command sets parameters for the specified Extensible Authorization
Protocol (EAP) Ethernet ports.
Syntax
config eth <ports> eap
where ports specify the ports in the portlist form {slot/port[-slot/port]
[, ...]}.
317360-C
Chapter 2 config commands 75
Parameters
This command includes the following options:
config eth <ports> eap
followed by:
info
Displays the current EAP port settings.
initialize
<true|false>
Initializes (true) or disables (false) EAP authentication
on the port. Setting this field to true causes the
reinitialization of EAP authentication. The default is false.
admin-status <auto
| force
unauthorized |
force authorized>
Sets the EAP status of the port.
auto sets the port authorization status to change
automatically depending on the result of EAP
authentication.
• force unauthorized sets the port authorization status
to always unauthorized.
• force authorized sets the port authorization status to
always authorized.
The default is auto.
admin-traffic-contr Sets the desired level of traffic control on the port.
ol <incoming and
• incoming and outgoing blocks both incoming and
outgoing | incoming
outgoing traffic on the port when EAP authentication fails.
• incoming only blocks only incoming traffic on the port
only>
when EAP authentication fails.
The default is incoming and outgoing.
oper-traffic-contro Sets the read only value for the actual level of traffic control
on the port.
l <incoming and
outgoing | incoming • incoming and outgoing reads the level of traffic
control on the port for both incoming and outgoing traffic.
only>
• incoming only reads the level of traffic control on the
port for only incoming traffic.
The default is incoming and outgoing.
reauthentication
<true | false>
Sets whether to re-authenticate or not.
• true causes re-authentication of an existing supplicant
(wireless station, such as a laptop, etc.) at the time interval
specified in Re-authentication Period field.
• false disables re-authentication of an existing supplicant.
The default is false.
reauthentication-pe Sets the time interval between successive
re-authentications. Its value range is 1 – 2147483647
riod <value>
seconds.
The default value is 3600 seconds.
CLI Command Line Reference for the Ethernet Routing Switch 8300
76 Chapter 2 config commands
config eth <ports> eap
followed by:
reauthenticate-now
<true | false>
Selecting “true” for this field causes re-authentication to
start immediately.
The default is false.
quiet-period
<value>
Sets the time interval between an authentication failure
and the start of a new authentication. Its value range is 1 –
65535 seconds.
The default value is 60 seconds.
transmit-period
<value>
Sets the time to wait for a response from the supplicant
(wireless station, such as a laptop, etc.) for EAP Request/
Identity packets. Its value range is 1 – 65535 seconds.
The default value is 30 seconds.
supplicant-timeout
<value>
Sets the timeout Time to wait for a response from the
supplicant (wireless station, such as a laptop, etc.) for all
EAP packets except EAP Request/Identity. Its value range
is 1–65535 seconds.
The default value is 30 seconds.
max-req <value>
Sets the maximum number of requests to retry sending
packets to the supplicant (wireless station, such as a
laptop, etc.). Its value range is 1–10.
The default value is 2.
config ethernet <slot/port> bcast-mcast-rate-limit
<percent allowed> enable
In the Ethernet Routing Switch 8300, L2 broadcast and multicast rate limiting is
supported on a per port basis and always includes both multicast and broadcast
traffic. Broadcast and or multicast traffic received on a given port is discarded
when it exceeds the configured limit. On the Ethernet Routing Switch 8300, you
can set the limit in a percentage of total link bandwidth from 1 to 100 percent of
total traffic for both multicast and broadcast traffic individually. If rate limiting is
enabled on an MLT port, the same settings will be applied to all ports in the MLT.
Rate limiting counts broadcast and multicast together; there is no possibility to
count them separate.
This command enables rate limiting on a port.
317360-C
Chapter 2 config commands 77
Syntax
config ethernet <slot/port> bcast-mcast-rate-limit <percent
allowed> enable
Parameter
This command includes the following paraneters:
Table 1 Rate limiting command
Parameter
Description
<slot/port>
slot/Ports: The port(s) for which rate limiting is
to take effect, expressed as: {slot/port[-slot/
port][,...]}.
<percent allowed>
Specifies the rate limit to use, expressed as a
percentage. The value can be from 1-100.
config ethernet eapol guest-vlan
This command configures the ethenet EAPOL guest VLAN by port or slot.
Syntax
config ethernet <slot/port> eapol guest-vlan enable/disable
config ethernet eapol guest-vlan-id
This command configures the ethernet EAPOL guest VLAN by VLAN ID.
Syntax
config ethernet <slot/port> eapol guest-vlan-id <vid>
CLI Command Line Reference for the Ethernet Routing Switch 8300
78 Chapter 2 config commands
config ethernet eapol multi-host
This command enables EAPOL multi-host.
Syntax
config ethernet <slot/port> eapol multi-host <enable/
disable>
config ethernet eapol max-multi-hosts
This command sets the maximum number of mult-hosts.
Syntax
config ethernet <slot/port> eapol max-multi-hosts <int value
1-8>
config ethernet eapol allow-non-eap-clients
This command allows non-EAP clients for ethernet EAPOL.
Syntax
config ethernet <slot/port> eapol allow-non-eap-clients
<enable/disable>
config ethernet eapol max-non-eap-clients
This command specifies the maximum number of non-EAP clients.
317360-C
Chapter 2 config commands 79
Syntax
config ethernet <slot/port> eapol max-non-eap-clients <int
value 1-8>
config ethernet eapol non-eap-mac add
This command configures EAPOL for a non-EAP MAC Address.
Syntax
config ethernet <slot/port> eapol non-eap-mac add <mac-addr>
config ethernet eapol non-eap-mac remove
This command removes the MAC Address of a non-EAP MAC address.
Syntax
config ethernet <slot/port> eapol non-eap-mac remove
<mac-addr>
config ethernet eapol non-eap-mac clear
This command clears all non-EAP MAC Addresses.
Syntax
config ethernet <slot/port> eapol non-eap-mac clear
CLI Command Line Reference for the Ethernet Routing Switch 8300
80 Chapter 2 config commands
config ethernet eapol non-eap-mac info
This command specifies information for a non-EAP MAC Address.
Syntax
config ethernet <slot/port> eapol non-eap-mac info
config ethernet auto-negotiate-advertisements
This command configures auto-negotiation advertisements by port or slot.
Syntax
config ethernet <slot/port> auto-negotiate-advertisements
[<10-full>] [<10-half>] [<100-full>] [<100-half>]
[<1000-full>] [<1000-half>] [<default>] [<none>]
Parameters
This command includes the following parameters:
confi ethernet auto-negotiate-advertisements
followed by:
317360-C
[<10-full>]
The combination of speed-duplex settings to use for this
ethernet port.
[<10-half>]
The combination of speed-duplex settings to use for this
ethernet port.
[<100-full>]
The combination of speed-duplex settings to use for this
ethernet port.
[<100-half>]
The combination of speed-duplex settings to use for this
ethernet port.
[<100-full>]
The combination of speed-duplex settings to use for this
ethernet port.
[<1000-half>]
The combination of speed-duplex settings to use for this
ethernet port.
Chapter 2 config commands 81
confi ethernet auto-negotiate-advertisements
followed by:
[<default>]
The combination of speed-duplex settings to use for this
ethernet port.
[<none>]
The combination of speed-duplex settings to use for this
ethernet port.
config ethernet filter
This command cofigures an ethernet filter.
Syntax
config ethernet <port> filter
where port specifies the port in the portlist form.
Parameters
This command includes the following parameters:
config ethernet <port> filter
followed by:
create <acg-id>
Creates an ethernet filter.
delete
Deletes an ethernet filter.
modify <acg-id>
Changes information about an ethernet filter.
info
Displays ethernet information for the selected port.
config mlt <mid> perform-tagging <enable/disable>
This command configures tagging for the ports in a link aggregation group.
CLI Command Line Reference for the Ethernet Routing Switch 8300
82 Chapter 2 config commands
Syntax
config mlt <mid> perform-tagging <enable|disable>
Parameter
This command includes the following parameters:
Parameters
Description
<mid>
A value that uniquely identifies the link aggregation group.
• For 8348 modules, allowable MIDs are 1-7.
• For 8324 modules, allowable MIDs are 1-31.
perform-tagging
<enable|disable>
Configures tagging for all ports in the link aggregation
group.
• Enable: Enables tagging.
• Disable: Disables tagging.
config ethernet qos
Use this command to configure the QoS level on a port. The default is level 1, and
level 7 is reserved for network traffic.
Syntax
config ethernet <port> qos
where port specifies the port to be configured.
317360-C
Chapter 2 config commands 83
Parameter
This command includes the following options:
config ethernet <port> qos
followed by:
info
Displays the QoS configuration information for the
selected port.
8021p-override
<enable|disable>
Enables the Differentiated Service IEEE 802.1P
override feature. The default is disable.
qos-level <level>
Sets the QoS level (0 to 7) associated with the
traffic service class. The default is 0.
shaper
[<enable|disable>] [rate
<value>] [burst-size
<value>]
Enables or disables shaper on the port. The
default is disable.
• [rate <value>] sets the shaping rate in
Mbps.
Note: The actual shaping rate might be different
from the configured rate due to the rate granularity
of the shaper. The range is from 1 to 10000, and
the default is 10.
[burst-size <value>] sets the burst size
in Kbps.
Note: The actual burst size might be different from
the configured size due to the granularity of the
shaper. The range is from 4 to 16000, and the
default is 4.
update-dynamic-mac-qos-l
evel <enable|disable>
Enables or disable updating of the the qos level.
The default is disable.
config ethernet stg
This command configures parameters for the ports in a specified Spanning Tree
Group (STG).
Syntax
config ethernet <ports> stg <sid>
CLI Command Line Reference for the Ethernet Routing Switch 8300
84 Chapter 2 config commands
where:
•
ports specify the ports in the portlist form {slot/port[-slot/port][,
...]}.
•
sid is the spanning tree group ID, which has a number range of 1 to 64.
Note: Ports must have tagging enabled to belong to multiple spanning tree groups.
Parameters
This command includes the following parameters:
config ethernet <ports> stg <sid>
followed by:
317360-C
info
Displays current settings for the port spanning tree
group.
faststart
<enable|disable>
Enables or disables the FastStart feature. When
FastStart is enabled, the port goes through the
normal listening and learning states before
forwarding, but the hold time for these states is the
bridge hello timer (2 seconds by default) instead of
the bridge forward delay timer (15 seconds by
default).
change-detection
<enable|disable>
Enables or disables topology change detection for
the specified spanning tree. The default is enable.
pathcost <intval>
Sets the contribution of this port to the path cost.
• <intval> is the cost (1 to 65535).
priority <intval>
Sets the priority of this port.
• <intval> is the priority (0 to 255).
stp <enable|disable>
Enables or disables the spanning tree protocol.
Note: Nortel Networks recommends enabling
FastStart as an alternative to disabling spanning
tree protocol on an individual port.
Chapter 2 config commands 85
config ethernet unknown-mac-discard
This command discards the unknown source mac frames..
Syntax
config ethernet <port> unknown-mac-discard
where port specifies the port in the portlist form.
config ethernet vct
This command initiates a virtual cable test or displays Virtual Cable Tester (VCT)
information for a specified ethernet port.
Syntax
config ethernet <slot/port> vct
where slot/port specifies the port in the portlist form.
Parameters
This command includes the following parameters:
config ethernet <slot/port> vct
followed by:
info
Displays the results of the last virtual cable test.
test
Starts a virtual cable test on the specified port.
config filter acl create
Use this command to create a new Access Control List (ACL), an ordered list of
filter rules.
CLI Command Line Reference for the Ethernet Routing Switch 8300
86 Chapter 2 config commands
Syntax
config filter acl <acl-id> create <acl-type>
[acl-name <value>] [act-id <act-id>]
where:
•
•
<acl-id> is a unique identifier (from 1 to 512) for this ACL entry.
<acl-type> specifies the type of ACL: IP or non-IP
Note: ACLs can be of either type, access control entities (ACEs) have the capability to
match packets classified as 'ip' (ip header and below) or 'non-ip' (ethernet header).
For example, to filter out all ping requests (protocol icmp), you would create an
'ip' ACL to inspect the IP header of the packet. Similarly, to permit ARP
messages (ether-type).
Parameter
This command includes the following options:
config filter acl <acl-id> create <acl-type>
followed by:
info
Displays information on the selected ACL.
acl-name <value>
A descriptive name that identifies this ACL.
If you do not assign a name, the system
automatically assigns one.
act-id <act-id>
Identifies the access control template (ACT) bound
to this interface. The range is 1 to 2.
Note: The rules in the ACL specified in AclIdList
must be a subset of the values defined in the ACT
entry.
config filter acl action
Use this command to create an Access Control Entity (ACE).
317360-C
Chapter 2 config commands 87
Syntax
config filter acl <acl-id> ace <ace-id> action <mode> [trust-dscp <value>]
[remark-dscp <value>] [remark-user-priority <value>] [police
<value][<ace-name>] [<next-hop>] [<unreachable>] [precedence <value>]
[traffic-type <value>]
where:
•
•
<acl-id> is a unique identifier (from 1 to 512) for this ACL entry.
<ace-id> is a unique identifier (from 1 to 256) for this ACE entry.
Note: This command creates the ACE with a mode of 'deny'. The 'ace <ace-id> action
command is used to modify the mode.
Parameter
This command includes the following options:
config filter acl <acl-id> <ace-id> action <mode>
followed by:
remark-dscp <value>
Causes DSCP to re-mark non-standard traffic
classes so it uses a local per hop behavior (PHB).
<value> is one of the following choices:
• disable phbcs0 phbcs1 phbaf11
• phbaf12 phbaf13 phbcs2 phbaf21
• phbaf22 phbaf23 phbcs3 phbaf31
• phbaf32 phbaf33 phbcs4 phbaf41
• phbaf42 phbaf43 phbcs5 phbef
• phbcs6 phbcs7
The default setting is disable.
remark-user-priority
<value>
Sets the User Priority as described by Layer 2
standards: 802.1Q, 802.1p.
value is one of the following choices:
• disable | zero | one | ... | seven
• 0 ... 7
The default setting is disable.
police <value>
police <value> sets the desired policing
profile identifier in the range from 0 to 128.
When policing is not desired, set to disable (0).
CLI Command Line Reference for the Ethernet Routing Switch 8300
88 Chapter 2 config commands
config filter acl <acl-id> <ace-id> action <mode>
followed by:
<ace-name>
<ace-name> is a string that names the ACE.
If you do not assign a name, the system
automatically assigns one.
<next-hop>
<next-hop> is an IP address {a.b.c.d}.
This value redirects matching IP traffic to the next
hop, as specified by this IP address.
<unreachable>
<unreachable> sets the behavior for
redirected traffic when the specified next hop is not
reachable. This value is {deny|permit}.
The default setting is deny.
trust-dscp <value>
<enable | disable>
Specifies trust packet's dscp and map to CoS.
precedence <value>
precedence sets the order for when each
ACE is applied within an ACL. This value is in the
range from 1 to 256.
An ACL can contain multiple ACEs that match a
packet. The lower the value that you assign to an
ACE increases its order of precedence. For
example, the highest precedence that you can
assign to an ACE is 1, and the lowest precedence
(256) is reserved for the default ACE.
traffic-type <value>
317360-C
This value indicates the type of packets that the
ACE is set to match.
• <value> can be {all | bridged | routed | tagged |
untagged | tagged-bridged | tagged-routed |
untagged-bridged | untagged-routed }
• all- matched all traffic-types; bridged, routed,
tagged, untagged, tagged-bridged, tagged-routed,
untagged-bridged, untagged-routed.
• bridged-matches bridged packets.
• routed-matches IPv4 unicast routed packets.
• tagged-matches all tagged packets
• untagged-matches all untagged packets
• tagged-bridged - matches all tagged bridged packets
• tagged-routed - matches all tagged routed packets
• untagged-bridged - matches all untagged bridged
packets
• untagged-routed - matches all untagged routed
packets.
The default setting is all.
Chapter 2 config commands 89
config filter acl debug
Use this command to debug an Access Control Entity (ACE).
Syntax
config filter acl <acl-id> ace <ace-id> debug
where:
•
•
<acl-id> is a unique identifier (from 1 to 512) for this ACL entry.
<ace-id> is a unique identifier (from 1 to 256) for this ACE entry.
Parameter
This command includes the following options:
config filter acl <acl-id> ace <ace-id> debug
followed by:
match-count <value>
Counts the packets and octets of matching traffic
from all ports where the list is active.
value is one of the following choices:
• disable-Set this mode when counters are not
required. This is the default.
• bytes-pkts-Set this mode when the count of
octets is accurately required.
• kbytes-pkts-Set this mode when the octets
count is desired in kilobytes.
Note: There is potential for an overflow of the octet
counter. For example, consider an interface with a
forwarding rate of 17 million 64-byte pkts per
second. If the statistics are accumulated from 10
such interfaces in a 64-bit counter, the counter
could overflow in approximately a year.
mirror <value>
Mirrors packets to an interface specified by
<value>. <value> is {enable | disable}
CLI Command Line Reference for the Ethernet Routing Switch 8300
90 Chapter 2 config commands
config filter acl delete
Use this command to delete an Access Control List (ACL) or an Access Control
Entity (ACE).
Syntax
config filter acl <acl-id> delete
config filter ace <ace-id> delete
where:
•
•
<acl-id> is a unique identifier (from 1 to 512) for this ACL entry.
<ace-id> is a unique identifier (from 1 to 255) for this ACE entry.
Note: Executing this command will also delete all associated ACEs.
config filter acl ethernet
Use this command to configure the Ethernet values of an
Access Control Entity (ACE).
Syntax
config filter acl <acl-id> ace <ace-id> ethernet
where:
•
•
317360-C
<acl-id> is a unique identifier (from 1 to 512) for this ACL entry.
<ace-id> is a unique identifier (from 1 to 512) for this ACE entry.
Chapter 2 config commands 91
Parameter
This command includes the following options:
config filter acl <acl-id> ace <ace-id> ethernet
followed by:
src-mac <value> <ace-op>
<src-mac>
Specifies the MAC source address <value>to
match {aa:bb:cc:dd:ee:ff}
<ace-op> specifies the logical operator:
{any|eq|ne|le|ge|range|mask}.
The default is any.
<src-mac> sets the mask or higher address for
MAC source address, when <ace-op> is set to
mask or range.
dst-mac <value> <ace-op>
<dst-mac>
Specifies the MAC destination address <value>to
match {aa:bb:cc:dd:ee:ff}
<ace-op> specifies the logical operator:
{any|eq|ne|le|ge|range|mask}.
The default is any.
<dst-mac> sets the mask or higher address for
MAC source address, when <ace-op> is set to
mask or range.
ether-type <value>
Specifies the EtherType value from the Ethernet
header.
• ip
• arp
• rarp
• appleTalk
• decLat
• ipv6
• 0 - 65535
• 0x0 - 0xffff
• any (range 0-65535)
The default is any.
vlan-id <value>
Specifies the VLAN ID to match. value is 0 to
4095.
The default is 0.
CLI Command Line Reference for the Ethernet Routing Switch 8300
92 Chapter 2 config commands
config filter acl <acl-id> ace <ace-id> ethernet
followed by:
anyvlan
Sets the mode to match 'any' VLAN ID. This is the
default mode for VLAN ID matching.
user-priority <value>
Specifies the 802.1Q .p bit to match..
<value> is one of the following choices:
• disable | zero | one | ... | seven
• 0 ... 7
• 0x0 ... 0x07
The default setting is disable.
config filter acl ip
Use this command to configure IP values of an Access Control Entity (ACE).
Syntax
config filter acl <acl-id> ace <ace-id> ip
where:
•
•
317360-C
<acl-id> is a unique identifier (from 1 to 512) for this ACL entry.
<ace-id> is a unique identifier (from 1 to 256) for this ACE entry.
Chapter 2 config commands 93
Parameter
This command includes the following options:
config filter acl <acl-id> ace <ace-id> ip
followed by:
src-ip <value> <ace-op>
<src-ip>
Specifies the IP source address to match
{a.b.c.d} from the IP header.
<ace-op> specifies the logical operator:
{any|eq|ne|le|ge|range|mask}.
The default is any.
<src-ip> sets the mask or higher address
for the IP source address, when ace-op is
set to mask or range.
dst-ip <value> <ace-op>
<dst-ip>
Specifies the IP destination address to match
{a.b.c.d} from the IP header.
<ace-op> specifies the logical operator:
{any|eq|ne|le|ge|range|mask}.
The default is any.
<dst-ip> sets the mask or higher address
for the IP destination address, when:
ace-op is set to mask or range.
dscp <value> <ace-op>
dscp-pair <value>
Specifies the DSCP to match.
<value> is one of the following choices:
disable phbcs0 phbcs1 phbaf11
phbaf12 phbaf13 phbcs2 phbaf21
phbaf22 phbaf23 phbcs3 phbaf31
phbaf32 phbaf33 phbcs4 phbaf41
phbaf42 phbaf43 phbcs5 phbef
phbcs6 phbcs7
0 ... 63
0x0 ... 0x3f
The default setting is disable.
<ace-op> specifies the logical operator:
{any|eq|ne|lt|gt|range|mask}.
The default is any.
dscp-pair <value> sets the mask or
higher address for the DSCP pair value,
whenace-op is set to mask or range.
CLI Command Line Reference for the Ethernet Routing Switch 8300
94 Chapter 2 config commands
config filter acl port
Use this command to configure the port values of an Access Control Entity
(ACE).
Syntax
config filter acl <acl-id> ace <ace-id> port
where:
•
•
<acl-id> is a unique identifier (from 1 to 512) for this ACL entry.
<ace-id> is a unique identifier (from 1 to 255) for this ACE entry.
Note: The protocol must be set prior to configuring port values.
317360-C
Chapter 2 config commands 95
Parameter
This command includes the following options:
config filter acl <acl-id> ace <ace-id> port
followed by:
src-port <value>
<ace-op> src-port-pair
<value>
Specifies the TCP or UDP source port to match.
• <ace-op> specifies the logical operator:
{any|eq|ne|lt|gt|range|mask}.
The default is any.
• <src-port> set the mask or higher source port,
when: ace-op is set to mask or range
dst-port <value>
<ace-op> dst-port-pair
<value>
Specifies the TCP or UDP destination port to
match.
<value> is one of the following:
• {any | bgp | bootstrap | bootpd-dhcp | dns | echo |
ftpcontrol | ftpdata | hdot323 | http | rip | rtp | rtcp |
ssh | telnet | tftp }
• 0 - 65535
• 0x0 - 0xffff
<ace-op> specifies the logical operator:
{any|eq|ne|le|ge|range|mask}.
The default is any.
dst-port-pair <value> sets the mask
or higher address for the TCP or UDP destination
port, when ace-op is set to mask or range.
config filter acl protocol
Use this command to configure the protocol values of an Access Control Entity
(ACE).
Syntax
config filter acl <acl-id> ace <ace-id> protocol
<ip-protocol>
CLI Command Line Reference for the Ethernet Routing Switch 8300
96 Chapter 2 config commands
where:
•
•
•
<acl-id> is a unique identifier (from 1 to 512) for this ACL entry.
<ace-id> is a unique identifier (from 1 to 256) for this ACE entry.
<ip-protocol> is the protocol name:
{any|icmp|ipsecah|ipsecesp|ospf|tcp|udp|vrrp|0x0...0xff or
0...255}
Parameter
This command includes the following options:
config filter acl <acl-id> ace <ace-id> protocol
<ip-protocol>
followed by:
<ace-op> <ip-protocol>
317360-C
<ace-op> specifies the logical operator:
{any|eq|ne|le|ge|range|mask}.
The default is any.
<ip-protocol> sets the mask or higher
protocol, when:
ace-op is set to mask or range.
Chapter 2 config commands 97
config filter acl <acl-id> ace <ace-id> protocol
<ip-protocol>
followed by:
icmp <value>
When the needed ICMP message type and
code are not in the enumerated list, this
variable sets the expected ICMP type and
code values as 16-bit value encoding the 8
bits of icmp-type in MSB and 8 bits of
icmp-code in LSB.
<value> is one of the
following choices:
•
•
•
•
•
•
echoreply
redirect
echorequest
any--outside the range
0 - 65535
0x0 - 0xffff
The default is any.
flags-tcp <value>
mask-flags-tcp <value>
Matches one or more TCP flags from the
TCP header.
<value> is one of the following choices:
•
•
•
•
•
•
•
•
•
•
fin
syn
rst
push
ack
urg
any
none
- 0 - 63
- 0x0 - 0x3f
The default is any
mask-flags-tcp <value> displays the
mask used to ignore particular TCP flags.
Mask setting should not mask-off the bits
required for the selection in tcp-flags
<value>.
The default is 63.
CLI Command Line Reference for the Ethernet Routing Switch 8300
98 Chapter 2 config commands
config filter acg create
Use this command to create an Access Control Group (ACG).
Syntax
config filter acg <acg-id> create
where:
<acg-id> is a unique identifier (from 1 to 1024) for this ACG entry.
Parameter
This command includes the following options:
config filter acg <acg-id> create
followed by:
info
Displays information on the selected ACG.
acl-id-list
Identifies the ACL to add to the ACG entry.
acg-name <value>
A descriptive name that identifies this ACG. If
you do not assign a name, the system
automatically assigns one.
config filter acg delete
Use this command to delete an Access Control Group (ACG).
Syntax
config filter acg <acg-id> delete
where <acg-id> is a unique identifier (from 1 to 1024) for this ACG entry.
317360-C
Chapter 2 config commands 99
config filter acg modify
Use this command to modify an Access Control Group's (ACG) acl-id-list.
Syntax
config filter acg <acg-id> modify
where <acg-id> is a unique identifier (from 1 to 1024) for this ACG entry.
Parameter
This command includes the following options:
config filter acg <acg-id> modify
followed by:
<acl-id-list>
Identifies the ACL to add to the ACG entry.
acg-name <value>
A descriptive name that identifies this ACG. If
you do not assign a name, the system
automatically assigns one.
config filter act ethernet
Use this command to create or modify an Ethernet Access Control Template
(ACT).
Syntax
config filter act <act-id> ethernet <acl-type>
where:
•
<act-id> is a unique identifier (from 1 to 2) for this ACT.
CLI Command Line Reference for the Ethernet Routing Switch 8300
100 Chapter 2 config commands
•
<acl-type> specifies the type of ACL: IP or non-IP. ACLs can be of either
type because access control entities (ACEs) have the capability to match
packets classified as 'ip','non-ip'.
Parameter
This command includes the following options:
config filter act <act-id> ethernet <acl-type>
followed by:
act-id
Identifies the access control template (ACT) .
The range is 1 to 2. The default is 1.
Note: Partial masking is not supported.
Masks must be defined as either all 0's or all
1’s.
src-mac <value>
Specifies a mask for the source MAC
address. This mask is used by the ACEs that
are members of the ACLs using this ACT.
Note: A MAC address with all zeros indicates
this value is not desired in the match criteria.
Note: Partial masking is not supported.
Masks must be defined as either all 0's or all
1’s.
dst-mac <value>
Specifies a mask for the destination MAC
address. This mask is used by the ACEs that
are members of the ACLs using this ACT.
Note: A MAC address with all zeros indicates
this value is not desired in the match criteria.
Note: Partial masking is not supported.
Masks must be defined as either all 0's or all
1’s.
ether-type
<value>
317360-C
Specifies a mask for the Ether type value to
match. The range for this value is from 0 to
65535 or 0x0 to 0xffff.
Note: An Ether type of zero indicates this
value is not desired in the match criteria.
Note: Partial masking is not supported.
Masks must be defined as either all 0's or all
1’s.
Chapter 2 config commands 101
config filter act <act-id> ethernet <acl-type>
followed by:
vlan-mask
<value>
name <value>
Specifies a mask for both the VLAN ID and
User-priority.
To specify VLAN id only, use a mask of 0x0fff.
To specify user-priority only, use a mask of
0xf000. To include both VLAN ID and
user-priority, use a mask of 0xffff.
Note: A value of zero indicates the VLAN Tag
information is not desired in the match
criteria.
Note: Partial masking is not supported.
Masks must be defined as either all 0's or all
1’s.
A descriptive name that identifies this ACT. If
you do not assign a name, the system
automatically assigns one.
Note: Partial masking is not supported.
Masks must be defined as either all 0's or all
1’s.
config filter act ip
Use this command to create or modify an IP Access Control Template (ACT).U
Syntax
config filter act <act-id> ip <acl-type>
where:
•
•
<act-id> is a unique identifier (from 1 to 2) for this ACT.
<acl-type> specifies the type of ACL: IP or non-IP. ACLs can be of either
type because access control entities (ACEs) have the capability to match
packets classified as 'ip','non-ip'.
CLI Command Line Reference for the Ethernet Routing Switch 8300
102 Chapter 2 config commands
Parameter
This command includes the following options:
config filter act <act-id> ip <acl-type>
followed by:
<src-mask>
Specifies a mask for the IP source address
value to match. The range for this value is
0.0.0.0 to 255.255.255.255.
Note: An IP address with all zeros indicates
this value is not desired in the match criteria.
Note: Partial masking is not supported.
Masks must be defined as either all 0's or all
1’s.
<dst-mask>
Specifies a mask for the destination IP
address. The range for this value is 0.0.0.0 to
255.255.255.255.
Note: Partial masking is not supported.
Masks must be defined as either all 0's or all
1’s.
Note: A destination IP address with all zeros
indicates this value is not desired in the
match criteria.
protocol <value> Specifies a mask for the protocol value in the
IP header to match. The range for this value
is from 0 to 255 or 0x0 to 0xff.
Note: Partial masking is not supported.
Masks must be defined as either all 0's or all
1’s.
Note: A value of zero indicates this value is
not desired in the match criteria.
tos <value>
317360-C
Specifies a mask for the TOS byte (DSCP
value) in the IP header to match. DSCP is
encoded in the 6 most significant bits of the
ToS byte (see RFC 2474). The range for this
value is from 0 to 255 or 0x0 to 0xff..
Note: Partial masking is not supported.
Masks must be defined as either all 0's or all
1’s.
Note: A value of zero indicates this value is
not desired in the match criteria.
Chapter 2 config commands 103
config filter act <act-id> ip <acl-type>
followed by:
src-port <value>
Specifies a mask for the source TCP/UDP
port in TCP/UDP header to match. The range
for this value is from 0 to 65535 or 0x0 to
0xffff.
Note: Partial masking is not supported.
Masks must be defined as either all 0's or all
1’s.
Note: A value of zero indicates this value is
not desired in the match criteria.
dst-port <value>
Specifies a mask for the destination TCP/
UDP port in TCP/UDP header to match. The
range for this value is from 0 to 65535 or 0x0
to 0xffff.
Note: Partial masking is not supported.
Masks must be defined as either all 0's or all
1’s.
Note: A value of zero indicates this value is
not desired in the match criteria.
tcp-flags <value>
Specifies a mask for the 6 bits in the TCP
flags value in the TCP header to match. The
range for this value is from 0 to 65535 or 0x0
to 0xffff.
Note: Partial masking is not supported.
Masks must be defined as either all 0's or all
1’s.
Note: A value of zero indicates this value is
not desired in the match criteria.
icmp <value>
Specifies a mask for the ICMP message Type
and Code to match. The 8-bit Type value is
encoded in the MSB and the 8-bit Code value
is encoded in the LSB. The range for this
value is from 0 to 65535 or 0x0 to 0x3f.
Note: Partial masking is not supported.
Masks must be defined as either all 0's or all
1’s.
Note: A value of zero indicates this value is
not desired in the match criteria.
CLI Command Line Reference for the Ethernet Routing Switch 8300
104 Chapter 2 config commands
config filter act delete
Use this command to delete an Access Control Template (ACT).
Syntax
config filter act delete <acl-type>
where <acl-type> specifies the type of ACL: IP or non-IP. ACLs can be of
either type because access control entities (ACEs) have the capability to match
packets classified as 'ip','non-ip'.
config ip
This command configures IP routing on the switch.
Syntax
config ip
Parameters
This command includes the following parameters:
config ip
followed by:
317360-C
info
Displays current config ip info command
output.
alternative-route
<enable|disable>
Allows you to enable or disable alternative
routes. The default value is enabled.
Note: If the alternative-route parameter is
disabled, all existing alternative routes are
removed. When the parameter is enabled, all
alternative routes are added back.
Chapter 2 config commands 105
config ip
followed by:
icmp-unreach-msg
<enable|disable>
When enabled, allows the generation of
Internet Control Message Protocol (ICMP)
net unreachable messages if the destination
network is not reachable from this router.
These messages assist in determining if the
routing switch is reachable over the network.
The default is disabled.
default-ttl <seconds>
Sets the default time to live (ttl) value for a
routed packet. It is the maximum number of
seconds before a packet is discarded.
• seconds is a number between 1 and 255.
The default value of 255 is inserted in the ttl
field whenever one is not supplied in the
datagram header.
config ip arp
This command modifies the Address Resolution Protocol (ARP) parameters on
the switch.
Syntax
config ip arp
CLI Command Line Reference for the Ethernet Routing Switch 8300
106 Chapter 2 config commands
Parameters
This command includes the following parameters:
config ip arp
followed by:
317360-C
info
Displays ARP characteristics.
add ports <value> ip
<value> mac <value>
[vlan <value>]
Adds a static entry to the ARP table.
• ports value are the port numbers, shown
as {slot/port[-slot/port][,...]}.
• ip value is the IP address {a.b.c.d}.
• mac value is the 48-bit hardware MAC
address in the format
{0x00:0x00:0x00:0x00:0x00:0x00}.
Vlan <value> specifies the VLAN ID to add
the static entry. The valid values are 1 to
2000.
aging <minutes>
Sets the length of time in minutes and entry
remains in the ARP table before timeout.
• minutes is a number between 1 and 32767.
delete <ipaddr>
Removes an entry from the ARP table.
• ipaddr is the IP address in dotted-decimal
notation {a.b.c.d}.
multicast-mac-flooding
<enable|disable>
An option to choose whether ARP entries for
multicast MAC addresses are associated with
the VLAN or the port interface on which it was
learned. This is useful if multiple end stations
or servers are sharing a multicast MAC
address as is the case with certain Microsoft
network load balancing applications, wherein
the traffic is flooded to the VLAN to ensure
that every end station using this virtual
multicast MAC address is receiving a copy of
the stream. Default is disable. This option is
not dynamic, in that if the setting of this
feature is changed it will not dynamically
reprogram all previously learned ARP entries
from multicast MAC addresses.
Chapter 2 config commands 107
config ip circuitless-ip-int
This command creates a CLIP interface.
Syntax
config ip circuitless-ip-int <id>
where <id> is an integer value in the range 1 to 32 that indicates the
identification number for the specific CLIP interface
This command includes the following parameters:
config ip circuitless-ip-int <id>
followed by:
info
Displays the configured parameters for the CLIP interface.
create <ipaddr/
mask>
Creates a CLIP interface.
• <ipaddr/mask> is the IP address and subnet mask of
the CLIP interface.
delete <ipaddr>
Deletes the specified CLIP interface.
• <ipaddr> is the IP address of the CLIP interface to be
deleted.
config ip dhcp-relay
This command specifies configuration of ip dhcp-relay.
Syntax
config ip dhcp-relay
config ip dhcp-relay created-fwd-path agent
This command specifies the forward path agent.
CLI Command Line Reference for the Ethernet Routing Switch 8300
108 Chapter 2 config commands
Syntax
config ip dhcp-relay created-fwd-path agent <ipaddr> server
<ipaddr> [mode <bootp|dhcp|bootp_dhcp>] [state
<enable|disable>]
Parameters
This command includes the following parameters:
created-fwd-path agent <ipaddr>
followed by:
server <ipaddr>
[mode <bootp|dhcp|
bootp_dhcp>]
[state <enable|
disable>]
config ip dhcp-relay enable-fwd-path agent
This command enables the foward path agent by agent and server ip address.
Syntax
config ip dhcp-relay enable-fwd-path agent <ipaddr> server
<ipaddr>
config ip dhcp-relay disable-fwd-path agent
This command disables the forward path agent.
317360-C
Chapter 2 config commands 109
Syntax
config ip dhcp-relay disable-fwd-path agent <ipaddr> server
<ipaddr>
config ip dhcp-relay delete-fwd-path agent
This command deletes the forward path agent.
Syntax
config ip dhcp-relay delete-fwd-path agent <ipaddr> server
<ipaddr>
config ip forwarding
This command enable or disables IP forwarding (routing) on the entire switch.
Syntax
config ip forwarding
Parameters
This command includes the following parameters:
config ip forwarding
followed by:
info
Displays current config ip info command
output.
disable
Disables IP forwarding (routing) on the entire
switch.
enable
Enables IP forwarding (routing) on the entire
switch. Default is enable.
CLI Command Line Reference for the Ethernet Routing Switch 8300
110 Chapter 2 config commands
config ip igmp interface access-list
This command configures access lists on a selected interface for a specific group
address.
Syntax
config ip igmp interface <ipaddr> access-list <GroupAddress>
where:
•
•
ipaddr indicates the IP address of the selected interface
GroupAddress indicates the IP address of the selected multicast group.
Parameters
This command includes the following parameters:
config ip igmp interface <ipaddr> access-list
<GroupAddress>
followed by:
info
Displays settings for GroupAddress
parameters and next level directories.
create <HostAddress>
Assigns an IP address to an access list
<HostMask>
group.
<denyRx|denyTx|denyBoth> • HostAddress is the IP address of the host
route.
• HostMask is the subnet mask of the host
route.
• denyRx|denyTx|denyBoth sets igmp
interface to deny receive, deny transmit, or
deny both.
delete <HostAddress>
<HostMask>
317360-C
Deletes an IGMP interface group IP address.
• HostAddress is the IP address of the host
route.
• HostMask is the subnet mask of the host
route.
Chapter 2 config commands 111
config ip ospf accept
This command allows the configuration changes in the policy to take effect for an
OSPF Accept context (and to prevent the switch from attempting to apply the
changes one-by-one after each configuration change).
Note: Changing OSPF Accept contexts is a process-oriented operation
that can affect system performance and network accessibility while
performing the procedures. If you want to change default preferences for
an OSPF Accept or a prefix-list configuration (as opposed to the default
preference), Nortel Networks recommends that you do so before enabling
the protocols.
Syntax
config ip ospf accept
Parameters
This command includes the following parameters:
config ip ospf accept
followed by:
Issue this command after modifying any policy
configuration that will affect an OSPF accept policy.
apply
config ip ospf accept adv-rtr
This command configures a policy for accepting external routes form a specified
advertising router.
Syntax
config ip ospf accept adv-rtr <ipaddr>
CLI Command Line Reference for the Ethernet Routing Switch 8300
112 Chapter 2 config commands
where ipaddr is the advertising router ID. If ipaddr is equal to 0.0.0.0 it
implies all advertising routers. If you do not have an accept entry for a specific
advertising router then the default entry is used. When no applicable entry is
found, all routes are accepted.
Parameters
This command includes the following parameters::
config ip ospf accept adv-rtr <ipaddr>
followed by:
317360-C
info
Displays OSPF accept configuration
information for a specified advertising router.
apply
Applies the OSPF accept policy changes.
create
Creates an OSPF accept entry for a
specified advertising router.
delete
Deletes an OSPF accept entry for a specified
advertising router.
disable
Disables an OSPF accept entry for a
specified advertising router.
enable
Enables an OSPF accept entry for a
specified advertising router.
metric-type
<type1|type2|any>
Used to indicate the OSPF external type.
This parameter describes which types of
OSPF external routes match this entry.
• <any> means match all external routes.
• <type1> means match external type 1
only.
• <type2> means match external type 2
only.
route-policy <policy name>
Specifies the name of the route policy to be
used for filtering external routes advertised
by the specified advertising router before
accepting into the routing table.
Chapter 2 config commands 113
config ip ospf redistribute
This command allows the configuration changes in the policy to take effect for
OSPF Redistribute context (and to prevent the switch from attempting to apply the
changes one-by-one after each configuration change).
Note: Changing OSPF Redistribute contexts is a process-oriented
operation that can affect system performance and network accessibility
while performing the procedures. Therefore, Nortel Networks
recommends that if you want to change default preferences for an OSPF
Redistribute or a prefix-list configuration (as opposed to the default
preference), you should do so before enabling the protocols.
Syntax
config ip ospf redistribute
Parameter
This command includes the following parameters:
config ip ospf redistribute
followed by:
Issue this command after modifying any
policy configuration that will affect an OSPF
redistribution.
apply
config ip ospf redistribute
This command configures a redistribute entry. Redistribute entries allow OSPF to
announce routes of a certain source type, for example, static, RIP, or direct. If you
do not configure a route policy field for a redistribute entry, then the default action
is taken based on metric, metric-type, and subnet configured. This is called basic
redistribution. Otherwise, you use the route policy specified to perform detailed
redistribution. If you do not configure a redistribution entry, no external LSA is
generated for non-OSPF routes.
CLI Command Line Reference for the Ethernet Routing Switch 8300
114 Chapter 2 config commands
Syntax
config ip ospf redistribute <source-type>
Parameter
This command includes the following parameters:
config ip ospf redistribute <source-type>
followed by:
317360-C
info
Displays OSPF redistribute information for a specified
source type.
apply
Applies the OSPF redistribute to the routes from the
specified source type to generate or refresh AS external
LSAs. For example, RIP static or direct.
create
Creates an OSPF redistribute entry for a specified source
type.
disable
Disables an OSPF redistribute entry for a specified
source type.
delete
Deletes an OSPF redistribute entry for a specified source
type.
enable
Enables an OSPF redistribute entry for a specified source
type.
metric
<metric-value>
Sets the OSPF route redistribution metric for basic
redistribution.
• <metric-value> range is 0 to 65535. If
configured as 0, the original cost of the route is used.
metric-type
<type1|type2>
Sets the OSPF route redistribution metric type for basic
redistribution. The default is Type 2.
Chapter 2 config commands 115
config ip ospf redistribute <source-type>
followed by:
route-policy <policy Sets the route policy by name to be used for the detailed
redistribution of external routes from a specified source
name>
into an OSPF domain.
<policy name> string length is 0 to 64 characters. A
string of length 0 can be used to remove current
configuration. If no policy is configured, basic
redistribution is performed.
subnets
<allow|supress>
Sets the OSPF route redistribution subnet value (the
default value is allow):
• allow sets the switch to allow external subnet routes to
be redistributed into an OSPF domain.
• suppress sets the switch to redistribute external
subnet routes into an OSPF domain, with shortened
mask lengths. In the advertisement, the external
subnet routes mask lengths are shortened to their
natural masks.
Note: When set to allow, the switch automatically
converts external subnet routes to their natural mask for
advertisement on an OSPF interface.
The allow value does not change the mask for all routes;
instead it changes the mask for only the subnet routes
with mask lengths that are longer than their natural mask.
config ip prefix-list
This command configures a prefix list which is a list of networks used by route
policies to define an action.
Syntax
config ip prefix-list
CLI Command Line Reference for the Ethernet Routing Switch 8300
116 Chapter 2 config commands
Parameters
This command includes the following parameters:
config ip prefix-list <prefix-list name>
followed by:
info
Displays all of the prefixes in a given list .
add-prefix <ipaddr/mask>
[maskLenFrom <value>]
[maskLenTo <value>]
Adds a prefix entry to the prefix list.
• <ipaddr/mask> is the IP address
and mask.
• maskLenFrom <value> is the lower
bound of mask length. The default is the
mask length.
• maskLenTo <value> is the higher
bound mask length. The default is the
mask length.
Note: Lower bound and higher bound mask
lengths together can define a range of
networks.
delete
Deletes the prefix list.
name <name>
The name command is used to rename the
specified prefix list. The name length can be
from 1 to 64 characters.
remove-prefix <ipaddr/mask>
Removes a prefix entry from the prefix list.
ipaddr/mask> is the IP address and
mask.
config ip rip
This command enables or disables RIP globally on the switch and sets the update,
holddown, and timeout timers.
Syntax
config ip rip
317360-C
Chapter 2 config commands 117
Parameter
This command includes the following parameters:
config ip rip
followed by:
default-import-metric Sets the value of the default metric to apply to routes
imported into the RIP domain. This is the metric used
<metric>
for routes not learned through RIP if a route policy does
not specify a metric for a particular protocol, such as
OSPF.
• metric is an integer value with a range of 0 to 15.
The default is 8.
You cannot assign a value of 0 to the default import
metric. Entering the command config ip rip
default-import-metric 0 deconfigures this
parameter and restores the default value of 8.
disable
Globally disables RIP on the switch.
enable
Globally enables RIP on the switch.
holddown <seconds>
Sets the RIP holddown timer. The value of the
holddown timer is the length of time (in seconds) that
RIP will continue to advertise a network after
determining that it is unreachable.
• seconds is an integer value with a range of 0 to
360. The default is 120 seconds.
The global holddown parameter sets the value of the
holddown timer for the VLAN interfaces, but you can
override the value for a specific interface.
info
Shows RIP global configuration.
CLI Command Line Reference for the Ethernet Routing Switch 8300
118 Chapter 2 config commands
config ip rip
followed by:
timeout <seconds>
Sets the RIP timeout interval.
• seconds is an integer value with a range of 15 to
259200.
The default value is set indirectly by the global update
time parameter. By default, the timeout timer is set at 6
times the default update timer, in accordance with the
RFC specification. With a default global update
parameter setting of 30 seconds, the default timeout
interval is 180 seconds.
Configure the timeout parameter only if you want to
break the relationship with the update timer. For
example, if you have set the global update parameter to
a very short interval in order to minimize the problem of
fast convergence, the associated default timeout may
be too short. In this case, configure the timeout interval
manually.
The global timeout parameter sets the value of the
timeout timer for the VLAN interfaces, but you can
override the value for a specific interface.
updatetime <seconds>
Sets the RIPupdate timer. The value of the update
timer is the time interval (in seconds) between regular
RIP updates.
• seconds is an integer value with a range of 1 to
2147483647. The default is 30 seconds.
The global updatetime parameter sets the update
timer for the VLAN interfaces.
The updatetime value must be less than the
timeout interval.
config ip rip interface
There are two sets of commands to configure RIP on a specific interface. The two
sets contain some overlapping commands, and in these cases it does not matter
which set you use to configure those parameters.
This command configures RIP parameters on a specific interface.
Syntax
•
317360-C
config ip rip interface <ipaddr>
Chapter 2 config commands 119
where ipaddr indicates the IP address of the interface
•
config vlan <vid> ip rip
where vid is the VLAN ID
Parameter
This command includes the following parameters:
config ip rip interface <ipaddr>
followed by:
auto-aggr
<enable|disable>
Enables or disables automatic route aggregation on the
interface. When enabled, the router switch
automatically aggregates routes to their natural mask
when they are advertised on an interface in a network
of a different class. The default is disabled.
Routes with different metrics can be aggregated. RIP
uses the out metric associated with the first route found
in the routing table that is to be aggregated.
cost <cost>
Sets the RIP cost (metric) for this interface.
• cost is an integer value with a range of 1 to 15.
The default value is 1.
default-listen
<enable|disable>
Configures whether or not the interface will listen for
RIP updates for the default route learned through RIP.
The default is disabled.
default-supply
<enable|disable>
Configures whether or not the interface will send RIP
advertisements for the default route, if one exists in the
routing table. The default is disabled.
domain <value>
Specifies the value inserted into the Routing Domain
field of all RIP packets sent on this interface.
• value is an integer value with a range of 0 to
65535. The default is 0.
CLI Command Line Reference for the Ethernet Routing Switch 8300
120 Chapter 2 config commands
config ip rip interface <ipaddr>
followed by:
317360-C
holddown <seconds>
Sets the RIP holddown timer for the interface. The
value of the holddown timer is the length of time (in
seconds) that RIP will continue to advertise a network
after determining that it is unreachable.
• seconds is an integer value with a range of 0 to
360.
The default value is set by the global holddown
parameter, which has a default of 120 seconds. The
interface timer setting overrides the global parameter.
However, if you subsequently reset the global
parameter, the global setting then overrides the
interface timer setting.
info
Shows RIP configuration for the interface.
in-policy <policy
name>
Sets the RIP policy for inbound filtering on the
interface. The in-policy determines which routes will be
learned on the interface.
• policy name is a string length {0..64}.
To delete the policy from the interface configuration,
enter an empty string.
listen
<enable|disable>
Configures whether or not the interface will listen for
RIP routes. The default is enabled.
out-policy <policy
name>
Sets the RIP policy for outbound filtering on the
interface. The out-policy determines which routes will
be advertised from the routing table on the interface.
• policy name is a string length {0..64}.
To delete the policy from the interface configuration,
enter an empty string.
poison
<enable|disable>
Sets whether or not RIP routes on the interface learned
from a neighbor are advertised back to the neighbor.
• If disabled, split horizon is invoked, and IP routes
learned from an immediate neighbor are not
advertised back to the neighbor.
• If enabled, the RIP updates sent to a neighbor from
which a route is learned are “poisoned” with a
metric of 16. Therefore, the receiver neighbor
ignores this route because the metric 16 indicates
infinite hops in the network.
The default is disabled.
Chapter 2 config commands 121
config ip rip interface <ipaddr>
followed by:
receive-mode <mode>
Indicates which version of RIP updates are to be
accepted on this interface. The options for mode are:
• rip1 — RIP version 1 (complies with RFC 1058).
• rip2 — RIP version 2 (complies with RFC 2453).
• rip1orrip2 — both versions of RIP.
The default is rip1orrip2.
send-mode <mode>
Indicates which version of RIP updates the router
sends on this interface. The options for mode are:
• notsend — no updates are sent.
• rip1 — RIP version 1(complies with RFC 1058;
updates are broadcast).
• rip1comp — compatible with RIP version 1 (RIP
version 2 updates are broadcast using RFC 1058
route subsumption rules).
• rip2 — RIP version 2 (complies with RFC 2453;
updates are multicast).
The default is rip1comp.
supply
<enable|disable>
Enables or disables the interface to supply RIP
updates. The default is enabled.
CLI Command Line Reference for the Ethernet Routing Switch 8300
122 Chapter 2 config commands
config ip rip interface <ipaddr>
followed by:
timeout <seconds>
Sets the RIP timeout interval for the interface.
• seconds is an integer value with a range of 15 to
259200.
The default value is set indirectly by the global update
time parameter. By default, the timeout timer is set at 6
times the update timer, in accordance with the RFC
specification. With a default global update timer setting
of 30 seconds, the default timeout interval is 180
seconds.
Configure the timeout parameter on the interface only if
you want to break the relationship with the update
timer. For example, if you have set the global update
parameter to a very short interval in order to minimize
the problem of fast convergence, the associated default
timeout may be too short. In this case, configure the
timeout interval manually.
The interface timer setting overrides the global
parameter. However, if you subsequently reset the
global parameter, the global setting then overrides the
interface timer setting.
The timeout interval must be greater than the global
update time parameter.
trigger
<enable|disable>
Enables or disables automatic triggered updates for
RIP on this interface. The default is disabled.
config ip route-discovery
This command enables and disable route discovery.
Syntax
config ip route-discovery
317360-C
Chapter 2 config commands 123
Parameter
This command includes the following parameters:
config ip route-discovery
followed by:
info
Displays the global status of the router discovery
feature.
disable
Disables ICMP router discovery globally on the
switch.
enable
Enables ICMP router discovery globally on the
switch.
config ip route-policy
This command allows you to configure a route policy.
Syntax
config ip route-policy
Parameters
This command includes the following parameters:
config ip route-policy <policy name> seq <seq number>
followed by:
info
Displays current configuration information about
this policy sequence number.
action <permit|deny>
This field specifies the action to be taken when a
policy is selected for a specific route. This can be
permit or deny. Permit allows the route, deny
ignores the route.
CLI Command Line Reference for the Ethernet Routing Switch 8300
124 Chapter 2 config commands
config ip route-policy <policy name> seq <seq number>
followed by:
create
Creates a route policy with a policy name and a
sequence number.
Note: When creating a route policy in the CLI, the
ID is internally generated using an automated
algorithm. When you create a route policy in
Device Manager, you can manually assign the ID
number.
delete
Deletes a route policy with a policy name and a
sequence number.
disable
Disables a route policy with a policy name and a
sequence number.
enable
Enables a route policy with a policy name and a
sequence number.
match-interface
<prefix-list>
If configured, the switch matches the IP address of
the interface by which the RIP route was learned
against the contents of the specified prefix list.
This field is used only for RIP routes and ignored
for all other type of route.
• <prefix-list> specify the name of up to
four defined prefix list separated by a comma.
match-as-path <as-list>
Applicable to BGP protocol only. Match the BGP
autonomous system path. This will override the
BGP neighbor filter list information.
• <as-list>
match-community
<community-list>
Applicable to BGP protocol only. This is used to
filter incoming and outgoing updates based on a
community list.
• <community-list>
317360-C
match-community-exact
<enable|disable>
Applicable to BGP protocol only. If enabled, it
indicates the match has to exact (i.e., all of the
communities specified in the path have to match).
• <enable|disable> Default is disable.
match-metric <metric>
If configured, the switch matches the metric of the
incoming advertisement or existing route against
the specified value. If 0, then this field is ignored.
• <metric> is 1 to 65535. The default is 0.
Chapter 2 config commands 125
config ip route-policy <policy name> seq <seq number>
followed by:
match-network
<prefix-list>
If configured, the switch matches the destination
network against the contents of the specified prefix
list(s).
• <prefix-list> specify the name of up to
four defined prefix list by name separated by a
comma.
match-next-hop
<prefix-list>
If configured, matches the next hop IP address of
the route against the contents of the specified
prefix list. This field applies only to non-local
routes.
• <prefix-list> specify the name of up to
four defined prefix list by name separated by a
comma.
match-protocol
<protocol name>
If configured, matches the protocol through which
the route is learned. This field is used only for RIP
announce purposes.
match-route-src
<prefix-list>
If configured, matches the next hop IP address for
RIP routes and advertising router IDs for OSPF
routes against the contents of the specified prefix
list. This option ignored for all other route types.
• <prefix-list> specify the name of up to
four defined prefix list by name separated by a
comma.
match-route-type
<route-type>
Sets a specific route-type to be matched (applies
only to OSPF routes).
• <route-type> External-1 and External-2
specifies OSPF routes of the specified type
only (any other value is ignored).
match-tag <tag>
Applicable to BGP protocol only. Specifies a list of
tag(s), that will be used during the match criteria
process. It contains one or more tag values.
• match-tag <tag>
name <policy name>
This command is used to rename a policy once it
has been created. This command changes the
name field for all sequence numbers under the
given policy.
set-as-path
<as-list-id>
Applicable to BGP protocol only. The AS path
value to be used whether the SetAsPathMode field
is Tag or Prepend.
set-as-path-mode
<tag|prepend>
Applicable to BGP protocol only. It can be set to
either tag or prepend. This will convert the tag of a
route into an AS path. Default is prepend.
CLI Command Line Reference for the Ethernet Routing Switch 8300
126 Chapter 2 config commands
config ip route-policy <policy name> seq <seq number>
followed by:
set-automatic-tag
<enable|disable>
Applicable to BGP protocol only. Default is disable.
set-community
<community-list>
Applicable to BGP protocol only. This value can be
a number from 1 to 42949672000, no-export or
no-advertise.
set-community-mode
<unchanged|additive|
none>
Applicable to BGP protocol only. This value can be
either append, none, or unchanged. Unchanged keep the community attribute in the route path as it
is. None - remove the community in the route path
Append- adds the community-number specified in
SetCommunityNumber to the community list
attribute. Default is unchanged.
set injectlist
<prefix-list>
If configured, the switch replaces the destination
network of the route that matches this policy with
contents of the specified prefix list.
• <prefix-list> specify one prefix list by
name.
set-local-pref
<pref-value>
Applicable to BGP protocol only. This value will be
used during the route decision process in the BGP
protocol. Default is 0.
set-mask <ipaddr>
If configured, the switch sets the mask of the route
that matches this policy. This applies only to RIP
accept policies.
<ipaddr> is a valid contiguous IP mask.
317360-C
set-metric
<metric-value>
If configured, the switch sets the metric value
for the route while announcing a redistributing.
The default is 0. If the default is configured,
the original cost of the route is advertised into
OSPF; for RIP, the original cost of the route or
default-import-metric is used.
set-metric-type
<metric-type>
If configured, sets the metric type for the routes to
be announced into the OSPF domain that matches
this policy. The default is type 2. This field is
applicable only for OSPF announce policies.
set-nssa-pbit
<enable|disable>
Applicable to BGP protocol only. Enable or disable
the P bit in specified type 7 LSA. By default P bit is
always enabled. If user sets it to the disable state
for a particular route policy, then all type 7 LSAs
associated with that route policy will have the P bit
cleared. With this intact NSSA ABR will not
perform translation of these LSAs to type 5.
Default is enable.
Chapter 2 config commands 127
config ip route-policy <policy name> seq <seq number>
followed by:
set-next-hop <ipaddr>
Applicable to BGP protocol only. Set the IP
address of the next hop router. Ignored this for
DVMRP routes. Default is 0.0.0.0.
set-origin <origin>
Applicable to BGP protocol only. Set to igp, egp,
incomplete, or unchanged. If not set the route
origin from the IP routing table (protocol) is used.
Default is unchanged.
set-origin-egp-as
<origin-egp-as>
Applicable to BGP only. Sets the remote
autonomous system number. Default is 0.
set-preference
<pref-value>
Setting the preference greater than zero, specifies
the route preference value to be assigned to the
routes which matches this policy. This applies to
accept policies only.
• <pref-value> set from 0 to 255. The
default is 0. If the default is configured, the
global preference value is used.
set-tag <tag>
Applicable to BGP only. This value is used for
setting the tag of the destination routing protocol. If
not specified, forward the tag value in the source
routing protocol. A value of 0 indicates it is not set.
Default is 0.
set-weight <weight>
Applicable to BGP only. Should be used with
match as-path condition. This is the weight value
for the routing table. For BGP this value will
override the weight configured through
NetworkTableEntry, FilterListWeight, or
NeighborWeight. A value of 0 indicates it is not set.
Default is 0.
config ip route preference
This command configures route preferences by protocol. This allows you to
override default route preferences and substitute a protocol’s preference value for
routes learned for a specific protocol.
Note: Changing route preferences is a process-oriented operation that
can affect system performance and network accessibility while
performing the procedures. Therefore, Nortel recommends that you
change a prefix list or a routing protocol before enabling the protocols.
CLI Command Line Reference for the Ethernet Routing Switch 8300
128 Chapter 2 config commands
Syntax
config ip route preference
Parameter
This command includes the following parameters:
config ip route preference
followed by:
info
Displays the route preference configured for
different protocols.
protocol <protocol> <value>
Sets the preference value for the specified
protocol.
• protocol {static|rip} indicates
the protocol type.
• value is an integer value with a range
of 0 to 255.
If two protocols have the same configured
value, the default value is used to break the
tie. The default preference values are:
• local routes = 0
• static routes = 5
• RIP routes = 100
config ip static-route
This command creates a new static route, or modifies existing static route
parameters.
Syntax
config ip static-route
317360-C
Chapter 2 config commands 129
Parameters
This command includes the following parameters:
config ip static-route
followed by:
info
Displays characteristics of the created static
route.
create <ipaddr/mask>
next-hop <value> cost
<value> [preference
<value>]
Adds a static or default route to the switch.
• ipaddr/mask is the IP address and mask for
the route’s destination.
• cost <value> is the metric of the route.
delete <ipaddr/mask>
next-hop <value>
Deletes a static route.
• ipaddr/mask is the IP address and mask for
the route’s destination.
disable <ipaddr/mask>
next-hop <value>
Disables a static route.
• ipaddr/mask is the IP address and mask for
the route’s destination.
enable <ipaddr/mask>
next-hop <value>
Enables a static route.
• ipaddr/mask is the IP address and mask for
the route’s destination.
•
preference <value>
<ipaddr/mask> next-hop
<value>
Modify static route preference.
config ip udpfwd interface
This command allows you to view and manage the UDP forwarding policies
applied to the specified interface.
Syntax
config ip udpfwd interface
CLI Command Line Reference for the Ethernet Routing Switch 8300
130 Chapter 2 config commands
Parameters
This command includes the following parameters:
config ip udpfwd interface <ipaddr>
where ipaddr is the IP address (a.b.c.d format) for the local interface.
followed by:
info
Displays current level parameter settings and next
level directories.
create <fwdlistid>
Applies a UDP forwarding policy to the specified
interface.
• fwdlistid is name of the desired UDP
forwarding policy to apply.
delete
Removes the UDP forwarding policy from the
specified interface.
broadcastmask <mask>
Sets the broadcast mask for this interface. This
value can be different from the interface mask.
• mask is the subnet mask in dotted-decimal
notation {a.b.c.d}.
maxttl <maxttl>
Sets the maximum TTL value for this interface.
• maxttl is the maximum TTL value (1..16).
Default value is 4.
udpportfwdlist
<fwdlistid>
Sets the UDP forwarding policy to use.
• fwdlistid is name of the desired UDP
forwarding policy to apply.
config ip udpfwd portfwd
This command allows you to view and manage forwarding entries.
Syntax
config ip udpfwd portfwd
317360-C
Chapter 2 config commands 131
Parameters
This command includes the following parameters:
config ip udpfwd portfwd
followed by:
info
Displays the current level parameter settings and
next level directories.
add-portfwd <updport>
<ipaddr>
Adds a portfwd entry to the list.
• updport is the UDP port number (1..65535).
• ipaddr is the forwarding destination. You
can enter either a specific server IP address, or
an IP limited broadcast in dotted-decimal
notation {a.b.c.d}.
remove-portfwd <updport>
<ipaddr>
Removes a portfwd entry from the list.
• updport is the UDP port number (1..65535).
• ipaddr is the forwarding destination. You
can enter either a specific server IP address, or
an IP limited broadcast in dotted-decimal
notation {a.b.c.d}.
config ip udpfwd portfwdlist
This command allows you to view and manage the specified UDP forwarding
policy.
Syntax
config ip udpfwd portfwdlist
CLI Command Line Reference for the Ethernet Routing Switch 8300
132 Chapter 2 config commands
Parameters
This command includes the following parameters:
config ip udpfwd portfwdlist <fwdlistid>
where fwdlistId is the policy ID (1..1000) for this protocol, followed by:
info
Displays the current level parameter settings and
next level directories.
create
Creates a UDP forwarding policy.
delete
Deletes the UDP forwarding policy.
add-portfwd <updport>
<ipaddr>
Adds a portfwd entry to the forwarding policy.
• updport is the UDP port number (1..65535).
• ipaddr is the forwarding destination. You
can enter either a specific server IP address, or
an IP limited broadcast in dotted-decimal
notation {a.b.c.d}.
remove-portfwd <updport>
<ipaddr>
Removes a portfwd entry from the forwarding
policy.
• updport is the UDP port number (1..65535).
• ipaddr is the forwarding destination. You
can enter either a specific server IP address, or
an IP limited broadcast in dotted-decimal
notation {a.b.c.d}.
name <name>
Sets the forwarding policy name.
config ip udpfwd protocol
This command allows you to view and manage the UDP protocol for the specified
port.
Syntax
config ip udpfwd protocol
317360-C
Chapter 2 config commands 133
Parameters
This command includes the following parameters:
config ip udpfwd protocol <updport>
where updport is the port number (1..65535) for this protocol, followed by:
info
Displays the current level parameter settings and
next level directories.
create <protoname>
Creates a UDP protocol entry.
• protoname is the name applied to the UDP
port.
delete
Deletes the UDP protocol entry.
config log
This command configures and displays the log files for the switch. When you save
the config bootconfig flags logging true command in the
configuration file, the log entries are written to the /pcmcia/syslog.txt file. If
the logging flag is not set to true, the entries are stored in memory.
Syntax
config log
Parameters
This command includes the following options:
config log
followed by:
info
Displays the current log settings.
clear
Clears the log file.
CLI Command Line Reference for the Ethernet Routing Switch 8300
134 Chapter 2 config commands
config log
followed by:
level [<level>]
Shows and sets the logging level.
level is one of these values:
• 0 = Information; all messages are recorded.
• 1 = Warning; only warning and more serious
messages are recorded.
• 2 = Error; only error and more serious messages are
recorded.
• 3 = Manufacturing; this parameter is not available for
customer use.
• 4 = Fatal; only fatal messages are recorded.
screen [<setting>]
Sets the log display on the screen to on or off.
setting is off or on. The default is off.
write <str>
Writes the log file with the designated string.
str is the string or command that you append to
the log file. If the string contains spaces, you must
enclose the string in quotation marks. The range is
1 to 432 characters.
logToPCMCIA
<true|false>
Specifies logging the entries the pcmcia file.
config log filter
<filter>
Specifies the config log filter.
config log filter
transfer file
<filter>
Specifies the config log filter transfer file.
config log filter add
This command adds a new string for matching.
Syntax
config log filter add <string> action <value> [pos <value>]
317360-C
Chapter 2 config commands 135
Parameters
This command includes the following options:
config log filter add
followed by:
<string>
Specifies the string to match. The string length can be 1
to 80.
action <value>
Specifies the filter match action. The values are:
drop|file only|screen only|both.
pos <value>
Specifies the position for inserting the filter string.
The values are 1 to 50.
config log filter delete
This command deletes an entry specified by string or by position.
Syntax
config log filter delete [string <value>] [pos <value>]
Parameters
This command includes the following options:
config log filter delete
followed by:
string <value>
Specifies the string to delete. The value can be 1 to 80.
pos <value>
Specifies the position to delete the filter string. The
values can be 1 to 80.
CLI Command Line Reference for the Ethernet Routing Switch 8300
136 Chapter 2 config commands
config log filter info
This command displays the configured string with position numbers.
Syntax
config log filter info
config mlt
This command sets up MultiLink Trunking (MLT) on the switch.
Syntax
config mlt <mid>
where:
mid is the MLT ID. The valid values are 1 to 31.
Parameters
This command includes the following parameters:
config mlt <mid>
followed by:
317360-C
info
Displays the current settings for the specified
MLT.
create
Creates an MLT with the specified MLT ID.
delete
Deletes the specified MLT.
name <string>
Indicates the name of the MLT.
• string is 1 to 20 alphanumeric characters.
perform-tagging
<enable|disable>
Enables or disables tagging on the specified MLT.
The default value is disable.
Chapter 2 config commands 137
config mlt add
This command adds ports to an MLT.
Syntax
config mlt <mid> add
where mid is the MLT ID. The valid values are 1 to 31.
Parameters
This command includes the following parameters:
config mlt <mid> add
followed by:
info
Displays ports added to the MLT.
ports <ports>
Adds ports to the MLT.
• ports is the port number or a list of ports you
want to add to the MLT.
Use the following convention when adding one or
more ports to the MLT: {slot/port[-slot/
port][,...]}.
vlan <vid>
Adds the initial configuration of the specified
Virtual LAN (VLAN) to the MLT.
• vid is the VLAN ID number, which has a value
range of 1 to 4000.
config mlt <mid> add ports <ports>
This command adds ports to a link aggregation group.
Syntax
config mlt <mid> add ports <ports>
CLI Command Line Reference for the Ethernet Routing Switch 8300
138 Chapter 2 config commands
Parameter
This command includes the following parameters:.
Table 2 config mlt <mid> add ports command parameters
Parameters
Description
<mid>
A value that uniquely identifies the link
aggregation group.
• For 8348 modules, allowable MIDs are 1-7.
• For 8324 modules, allowable MIDs are 1-31.
ports <ports>
Define the ports to add to the link aggregation
group.
• Ports: The port(s) to be added to the link
aggregation group, expressed as:
{slot/port[-slot/port][,...]}.
config mlt <mid> add vlan <vid>
This command adds a VLAN to a link aggregation group.
Syntax
config mlt <mid> add vlan <vid>
317360-C
Chapter 2 config commands 139
Parameter:
This command includes the following parameters:
Table 3 config mlt <mid> add vlan command parameters
Parameters
Description
<mid>
A value that uniquely identifies the link aggregation
group.
• For 8348 modules, allowable MIDs are 1-7.
• For 8324 modules, allowable MIDs are 1-31.
vlan <vid>
Defines the VLAN to add to the link aggregation group.
• VID: The VLAN ID to be added to the link aggregation
group.
config mlt <mid> create
This command creates a link aggregation group.
Syntax
config mlt <mid> create
where mid is a value that uniquely identifies the link aggregation group.
•
•
For 8348 modules, allowable MIDs are 1-7.
For 8324 modules, allowable MIDs are 1-31.
config mlt <mid> delete
This command deletes a link aggregation group.
Syntax
config mlt <mid> delete
CLI Command Line Reference for the Ethernet Routing Switch 8300
140 Chapter 2 config commands
where mid is the link aggregation group number you want to delete.
config mlt <mid> ntstg disable
This command enables the Cisco-compatible Spanning Tree mode, you must
disable the NTSTG mode.
Syntax
config mlt <mid> ntstg disable
where mid is a value that uniquely identifies the link aggregation group. When the
NTSTG mode is disabled, the Cisco-compatible mode is automatically enabled.
config mlt <mid> remove ports <ports>
This command removes ports from a link aggregation group.
Syntax
config mlt <mid> remove ports <ports>
Parameter
This command includes the following parameters:
317360-C
Parameters
Description
<mid>
A value that uniquely identifies the link
aggregation group.
• For 8348 modules, allowable MIDs are 1-7.
• For 8324 modules, allowable MIDs are 1-31.
ports <ports>
Define the ports to remove from the link
aggregation group.
• Ports: The port(s) to be added to the link
aggregation group, expressed as:
{slot/port[-slot/port][,...]}.
Chapter 2 config commands 141
config mlt remove
This command removes ports or Virtual LANs (VLANs) from a MultiLink Trunk
(MLT).
Syntax
config mlt <mid> remove
where mid is the MLT ID. The valid values are 1 to 31.
Parameters
This command includes the following parameters:
config mlt <mid> remove
followed by:
info
Displays the ports removed from the MLT.
ports <ports>
Removes ports from the MLT.
• ports is the port number or a list of ports to be
removed from the MLT.
Use the following convention when removing one
or more ports from the MLT: {slot/
port[-slot/port][,...]}.
vlan <vid>
Removes the specified VLAN from the MLT.
• vid is the VLAN ID number, which has a value
range of 1 to 4000.
config mlt <mid> remove vlan <vid>
This command removes a VLAN from a link aggregation group.
Syntax
config mlt <mid> remove vlan <vid>
CLI Command Line Reference for the Ethernet Routing Switch 8300
142 Chapter 2 config commands
Parameter
This command includes the following parameters:
Parameters
Description
<mid>
A value that uniquely identifies the link aggregation
group.
• For 8348 modules, allowable MIDs are 1-7.
• For 8324 modules, allowable MIDs are 1-31.
vlan <vid>
Defines the VLAN to remove from the link aggregation
group.
• VID: The VLAN ID to be removed from the link
aggregation group.
config poe card admin
This command sets the main power administration on the power over ethernet
card on the Ethernet Routing Switch 8300.
Syntax
config poe card <slot_number> admin <enable|disable>
where slot_number is the number of the slot where the power over ethernet
card resides.
Parameters
This command includes the following parameters:
config poe card <slot_number> admin
followed by:
317360-C
disable
Disables POE power administration.
enable
Enables POE power administration.
Chapter 2 config commands 143
config poe card info
This command shows power information on the the power over ethernet card on
the Ethernet Routing Switch 8300.
Syntax
config poe card <slot_number> info
where slot_number is the number of the slot where the power over ethernet
card resides.
config poe card notification-control
This command sets the notification control on the power over ethernet card on the
Ethernet Routing Switch 8300.
Syntax
config poe card <slot_number> notification-control
<enable|disable>
where slot_number is the number of the slot where the power over ethernet
card resides.
Parameters
This command includes the following parameters:
config poe card <slot_number> notification-control
followed by:
disable
Disables POE notification control.
enable
Enables POE notification control.
CLI Command Line Reference for the Ethernet Routing Switch 8300
144 Chapter 2 config commands
config poe card power-priority
This command sets the power allocation priority on the power over ethernet card
on the Ethernet Routing Switch 8300.
Syntax
config poe card <slot_number> power-priority
<low|high|critical>
where slot_number is the number of the slot where the power over ethernet
card resides.
Parameters
This command includes the following parameters:
config poe card <slot_number> power-priority
followed by:
low
Specifies low power allocation priority.
high
Specifies high power allocation priority.
critical
Specifies critical power allocation priority.
config poe card power-usage-threshold
This command sets the usage threshold on the power over ethernet card on the
Ethernet Routing Switch 8300.
Syntax
config poe card <slot_number> power-usage-threshold <0..99>
where slot_number is the number of the slot where the power over ethernet
card resides.
317360-C
Chapter 2 config commands 145
config poe port admin
This command sets the power over ethernet port administrative status at the port
level.
Syntax
config poe port <port_number> admin <enable|disable>
where port_number is the number of the port where the power over ethernet
card resides.
Parameters
This command includes the following parameters:
config poe port <port_number> admin
followed by:
disable
Disables POE power administration.
enable
Enables POE power administration.
config poe port info
This command displays the power over ethernet port power information at the port
level.
Syntax
config poe port <port_number> info
where port_number is the number of the port where the power over ethernet
card resides.
CLI Command Line Reference for the Ethernet Routing Switch 8300
146 Chapter 2 config commands
config poe port power-detection-control
This command sets the power detection control for the power over ethernet ports
on the Ethernet Routing Switch 8300.
Syntax
config poe port <port_number> power-detection-control
where port_number is the number of the port where the power over ethernet
card resides.
Parameters
This command includes the following parameters:
config poe port <port_number> power-detection-control
followed by:
auto
Sets POE power detection control to
automatic.
test
Sets POE power detection control to test.
config poe port power-limit
This command sets the power limits on power over ethernet port on the Ethernet
Routing Switch 8300.
Syntax
config poe port <port_number> power-limit <3..16>
where port_number is the number of the port where the power over ethernet
card resides.
317360-C
Chapter 2 config commands 147
config poe port power-priority
This command sets the power priority for the power over ethernet port on the
Ethernet Routing Switch 8300.
Syntax
config poe port <port_number> power-priority
<low|high|critical>
where port_number is the number of the port where the power over ethernet
card resides.
Parameters
This command includes the following parameters:
config poe port <port_number> power-priority
followed by:
low
Specifies low power allocation priority.
high
Specifies high power allocation priority.
critical
Specifies critical power allocation priority.
config poe port type
This command sets the port type for the power over ethernet port on the Ethernet
Routing Switch 8300.
Syntax
config poe port <port_number> type
where port_number is the number of the port where the power over ethernet
card resides.
CLI Command Line Reference for the Ethernet Routing Switch 8300
148 Chapter 2 config commands
Parameters
This command includes the following parameters:
config poe port <port_number> type
followed by:
other
Specifies other port type.
telephone
Specifies a telephone as the port type.
webcam
Specifies webcam as the port type.
wireless
Specifies wireless as the port type.
config qos egress-counter-set
Use this command to configure an egress counter that displays the statistics you
want to monitor.
Syntax
config qos egress-counter-set <counter_set_id>
where <counter_set_id> is a value in the range from 1 to 40.
317360-C
Chapter 2 config commands 149
Parameter
This command includes the following options:
config qos egress-counter-set <counter_set_id>
followed by:
create port <port_num> Configures the port(s) that you want the
counter set to monitor. If you configure one or
more ports, the switch disables MONITOR
ALL PORTS, which is enabled by default.
create vlan <vlan_id>
Configures the VLAN that you want the
counter set to monitor. If you configure a
VLAN, the switch disables MONITOR ALL
VLANS, which is enabled by default. The
VLAN range is 1 to 4000.
create queue
<tx_queue_id>
Configures the tx queue ID (0 to 7) that you
want the counter set to monitor. If you
configure a queue, the switch disables
MONITOR ALL Qs, which is enabled by
default.
create dp <dp_level>
Configures the Drop Precedence level (low,
medium or high) that you want the counter
set to monitor. If you configure a Drop
Precedence level, the switch disables
MONITOR ALL DPs, which is enabled by
default.
config qos mac-qos-level-override
Use this command to enable the MAC QoS level and override the ports QoS level.
Syntax
config qos mac-qos-level-override
CLI Command Line Reference for the Ethernet Routing Switch 8300
150 Chapter 2 config commands
Parameters
This command includes the following parameters:
config qos mac-qos-level-override
followed by:
enable
Enables mac-qos-level-override.
disable
Disables mac-qos-level-override.
config qos map
Use this command to configure QoS mapping tables.
Syntax
config qos map
Parameter
This command includes the following options:
config qos map
followed by:
317360-C
info
Displays the QoS mapping information for all
ports.
8021p-to-class-map
<802.1p>
<traffic-class>
Maps the value of the IEEE802.1 p bit (0 to 7)
of the incoming packet to one of the traffic
classes (0 to 7).
Chapter 2 config commands 151
config qos map
followed by:
8021p-to-dropprecedence-map
<802.1p>
<drop-precedence>
Maps the value of the IEEE802.1 p bit (0 to 7)
of the incoming packet to one of the following
drop precedence levels:
• low
• medium
• high
Packets marked with a higher drop
precedence will be dropped first during
periods of congestion.
class-to-8021p-map
<802.1p>
<traffic-class>
Maps the value of the traffic class (0 to 7) to
the IEEE802.1 p bit (0 to 7) of the incoming
packet.
CLI Command Line Reference for the Ethernet Routing Switch 8300
152 Chapter 2 config commands
config qos map
followed by:
class-to-8021p-policed
-map
<conformance-level>
<traffic-class>
<802.1p>
Maps the value of the traffic class (0 to 7) to
the IEEE802.1 p bit (0 to 7) of the incoming
packet based on one of the following
conformance levels.
• red means the packet exceeds the PIR (Peak
Information Rate).
• yellow means the packet does not exceed the
PIR, but it does exceed the CIR (Committed
Information Rate).
• green means the packet does not exceed the
CIR.
The conformance level is the outcome of
policing and indicates the behavior of a traffic
flow.
dscp-to-cos-policed
-map
<conformance-level>
<dscp>
<traffic-class>
<8021p>
<drop-precedence>
Maps the value of the DSCP (0 to 63) to the
CoS of the incoming packet based on one of
the following conformance levels.
• red means the packet exceeds the PIR (Peak
Information Rate).
• yellow means the packet does not exceed the
PIR, but it does exceed the CIR (Committed
Information Rate).
• green means the packet does not exceed the
CIR.
The conformance level is the outcome of
policing and indicates the behavior of a traffic
flow.
After the conformance level, enter the p bit
value (0 to 7), the traffic class value (0 to 7),
and the drop precedence level
(low|medium|high).
config qos policy create
Use this command to create a Quality of Service policy.
317360-C
Chapter 2 config commands 153
Syntax
config qos policy <policy-id> create
where <policy-id> specifies the QoS policy ID number and is a unique ID in
the range from 1 to 128.
Parameter
This command includes the following options:
config qos policy <policy-id> create
followed by:
enable
Enables the policy that you just created.
The default is enable.
disable
Disables the policy that you just created.
The default is enable.
name <value>
Names the policy. You can use up to 32
characters to identify the policy. If you do not
assign a name, the switch automatically
assigns one.
cir <value>
Sets the Committed Information Rate (CIR) in
Kbps. The CIR is used to measure against a
traffic stream. The CIR specifies the rate at
which incoming traffic is measured against to
be considered at a high level of conformance.
The range is from 64 to 10000000, and the
default is 1000.
cbs <value>
Sets the Committed Burst Size (CBS) in
Kbps. The CBS is used to measure against a
traffic stream. The CBS specifies the
maximum burst size that is supported for
flows to be considered to be at a high level of
conformance.
The range is from 200 to 512000, and the
default is 200.
CLI Command Line Reference for the Ethernet Routing Switch 8300
154 Chapter 2 config commands
config qos policy <policy-id> create
followed by:
pir <value>
Sets the Peak Information Rate (PIR) in
Kbps. The PIR is used to measure against a
traffic stream. The PIR specifies the rate at
which incoming traffic can arrive to be
considered at a medium level of
conformance.
The range is from 64 to 10000000, and the
default is 1000.
pbs <value>
Sets the Peak Burst Size (PBS) in Kbps. The
PBS is used to measure against a traffic
stream. The PBS specifies the maximum
burst size that is supported for flows to be
considered to be at a medium level of
conformance.
The range is from 2 to 512000, and the
default is 2.
config qos policy
Use this command to configure an existing Quality of Service policy.
Syntax
config qos policy <policy-id>
where <policy-id> specifies the QoS policy ID number and is a unique ID in
the range from 1 to 128.
317360-C
Chapter 2 config commands 155
Parameter
This command includes the following options:
config qos policy <policy-id>
followed by:
info
Displays the configuration information for the
selected policy.
action drop
<enable|disable>
Configures the policy to drop non-conforming
traffic. The default is to disable this
parameter.
action rmk-cos
Configures the policy to re-mark CoS
parameters. If enabled, the CoS parameters
are re-marked according to the DSCP to CoS
mapping table.
The default is to disable this parameter.
<enable|disable>
action rmk-8021p
<enable|disable>
Configures the policy to re-mark the 802.1
user priority parameters. If enabled, the user
priority is re-marked according to the
TrafficClass to 8021p mapping table.
The default is to disable this parameter.
<enable|disable>
Configures the policy to re-mark drop
precedence according to the conformance
level. The default is to disable this parameter.
delete
Deletes the selected policy.
modify
<enable|disable>
Enables or disables the selected policy.
modify name <value>
Changes the name of the policy. You can use
up to 32 characters to identify the policy.
modify cir <value>
Changes the Committed Information Rate
(CIR) in Kbps. The range is from 64 to
10000000, and the default is 1000.
modify cbs <value>
Changes the Committed Burst Size (CBS) in
Kbps. The range is from 2 to 512000, and the
default is 200.
action rmk-dp
CLI Command Line Reference for the Ethernet Routing Switch 8300
156 Chapter 2 config commands
config qos policy <policy-id>
followed by:
modify pir <value>
Changes the Peak Information Rate (PIR) in
Kbps. The range is from 64 to 10000000, and
the default is 1000.
modify pbs <value>
Changes the Peak Burst Size (PBS) in Kbps.
The range is from 2 to 512000, and the
default is 200.
config radius
This command configures Remote Access Dial-in User Services (RADIUS) on
the switch.
Syntax
config radius
Parameters
This command includes the following parameters:
config radius
followed by:
317360-C
info
Displays global RADIUS settings.
access-priorityattribute <value>
Specific to RADIUS authentication. Sets the
vendor-specific attribute value of the
Access-Priority attribute to match the type value
set in the dictionary file on the RADIUS server.
Nortel Networks recommends the default setting
of 192 for the Ethernet Routing Switch 8300. The
value range is between 192 and 240.
Chapter 2 config commands 157
config radius
followed by:
acct-attribute-value
<value>
Specific to RADIUS accounting. Sets the
vendor-specific attribute value of the
CLI-command attribute to match the type value
set in the dictionary file on the RADIUS server.
This value must be different from the
access-priority-attribute value configured for
authentication. The value range is between 192
and 240 and the default value is 193.
acct-enable
<true|false>
Enables (true) or disables (false) RADIUS
accounting globally. RADIUS accounting cannot
be enabled unless a valid server is configured.
This feature is disabled by default.
acct-include-clicommands <true|false>
Specifies whether CLI commands are to be
included in RADIUS accounting requests. If this
parameter is set to true, the commands are
included in the requests. If this parameter is set to
false, the commands are not included and interim
updates are not sent.
cli-commandsattribute <value>
Specifies the value for the cli commands attribute.
cli-profile-enable
<true|false>
Specifies Enabling of the profile globally. The
default is false.
command-accessattribute <value>
Specific to RADIUS authentication. Sets the
vendor-specific attribute value of the
Access-Priority attribute to match the type value
set in the dictionary file on the RADIUS server.
Nortel Networks recommends the default setting
of 192 for the Ethernet Routing Switch 8300. The
value range is between 192 and 240.
clear-stat
Clears RADIUS statistics from the server.
enable <true|false>
Enables (true) or disables (false) the RADIUS
authentication feature.
maxserver <value>
Specific to RADIUS authentication. Sets the
maximum number of servers allowed for the
switch. The value range is between 1 and 10.
CLI Command Line Reference for the Ethernet Routing Switch 8300
158 Chapter 2 config commands
config radius server
This command adds a Remote Access Dial-in User Services (RADIUS) server.
Syntax
config radius server
Parameters
This command includes the following parameters:
config radius server
followed by:
317360-C
info
Displays a list of all configured RADIUS servers.
delete <ipaddr>
usedby {cli|eapol}
Deletes a radius server.
• ipaddr is the IP address of the server to be
deleted in dotted-decimal notation {a.b.c.d}.
• usedby {cli|igap|snmp|eapol} selects
one of the following protocols for the user:
- Command Line (CLI)
- Extensible Authentication Protocol over LANS
(EAPOL)
Chapter 2 config commands 159
config radius server
followed by:
create <ipaddr>
secret <value>
[usedby <value>
[port <value>]
[priority <value>]
[retry <value>]
[timeout <value>]
[enable <value>]
[acct-port <value>]
[acct-enable <value>]
Creates and configures a server:
• ipaddr is the IP address of the server to add in
dotted-decimal notation {a.b.c.d}.
• secret <value> is the secret key of the server.
Its string length is 0..20.
Optional parameters:
• usedby <value> selects one of the following
protocols for the user:
- Command Line (CLI)
- Extensible Authentication Protocol over LANS
(EAPOL)
• port <value> is the UDP port value for
authentication (1..65535). The default value is 1812.
• priority <value> is the priority value for
this server (1..10). The default is 10.
• retry <value> is the maximum number of
authentication retries the server will accept (1..6).
The default value is 1.
• timeout <value> is the number of seconds
before the authentication request times out (1..10).
The default value is 3.
• enable <value> enables authentication on the
server.
• acct-port <value> is the UDP port of the
RADIUS accounting server (1..65535). The default
value is 1813.
Note: The User Datagram Protocol (UDP) port
value set for the client must match the UDP value
set for the RADIUS server.
• acct-enable <value> enables RADIUS
accounting on this server. By default, RADIUS
accounting is enabled on a server.
CLI Command Line Reference for the Ethernet Routing Switch 8300
160 Chapter 2 config commands
config radius server
followed by:
set <ipaddr>
[usedby {cli|eapol}]
[secret <value>]
[port <value>]
[priority <value>]
[retry <value>]
[timeout <value>]
[enable <true|false>]
[acct-port <value>]
[acct-enable
<true|false>]
317360-C
Changes specified server values without having
to delete the server and re-create it again:
• ipaddr is the IP address of the server to change in
dotted-decimal notation {a.b.c.d}.
Optional parameters:
• secret <value> is the secret key of the
authentication client. The string length is 0..20.
• usedby {cli|igap|snmp|eapol} selects
one of the following protocols for the user:
- Command Line (CLI)
- Extensible Authentication Protocol over LANS
(EAPOL)
Note: When changing a parameter, the usedby
parameter must be included. It is not optional.
• port <value> is the UDP ports to be used
(1..65535). The default value is 1812.
• priority <value> is the priority value for
this server (1..10). The default value is 10.
• retry <value> is the maximum number of
authentication retries the server will accept (1..6).
The default value is 1.
• timeout <value> is the number of seconds
before the authentication request times out (1..10).
The default value is 3.
• enable <true|false> true enables the
server and false disables it. The default is true.
• acct-port <value> The UDP port of the
RADIUS accounting server (1..65535). The default
value is 1813.
Note: The User Datagram Protocol (UDP) port
value set for the client must match the UDP value
set for the RADIUS server.
• acct-enable <true|false> true enables
RADIUS accounting on the server and false
disaables it. By default, RADIUS accounting is
enabled on a server.
Chapter 2 config commands 161
config rmon
This command configures the Remote Monitoring (RMON) functions on the
switch.
Syntax
config rmon
Parameters
This command includes the following options:
config rmon
followed by:
info
Displays whether RMON is enabled or
disabled on the switch.
alarm create <id> type
<value> intv <value>
variable <value>
[r_th <value>]
[r_ev <value>]
[f_th <value>]
[f_ev <value>]
[owner <value>]
Creates an alarm interface.
• id is the interface index number (1 to 65535).
• type <value> is the sample type, absolute
or delta.
• intv <value> is the sample interval (1 to
3600).
• variable <value> is the variable name
or Object Identifier (OID), case sensitive
(string length 1 to 1536).
Note: The rising or falling event must exist
beore an alarm can be created.
Optional parameters:
• r_th <value> is the rising threshold
(– 32768 to + 65535).
• r_ev <value> is the rising event number
(1 to 65535).
• f_th <value> is the falling threshold
((– 32768 to + to 65535).
• f_ev <value> is the falling event number
(1 to 65535).
• owner <value> is the name of the owner
(string length 1 to 48).
alarm delete <id>
Deletes the specified RMON alarm.
CLI Command Line Reference for the Ethernet Routing Switch 8300
162 Chapter 2 config commands
config rmon
followed by:
317360-C
alarm info
Displays information about the RMON
alarms.
disable
Disables RMON on the switch.
enable
Enables RMON on the switch.
ether-stats create <id>
<ports> [owner <value>]
Creates an ether-stats control interface.
• id is the index number of the ether-stats
control interface (1 to 65535).
• ports is the single port interface {slot/
port[-slot/ port][,...]}.
Optional parameter:
• owner <value> is name of the owner
(string length 1 to 48).
ether-stats delete <id>
Deletes an ether-stats control interface.
id is the index number of the ether-stats
control interface (1 to 65535).
ether-stats info
Displays the current ether-stats settings.
ether-stats owner
<id> <name>
Changes the owner name for the ether-stats
control interface.
• id is the index number of the ether-stats
control interface (1 to 65535).
• name is name of the owner (string length 1 to
48).
Chapter 2 config commands 163
config rmon
followed by:
event create <id>
trap_src <value>
trap_dest <value>
[desc <value>]
[type <value>]
[community <value>]
[owner <value>]
Creates an event.
• id is the event index number (1 to 65535).
• trap_src <value> is the trap source IP
address.
• trap_dest <value> is the trap
destination IP address.
Optional parameters:
• desc <value> is the event description
(string length 0 to 127).
• type <value> is the event type, none,
log, snmp-trap, or log-and-trap. The
default is log-and-trap
• community <value> is the event
community (string length 1 to 127). The default
is public.
• owner <value> is the name of the owner
(string length 1 to 48). The default is cli.
event delete <id>
Deletes an event control interface.
id is the event index number (0 to 65535).
event info
Displays the event information.
history-control create
<id> <ports>
[buckets <value>]
[intv <value>]
[owner <value>]
Creates a history control interface.
• id is the index number of the history control
interface (1 to 65535).
• ports is the single port interface {slot/
port[-slot/port][,...]}.
Optional parameters:
• buckets <value> is the number of
buckets requested (1 to 350). The default is 50.
• intv <value> is the time interval in
seconds over which the data is sampled for
each bucket (1 to 3600). The default is 1800.
• owner <value> is the name of the owner
(string length 1 to 48). The default is cli.
history-control delete
<id>
Deletes a history control interface.
id is the interface index number of the
history control interface (1 to 65535).
history-control info
Displays the setting for history control
interfaces.
CLI Command Line Reference for the Ethernet Routing Switch 8300
164 Chapter 2 config commands
config rmon
followed by:
memsize <memsize>
Sets the amount of RAM in bytes to allocate
for RMON.
memsize is the memory size in bytes
(250000 to 4000000).
trap-option
<toOwner|toAll>
Controls whether the RMON traps should be
sent to the owner or all trap recipients.
toOwner|toAll is set to either the owner
or all trap recipients.
util-method <half|full>
Controls whether port utilization is calculated
in half or full duplex.
config slot
This command enables or disables the administrative status of the module.
Syntax
config slot <slots>
where slots are the slot numbers in the chassis (slot [-slot] [,...]), which
have a number range of 1 to 10.
Note: Slots are numbered from top to bottom in the Ethernet Routing Switch 8300.
317360-C
Chapter 2 config commands 165
Parameters
This command includes the following parameters:
config slot <slots>
followed by:
info
Displays the administrative status of the
module.
state <enable|disable>
Enables or disables the administrative status
of the module.
config snmp-server
This command enables or disables the snmp server.
Syntax
config snmp-server
Parameters
This command includes the following parameters:
config snmp-server
followed by:
info
Displays the status of the snmp server.
bootstrap <minsecure|
semisecure|verysecure>
Specifies the security level for bootstrapping.
config snmp-v3 community
This command configures a Simple Network Management Protocol (SNMP)
version 3 community on an 8300 Series switch.
CLI Command Line Reference for the Ethernet Routing Switch 8300
166 Chapter 2 config commands
Syntax
config snmp-v3 community
Parameters
This command includes the following parameters:
config snmp-v3 community
followed by:
317360-C
info
Displays the current snmp-v3 settings.
create <Comm Idx> <name>
<securityname>
Creates a community on an 8300 Series
switch.
• Comm Idx specifies a unique index value of a
row in this table. Its range is 1 to 32 characters.
• name specifies a community string for a row
to represent a configuration in this table. Its
range is 1 to 20 characters.
• securityname specifies a security name
which maps to a community string in the
View-based Access Control Model (VACM)
Group Member Table. Its range is 1 to 32
characters.
delete <Comm Idx>
Deletes an entry for community table.
• Comm Idx is a unique index value of a row in
this table. Its range is 1 to 32.
Chapter 2 config commands 167
config snmp-v3 community
followed by:
name <Comm Idx>
<new-name>
Changes the name for an entry in the
community table.
• Comm Idx is a unique index value of a row in
this table. Its range is 1 to 32.
• name specifies a community string for a row
to represent a configuration in this table. Its
range is 1 to 255 characters.
security <Comm Idx>
<new-security>
Changes the security name for an entry in the
community table.
• Comm Idx is a unique index value of a row in
this table. Its range is 1 to 32 characters.
• securityname specifies a security name
which maps to a community string in the
View-based Access Control Model (VACM)
Group Member Table. Its range is 1 to 32
characters.
config snmp-v3 group-access
This command configures access for a group in the View-based Access Control
Model (VACM) table on an 8300 Series switch.
Syntax
config snmp-v3 group-access
CLI Command Line Reference for the Ethernet Routing Switch 8300
168 Chapter 2 config commands
Parameters
This command includes the following parameters:
config snmp-v3 group-access
followed by:
317360-C
info
Displays the current level parameter settings
and next level directories.
create <group name>
<prefix> <model> <level>
Creates a new group member.
• group name creates a new entry with this
group name. Its range is 1 to 32 characters.
• prefix assigns a context prefix. Its range is
0 to 32 characters.
• security model assigns authentication
checking to communicate with the switch. One
of the following options can be entered:
usm for the user-based security model
snmpv1 for SNMP version 1
snmpv2c for SNMP version 2c
• level assigns the minimum level of security
required to gain the access rights allowed by
this conceptual row.
Optional parameter:
• match has the following options:
exact specifies that all rows where the
context Name exactly matches the context
prefix are selected.
prefix specifies that all rows where the
context Name whose starting octets exactly
match the context prefix are selected.
delete <group name>
<prefix> <model> <level>
Removes group access from the v3 VACM
table. The range is 1 to 32 characters.
Chapter 2 config commands 169
config snmp-v3 group-access
followed by:
match <exact|prefix>
<group name> <prefix>
<security model> <level>
Changes group access context match for the
v3 VACM table.
• group name is the name of the group
member. Its range is 1 to 32 characters.
• prefix is the context prefix. Its range is 0 to
32 characters.
• security model is the authentication
checking for communication with the switch.
One of the following options can be entered:
usm for the user-based security model
snmpv1 for SNMP version 1
snmpv2c for SNMP version 2c
• level is the minimum level of security
required to gain the access rights allowed by
this conceptual row.
view <group name>
<prefix> <model> <level>
[read <value>] [write
<value>]
Changes group access view name match for
the v3 VACM table.
• group name is the name of the group
member. Its range is 1 to 32 characters.
• prefix is the context prefix. Its range is 1 to
32 characters.
• security model is the authentication
checking for communication with the switch.
One of the following options can be entered:
usm for the user-based security model
snmpv1 for SNMP version 1
snmpv2c for SNMP version 2c
• level is the minimum level of security
required to gain the access rights allowed by
this conceptual row.
config snmp-v3 group-member
This command configures a group member in the View-based Access Control
Model (VACM) table on an 8300 Series switch.
Syntax
config snmp-v3 group-member
CLI Command Line Reference for the Ethernet Routing Switch 8300
170 Chapter 2 config commands
Parameters
This command includes the following parameters:
config snmp-v3 group-member
followed by:
317360-C
info
Displays the VACM group membership
configuration.
create <user name>
<security model>
[<group name>]
Creates a new group member.
• user name creates a new entry with this
user name. Its range is 1 to 32 characters.
• security model specifies the message
processing model to use when generating a
Simple Network Management Protocol
(SNMP) message. One of the following options
can be entered:
usm for the user-based security model
snmpv1 for SNMP version 1
snmpv2c for SNMP version 2c
Optional parameter:
• group name assigns the user to the group
for data access. Its range is 1 to 32 characters.
delete <user name>
<security model>
Deletes a user group from the v3 VACM
table. The range is 1 to 32 characters.
name <user name>
<security model>
<group name>
Changes the group name for the v3 VACM
table.
• user name is the name of the group
member. Its range is 1 to 32 characters.
• security model is the message
processing model to use when generating a
Simple Network Management Protocol
(SNMP) message. One of the following options
can be entered:
usm for the user-based security model
snmpv1 for SNMP version 1
snmpv2c for SNMP version 2c
• group name is the user of the group for data
access. Its range is 1 to 32 characters.
Chapter 2 config commands 171
config snmp-v3 mib-view
This command configures an entry for the Management Information Base (MIB)
View table on an 8300 Series switch.
Syntax
config snmp-v3 mib-view
Parameters
This command includes the following parameters:
config snmp-v3 mib-view
followed by:
info
Displays the current snmp-v3 mib-view
information.
create <view name>
<subtree oid>
[new-mask <value>]
[new-type
<include|exclude>]
Creates a new entry for the MIB View table.
• view name creates a new entry with this
group name. Its range is 1 to 32 characters.
• subtree oid is the prefix that defines the
set of MIB objects accessible by this Simple
Network Management Protocol (SNMP) entity.
Its range is 1 to 32 characters.
Optional parameters:
• new-mask <value> specifies that a bit
mask be used with
vacmViewTreeFamilySubtree to determine
whether an Object Identifier (OID) falls under
a view subtree. Its range is 1 to 32 characters.
• new-type <include|exclude>
determines whether access to a MIB object is
granted (include) or denied (exclude).
delete <view name>
<subtree oid>
Deletes an entry for the MIB View table.
• view name is the entry with this group
name. Its range is 1 to 32 characters.
• subtree oid is the prefix that defines the
set of MIB objects accessible by this Simple
Network Management Protocol (SNMP) entity.
Its range is 1 to 32 characters.
CLI Command Line Reference for the Ethernet Routing Switch 8300
172 Chapter 2 config commands
config snmp-v3 mib-view
followed by:
mask <view name>
<subtree oid> <new-mask>
Changes the view mask for an entry in the
MIB View table.
• view name is the entry with this group
name. Its range is 1 to 32 characters.
• subtree oid is the prefix that defines the
set of MIB objects accessible by this Simple
Network Management Protocol (SNMP) entity.
Its range is 1 to 32 characters.
• mask <value> specifies that a bit mask be
used with vacmViewTreeFamilySubtree to
determine whether an Object Identifier (OID)
falls under a view subtree. Its range is 1 to 32
characters.
type <view name>
<subtree oid> <new-type>
Changes the type for an entry in the MIB
View table.
• view name is the entry with this group
name. Its range is 1 to 32 characters.
• subtree oid is the prefix that defines the
set of MIB objects accessible by this Simple
Network Management Protocol (SNMP) entity.
Its range is 1 to 32 characters.
• type <include|exclude> determines
whether access to a MIB object is granted
(include) or denied (exclude).
config snmp-v3 usm
This command configures a user in the User-based Security Model (USM) table
on an 8300 Series switch.
Syntax
config snmp-v3 usm
317360-C
Chapter 2 config commands 173
Parameters
This command includes the following parameters:
config snmp-v3 usm
followed by:
info
Displays the current level parameter settings
and next level directories.
create <user name>
[<auth protocol>]
[auth <value>]
[priv <value>]
Creates a new user in the USM table.
• user name specifies the name used as an
index to the table. Its range is 1 to 32
characters.
Optional parameters:
• auth protocol specifies an authentication
protocol. If no value is entered, the entry has no
authentication capability. The protocol choices
are MD5 and SHA.
• auth <value> specifies an authentication
password. If no value is entered, the entry has
no authentication capability. Its range is 1 to 32
characters.
• priv <value> assigns a privacy password.
If no value is entered, the entry has no privacy
capability. Its range is 1 to 32 characters.
NOTE: An authentication must be set before a
privacy option can be set .
delete <user name>
Deletes a user for the v3 View-based Access
Control Model (VACM) table. Its range is 1 to
32 characters.
auth <user name> old-pass
<value> new-pass <value>
Changes the authentication password. The
range for user name and password
value is 1 to 32 characters.
priv <user name> old-pass
<value> new-pass <value>
Changes the privacy password. The range for
user name and password value is 1 to
32 characters.
config stg
This command configures parameters for a specified Spanning Tree Group (STG).
CLI Command Line Reference for the Ethernet Routing Switch 8300
174 Chapter 2 config commands
Syntax
config stg <sid>
where sid is the spanning tree group ID, which has a number range of 1 to 25.
Parameters
This command includes the following parameters:
config stg <sid>
followed by:
317360-C
info
Displays characteristics of the spanning tree
group.
add ports <ports>
Adds ports to a spanning tree group.
• ports specifies one or more ports , shown as
{slot/port[-slot/port][,...]}.
create [<ports>]
[vlan <value>]
Creates a new spanning tree group.
• ports specifies one or more ports, shown as
{slot/port[-slot/port][,...]}.
• vlan <value> is the VLAN ID. If a VLAN
spans multiple switches, it must be within the
same STG across all switches.
delete
Deletes the specified spanning tree group.
forward-delay <timeval>
Sets the bridge forward delay time in 1/100
seconds.
• timeval is between 400 and 3000.
The default is 1500 (15 seconds).
group-stp
<enable|disable>
Enables or disables the spanning tree
protocol on the specified spanning tree
group. The default is enable.
hello-interval <timeval>
Sets the bridge hello time in 1/100 seconds.
• timeval is between 100 and 1000.
The default is 200 (2 seconds).
max-age <timeval>
Sets the bridge maximum age time in 1/100
seconds.
• timeval is between 600 and 4000.
The default is 2000 (20 seconds).
Chapter 2 config commands 175
config stg <sid>
followed by:
priority <number>
Sets the bridge priority number.
• number is between 0 and 65535.
The default is 32768.
remove ports <value>
Removes ports from a spanning tree group.
• value specifies one or more ports , shown as
{slot/port[-slot/port][,...]}.
trap-stp
<enable|disable>
Enables or disables the spanning tree
protocol trap for the specified spanning tree
group. The default is enable.
config sys access-policy
This command configures IP access policies on the switch.
Syntax
config sys access-policy
Parameters
This command includes the following options:
config sys access-policy
followed by:
info
Displays the global access policy settings.
enable <true|false>
Globally enables or disables the IP access
policy feature on the switch. false means
no policies on the switch are applied.
The default is false.
CLI Command Line Reference for the Ethernet Routing Switch 8300
176 Chapter 2 config commands
config sys access-policy policy
This command creates or modifies specific access policies.
Syntax
config sys access-policy policy <pid>
where pid is the number which identifies the policy from 1 to 65535. The policy
ID is assigned when the policy is created.
Parameters
This command includes the following options:
317360-C
Chapter 2 config commands 177
config sys access-policy policy <pid>
followed by:
info
Displays characteristics of the specified access policy.
accesslevel
<level>
Sets an access level for a policy.
• level is the access level ro, rw, or rwa.
The default is ro.
create
Creates a new access policy with the specified policy ID.
delete
Deletes the access policy with the specified policy ID.
disable
Disables the specified access policy.
enable
Enables the specified access policy. The default is
enable.
host <ipaddr>
Sets the access policy trusted host address. Applicable
only for remote login and remote shell execution.
• ipaddr is the IP address {a.b.c.d} of the host used to
authenticate the user. The login must be the specified user
at the specified host for access.
mode <mode>
Sets the specified access policy to allow or deny access.
• mode is allow or deny.
The default is allow.
name <name>
Sets a name for the specified access policy.
• name is a string from 0 to 15 characters (for example
Group 1).
The default is policy <pid>
network <ipaddr/ Sets the access policy network address and subnet
mask>
mask {a.b.c.d/x|a.b.c.d/x.x.x.x|default}.
This command defines those stations that are affected
by the access policy. If you specify an IP address and
subnet mask, that location is either allowed or denied
access, depending on the setting of the mode command.
default means that everyone on the network is either
allowed or denied access, as defined by the mode
command.
CLI Command Line Reference for the Ethernet Routing Switch 8300
178 Chapter 2 config commands
config sys access-policy policy <pid>
followed by:
precedence
<precedence>
Sets the access policy precedence. The precedence
determines which policy to use if multiple policies apply.
• precedence is a range from 1 to 128, with the lowest
number having the highest precedence.
The default is 10.
username
<string>
Sets the trusted host user name from the trusted host for
the specified policy. Applies only to rlogin access.
• string is the host user name (0 to 30 characters).
config sys access-policy policy service
This command enables or disables an access service for the specified policy.
Syntax
config sys access-policy policy <pid> service
where pid is the number which identifies the policy from 1 to 65535. The policy
ID is assigned when the policy is created.
Parameters
This command includes the following options:
317360-C
Chapter 2 config commands 179
config sys access-policy policy <pid> service
followed by:
Displays the status (enable or disable) of each service
(e.g., ftp, http, rlogin).
info
ftp
Enables or disables FTP for the specified policy. The
<enable|disable> default is disable.
http
Enables or disables HTTP for the specified policy.The
<enable|disable> default is disable.
rlogin
Enables or disables remote login for the specified policy.
<enable|disable> The default is disable.
snmp Enables or disables Simple Network Management
<enab Protocol (SNMP) for the specified policy. The default is
le|dis enable.
able>
telnet
Enables or disables telnet for the specified policy. The
<enable|disable> default is disable.
tftp
Enables or disables Trivial File Transfer Protocol (TFTP)
<enable|disable> for the specified policy. The default is disable.
config sys info
This command displays the current level parameter settings and next level
directories.
Syntax
config sys info
config sys link-flap-detect
This command monitors link state changes, and take user-defined action if the
port state changes too often.
CLI Command Line Reference for the Ethernet Routing Switch 8300
180 Chapter 2 config commands
Syntax
config sys link-flap-detect
Parameters
This command includes the following options:
config sys link-flap-detect
followed by:
info
Displays the link-flap-detect settings.
auto-port-down
<enable|disable>
Enables or disables automatic disabling of the
port, if the link-flap threshold is exceeded.
The default is enable.
frequency <frequency>
Sets the number of changes that are allowed
during the time specified by the interval
command without activating the
auto-port-down function. The frequency
range is from 1 to 9999 and the default is 10.
interval <interval>
Sets the link-flap-detect interval in seconds.
The interval range is from 2 to 600 and the
default is 60.
send-trap
<enable|disable>
Enables or disables sending traps. The
default is enable.
config sys mcast-software-forwarding
This command sets multicast software forwarding.
Syntax
config sys mcast-software-forwarding
Parameters
This command includes the following options:
317360-C
Chapter 2 config commands 181
config sys mcast-software-forwarding
followed by:
info
Displays characteristics of multicast software forwarding.
disable
Disables multicast software forwarding.
enable
Enables multicast software forwarding. The default is
enable.
config sys set
This command sets individual system-level switch parameters.
Syntax
config sys set
Parameters
This command includes the following options:
config sys set
followed by:
info
Displays current system settings.
clock-sync-time
<minutes>
Configures synchronization between the
real-time and the system clocks.
• minutes is the number of minutes between
synchronizations. The range is 15 to 3600
minutes and the default is 60 minutes.
contact <contact>
Sets the contact information for the switch.
• contact is an ASCII string from 0 to 255
characters (for example a phone extension or
email address).
location <location>
Sets the location information for the switch.
• location is an ASCII string from 1 to 1024
characters (for example, Finance).
CLI Command Line Reference for the Ethernet Routing Switch 8300
182 Chapter 2 config commands
config sys set
followed by:
mgmt-virtual-ip <ipaddr/ Creates a virtual management port in
mask>
addition to the physical management ports on
the switch management modules.
• ipaddr/mask is the IP address that you
assign to the virtual management port.
The default is 0.0.0.0/0.0.0.0.
Note: The mgmt-virtual-ip address must be
on the same subnet as the physical
management address.
msg-control
<enable|disable>
Enables or disables the system message
control. Enable this command to suppress
duplicate error messages. The default is
disable.
name <prompt>
Sets the box or root level prompt name for the
switch.
• prompt is an ASCII string from 1 to 1024
characters (for example, LabSC7 or Closet4).
portlock <on|off>
Turns port locking on or off. To specify the
ports to be locked, use the config
ethernet <ports> lock command. The
default is off.
sendAuthenticationTrap
<true|false>
Sets whether or not to send authentication
failure traps. The default is false.
topology <on|off>
Turns the topology feature on or off.
The topology feature generates topology
packets used by Optivity* network
management software. When this feature is
off, the topology table is not generated.
The default is on.
config sys set action
This command resets system functions.
317360-C
Chapter 2 config commands 183
Syntax
config sys set action
Parameters
This command includes the following options:
config sys set action
followed by:
info
Displays the current settings for system actions.
cpuswitchover
Resets the switch to change over to the backup CPU.
resetconsole
Reinitializes the hardware Universal Asynchronous
Receiver/Transmitter (UART) drivers. Use this command
only if the console connection is hung.
resetcounters
Resets all the statistics counters in the switch to zero.
config sys set eapol
This command sets eapol.
Syntax
config sys set eapol
Parameters
This command includes the following options:
config sys set action
followed by:
info
Displays the current settings for EAPOL.
acct-enable
<true|false>
Sets the EAPOL.
CLI Command Line Reference for the Ethernet Routing Switch 8300
184 Chapter 2 config commands
config sys set action
followed by:
clear stat
Clears the status of EAPOL.
enable
Activates EAPOL>
disable
Disables EAPOL.
config sys set eapol default-guest-vlan
This command enables the EAPOL default guest VLAN.
Syntax
config sys set eapol default-guest-vlan <enable/disable>
config sys set eapol guest-vlan
This command enables an EAPOL guest VLAN.
Syntax
config sys set eapol guest-vlan <vid>
config sys set snmp
This command configures the Simple Network Management Protocol (SNMP).
Syntax
config sys set snmp
317360-C
Chapter 2 config commands 185
Parameters
This command includes the following options:
config sys set snmp
followed by:
info
Displays the current SNMP settings.
del-trap-recv
<ipaddr>
Deletes the SNMP trap receiver.
ipaddr is the IP address of the trap receiver.
trap-recv
<ipaddr> <v1|v2c>
<commstr>
Sets an SNMP trap receiver.
• ipaddr is the IP address of the trap receiver.
• v1|v2c is the SNMP version; select version 1 or version 2c.
• commstr is the input community string from 1 to 20
characters.
config sys syslog
This command enables or disables the sending of syslog messages on the switch,
and specifies the maximum number of syslog hosts supported.
Syntax
config sys syslog
Parameters
This command includes the following options:
config sys syslog
followed by:
info
Displays the current syslog settings.
CLI Command Line Reference for the Ethernet Routing Switch 8300
186 Chapter 2 config commands
config sys syslog
followed by:
max-hosts <maxhost> Specifies the maximum number of syslog hosts
supported.
maxhost is the maximum number of enabled hosts
allowed (1 to 10). The default is 5.
state
<enable|disable>
Enables or disables sending syslog messages on
the switch. The default is enable.
config sys syslog host
This command configures the syslog host.
Syntax
config sys syslog host <id>
where id is the syslog host ID. It is a value from 1 to 10.
Parameters
This command includes the following options:
config sys syslog host <id>
followed by:
317360-C
info
Displays system log information for the specified
host. This command results in the same output as
the show sys syslog host <id> info
command.
address <ipaddr>
Configures a host location for the syslog host.
• address is the IP address of the system syslog host.
The default is 0.0.0.
create
Creates a syslog host.
delete
Deletes a syslog host.
Chapter 2 config commands 187
config sys syslog host <id>
followed by:
facility <facility> Specifies the facility used in messages to the syslog
host.
• facility is the system syslog host facility
(LOCAL0 to LOCAL7).
The default is LOCAL7.
host
<enable|disable>
Enables or disables the syslog host.
The default is disable.
mapinfo <level>
Specifies the syslog severity level to use for Ethernet
Routing Switch 8300 Information messages.
• level is {emergency|alert|
critical|error|warning|
notice|info|debug}.
The default is info.
mapwarning <level>
Specifies the syslog severity to use for Ethernet
Routing Switch 8300 Warning messages.
• level is {emergency|alert|
critical|error|warning|
notice|info|debug}.
The default is warning
maperror <level>
Specifies the syslog severity to use for Ethernet
Routing Switch 8300 Error messages.
• level is {emergency|alert|
critical|error|warning|
notice|info|debug}.
• The default is error.
mapfatal <level>
Specifies the syslog severity to use for Ethernet
Routing Switch 8300 Fatal messages.
• level is {emergency|alert|
critical|error|warning|
notice|info|debug}.
• The default is emergency.
CLI Command Line Reference for the Ethernet Routing Switch 8300
188 Chapter 2 config commands
config sys syslog host <id>
followed by:
severity
<info|warning|
error|fatal>
[<info|warning|
error|fatal>]
[<info|warning|
error|fatal>]
[<info|warning|
error|fatal>]
Specifies the severity levels for which syslog
messages should be sent for the specified modules.
• severity is the severity for which syslog messages
are sent.
• The default is info|warning|error|fatal
udp-port <port>
Specifies the User Datagram Protocol (UDP) port
number on which to send syslog messages to the
syslog host.
• udp-port port is the system syslog host port
number (514 to 530).
config vlan
This command performs general Virtual LAN (VLAN) operations, such a setting
a QoS level for the VLAN or adding or changing the name of a VLAN.
Syntax
config vlan <vid>
where vid identifies the VLAN ID, which has a number range of 1 to 4094.
317360-C
Chapter 2 config commands 189
Parameters
This command includes the following parameters:
config vlan <vid>
followed by:
info
Displays characteristics of the specified
VLAN.
action <action choice>
Flushes a table or triggers a Routing
Information Protocol (RIP) update.
• action choice is { none |
flushMacFdb | flushArp | flushIp |
all }. To flush all tables, use all.
add-mlt <integer>
Adds a MultiLink Trunking (MLT) to a VLAN.
integer is the MLT ID (1 to 31).
delete
Deletes a VLAN.
name <vname>
Changes the name of a VLAN.
vname is a string from 0 to 20 characters.
qos-level <integer>
Sets a Quality of Service (QoS) level for a
VLAN.
• integer is the QoS level (0 to 7).
Note: Level 7 is reserved and cannot be set
by a user.
update-dynamic-mac-qoslevel <enable|disable>
Updates the dynamic mac-qos level.
config vlan create
This command creates a Virtual LAN (VLAN). It can specify the type of VLAN
and assign an IP address to the VLAN.
Syntax
config vlan <vid> create
CLI Command Line Reference for the Ethernet Routing Switch 8300
190 Chapter 2 config commands
where vid identifies the VLAN ID, which has a number range of 1 to 4094.
VLAN 1 is the default VLAN. The default VLAN name is VLAN-vid. For
example, VLAN 315 has the default name VLAN-315.
Parameters
This command includes the following parameters:
config vlan <vid> create
followed by:
info
Displays information about the type of
specified VLAN.
byport <sid> [name
Creates a port-based VLAN.
<value>] [color <value>] • sid is the spanning tree group ID from 1 to 64
characters.
Optional parameters:
• name <value> is the name of the VLAN
from 0 to 20 characters.
• color <value> is the color of the VLAN
{0..32}. The color attribute is used by Optivity
software to display the VLAN.
byprotocol <sid>
<ip|ipx802dot3|
ipx802dot2|ipxSnap|
ipxEthernet2|appleTalk|
decLat|decOther|
sna802dot2|snaEthernet2|
netBios|xns|vines|ipV6|
usrDefined|rarp> [<pid>]
[name <value>] [color
<value>] [encap <value>]
317360-C
Creates a protocol-based VLAN.
• sid is a spanning tree ID from 1 to 64.
• ip|ipx802dot3|ipx802dot2|
ipxSnap|ipxEthernet2|appleTalk|
decLat|decOther|sna802dot2|
snaEthernet2|netBios|xns|vines|
ipV6|usrDefined|rarp specifies the
protocol.
Optional parameters:
• pid is a user-defined protocol ID number
from 0 to 65535.
• name <value> is the name of the VLAN
from 0 to 20 characters.
• color <value> is the color number of the
VLAN from 0 to 32. The color attribute is used
by Optivity software to display the VLAN.
• encap <value> is the encapsulation
method for usrDefined VLANs.
Chapter 2 config commands 191
config vlan ip dhcp-relay broadcast
This command enables dhcp-relay broadcasting.
Syntax
config vlan ip dhcp-relay broadcast <enable|disable>
config vlan ip dhcp-relay
This command enable dhcp-relay.
Syntax
config vlan ip dhcp-relay <enable|disable>
config vlan ip dhcp-relay max-hop
This command specifies the value for the dhcp-relay max-hop.
Syntax
config vlan ip dhcp-relay max-hop <max-hop>
config vlan ip dhcp-relay min-sec
This command the minutes and seconds of dhcp-relay.
Syntax
config vlan ip dhcp-relay min-sec <min-sec>
CLI Command Line Reference for the Ethernet Routing Switch 8300
192 Chapter 2 config commands
config vlan ip dhcp-relay mode
This command specifies the dhcp-relay mode.
Syntax
config vlan ip dhcp-relay mode <bootp|dhcp|bootp_dhcp>
config vlan ip dhcp-relay info
This command specifies dhcp-relay information.
Syntax
config vlan ip dhcp-relay info
config ip dhcp-relay info mode
This command specifies the information mode.
Syntax
config vlan info mode <mode> agent <ipaddr> server <ipaddr>
config vlan fdb-entry
This command configures or modifies Virtual LAN (VLAN) entries in the
forwarding database.
Syntax
config vlan <vid> fdb-entry
317360-C
Chapter 2 config commands 193
where:
vid identifies the VLAN ID, which has a number range of 1 to 4000.
Parameters
This command includes the following parameters:
config vlan <vid> fdb-entry
followed by:
info
Displays the VLAN fdb aging-time, mac
addresses, qos-level, and how each entry
was learned.
aging-time <seconds>
aging-time <seconds> sets the
forwarding database aging timer.
• seconds indicates the time out period in
seconds {10..1000000}
When this timer expires, the entry is flushed
from the fdb table.
flush
Flushes forwarding database.
qos-level <mac>
<integer>
Sets a QoS Level for a VLAN.
• integer allows you to choose a QoS level
from 0 through 7.
sync
Allows the forwarding database of the switch
to synchronize with the forwarding database
of the other aggregation switch.
config vlan fdb-filter
This command configures Virtual LAN (VLAN) filter members.
Syntax
config vlan <vid> fdb-filter
where vid identifies the VLAN ID, which has a number range of 1 to 4000.
CLI Command Line Reference for the Ethernet Routing Switch 8300
194 Chapter 2 config commands
Parameters
This command includes the following parameters:
config vlan <vid> fdb-filter
followed by:
info
Displays current information about the VLAN
fdb-filter members.
add <mac> port <value>
drop <value> [qos
<value>]
Allows the addition of a filter member to a
VLAN bridge.
• mac indicates the MAC address.
• port <value> indicates the port (slot/port)
number.
• drop indicates none|srcOnly|dstOnly|Both
Optional parameter:
• qos <value> is the Quality of Service
level. The default value is 1.
remove <mac>
Allows the removal of a filter
member from a VLAN
bridge.
• mac indicates the MAC address.
config vlan fdb-static
This command configures Virtual LAN (VLAN) static member parameters.
Syntax
config vlan <vid> fdb-static
where vid identifies the VLAN ID. Enter a number in the range 1 to 4094.
317360-C
Chapter 2 config commands 195
Parameters
This command includes the following parameters:
config vlan <vid> fdb-static
followed by:
info
Displays all statistically configured entries in
the fdb table for the VLAN.
add <mac> port <value>
[qos <value>]
Allows the addition of a static member to a
VLAN bridge.
• mac indicates the MAC address.
• port <value> indicates the port (slot/port)
number.
Optional parameter:
• qos <value> is the Quality of Service
level. The default is 1. The range is 0 to 7,
where 7 is reserved.
remove <mac>
Allows the removal of a
static member from a VLAN
bridge.
• mac indicates the MAC address.
config vlan ip
This command assigns an IP address to a Virtual LAN (VLAN).
Syntax
config vlan <vid> ip
where vid identifies the VLAN ID, which has a number range of 1 to 4000.
CLI Command Line Reference for the Ethernet Routing Switch 8300
196 Chapter 2 config commands
Parameters
This command includes the following parameters:
config vlan <vid> ip
followed by:
info
Displays current level parameter settings and
next level directories.
create <ipaddr/mask>
Assigns an IP address and subnet mask to
the VLAN.
• ipaddr/mask is the IP address and mask
{a.b.c.d}.
Optional parameter:
delete <ipaddr>
Deletes the specified VLAN address.
config vlan ip arp-response
This command enables and disables Address Resolution Protocol (ARP)
responses on a Virtual LAN (VLAN).
Syntax
config vlan <vid> ip arp-response
where vid identifies the VLAN ID, which has a number range of 1 to 4000.
Parameters
This command includes the following parameters:
config vlan <vid> ip arp-response
followed by:
317360-C
info
Displays ARP response status on the VLAN.
disable
Disables ARP responses on the VLAN.
enable
Enables ARP responses on the VLAN.
Chapter 2 config commands 197
config vlan ip igmp
This command configures Internet Group Management Protocol (IGMP) on a
Virtual LAN (VLAN).
Syntax
config vlan <vid> ip igmp
where vid identifies the VLAN ID, which has a number range of 1 to 4000.
Parameters
This command includes the following parameters:
config vlan <vid> ip igmp
followed by:
info
Displays IGMP settings on the VLAN.
del-mrouter <ports>
Deletes multicast router ports.
• ports specifies one or more ports , shown as
{slot/port[-slot/port][,...]}.
fast-leave
<enable|disable>
Enables or disables IGMP v 2 Fast Leave
functionality. A group member can leave a
group upon receipt of this message, instead
of waiting to time out.
flush <mrouter|sender|
grp-member>
[<SenderAddress>]
[<GroupAddress>]
Flushes the specified table.
• SenderAddress indicates the IP address of
the selected sender.
• GroupAddress indicates the IP address of
the selected multicast group.
mrouter <ports>
Adds multicast router ports.
• ports is the portlist form {slot/
port[-slot/port][, ...]}.
proxy-snoop
<enable|disable>
Enables or disables the proxy-snoop option
for the VLAN.
CLI Command Line Reference for the Ethernet Routing Switch 8300
198 Chapter 2 config commands
config vlan <vid> ip igmp
followed by:
query-interval <seconds> Sets the frequency (in seconds) at which host
query packets are transmitted on the VLAN.
• seconds is the range from 1 to 65535. The
default value is 125 seconds.
robustval <integer>
Allows tuning for the expected packet loss of
a network.
• integer is an integer value with a range of 2
to 255 seconds. The default value is 2 seconds.
Increase the value if you expect the network to
experience loss.
router-alert
<enable|disable>
Enables or disables the router alert option.
When enabled, this parameter instructs the
router to process packets not directly
addressed to it.
Note: To maximize your network
performance, Nortel Networks recommends
that you set this parameter according to the
version of IGMP currently in use.
• IGMPv1 - Disable
• IGMPv2 - Enable
• IGMPv3 - Enable
snoop <enable|disable>
Enables or disables the snoop option for the
VLAN.
version <integer>
Sets the version of IGMP that you want to
configure on this interface. For IGMP to
function correctly, all routers on a LAN must
use the same version.
• integer is an integer value with a value of 1,
2 or 3. The default value is 2 (IGMPv2).
config vlan ip igmp fast-leave-members
This command configures Internet Group Management Protocol (IGMP)
fast-leave members on a Virtual LAN (VLAN).
317360-C
Chapter 2 config commands 199
Syntax
config vlan <vid> ip igmp fast-leave-members
where vid identifies the VLAN ID, which has a number range of 1 to 4000.
Parameters
This command includes the following parameters:
config vlan <vid> ip igmp fast-leave-members
followed by:
info
Displays information about the fast-leave
members of the VLAN.
enable <ports>
Enables members to join a fast-leave group
on a given port on the VLAN.
• ports is the port or list of ports to be joined
with the fast-leave group.
disable <ports>
Removes a given port from receiving a leave
message from any member of any given
group, and the normal IGMP behavior is
skipped.
config vlan ip igmp static-members
This command configures Internet Group Management Protocol (IGMP) static
members on a Virtual LAN (VLAN).
Syntax
config vlan <vid> ip igmp static-members <GroupAddress>
where vid identifies the VLAN ID, which has a number range of 1 to 4094.
GroupAddress is the multicast group IP address of the multicast stream.
CLI Command Line Reference for the Ethernet Routing Switch 8300
200 Chapter 2 config commands
Parameters
This command includes the following parameters:
config vlan <vid> ip igmp static-members <GroupAddress>
followed by:
317360-C
info
Displays information about the static members of the
VLAN.
add <ports>
<static|blocked>
Adds a static-member entry to the VLAN.
• ports is the port or list of ports to redirect the
multicast stream for this multicast group.
• static|blocked sets the route to static or blocked.
create <ports>
<static|blocked>
Creates a static-member entry to the VLAN.
• ports is the port or list of ports to redirect the
multicast stream for this multicast group.
• static|blocked sets the route to static or blocked.
delete
Deletes a static-member entry to the VLAN.
remove <ports>
<static|blocked>
Removes a port from the static-member entry to the
VLAN.
• ports is the port or list of ports to redirect the
multicast stream for this multicast group.
• static|blocked sets the route to static or blocked.
Chapter 2 config commands 201
config vlan <vid> ip rip
There are two sets of commands to configure RIP on a specific interface. The two
sets contain some overlapping commands, and in these cases it does not matter
which set you use to configure those parameters.
This command configures RIP parameters on a specific interface.
Syntax
config ip rip interface <ipaddr>
where ipaddr indicates the IP address of the interface
config vlan <vid> ip rip
where vid is the VLAN ID
Parameter
This command includes the following parameters:
config vlan <vid> ip rip
followed by:
advertise-when-down
<enable|disable>
Configures whether or not the network on this interface
will be advertised as up, even if the port is down. The
default is disabled.
Note: When you configure a VLAN without any link and
enable advertise-when-down, it will not advertise the
route until the port is active. Then the route will be
advertised even when the link is down. To disable
advertising based on link states, disable
advertise-when-down.
auto-aggr
<enable|disable>
Enables or disables automatic route aggregation on the
interface. When enabled, the router switch
automatically aggregates routes to their natural mask
when they are advertised on an interface in a network
of a different class. The default is disabled.
Routes with different metrics can be aggregated. RIP
uses the out metric associated with the first route found
in the routing table that is to be aggregated.
CLI Command Line Reference for the Ethernet Routing Switch 8300
202 Chapter 2 config commands
config vlan <vid> ip rip
followed by:
317360-C
cost <cost>
Sets the RIP cost (metric) for this interface.
• cost is an integer value with a range of 1 to 15.
The default value is 1.
default-listen
<enable|disable>
Configures whether or not the interface will listen for
RIP updates for the default route learned through RIP.
The default is disabled.
default-supply
<enable|disable>
Configures whether or not the interface will send RIP
advertisements for the default route, if one exists in the
routing table. The default is disabled.
holddown <seconds>
Sets the RIP holddown timer for the interface. The
value of the holddown timer is the length of time (in
seconds) that RIP will continue to advertise a network
after determining that it is unreachable.
• seconds is an integer value with a range of 0 to
360.
The default value is set by the global holddown
parameter, which has a default of 120 seconds. The
interface timer setting overrides the global parameter.
However, if you subsequently reset the global
parameter, the global setting then overrides the
interface timer setting.
info
Shows RIP configuration for the interface.
in-policy <policy
name>
Sets the RIP policy for inbound filtering on the
interface. The in-policy determines which routes will be
learned on the interface.
• policy name is a string length {0..64}.
To delete the policy from the interface configuration,
enter an empty string.
listen
<enable|disable>
Configures whether or not the interface will listen for
RIP routes. The default is enabled.
manualtrigger
Executes a manually triggered RIP update.
out-policy <policy
name>
Sets the RIP policy for outbound filtering on the
interface. The out-policy determines which routes will
be advertised from the routing table on the interface.
• policy name is a string length {0..64}.
To delete the policy from the interface configuration,
enter an empty string.
Chapter 2 config commands 203
config vlan <vid> ip rip
followed by:
poison
<enable|disable>
Sets whether or not RIP routes on the interface learned
from a neighbor are advertised back to the neighbor.
• If disabled, split horizon is invoked, and IP routes
learned from an immediate neighbor are not
advertised back to the neighbor.
• If enabled, the RIP updates sent to a neighbor from
which a route is learned are “poisoned” with a
metric of 16. Therefore, the receiver neighbor
ignores this route because the metric 16 indicates
infinite hops in the network.
The default is disabled.
supply
<enable|disable>
Enables or disables the interface to supply RIP
updates.
timeout <seconds>
Sets the RIP timeout interval for the interface.
• seconds is an integer value with a range of 15 to
259200.
The default value is set indirectly by the global update
time parameter. By default, the timeout timer is set at 6
times the update timer, in accordance with the RFC
specification. With a default global update timer setting
of 30 seconds, the default timeout interval is 180
seconds.
Configure the timeout parameter on the interface only if
you want to break the relationship with the update
timer. For example, if you have set the global update
parameter to a very short interval in order to minimize
the problem of fast convergence, the associated default
timeout may be too short. In this case, configure the
timeout interval manually.
The interface timer setting overrides the global
parameter. However, if you subsequently reset the
global parameter, the global setting then overrides the
interface timer setting.
trigger
<enable|disable>
Enables or disables automatic triggered updates for
RIP on this interface. The default is disabled.
CLI Command Line Reference for the Ethernet Routing Switch 8300
204 Chapter 2 config commands
config vlan ip proxy
This command enables and disables a proxy Address Resolution Protocol (ARP)
on a Virtual LAN (VLAN). A proxy ARP on a VLAN allows a router to answer a
local ARP request for a remote destination.
Syntax
config vlan <vid> ip proxy
where vid identifies the VLAN ID, which has a number range of 1 to 2000.
Parameters
This command includes the following parameters:
config vlan <vid> ip proxy
followed by:
info
Displays ARP proxy status on the VLAN.
disable
Disables proxy ARP on the VLAN.
enable
Enables proxy ARP on the VLAN, allowing a
router to answer a local ARP request for a
remote destination.
config vlan ports
This command adds or removes ports to an existing Virtual LAN (VLAN).
Syntax
config vlan <vid> ports
where vid identifies the VLAN ID, which has a number range of 1 to 4000.
317360-C
Chapter 2 config commands 205
Parameters
This command includes the following parameters:
config vlan <vid> ports
followed by:
info
Displays member status of the ports in a VLAN.
add <ports> [member
<value>]
Adds one or more ports to an existing VLAN.
• ports is the portlist form {slot/port[-slot/port][,
...]}.
Optional parameter:
• member <value> is the port member type. It can
be a portmember (always a member), static
(sometimes a member), or notallowed (never a
member).
remove <ports>
[member <value>]
Removes ports from a VLAN, but does not delete
the VLAN.
• ports is the portlist form {slot/port[-slot/port][,
...]}.
Optional parameter:
• member <value> is the port member type:
portmember (always a member),
static (always a member), or notallowed
(never a member).
config vlan static-mcastmac
This command configures Layer 2 multicast Media Access Control (MAC)
filtering.
Syntax
config vlan <vid> static-mcastmac
where vid identifies the VLAN ID, which has a number range of 1 to 4000.
CLI Command Line Reference for the Ethernet Routing Switch 8300
206 Chapter 2 config commands
Parameters
This command includes the following parameters:
config vlan <vid> static-mcastmac
followed by:
info
Displays current settings.
add mac <value>
[port <value>]
[mlt <value>]
Adds VLAN static multicast MAC entries, where:
• mac <value> is the MAC address.
Optional parameters:
• port <value> is the port to receive the multicast
flooding.
• mlt <value> is the MultiLink Trunking ID.
add-mlt <mid>
mac <value>
Adds MLT to VLAN static multicast MAC entries.
• mid is the MultiLink Trunking ID.
• mac value> is the MAC address.
add-ports <ports>
mac <value>
Adds ports to VLAN static multicast MAC entries.
• ports is the portlist form {slot/port[-slot/port][,
...]}.
• mac <value> is the MAC address.
delete mac <value>
Deletes VLAN static multicast MAC entries.
• mac <value> is the MAC address.
delete-mlt <mid>
mac <value>
Deletes MLT-to-VLAN static multicast MAC entries.
• mid is the MultiLink Trunking ID.
• mac <value> is the MAC address.
delete-ports <ports> Deletes ports from VLAN static multicast MAC
mac <value>
entries.
• ports is the portlist form {slot/port[-slot/
port][, ...]}.
• mac <value> is the MAC address.
config web-server
This command enables, disables and manages the Web server.
317360-C
Chapter 2 config commands 207
Syntax
config web-server
Parameters
This command includes the following parameters:
config web-server
followed by:
info
Indicates whether Web access is enabled or
disabled on the switch and displays the
current Web user name and password
setting.
def-display-rows
<integer>
Sets the number of rows displayed per page.
• integer is 10 to 100.
disable
Disables the Ethernet Routing Switch 8300
Web interface.
enable
Enables the Ethernet Routing Switch 8300
Web interface.
html-source-dir
help-tftp <file>
Specifies the file location and name for the
Web server HTML Help file. The string length
is 0 to 256.
• file specifies the path and file name of the
HTML source.
http-port <integer>
Specifies the http port of the Web server.
• integer is a value from 1 to 49151.
password <ro> <username>
<passwd>
Sets passwords for access to the Web
interface.
• username is the user’s login name, up to 20
characters long.
• passwd is the password associated with the
login name, up to 20 characters long.
CLI Command Line Reference for the Ethernet Routing Switch 8300
208 Chapter 2 config commands
317360-C
209
Chapter 3
show commands
This chapter describes all Ethernet Routing Switch 8300 show commands and
their parameters.
show Command
Page
monitor mlt stats interface utilization [<mid>]
211
show bootconfig
212
show cli
213
show config
213
show date
214
show diag mirror-by-port
214
show filter acg
215
show filter acl ace
215
show filter acl debug
216
show filter acl ethernet
216
show filter acl info
217
show filter acl ip
217
show filter acl port
217
show filter acl protocol
218
show filter acl statistics
218
show filter act ethernet
219
show filter act ip
219
show ip
219
show ip arp
220
show ip circuitless info
221
CLI Command Line Reference for the Ethernet Routing Switch 8300
210 Chapter 3 show commands
317360-C
show Command
Page
show ip dhcp-relay fwd-path
221
show ip dhcp-relay counters
221
show ip forwarding
221
show ip igmp
222
show ip interface
222
show ip ospf accept info
223
show ip ospf redistribute info
223
show ip prefix-list
223
show ip route-discovery
223
show ip route info
224
show ip route-policy info
224
show ip route preference info
224
show ip static-route info
225
show ip tcp
225
show license
227
show mlt
228
show mlt error
229
show mlt error collision
230
show mlt error main [<mid>]
230
show mlt info
231
show mlt stats [<mid>]
231
show poe card info
231
show poe card info
231
show poe port stats
231
show poe port info
232
show poe port power-measurement
232
show poe sys info
232
show qos egress-stats
232
show ports stats dhcp-relay
238
show ports error
236
Chapter 3 show commands 211
show Command
Page
show ports info
236
show ports stats
238
show ports stats dhcp-relay
238
show ports stats interface
239
show radius
239
show rmon
240
show slot
241
show stg info
241
show sys
242
show sys access-policy info
244
show sys syslog general-info
244
show sys syslog general-info
244
show sys syslog general-info
244
show sys syslog host info
244
show tech
245
show test
245
show trace
245
show ip udpfwd interface info
226
show ip udpfwd portfwd
226
show ip udpfwd portfwdlist
227
show ip udpfwd protocol info
227
show vlan info
246
This command includes the following options:
247
monitor mlt stats interface utilization [<mid>]
This command displays link aggregation interface utilization statistics.
CLI Command Line Reference for the Ethernet Routing Switch 8300
212 Chapter 3 show commands
Syntax
monitor mlt stats interface utilization [<mid>]
show bootconfig
This command displays the current configuration of the Boot Monitor CLI while
you are in the Run-Time CLI.
Syntax
show bootconfig
Parameters
This command includes the following options:
show bootconfig
followed by:
bootp
Displays bootp configuration.
choice
Displays the boot choice information.
cli
Displays the Boot Monitor CLI information.
config [verbose]
Displays the Boot Monitor configuration settings.
verbose includes all possible information.
If you omit verbose, only the nondefault settings are
displayed.
317360-C
flags
Displays the flag settings for the switch.
host
Displays the remote host login information.
info
Displays information about the switch boot image.
master
Displays the delay setting and the chassis slot where
the Master CPU resides.
Chapter 3 show commands 213
show bootconfig
followed by:
net
Displays information about the network ports.
sio
Displays information about the serial ports.
tz
Displays information about the switch time zone
settings.
show cli
This command displays information about the switch CLI configuration.
Syntax
show cli
Parameters
This command include the following options:
show cli
followed by:
info
Displays the CLI configuration
who
Displays a list of users who are logged in to
the switch.
password
Displays the CLI access, login, and password
combinations.
show config
This command displays the current switch configuration.
CLI Command Line Reference for the Ethernet Routing Switch 8300
214 Chapter 3 show commands
Syntax
show config
Parameters
This command includes the following options:
show config
followed by:
[verbose]
Displays the current switch configuration,
including software (versions), performance,
ports (such as type, status), routes, memory,
interface, and log and trace files. With this
command, you can see current configuration
and default values. Without verbose, not all of
the default values are displayed.
[module <value>]
Specifies the command group for which you are
requesting configuration settings.
show date
This command displays the current date settings for the switch.
Syntax
show date
show diag mirror-by-port
This command displays information about mirrored ports on the switch.
Syntax
show diag mirror-by-port
317360-C
Chapter 3 show commands 215
show filter acg
Use this command to display the list of Access Control Groups (ACGs)
configured on the switch.
Syntax
show filter acg [<acg-id>]
where <acg-id> is a unique identifier (from 1 to 1024) for this ACG entry.
show filter acl ace
Use this command to display the current Access Control List (ACL) and related
Access Control Entity (ACE) actions.
Syntax
show filter acl [<acl-id>] ace [<ace-id>]
where:
•
•
<acl-id> is a unique identifier (from 1 to 512) for this ACL entry.
<ace-id> is a unique identifier (from 1 to 256) for this ACE entry.
show filter acl action
Use this command to display the list of Access Control Lists (ACLs) and their
related Access Control Entity (ACE) actions.
Syntax
show filter acl action [<acl-id>] [<ace-id>]
CLI Command Line Reference for the Ethernet Routing Switch 8300
216 Chapter 3 show commands
where:
•
•
<acl-id> is a unique identifier (from 1 to 512) for this ACL entry.
<ace-id> is a unique identifier (from 1 to 256) for this ACE entry.
show filter acl debug
Use this command to display information that may help you debug your switch.
Syntax
show filter acl debug [<acl-id>] [<ace-id>]
where:
•
•
<acl-id> is a unique identifier (from 1 to 512) for this ACL entry.
<ace-id> is a unique identifier (from 1 to 256) for this ACE entry.
show filter acl ethernet
Use this command to display information about the Ethernet Access Control
Entities (ACEs).
Syntax
show filter acl ethernet [<acl-id>] [<ace-id>]
where:
•
•
317360-C
<acl-id> is a unique identifier (from 1 to 512) for this ACL entry.
<ace-id> is a unique identifier (from 1 to 256) for this ACE entry.
Chapter 3 show commands 217
show filter acl info
Use this command to display Access Control List (ACL) information.
Syntax
show filter acl info [<acl-id>]
where <acl-id> is a unique identifier (from 1 to 512) for this ACL entry.
show filter acl ip
Use this command to display information about the IP Ethernet Access Control
Entities (ACEs).
Syntax
show filter acl ip [<acl-id>] [<ace-id>]
where:
•
•
<acl-id> is a unique identifier (from 1 to 512) for this ACL entry.
<ace-id> is a unique identifier (from 1 to 256) for this ACE entry.
show filter acl port
Use this command to display information about the Quality of Service (QoS)
ports.
Syntax
show filter acl port [<acl-id>] [<ace-id>]
CLI Command Line Reference for the Ethernet Routing Switch 8300
218 Chapter 3 show commands
where:
•
•
<acl-id> is a unique identifier (from 1 to 512) for this ACL entry.
<ace-id> is a unique identifier (from 1 to 256) for this ACE entry.
show filter acl protocol
Use this command to display information about the Access Control List (ACL)
protocols.
Syntax
show filter acl port [<acl-id>] [<ace-id>]
where:
•
•
<acl-id> is a unique identifier (from 1 to 512) for this ACL entry.
<ace-id> is a unique identifier (from 1 to 256) for this ACE entry.
show filter acl statistics
Use this command to display the Access Control Entity (ACE) statistics.
Syntax
show filter acl statistics [<acl-id>] [<ace-id>]
where:
•
•
317360-C
<acl-id> is a unique identifier (from 1 to 512) for this ACL entry.
<ace-id> is a unique identifier (from 1 to 256) for this ACE entry.
Chapter 3 show commands 219
show filter act ethernet
Use this command to display information about the Ethernet Access Control
Templates (ACTs).
Syntax
show filter act ethernet [<acl-id>] [<acl-type>]
where:
•
•
<acl-id> is a unique identifier (from 1 to 512) for this ACL entry.
<acl-type> specifies the type of ACL: IP or non-IP.
show filter act ip
Use this command to display information about the IP Access Control Templates
(ACTs).
Syntax
show filter act ip [<acl-id>] [<acl-type>]
where:
•
•
<acl-id> is a unique identifier (from 1 to 512) for this ACL entry.
<acl-type> specifies the type of ACL: IP or non-IP.
show ip
This command displays general IP routing information, such as the status of IP
routing on the switch and the configured community lists.
CLI Command Line Reference for the Ethernet Routing Switch 8300
220 Chapter 3 show commands
Syntax
show ip
Parameters
This command includes the following options:
show ip
followed by:
forwarding
Displays the status of IP forwarding (routing) on
the switch.
interface
Displays the IP interfaces on the switch.
show ip arp
This command displays the Address Resolution Protocol (ARP) table.
Syntax
show ip arp
Parameters
This command includes the following options:
show ip arp
followed by:
info [<ip address>]
[-s <value>]
317360-C
Displays the ARP table.
• ip address is the specific net IP address for the
table.
• -s value is the specific subnet in the format
(a.b.c.d/x|a.b.c.d/x.x.x.x|default).
Chapter 3 show commands 221
show ip circuitless info
This command displays information about all CLIP interfaces configured on the
switch.
Syntax
show ip circuitless info
show ip dhcp-relay fwd-path
This command displays the forward path of the ip -dhcp-relay.
Syntax
show ip dhcp-relay fwd-path
show ip dhcp-relay counters
This command displays the counters for the ip dhcp-relay.
Syntax
show ip dhcp-relay counters
show ip forwarding
This command displays the status of IP forwarding (routing) on the switch.
Syntax
show ip forwarding
CLI Command Line Reference for the Ethernet Routing Switch 8300
222 Chapter 3 show commands
show ip igmp
This command displays information about the Internet Group Management
Protocol (IGMP).
Syntax
show ip igmp
Parameters
This command includes the following options:
show ip igmp
followed by:
access
Displays information about the IGMP multicast
access list groups.
cache
Displays information about the IGMP cache.
group [count]
Displays information about the IGMP group.
count has a range of 1 to 1536.
interface
Displays information about the interfaces on which
IGMP is enabled.
router-alert
Displays the status of the IGMP router alert.
sender [count]
Displays information about the IGMP senders.
count has a range of 1 to 1536.
snoop
Displays the status of the IGMP snoop.
static
Displays information about the static and blocked
ports for the IGMP-enabled interfaces.
show ip interface
This command displays the IP interfaces on the switch.
317360-C
Chapter 3 show commands 223
Syntax
show ip interface
show ip ospf accept info
This command displays information about the all configured OSPF entries.
Syntax
show ip ospf accept info
show ip ospf redistribute info
This command displays information about the OSPF redistribution configuration
for each route source that is static, direct, and RIP.
Syntax
show ip ospf redistribute info
show ip prefix-list
This command displays the prefix list of networks used by route policies to define
an action.
Syntax
show ip prefix-list
show ip route-discovery
This command shows whether or not route discovery is enabled on the device.
CLI Command Line Reference for the Ethernet Routing Switch 8300
224 Chapter 3 show commands
Syntax
show ip route-discovery
show ip route info
This command displays the existing IP route table for the switch or for a specific
net or subnet.
Syntax
show ip route info [ip <value>] [-s <value>] [alternative]
where:
•
•
•
ip <value> is the specific net (1.2. = 1.2.0.0) {a.b.c.d}.
-s <value> is the specific subnet {a.b.c.d/x | a.b.c.d/x.x.x.x | default}.
alternative displays alternative routes.
show ip route-policy info
This command displays information about the route policies configured on the
switch.
Syntax
show ip route-policy info
show ip route preference info
This command displays information about IP route preferences.
317360-C
Chapter 3 show commands 225
Syntax
show ip route preference info
show ip static-route info
This command displays the existing IP static routes for the switch or for a specific
net or subnet.
Syntax
show ip static-route info [<ip address>] [-s <value>]
where:
•
•
ip address is the specific net (1.2. = 1.2.0.0) {a.b.c.d}.
-s <value> is the specific subnet {a.b.c.d/x | a.b.c.d/x.x.x.x | default}.
show ip tcp
This command displays information about Transmission Control Protocol (TCP)
global properties, TCP global statistics, and the TCP connection table.
Syntax
show ip tcp
CLI Command Line Reference for the Ethernet Routing Switch 8300
226 Chapter 3 show commands
Parameters
This command includes the following options:
show ip tcp
followed by:
properties-global
Displays information about TCP global properties,
including the RTO minimum and maximum values,
and the maximum number of connections.
statistics-global
Displays information about TCP statistics,
including the number of active and passive opens.
info-connections
Displays information about the TCP connection
table, including the port number and address of the
local and remote ports, and the status (for
example, listen or established) of each port.
show ip udpfwd interface info
This command displays information about the established UDP forwarding
protocols.
Syntax
show ip udpfwd interface info [<ipaddr>]
where ipaddr specifies the IP address of the interface to view.
show ip udpfwd portfwd
This command displays information about the established UDP forwarding
protocols.
Syntax
show ip udpfwd portfwd
317360-C
Chapter 3 show commands 227
show ip udpfwd portfwdlist
This command displays information about the established UDP forwarding
protocols.
Syntax
show ip udpfwd portfwdlist info [<fwdlistid>]
where fwdlistid specifies a particular list policy ID to view
show ip udpfwd protocol info
This command displays information about the established UDP forwarding
protocols.
Syntax
show ip udpfwd protocol info
show license
Use this command to display the current license.
Syntax
show license
show log
This command displays log information for the switch.
CLI Command Line Reference for the Ethernet Routing Switch 8300
228 Chapter 3 show commands
Syntax
show log
Parameters
This command includes the following options:
show log
followed by:
file [tail]
Displays the specified log file.
• tail displays the log file in reverse order, with the
most recent information first.
level
Displays the level of information being entered
in the log. The level ranges from information
(INFO), where all messages are entered, to FATAL,
where only fatal errors are recorded. The
manufacturing (MFG) level is for manufacturing
purposes only and not available for customer use.
name-of-file <value> Displays the name of the log file.
category <value>
Displays the category of the log file.
severity <value>
Displays the level of severity.
CPU <value>
Displays the CPU number.
save-to-file <value> Displays the file where log information is saved.
show mlt
This command displays general information about MultiLink Trunking (MLT).
Syntax
show mlt
317360-C
Chapter 3 show commands 229
Parameters
This command includes the following options:
show mlt
followed by:
info [<mid>]
Displays the index value, IP address, and the port
members for all configured MLTs or for the specified
MLT.
• mid is the MLT ID. The valid values are 1 to 31.
stats [<mid>]
Displays the number of incoming and outgoing
packets for all configured MLTs or for the specified
MLT.
• mid is the MLT ID. The valid values are 1 to 31.
show mlt error
This command displays MultiLink Trunking (MLT) errors.
Syntax
show mlt error
CLI Command Line Reference for the Ethernet Routing Switch 8300
230 Chapter 3 show commands
Parameters
This command includes the following options:
show mlt error
followed by:
collision [<mid>]
Displays the number and type of Ethernet collision
errors for all configured MLTs or for the specified
MLT.
• mid is the MLT ID. The valid values are 1 to 32.
main [<mid>]
Displays basic information about the number of
different types of Ethernet errors for all configured
MLTs or for the specified MLT.
• mid is the MLT ID. The valid values are 1 to 32.
show mlt error collision
This command displays information about collision errors.
Syntax
show mlt error collision [<mid>]
show mlt error main [<mid>]
This command displays information about the types of Ethernet errors sent and
received by a specific link aggregation group or all link aggregation groups.
Syntax
show mlt error main [<mid>]
317360-C
Chapter 3 show commands 231
show mlt info
This command displays information about all link aggregation groups.
Syntax
show mlt info
show mlt stats [<mid>]
This command monitors link aggregation interface statistics.
Syntax
show mlt stats [<mid>]
show poe card info
This command displays power over ethernet card information.
Syntax
show poe card info [<slots>]
show poe port stats
This command displays power over ethernet port statistics.
Syntax
show poe port stats <ports>
CLI Command Line Reference for the Ethernet Routing Switch 8300
232 Chapter 3 show commands
show poe port info
This command displays power over ethernet port information.
Syntax
show poe port info [<ports>]
show poe port power-measurement
This command displays power over ethernet port power measurements.
Syntax
show poe port power-measurement <ports>
show poe sys info
This command displays power over ethernet system information.
Syntax
show poe sys info
show qos egress-stats
Use this command to display information about the QoS egress counter set.
Syntax
show qos egress-stats [<counter_set_id>]
where <counter_set_id> is a value in the range from 1 to 40.
317360-C
Chapter 3 show commands 233
show qos egress-counter-set
Use this command to display information about the QoS egress counter set.
Syntax
show qos egress-counter-set [<counter_set_id>]
where <counter_set_id> is a value in the range from 1 to 40.
show qos info
Use this command to display the status of the MAC QoS-level override setting.
Syntax
show qos info
show qos map 8021p-to-dscp-map
Use this command to display the status of the 802.1p dscp to map setting.
Syntax
show qos map 8021p-to-dscp-map
show qos policy
Use this command to display information about the QoS policies.
CLI Command Line Reference for the Ethernet Routing Switch 8300
234 Chapter 3 show commands
Syntax
show qos policy [<policy-id>]
where <policy-id> specifies the QoS policy ID number.
show qos policy-stats
Use this command to display the QoS policy statistics.
Syntax
show qos policy-stats [<policy-id>]
where <policy-id> specifies the QoS policy ID number. The range is 1 to 128.
show qos map 8021p-to-class-map
Use this command to display how the switch maps 802.1p user priority to traffic
class levels.
Syntax
show qos map 8021-to-class-map
show qos map 8021p-to-drop-precedence-map
Use this command to display how the switch maps 802.1p bits to drop precedence.
Syntax
show qos map 8021-to-drop-precedence-map
317360-C
Chapter 3 show commands 235
show qos map class-to-8021p-map
Use this command to display how the switch maps traffic class levels to an 802.1p
user priority.
Syntax
show qos map class-to-8021p-map
show qos map class-to-8021p-policed-map
Use this command to display how the switch maps traffic class levels to an 802.1p
user priority based on the conformance level.
Syntax
show qos map class-to-8021p-policed-map
[<conformance-level>]
where <conformance-level> is the outcome of policing and indicates the
behavior of a traffic flow.
show qos map dscp-to-cos-policed-map
Use this command to display how the switch maps DSCP to layer 2 Class of
Service (CoS) based on the conformance level.
Syntax
show qos map dscp-to-cos-policed-map
[<conformance-level>]
where <conformance-level> is the outcome of policing and indicates the
behavior of a traffic flow.
CLI Command Line Reference for the Ethernet Routing Switch 8300
236 Chapter 3 show commands
show ports error
This command displays port errors.
Syntax
show ports error
Parameters
This command includes the following options:
show ports error
followed by:
collision [<ports>]
Displays the number and type of Ethernet
collision errors for the specified port or all ports.
extended [<ports>]
Displays additional information about Ethernet
errors for the specified port or for all ports.
main [<ports>]
Displays basic information about the number of
different types of Ethernet errors for the specified
port or for all ports.
Note: ports specify the ports in the portlist form {slot/port[-slot/port][,
...]}.
show ports info
This command displays information about the ports on the switch.
Syntax
show ports info
317360-C
Chapter 3 show commands 237
Parameters
This command includes the following options:
show ports info
followed by:
all [<ports>] [by
<value>]
Displays general information for the specified
port, ports or all ports.
• by <value> displays group information by
ID number or by each feature {default|ID}.
config [<ports>]
Displays general configuration information for
the specified port, ports or all ports.
interface [<ports>]
Displays information about the physical
interface for the specified port, ports or all
ports.
ip [<ports>]
Displays routing (IP) information for the
specified port, ports or all ports.
name [<ports>]
Displays general information, including the
name or names of the specified port, ports or
all ports.
rate-limit [<ports>]
Displays the rate limit in packets per second
for the specified port, ports or all ports.
unknown-mac-discard
[<ports>]
Displays unknown-mac-discard information for
the specified port, ports or all ports.
vlans [<ports>]
Displays virtual LAN information for the
specified port, ports or all ports.
filter [<ports>]
Displays filter information for the specified
port, ports or all ports.
qos [<ports>]
Displays qos information for the specified port,
ports or all ports.
route-discovery
[<ports>]
Displays routing information for the specified
port, ports or all ports.
rate-limit [<ports>]
Displays rate limit information for the specified
port, ports or all ports.
tx-queue [<ports>]
Displays traffic queue information for the
specified port, ports or all ports.
CLI Command Line Reference for the Ethernet Routing Switch 8300
238 Chapter 3 show commands
Note: ports specify the ports in the portlist form {slot/port[-slot/port][,
...]}.
show ports stats dhcp-relay
This command displays the statistics for the ip dhcp relay.
Syntax
show ports stats dhcp-relay [<ports>]
show ports stats
This command displays statistics for the specified port, ports, or all ports.
Syntax
show ports stats
Parameters
This command includes the following options:
show ports stats
followed by:
317360-C
routing [<ports>]
Displays routing information about the specified
port, ports or all ports.
stg [<ports>]
Displays statistics counters for spanning tree
groups on the specified port, ports or all ports.
Chapter 3 show commands 239
show ports stats interface
Note: ports specify the ports in the portlist form {slot/port[-slot/port][,
...]}.
This command displays basic and extended information about the specified port,
ports or all ports.
Syntax
show ports stats interface
Parameters
This command includes the following options:
show ports stats interface
followed by:
main [<ports>]
Displays basic interface information about the
specified port, ports or all ports.
extended [<ports>]
Displays additional port interface information
about the specified port, ports or all ports.
Note: ports specify the ports in the portlist form {slot/port[-slot/port]
[, ...]}.
show radius
This command displays various Remote Access Dial-in User Services (RADIUS)
settings.
CLI Command Line Reference for the Ethernet Routing Switch 8300
240 Chapter 3 show commands
Syntax
show radius
Parameters
This command includes the following options:
show radius
followed by:
info
Displays the global status of RADIUS information.
server config
Displays current RADIUS server configurations.
server stat
Displays statistics for the current RADIUS servers.
show rmon
This command displays various Remote Monitoring (RMON) settings.
Syntax
show rmon
Parameters
This command includes the following options:
show rmon
followed by:
317360-C
info
Displays the status of RMON on the switch.
alarm
Displays the RMON alarm table.
ether-stats
Displays the RMON Ethernet statistics table.
event
Displays the RMON event table.
Chapter 3 show commands 241
show rmon
followed by:
history-control
Displays the RMON history control table.
log
Displays the RMON log table.
show slot
This command displays the administrative status of the module.
Syntax
show slot <slot number>
where slot number is the slot number in the chassis, which has a range of 1 to
10.
Note: Slots are numbered from top to bottom in the Ethernet Routing Switch 8300.
show stg info
This command displays Spanning Tree Group (STG) configuration and status
information.
Syntax
show stg info
CLI Command Line Reference for the Ethernet Routing Switch 8300
242 Chapter 3 show commands
Parameters
This command includes the following options:
show stg info
followed by:
config [<sid>]
Displays the spanning tree group configuration for the
switch or for the specified spanning tree group.
• sid is a spanning tree group ID from 1 to 64characters.
status [<sid>]
Displays the spanning tree group status for the
specified spanning tree group or all STGs.
• sid is a spanning tree group ID from 1 to 25
characters.
show sys
This command displays the status, performance, and module configuration of the
switch, and the version of software running on the switch.
Syntax
show sys
317360-C
Chapter 3 show commands 243
Parameters
This command includes the following options:
show sys
followed by:
info [card] [asic]
[mda]
Displays system status and technical information
about the switch hardware components.
• card displays information about all the installed
modules.
• asic displays information about the ASICS
installed on each module.
• mda displays information about installed MDAs.
eapol
Displays the global Extensible Authorization
Protocol (EAP) configuration.
link-flap-detect
general-info
Displays the link-flap-detect settings.
mcast-software-forwa
rding
Displays the mcast software forwarding status.
msg-control
Displays the system message control function
status (enabled or disabled).
perf
Displays system performance information, such as
CPU utilization, switch fabric utilization, NVRAM
size, and NVRAM used. The information is
updated once per second, so it is no more than
one second from real time.
sw
Displays the version of software running on the
switch, the last update of that software, and the
Boot Config Table. The Boot Config Table lists the
current system settings and flags.
topology
Displays the topology table. This table shows the
information that is being sent to Optivity network
management software for creating network
displays.
CLI Command Line Reference for the Ethernet Routing Switch 8300
244 Chapter 3 show commands
show sys access-policy info
This command displays the global access policy settings. If you specify a policy
name, the settings for the policy are displayed.
Syntax
show sys access-policy info [<polname>]
where polname is the name of the policy.
show sys syslog general-info
This command displays system log information for the entire system.
Syntax
show sys syslog general-info
show sys syslog host info
This command displays system log information for the specified host.
Syntax
show sys syslog host <id> info
where id identifies the host.
317360-C
Chapter 3 show commands 245
show tech
This command displays technical information about system status and outputs
several pages of information about the hardware, software, and operation of the
switch. The information available from the show tech command includes
general information about the system (such as location), hardware (chassis, power
supplies, fans, and modules), system errors, boot configuration, software versions,
memory, port information (locking status, configurations, names, interface status),
and log and trace files.
Syntax
show tech
show test
This command displays test information for the switch.
Syntax
show test
Parameters
This command includes the following options:
show test
followed by:
loopback
<ports>
Displays the results of the latest loopback test for the switch or
for the specified port or ports.
show trace
This command displays trace information for the switch.
CLI Command Line Reference for the Ethernet Routing Switch 8300
246 Chapter 3 show commands
Syntax
show trace
Parameters
This command includes the following options:
show trace
followed by:
file [tail]
Displays the trace message file when tracing is
enabled.
• tail allows you to view the log file in reverse
order, with the most recent information first.
level <modid> <level>
Displays the current software module ID
numbers and the corresponding trace levels.
• modid is the identifier for the software module
you are tracing.
• level is a number that specifies the amount of
detail in the trace message file (1 to 4, from least
detail to most) or disables trace activity (0).
show vlan info
This command displays protocol, configuration and parameter information for a
specified or all Virtual LANs (VLANs) .
Syntax
show vlan info
317360-C
Chapter 3 show commands 247
Parameter
This command includes the following options:
show vlan info
followed by:
advance [<vid>]
Displays additional parameters for the
specified VLAN or all VLANs.
all [<vid>] [by <value>]
Displays all general information about the
VLANs on the switch or a specified VLAN.
• by <value> groups the information by ID
number or by each feature.
arp [<vid>]
Displays the address resolution protocol
configurations for all VLANs on the switch or
for the specified VLAN.
autolearn-mac
Displays bridging autolearn mac address
information for all VLANs on the switch or for
the specified VLAN.
basic [<vid>]
Displays the basic configurations for all
VLANs or the specified VLAN.
fdb-entry <vid>
Displays forwarding database information for
the specified VLAN
fdb-filter <vid>
Displays the forwarding database filters for
the specified VLAN.
fdb-static <vid>
Displays the static forwarding database
status, the VLAN Media Access Control
(MAC) address, and the Quality of Service
(QoS) level for the specified VLAN.
igmp [<vid>]
Displays information about the internet group
management protocol operation in the switch.
ip [<vid> ]
Displays the routing (IP) configuration for all
VLANs on the switch or for the specified
VLAN.
manual-edit-mac
Displays bridging manual edit mac address
information for all VLANs on the switch or for
the specified VLAN.
CLI Command Line Reference for the Ethernet Routing Switch 8300
248 Chapter 3 show commands
show vlan info
followed by:
ports [<vid>]
Displays the port member status for all
VLANs on the switch or for the specified
VLAN. A port can be an active member, a
static member, or a not-allowed member.
static-mcastmac [<vid>]
Displays the Layer 2 multicast media access
control filters.
Note: vid refers to the VLAN ID, which has a value from 1 to 4000.
show web-server
This command displays whether or not Web access is enabled, as well as
password and access information.
Syntax
show web-server
317360-C
Download PDF