Accton ES4626 - Manual - manualsarea.com

Page 2 - Preface

2 Preface ES4626/ES4650 is a routing switch that can be deployed as the core layer device for campus and enterprise networks, or as an aggregation device for IP metropolitan area networks (MAN). The ES4626 provides 24 fixed 1000MB port (4 of which are fixed 1000MB Combo fiber cable port/copper cable...

Page 3 - Contents; Management Options; Basic Switch Configuration Commands

3 Contents Preface 2 Contents 3 Chapter 1 Switch Management _________________________________________ 12 1.1 Management Options ____________________________________________ 12 1.1.1 Out-of-band Management ____________________________________________ 12 1.1.2 In-band Management ______________________...

Page 12 - Chapter 1 Switch Management; Device Name; Connect with serial port

12 Chapter 1 Switch Management 1.1 Management Options After purchasing the switch, the user needs to configure the switch for network management. ES4626/ES4650 provides two management options: in-band management and out-of-band management. 1.1.1 Out-of-band Management Out-of-band management is the m...

Page 21 - Management Interface

21 Fig 1-11 Main Web Configuration Interface 1.2 Management Interface 1.2.1 CLI Interface CLI interface is familiar to most users. As aforementioned, out-of-band management and Telnet login are all performed through CLI interface to manage the switch. CLI Interface is supported by Shell program, whi...

Page 22 - disable; Mode

22 z Input verification z Fuzzy match support 1.2.1.1 Configuration Modes Fig 1-12 Shell Configuration Modes 1.2.1.1.1 User Mode On entering the CLI interface, entering user entry system first. If as common user, it is defaulted to User Mode. The prompt shown is “Switch>”, the symbol “>” is th...

Page 24 - Address Pool Mode

24 port-channel <port-channel-nu mber> command under Global Mode. port-channelx)# port-channel related settings such as duplex mode, speed, etc. command to return to Global Mode. 1.2.1.1.3.2 VLAN Mode Using the vlan <vlan-id> command under Global Mode can enter the corresponding VLAN Mod...

Page 25 - cmdtxt

25 1.2.1.1.3.5 ACL Mode ACL type Entry Prompt Operates Exit Standard IP ACL Mode Type access-list ip command under Global Mode. Switch(Config-Std-Nacl- a)# Configure parameters for Standard IP ACL Mode Use the “ exit” command to return to Global Mode. Extended IP ACL Mode Type access-list ip command...

Page 30 - Chapter 2 Basic Switch Configuration

30 Chapter 2 Basic Switch Configuration 2.1 Basic Switch Configuration Commands The basic configuration for the switch including all the commands for entering and exiting the Admin Mode and Interface Mode, setting and displaying switch clock and displaying system version information. 2.1.1 calendar ...

Page 34 - hostname; no

34 parameter of this command will delete the mapping. Parameter: <hostname> is the host name, up to 15 characters are allowed; <ip_addr> is the corresponding IP address for the host name, takes a dot decimal format. Command mode: Global Mode Usage Guide: Set the association between host ...

Page 35 - Related Command: username password; reload

35 Example: Set username as “admin” and set password as “admin” Switch(Config)#username admin password 0 admin Switch(Config)# Related Command: username nopassword 、 username access-level 、 show users 2.1.12 username nopassword Command: username <user_name> nopassword Function: Set the usernam...

Page 36 - Command: set default; setup; english; write

36 2.1.15 set default Command: set default Function: Reset the switch to factory settings. Command mode: Admin Mode Usage Guide: Reset the switch to factory settings. That is to say, all configurations made by the user to the switch will disappear. When the switch is restarted, the prompt will be th...

Page 37 - Maintenance and Debug Commands; ping

37 Command: write Function: Save the currently configured parameters to the Flash memory. Command mode: Admin Mode Usage Guide: After a set of configuration with desired functions, the setting should be saved to the Flash memory, so that the system can revert to the saved configuration automatically...

Page 39 - monitor

39 remote host. If a connection to another remote host is desired, the current TCP connection must be dropped. 2.2.2.2 Telnet Task Sequence 1. Configuring Telnet Server 2. Telnet to a remote host from the switch. 1. Configuring Telnet Server Command Explanation Global Mode ip telnet server no ip tel...

Page 40 - telnet

40 Command: monitor no monitor Function: Enable debug information for Telnet client login to the switch, the Console end debug display will be disabled at the same time; the “no monitor” command disables the debug information and re-enables the Console end debug display. . Command mode: Admin Mode U...

Page 41 - securityip; Command

41 no ip telnet server Function: Enable the Telnet server function in the switch: the “ no telnet-server enable” command disables the Telnet function in the switch. Default: Telnet server function is enabled by default. Command mode: Global Mode Usage Guide: This command is available in Console only...

Page 43 - timeout; no ssh-server timeout

43 2.2.3.3.1 ssh-server enable Command: ssh-server enable no ssh-server enable Function: Enable SSH function on the switch; the “ no ssh-server enable ” command disables SSH function. Command mode: Global Mode Default: SSH function is disabled by default. Usage Guide: In order that the SSH client ca...

Page 44 - authentication-retries; no ssh-server authentication-retries

44 Parameter: <timeout> is timeout value; valid range is 10 to 600 seconds. Command mode: Global Mode Default: SSH authentication timeout is 180 seconds by default. Example: Set SSH authentication timeout to 240 seconds. Switch(Config)#ssh-server timeout 240 2.2.3.3.4 ssh-server authentication...

Page 45 - no monitor

45 2.2.3.3.6 monitor Command: monitor no monitor Function: Display SSH debug information on the SSH client side and stop displaying SSH debug information on the Console; the “ no monitor ” command stops displaying SSH debug information on the SSH client side and enables to display SSH debug informat...

Page 48 - Related command: debug

48 Command mode: Admin Mode Example: Check for currently enabled debug switch. Switch#show debugging STP: Stp input packet debugging is on Stp output packet debugging is on Stp basic debugging is on Switch# Related command: debug 2.2.5.3 dir Command: dir Function: Display the files and their sizes i...

Page 49 - Command: show memory

49 2.2.5.5 show memory Command: show memory Function: Display the contents in the memory. Command mode: Admin Mode Usage Guide: This command is used for switch debug purposes. The command will interactively prompt the user to enter start address of the desired information in the memory and output wo...

Page 51 - udp

51 Port VID : 1 VLAN number belong to the current Interface Trunk allowed Vlan : ALL VLAN allowed to be crossed by Trunk. 2.2.5.9 show tcp Command: show tcp Function: Display the current TCP connection status established to the switch. Command mode: Admin Mode Example: Switch#show tcp LocalAddress L...

Page 52 - version; Parameter: where the range of unit is 1

52 2.2.5.11 show users Command: show users Function: Display all user information that can login the switch . Usage Guide: This command can be used to check for all user information that can login the switch . Example: Switch#show users User level havePasword admin 0 1 Online user info: user ip logi...

Page 53 - Manual configuration

53 2.2.6 debug All the protocols ES4626/ES4650 supports have their corresponding debug commands. The users can use the information from debug command for troubleshooting. Debug commands for their corresponding protocols will be introduced in the later chapters. 2.3 Configuring Switch IP Addresses Al...

Page 56 - SNMP

56 Switch (Config)#interface vlan 1 Switch (Config-If-Vlan1)# ip address dhcp Switch (Config-If-Vlan1)#exit Switch (Config)# Related command: ip address, ip address bootp 2.4 SNMP 2.4.1 Introduction to SNMP SNMP (Simple Network Management Protocol) is a standard network management protocol widely us...

Page 62 - community; rw; no snmp-server enable traps; snmp-server engineid

62 2.4.4.2.2 snmp-server community Command: snmp-server community <string> {ro|rw} nmp-server community <string> Function: Configure the community string for the switch; the “ no snmp-server community <string> ” command deletes the configured community string. Parameter: <string...

Page 63 - no snmp-server engineid; user; encrypted; group

63 no snmp-server engineid Function: Configure the engine ID; the “ no snmp-server engineid < engine-string > ” command restores the default engine ID. Parameter: <engine-string> is the engine ID which is 1-32 hexadecimal characters. Command mode: Global Mode Default: The engine ID is ma...

Page 64 - view

64 snmp-server group <group-string> {NoauthNopriv|AuthNopriv|AuthPriv} Function: Configure a new SNMP server group; the “ no snmp-server group <group-string> {NoauthNopriv|AuthNopriv|AuthPriv} ” command deletes the group. Parameter: <group-string > is the group name; NoauthNopriv m...

Page 66 - snmp-server SecurityIP disable; Command: rmon enable; Typical SNMP Configuration Examples

66 used for SNMP v1 and SNMP v2. Example 1: Set the secure IP address to 1.1.1.5 Switch(config)#snmp-server securityip 1.1.1.5 Example 2: Delete the secure IP address Switch(config)#no snmp-server securityip 1.1.1.5 2.4.4.2.10 snmp-server SecurityIP enable Command: snmp-server SecurityIP enable snmp...

Page 67 - snmp

67 Switch(Config)#snmp-server community private rw Switch(Config)#snmp-server community public ro Switch(Config)#snmp-server securityip 1.1.1.5 The NMS can use “private” as the community string to access the switch with read-write permission, or use “public” as the community string to access the swi...

Page 68 - Total number of SNMP packet inputs.

68 Function: Display all SNMP counter information. Command mode: Admin Mode Example: Switch#show snmp 0 SNMP packets input 0 Bad SNMP version errors 0 Unknown community name 0 Illegal operation for community name supplied 0 Encoding errors 0 Number of requested variables 0 Number of altered variable...

Page 69 - show snmp status; Command: show snmp status

69 snmp packets output Total number of SNMP packet outputs. too big errors Number of “Too_ big” error SNMP packets. maximum packet size Maximum length of SNMP packets. no such name errors Number of packets requesting for non-existent MIB objects. bad values errors Number of “Bad_values” error SNMP p...

Page 70 - show snmp engineid; Command: show snmp engineid; show snmp user; Command: show snmp user; show snmp group; Command: show snmp group

70 2.4.6.1.3 show snmp engineid Command: show snmp engineid Function: Display SNMP engine ID information. Command mode: Admin Mode Example: Switch#show snmp engineid SNMP engineID: 3138633303f1276c Engine Boots is: 1 Displayed information Description SNMP engineID SNMP engine ID Engine Boots The num...

Page 71 - show snmp view; Command: show snmp view; show snmp mib

71 Example: Switch#show snmp group Group Name: initial Security Level: noAuthnoPriv Read View: one Write View: <no writeview specified> Notify View: one Displayed information Description Group Name Group name Security level Security level Read View Read view name Write View Write view name Not...

Page 72 - Command: show snmp mib; Switch Upgrade

72 Command: show snmp mib Function: Display all the MIB supported on the switch. Command mode: Admin Mode 2.4.6.2 SNMP Troubleshooting Help When users configure the SNMP, the SNMP server may fail to run properly due to physical connection failure and wrong configuration, etc. Users can troubleshoot ...

Page 75 - Other commands in BootROM mode

75 [Boot]: Step 6: After successful upgrade, execute “run” command in BootROM mode to return to CLI configuration interface. [Boot]: run （ or reboot ） Other commands in BootROM mode 1. DIR command Used to list existing files in the FLASH. [Boot]: dir boot.rom 327,440 1900-01-01 00: 00: 00 --SH boot....

Page 77 - FTP/TFTP Configuration Task Sequence

77 allowed to save in ROM only. ES4626/ES4650 mandates the name of the boot file to be boot.rom. Configuration file: including start up configuration file and active configuration file. The distinction between start up configuration file and active configuration file can facilitate the backup and up...

Page 78 - FTP server configuration

78 （ 3 ） Configure retransmission times before timeout for packets without acknowledgement （ 4 ） Shut down TFTP server 1. FTP/TFTP client configuration （ 1 ） FTP/TFTP client upload/download file Command Explanation Admin Mode copy <source-url> <destination-url> [ascii | binary] FTP/TFTP ...

Page 79 - ascii

79 Command Explanation Global Mode tftp-server retransmission-number < number > Set maximum retransmission time within timeout interval. （ 3 ） Modify TFTP server connection retransmission time Command Explanation Global Mode tftp-server retransmission-number < number > Set maximum retran...

Page 80 - Related command: write; dir; Function: check the list for files in the FTP server

80 Usage Guide: The command provides command line prompt messages. If the user enters a command like copy <filename> ftp: // or copy ftp: // <filename> and press Enter, the following prompt will appear: ftp server ip address [x.x.x.x] : ftp username> ftp password> ftp filename> ...

Page 81 - no ftp-server enable; ftp-server timeout

81 no ftp-server enable Function: Start FTP server, the “ no ftp-server enable ” command shuts down FTP server and prevents FTP user from logging in. Default: FTP server is not started by default. Command mode: Global Mode Usage Guide: When FTP server function is enabled, the switch can still perfor...

Page 83 - retransmission-number; Function: Set the retransmission time for TFTP server; transmission-timeout

83 Related command: tftp-server timeout 2.5.2.2.9 tftp-server retransmission-number Command: tftp-server retransmission-number <number> Function: Set the retransmission time for TFTP server Parameter: < number> is the time to re-transfer, the valid range is 1 to 20. Default: The default ...

Page 85 - FTP Configuration

85 Switch (Config-If-Vlan1)#no shut Switch (Config-If-Vlan1)#exit Switch (Config)#ftp-server enable Switch(Config)# username Switch password 0 Admin Computer side configuration: Login to the switch with any FTP client software, with the username “Admin” and password “switch”, use the command “get no...

Page 86 - TFTP Configuration

86 Switch (Config-If-Vlan1)#exit Switch (Config)#exit Switch#copy ftp: //Switch: [email protected]/Profile1 Profile1 Switch#copy ftp: //Switch: [email protected]/Profile2 Profile2 Switch#copy ftp: //Switch: [email protected]/Profile3 Profile3 With the above commands, the switch will have the user profile con...

Page 87 - Monitor and Debug Commands; ftp; Function: display the parameter settings for the FTP server; tftp; Function: display the parameter settings for the TFTP server

87 230 User logged in, proceed. 200 PORT Command successful. 150 Opening ASCII mode data connection for /bin/ls. recv total = 480 nos.img nos.rom parsecommandline.cpp position.doc qmdict.zip shell maintenance statistics.xls … (some display omitted here) show.txt snmp.TXT 226 Transfer complete. Switc...

Page 88 - Ping

88 Default: No display by default. Command mode: Admin Mode Example: Switch#show tftp timeout : 60 Retry Times : 10 Displayed information Explanation Timeout Timeout time. Retry Times Retransmission times. 2.5.2.4.2 FTP Troubleshooting Help When upload/download system file with FTP protocol, the con...

Page 89 - TFTP Troubleshooting Help

89 150 Opening ASCII mode data connection for nos.img (1526037 bytes). 226 Transfer complete. & If the switch is upgrading system file or system start up file through FTP, the switch must not be restarted until “close ftp client” or “226 Transfer complete.” is displayed, indicating upgrade is su...

Page 90 - WEB Management

90 2.6 WEB Management Click Switch Basic Configuration. Users can deploy the switch basic configuration such as enter or quit privileged mode, enter or quit interface mode, show switch clock and show switch system version etc. 2.6.1 Switch Basic Configuration Click Switch Basic Configuration, Switch...

Page 101 - Chapter 3 Port Configuration; Introduction to Port; Port Configuration; Enter the Ethernet port configuration mode

101 Chapter 3 Port Configuration 3.1 Introduction to Port The front panel of ES4626 provide 4 Combo ports (these Combo ports can be configured as either 1000MB copper ports or 1000MB SFP fiber ports, but only one type can be selected), 20 1000MB copper ports and 2 XFP 10GB fiber port. If the user ne...

Page 105 - flow control; no flow control; loopback

105 3.2.1.2.3 flow control Command: flow control no flow control Function: Enable the flow control function for the port: the “ no flow control” command disables the flow control function for the port . Command mode: Interface Mode Default: Port flow control is disabled by default. Usage Guide: Afte...

Page 107 - negotiation; Command: negotiation

107 Parameter: <string> is a string, up to 32 characters are allowed. Command mode: Interface Mode Default: No name is set by default. Usage Guide: This command facilitates the management of the switch. The user can name the ports according to their usage, for example, 1/1-2 ports used by the ...

Page 108 - shutdown

108 to pass through the switch at line speed. Parameter: use dlf to limit unicast traffic for unknown destination; multicast to limit multicast traffic; broadcast to limit broadcast traffic. <packets> s tands for the number of packets allowed to pass through per second for non-10Gb ports; for ...

Page 110 - no ip; no shutdown; vlan

110 1. Enter VLAN Mode 2. Configure the IP address for VLAN interface and enables VLAN interface. 1. Enter VLAN Mode 2. Configure the IP address for VLAN interface and enables VLAN interface. Command Explanation VLAN Mode ip address <ip-address> <mask> [secondary] no ip address [<ip-a...

Page 113 - rx; port

113 3.2.3.3 Port Mirroring Configuration 3.2.3.3.1 port monitor Command: port monitor <interface-list> [rx| tx| both] no port monitor <interface-list> Parameter: <interface-list> is the list of the monitored source interfaces; rx is the inbound traffic of the monitored source inter...

Page 114 - Device Mirroring Troubleshooting Help; Port Configuration Example

114 Switch#show port monitor 3.2.3.5.2 Device Mirroring Troubleshooting Help If problems occur configuring port mirroring, please check the following first for causes: & Whether the mirror destination port is a member of a trunk group or not, if yes, modify the trunk group. & If the throughp...

Page 115 - Port Troubleshooting Help; Command: show interfaces

115 SW3: Switch3(Config)#interface ethernet 1/10 Switch3(Config-Ethernet1/10)# speed-duplex force100-full Switch3(Config-Ethernet1/10)#duplex full 3.4 Port Troubleshooting Help 3.4.1 Monitor and Debug Commands 3.4.1.1 clear counters Command: clear counters [{ethernet <interface-list> | vlan &l...

Page 123 - Chapter 4 MAC Table Configuration; Introduction to MAC Table

123 Chapter 4 MAC Table Configuration 4.1 Introduction to MAC Table MAC table is a table identifies the mapping relationship between destination MAC addresses and switch ports. MAC addresses can be categorized as static MAC addresses and dynamic MAC addresses. Static MAC addresses are manually confi...

Page 126 - MAC Table Configuration; Command mode: Global Mode

126 ports; when the destination MAC address in a unicast frame is not found in the MAC table, the switch will broadcast the unicast frame. When VLANs are configured, the switch will forward unicast frame within the same VLAN. If the destination MAC address is found in the MAC table but belonging to ...

Page 128 - Typical Configuration Examples; Troubleshooting Help

128 4.3 Typical Configuration Examples 1/7 1/9 1/11 1/5 PC1 MAC ： 00-01-11-11-11-11 PC4 MAC ： 00-01-44-44-44-44 PC3 MAC ： 00-01-33-33-33-33 PC2 MAC ： 00-01-22-22-22-22 Fig 4-2 MAC Table typical configuration example Scenario: Four PCs as shown in the above figure connect to port 1/5, 1/7, 1/9, 1/11 ...

Page 129 - discardiia; MAC Address Function Extension

129 Command: show mac-address-table [static|aging-time|discard] [address <mac-addr>] Function: Show the current MAC table Parameter: static static entry; aging-time address aging time; discardiia filter entry; <mac-addr> entry’s MAC address; <vlan-id> entry’s VLAN number; <inter...

Page 130 - Enable MAC address binding function for the ports

130 the MAC address again to forward data in the new port. However, in some cases, security or management policy may require MAC addresses to be bound with the ports, only data stream from the binding MAC are allowed to be forwarded in the ports. That is to say, after a MAC address is bound to a por...

Page 131 - Commands; security

131 switchport port-security timeout <value> no switchport port-security timeout Enable port locking timer function; the “ no switchport port-security timeout ” restores the default setting. switchport port-security mac-address <mac-address> no switchport port-security mac-address <ma...

Page 132 - switchport port-security convert; Command: switchport port-security convert; switchport port-security timeout; no switchport port-security timeout

132 enabled, the Spanning Tree and Port Aggregation functions must be disabled, and the port enabling MAC address binding must not be a Trunk port. Example: Enable MAC address binding function for port 1and and lock the port. When a port is locked, the MAC address learning function for the port will...

Page 133 - switchport port-security mac-address; no switchport port-security; clear; no switchport port-security maximum

133 Switch(Config-Ethernet1/1)# switchport port-security timeout 30 4.5.1.2.2.4 switchport port-security mac-address Command: switchport port-security mac-address <mac-address> no switchport port-security mac-address <mac-address> Function: Add static secure MAC address; the “ no switchp...

Page 134 - Command: port security actionshutdown; MAC Address Binding Debug and Monitor

134 Parameter: < value> is the up limit for static secure MAC address, the valid range is 1 to 128. Default: The default maximum port secure MAC address number is 1. Usage Guide: The MAC address binding function must be enabled before maximum secure MAC address number can be set. If secure sta...

Page 135 - show port-security interface; Command mode

135 4.5.1.3.1.1 show port-security Command: show port-security Function: display the global configuration of secure ports. Command mode: Admin Mode Default: Configuration of secure ports is not displayed by default. Usage Guide: This command displays the information for ports that are currently conf...

Page 136 - port-security address

136 Usage Guide: This command displays the detailed configuration information for the secure port. Example: Switch# show port-security interface ethernet 1/1 Ethernet1/1 Port Security : Enabled Port status : Security Up Violation mode : Protect Maximum MAC Addresses : 1 Total MAC Addresses : 1 Confi...

Page 137 - MAC Address Binding Troubleshooting Help

137 -------------------------------------------------------------------------------------------------- Vlan Mac Address Type Ports 1 0000.0000.1111 SecureConfigured Ethernet1/3 -------------------------------------------------------------------------------------------------- Total Addresses : 1 Disp...

Page 140 - MAC address table configuration; Enbale port Mac-binding; Lock

140 mac-address-table. The current MAC address information is shown. See the equivalent CLI command at 4.4.1.1: 4.6.2 MAC address table configuration Click MAC address table configuration, MAC address binding configuration. Users can configure secure port features. 4.6.2.1 Enbale port Mac-binding Cl...

Page 141 - Dynamic MAC converting; Enable port security timeout; Binding MAC

141 Lock port. User can lock the secure port. See the equivalent CLI command at 4.5.1.2.2.3 & Port – Specify port For example: Select port Ethernet1/1, and then click Apply. The port Ethernet1/1 is locked. Click Remove to disable port MAC address binding. 4.6.2.2.2 Dynamic MAC converting Click M...

Page 142 - Clearing port MAC; Maximum port security IP number

142 CLI command at 4.5.1.2.2.5: & Port – Specify the port & Port security MAC –Port security MAC address & Operation type – add static security address; Remove static security address For example: Select port Ethernet1/1; set MAC address to 00-11-11-11-11-11; Select add static security a...

Page 143 - Port violation mode; Port

143 4.5.1.2.2.7 & Port – Specify the port & Max security MAC number (1-128) – Maximum MAC number For example: Select port Ethernet1/1; set Max security MAC number to 30, and then click Apply. The configuration is applied on the switch. Click Remove to restore the default setting. 4.6.2.3.2 P...

Page 145 - Chapter 5 VLAN Configuration; Introduction to VLAN

145 Chapter 5 VLAN Configuration 5.1 Introduction to VLAN VLAN (Virtual Local Area Network) is a technology that divides the logical addresses of devices within the network to separate network segments basing on functions, applications or management requirements. This way, virtual workgroups can be ...

Page 146 - Assigning Switch ports for VLAN

146 z Enhancing network security VLAN and GVRP (GARP VLAN Registration Protocol) defined by 802.1Q are implemented in ES4626/ES4650. The chapter will describe the use and configuration of VLAN and GVRP in details. 5.2 VLAN Configuration 5.2.1 VLAN Configuration Task Sequence 1. Creating or deleting ...

Page 148 - no vlan

148 5.2.2 VLAN Configuration Commands 5.2.2.1 vlan Command: vlan <vlan-id>[name <vlan-name>] no vlan <vlan-id>[name] Function: Create a VLAN and enter VLAN configuration mode, and can set VLAN name. In VLAN Mode, the user can assign the switch port to the VLAN. The “ no vlan <vl...

Page 149 - access

149 Switch(Config-ethernet1/8)#switchport mode access Switch(Config-ethernet1/8)#switchport access vlan 100 Switch(Config-ethernet1/8)#exit 5.2.2.3 switchport interface Command: switchport interface <interface-list> no switchport interface <interface-list> Function: Specify Ethernet port...

Page 150 - all”

150 Switch(Config-ethernet1/8)#switchport mode access Switch(Config-ethernet1/8)#exit 5.2.2.5 switchport trunk allowed vlan Command: switchport trunk allowed vlan {<vlan-list>|all} no switchport trunk allowed vlan Function: Set trunk port to allow VLAN traffic; the “ no switchport trunk allowe...

Page 154 - GVRP Configuration

154 Switch(Config)#vlan 2 Switch(Config-Vlan2)#switchport interface ethernet 1/2-4 Switch(Config-Vlan2)#exit Switch(Config)#vlan 100 Switch(Config-Vlan100)#switchport interface ethernet 1/5-7 Switch(Config-Vlan100)#exit Switch(Config)#vlan 200 Switch(Config-Vlan200)#switchport interface ethernet 1/8...

Page 155 - GVRP Configuration Task Sequence; Enable GVRP function; no garp timer hold

155 and population of such register information to the other switches. Switches support GVRP can receive VLAN dynamic register information from the other switches, and update local VLAN register information according the information received. GVRP enabled switch can also populate their won VLAN regi...

Page 160 - VLAN Troubleshooting Help; summary

160 Switch(Config)# bridge-ext gvrp Switch(Config)#vlan 100 Switch(Config-Vlan100)#switchport interface ethernet 1/2-6 Switch(Config-Vlan100)#exit Switch(Config)#interface ethernet 1/11 Switch(Config-Ethernet1/11)#switchport mode trunk Switch(Config-Ethernet1/11)# bridge-ext gvrp Switch(Config-Ether...

Page 162 - no debug gvrp

162 Gvrp Timers(milliseconds) LeaveAll : 10000 5.4.1.4 debug gvrp Command: debug gvrp no debug gvrp Function: Enable the GVRP debug function: the “ no debug gvrp ” command disables this debug function . Command mode: Admin Mode Default: GVRP debug information is disabled by default. Usage Guide: Use...

Page 164 - Allocate port for Vlan

164 5.5.1.2 Allocate port for Vlan Click Vlan configuration, Vlan configuration, Allocate ports for VLAN. Users can configure the vlan information on the switch. 5.5.1.2.1 Allocate port for Vlan Click Vlan configuration, Vlan configuration, Allocate ports for VLAN, Allocate port for Vlan. Users can ...

Page 165 - Vlan setting for trunk port

165 Port – Specify the port Type – Specify port type: access, trunk. See the equivalent CLI command at 5.2.2.5 Vlan ingress rules – Enable or disable vlan ingress rule. See the equivalent CLI command at 5.2.2.8 For example: Select port Ethernet1/1; select Type to Trunk; select Enable Vlan ingress ru...

Page 166 - Vlan setting for access port

166 trunk port. Users can configure vlan attributes of trunk ports: Set trunk native vlan: Set the native vlan of the port. See the equivalent CLI command at 5.2.2.7: Port – Specify the port Trunk native vlan – Specify native vlan id Operation type – Set native vlan: Add new VLAN; Remove native vlan...

Page 167 - Disable Vlan ingress rules

167 for access port. Users can add Access port to the specified VLAN, or delete Access port from the specified VLAN: Port – Specify the port Vlan ID – Specify VLAN ID For example: Select port Ethernet1/1; select Vlan ID 1, and then click Apply. The port Ethernet 1/1 is added to VLAN 1. The results a...

Page 171 - Chapter 6 MSTP Configuration; MSTP Introduction

171 Chapter 6 MSTP Configuration 6.1 MSTP Introduction The MSTP (Multiple STP) is a new spanning-tree protocol which is based on the STP and the RSTP. It runs on all the bridges of a bridged-LAN. It calculates a common and internal spanning tree (CIST) for the bridge-LAN which consists of the bridge...

Page 173 - Enable MSTP and set the running mode

173 region to become the CST. The MSTI is only valid within its MST region. An MSTI has nothing to do with MSTIs in other MST regions. The bridges in a MST region receive the MST BPDU of other regions through Boundary Ports. They only process CIST related information and abandon MSTI information. 6....

Page 180 - maxage; no spanning-tree maxage; mcheck

180 Switch(Config-Port-Range)#spanning-tree link-type p2p force-true 6.2.2.10 spanning-tree maxage Command: spanning-tree maxage <time> no spanning-tree maxage Function: Set the max aging time for BPDU; The command “ no spanning-tree maxage ” restores the default setting. Parameter: <time&g...

Page 181 - mode

181 Function: Force the port to run in the MSTP mode. Command mode: Interface Mode Default: The port is in the MSTP mode by default. Usage Guide: If a network which is attached to the current port is running IEEE 802.1D STP, the port converts itself to run in STP mode. The command is used to force t...

Page 183 - portfast; no spanning-tree portfast

183 6.2.2.16 spanning-tree mst port-priority Command: spanning-tree mst <instance-id> port-priority <port-priority> no spanning-tree mst <instance-id> port-priority Function: Set the current port priority for the specified instance; The command “ no spanning-tree mst <instance-i...

Page 184 - MSTP Example

184 Function: Set the current port as boundary port; The command “ no spanning-tree portfast ” sets the current port as non-boundary port. Command mode: Interface Mode Default: All the ports are non-boundary ports by default when enabling MSTP. Usage Guide: When a port is set to be a boundary port, ...

Page 189 - MSTP Troubleshooting; detail

189 SW2 SW3 SW4 2 3 5 4 2 3 6 7 5 4 6 7 x x x x Figure 6-5 The Topology Of the Instance 4 after the MSTP Calculation MSTP Troubleshooting 6.4 MSTP Troubleshooting 6.4.1 Monitoring And Debugging Command 6.4.1.1 show spanning-tree Command: show spanning-tree [mst [<instance-id>]] [interface <...

Page 193 - no debug spanning-tree; no debug

193 Switch(Config-Mstp-Region)# 6.4.1.4 debug spanning-tree Command: debug spanning-tree no debug spanning-tree Function: Enable the MSTP debugging information; The command “ no debug spanning-tree ” disables the MSTP debugging information Command mode: Privileged Mode Usage Guide: This command is t...

Page 194 - Introduction to IGMP Snooping; Enable IGMP Snooping

194 Chapter 7 IGMP Snooping Configuration 7.1 Introduction to IGMP Snooping IGMP (Internet Group Management Protocol) is a protocol used in IP multicast. IGMP is used by multicast enabled network devices (such as routers) for host membership query, and by hosts that are joining a multicast group to ...

Page 196 - IGMP Snooping Configuration Command; ip igmp snooping; Command: ip igmp snooping; ip igmp snooping vlan; no ip igmp; ip igmp snooping vlan mrouter

196 query max-response-time 7.2.2 IGMP Snooping Configuration Command 7.2.2.1 ip igmp snooping Command: ip igmp snooping no ip igmp snooping Function: Enable the IGMP Snooping function in the switch: the “ no ip igmp snooping ” command disables the IGMP Snooping function. Command mode: Global Mode D...

Page 197 - ip igmp snooping vlan static; ip igmp snooping vlan immediate-leave

197 Function: Specify static multicast router port in the VLAN; the “ no ip igmp snooping vlan <vlan-id> mrouter ” command deletes multicast router port. Parameter: <vlan-id> is the specified VLAN number; <interface –name> is the specified multicast router port number. Command mode...

Page 198 - ip igmp snooping vlan query; ip igmp snooping vlan query robustness

198 snooping vlan <vlan-id> immediate-leave ” command disables the IGMP fast leave function. Parameter: <vlan-id> is the VLAN number specified. Command mode: Global Mode Default: This function is disabled by default. Usage Guide: Enabling IGMP fast leave function speeds up the process fo...

Page 199 - ip igmp snooping vlan query interval; no ip igmp snooping; ip igmp snooping vlan query max-response-time; IGMP Snooping Example

199 Usage Guide: Larger robustness; parameter means worse network conditions; smaller robustness; parameter means better network conditions. The user can set the robustness parameter according to their network conditions. Example: Set the robustness parameter for the IGMP Query of VLAN 100 to 3. Swi...

Page 200 - The configuration steps are listed below:; Multicast Configuration

200 Fig 7-1 Enabling IGMP Snooping function As shown in the above figure, a VLAN 100 is configured in the switch, including port 1, 2, 6, 10 and 12 on slot 1. Four hosts are connected to port 2, 6, 10, 12 respectively and the multicast router is connected to port 1. As IGMP Snooping is disabled by d...

Page 202 - IGMP Snooping Troubleshooting Help; show ip igmp snooping

202 Multicast Configuration The same as scenario 1. IGMP Snooping listening result: Similar to scenario 1. 7.4 IGMP Snooping Troubleshooting Help 7.4.1 Monitor and Debug Commands 7.4.1.1 show ip igmp snooping Command: show ip igmp snooping [vlan < vlan-id> ] Parameter: <vlan-id> is id of...

Page 205 - Command: debug ip igmp snooping

205 port igmp snooping vlan mrouter state All M-Router port (if any) status of all VLANs in the switch, this will not be displayed if no M-Router port is specified. igmp snooping vlan mrouter present Whether query packets present in the M-Router igmp snooping vlan query TX Query packet number sent b...

Page 208 - IGMP Snooping static multicast configuration

208 7.5.3 IGMP Snooping static multicast configuration Click IGMP Snooping static multicast configuration. Users can configure IGMP Snooping static multicast. 7.5.3.1 IGMP Snooping static multicast configuration The explanation of each field is as below: VLAN ID – Configure Vlan ID Multicast group m...

Page 222 - accounting; primary

222 8.2.2.15 dot1x timeout re-authperiod Command: dot1x timeout re-authperiod <seconds> no dot1x timeout re-authperiod Function: Configure switch re-authenticate time interval to supplicant; use the “no” command to restore default. Parameter: <seconds> re-authenticate time interval, unit...

Page 223 - authentication

223 according to configuration gradation; if configure primary , will use this RADIUS server first. Command mode: global configuration mode Default: system without configure RADIUS accounting server. Instructions: This command for specify accounting RADIUS server IP address and port ID which connect...

Page 224 - no radius-server retransmit

224 8.2.2.19 radius-server dead-time Command: radius-server dead-time <minutes> no radius-server dead-time Function: Configure the recover time after RADIUS server dead; use the “no” command to restore default configuration. Parameter: <minutes> is the recover time after RADIUS server de...

Page 225 - Instructions; no radius-server timeout

225 Function: Configure RADIUS authentication message retransmit times; use the “no” command to restore default configuration. Parameter: <retries> is RADIUS server retransmit times, The range: 0~100. Command mode: global configuration mode Default: Default is 3 times. Instructions : After thi...

Page 226 - Ra d i u s Se r v e r

226 8.3 802.1X Apply Example 1 0 . 1 . 1 . 1 1 0 . 1 . 1 . 2 Ra d i u s Se r v e r 1 0 . 1 . 1 . 3 Figure 8-2 IEEE802.1x configuration example topology figure Computer connect to switch port 1/2, IEEE802.1x authentication function in port 1/2 is enabled, the access method adopt default method is bas...

Page 227 - Command: show aaa config

227 8.4 802.1X Trouble Shooting 8.4.1 802.1X Debug and Monitor Command 8.4.1.1 show aaa config Command: show aaa config Function: Displays the existing configuration commands while the switch works as RADIUS client. Command mode: privilege mode Instructions: Display switch whether is enable aaa auth...

Page 239 - Chapter 9 ACL Configuration; Introduction to ACL

239 Chapter 9 ACL Configuration 9.1 Introduction to ACL ACL (Access Control List) is an IP packet filtering mechanism employed in switches, providing network traffic control by granting or denying access through the switches, effectively safeguards the security of networks. The user can lay down a s...

Page 246 - default; permit; access-list ip extended

246 be created, and entries can be added to that ACL. Example: Create a standard IP access list numbered 20, allowing packets from 10.1.1.0/24 and deny packets from 10.1.1.0/16. Switch(Config)#access list 20 permit 10.1.1.0 0.0.0.255 Switch(Config)#access list 20 deny 10.1.1.0 0.0.255.255 9.2.2.3 fi...

Page 247 - no ip access extended; access-list ip standard; no ip access standard

247 Function: Create a name-based extended IP access list; the “ no ip access extended <name> ” command delete the name-based extended IP access list Parameter: <name> is the name for access list, the character string length is 1 – 8, pure digit sequence is not allowed. Command mode: Glo...

Page 249 - ACL Example

249 d-port 32 9.2.2.9 permit | deny(standard) Command: {deny | permit} {{<sIpAddr> <sMask>} | any | {host <sIpAddr>}} no {deny | permit} {{<sIpAddr> <sMask>} | any | {host <sIpAddr>}} Function: Create a standard name-based IP access rule; the “no” form command del...

Page 250 - ACL Troubleshooting Help

250 Switch#show firewall Firewall Status: Enable. Firewall Default Rule: Permit. Switch#show access lists access list 110(used 1 time(s)) access list 110 deny tcp 10.0.0.0 0.0.0.255 any-destination d-port 21 Switch#show access-group interface ethernet 1/10 interface name: Ethernet1/10 the ingress ac...

Page 251 - firewall; Command: show firewall

251 access list 10 deny any-source Deny all IP packets passage. access list 100(used 1 time(s)) Numbered ACL100, reference time: 1. access list 100 deny ip any-source any-destination Deny IP packets of any source addresses and destination addresses. access list 100 deny tcp any-source any-destinatio...

Page 252 - Web Management

252 Command mode: Admin Mode Usage Guide: Example: Switch#show firewall Firewall Status: Enable. Firewall Default Rule: Permit. Displayed information Explanation Firewall Status: Enable. Enable packet filtering function Firewall Default Rule: Permit. The default action for packet filtering is “permi...

Page 258 - Chapter 10 Port Channel Configuration; Introduction to Port Channel

258 Chapter 10 Port Channel Configuration 10.1 Introduction to Port Channel To understand Port Channel, Port Group should be introduced first: Port Group is a group of physical ports in the configuration level, only physical ports in the Port Group can take part in link aggregation and become a memb...

Page 259 - Creating a port group

259 For Port Channel to work properly, member ports of the Port Channel must have the same properties as the following: ) All ports in full duplex mode. ) Ports are of the same speed. ) All ports are Access ports and belong to the same VLAN or are all Trunk ports. ) If the ports are Trunk ports, the...

Page 260 - interface port-channel; Port Channel Configuration Commands

260 3. Enter port-channel configuration mode. Command Explanation Global Mode interface port-channel <port-channel-number> Create and enter port-channel configuration mode. 10.2.2 Port Channel Configuration Commands 10.2.2.1 port-group Command: port-group <port-group-number> [load-balanc...

Page 262 - Port Channel Example

262 saved and will be restored until the ports are aggregated. Note such restoration will be performed only once, if an aggregated group is ungrouped and aggregated again, the initial user configuration will not be restored. If it is the configuration to other modules, such as shutdown or speed conf...

Page 264 - Port Channel Troubleshooting Help

264 Switch1 (Config-Ethernet1/2)#exit Switch1 (Config)#interface eth 1/3 Switch1 (Config-Ethernet1/3)# port-group 1 mode on Switch1 (Config-Ethernet1/3)#exit Switch2#config Switch2 (Config)#port-group 2 Switch2 (Config)#interface eth 1/6 Switch2 (Config-Ethernet1/6)#port-group 2 mode on Switch2 (Con...

Page 269 - lacp; no debug lacp; Port Channel Troubleshooting Help

269 Number of port Port number in the port-channel. Standby port Port that is in “standby” status, which means the port is qualified to join the channel but cannot join the channel due to the maximum port limit, thus the port status is “standby” instead of “selected”. 10.4.1.2 debug lacp Command: de...

Page 271 - Show member port

271 10.5.2 LACP port configuration Click LACP port configuration. The configuration page is shown. See the equivalent CLI command at 10.2.2.2 The explanation of each field is as below: group num - Group number Port - Specify the port Port mode - Configure port mode: active, passive or on Operation t...

Page 272 - Chapter 11 DHCP Configuration; Introduction to DHCP

272 Chapter 11 DHCP Configuration 11.1 Introduction to DHCP DHCP [RFC2131] is the acronym for Dynamic Host Configuration Protocol. It is a protocol that assigns IP address dynamically from the address pool as well as other network configuration parameters such as default gateway, DNS server, default...

Page 273 - service dhcp

273 DHCP packets so that the DHCP packets exchange can be completed between the DHCP client and server. ES4626/ES4650 can act as both a DHCP server and a DHCP relay. DHCP server supports not only dynamic IP address assignment, but also manual IP address binding (i.e. specify a specific IP address to...

Page 275 - DHCP Server Configuration Commands

275 (3) Configure manual DHCP address pool parameters Command Explanation DHCP Address Pool Mode hardware-address <hardware-address> [{Ethernet | IEEE802|<type-number>}] no hardware-address Specifies the hardware address when assigning address manually host <address> [<mask> ...

Page 284 - DHCP Relay Configuration

284 Default: DHCP service is disabled by default. Command mode: Global Mode Usage Guide: Both DHCP server and DHCP relay are included in the DHCP service. When DHCP service enables, both DHCP server and DHCP relay are enabled. ES4626/ES4650 can only assign IP address for the DHCP clients and enable ...

Page 286 - no ip dhcp relay information policy drop

286 11.3.2.1 ip forward-protocol udp Command: ip forward-protocol udp <port> no ip forward-protocol udp <port> Function: Set DHCP relay to forward UPD broadcast packets on the port; the “ no ip forward-protocol udp <port> ” command cancels the service. Default: DHCP relay forwards ...

Page 287 - DHCP Configuration Example

287 command to stop the DHCP message forwarding. The command “ no ip dhcp relay information policy drop ” restores the DHCP message forwarding. Default: DHCP relay forwards DHCP broadcasting messages by default. Command mode: Global Mode Usage Guide: When DHCP messages shouldn’t be forwarded for cer...

Page 289 - DHCP Troubleshooting Help

289 Switch (Config)#vlan 2 Switch (Config-Vlan-2)#exit Switch (Config)#interface Ethernet 1/2 Switch (Config-Erthernet1/2)#switchport access vlan 2 Switch (Config-Erthernet1/2)#exit Switch (Config)#interface vlan 2 Switch (Config-if-Vlan2)#ip address 10.1.1.1 255.255.255.0 Switch (Config-if-Vlan2)#e...

Page 290 - all

290 11.5.1.1 clear ip dhcp binding Command: clear ip dhcp binding {<address> | all } Function: Delete the specified IP address-hardware address binding record or all IP address-hardware address binding records. Parameter: <address> is the IP address that has a binding record, in dotted d...

Page 300 - address

300 11.6.1.9 Excluded address Click DHCP configuration, DHCP server configuration, Manual address pool configuration.Users can configure the exclusive addresses on the DCHP pool. See the equivalent CLI command at 11.2.2.10: Starting address – Specify starting address Ending address - Specify ending ...

Page 302 - DHCP; binding

302 packet. See the equivalent CLI command at 11.3.2.2: IP address – Specify server IP address L3 Interface – Specify layer 2 interface For example: Set IP address to 192.168.1.5; set L3 Interface to Vlan1, and then click Add. The configuration is applied on the switch. Configure the relay policy to...

Page 304 - Chapter 12 SNTP Configuration; SNTP Configuration Commands; no sntp server; poll

304 Chapter 12 SNTP Configuration The Network Time Protocol (NTP) is widely used for clock synchronization for global computers connected to the Internet. NTP can assess packet sending/receiving delay in the network, and estimate computer clock deviation independently, so as to achieve high accuracy...

Page 305 - timezone; no sntp timezone

305 Command: sntp poll <interval> no sntp poll Function: Set the interval for SNTP client to send request to NTP/SNTP; the “ no sntp polltime ” command cancels polltime set and restores the default setting. Parameter: < interval> is the interval value from 16 to 16284. Default: The defau...

Page 306 - Typical SNTP Configuration Examples; SNTP Troubleshooting Help; sntp

306 12.2 Typical SNTP Configuration Examples Switch1 Switch2 Switch3 SNTP/NTP Server SNTP/NTP Server Fig 12-1 Typical SNTP Configuration All ES4626/ES4650 switches in the autonomous zone are required to perform time synchronization, which is done through two redundant SNTP/NTP servers. For time to b...

Page 307 - packet

307 Parameter: N/A. Command mode: Admin Mode Example: Display current SNTP configuration. Switch#show sntp SNTP server Version Last Receive 2.1.0.2 1 never 12.3.1.2 debug sntp Command: debug sntp {adjust | packets | select } no debug sntp {adjust | packets | select} Function: Display or disable SNTP...

Page 309 - Chapter 13 QoS Configuration; QoS; Terms

309 Chapter 13 QoS Configuration 13.1 QoS 13.1.1 Introduction to QoS QoS (Quality of Service) is a set of capabilities that allow you to create differentiated services for network traffic, thereby providing better service for selected network traffic. QoS is a guarantee for service quality of consis...

Page 310 - Implementation

310 DSCP: Differentiated Services Code Point, classification information carried in Layer 3 IP packet header, occupying 6 bits, in the range of 0 to 63, and is downward compatible with IP Precedence. Classification: The entry action of QoS, classifying packet traffic according to the classification ...

Page 311 - Configuration

311 may discard some low priority packets in case of bandwidth shortage. If devices of each hop in a network support differentiated service, an end-to-end QoS solution can be created. QoS configuration is flexible, the complexity or simplicity depends on the network topology and devices and analysis...

Page 315 - to; qos; no mls qos

315 mls qos map {cos-dscp <dscp1...dscp8> | dscp-cos <dscp-list> to <cos> | dscp-mutation <dscp-mutation-name> <in-dscp> to <out-dscp> |ip-prec-dscp <dscp1...dscp8> | policed-dscp <dscp-list> to <mark-down-dscp>} no mls qos map {cos-dscp | dscp-c...

Page 318 - police; Command mode: Policy class map configuration Mode

318 Switch(Config)#policy-map p1 Switch(Config-PolicyMap)#class c1 Switch(Config--Policy-Class)#set ip precedence 3 Switch(Config--Policy-Class)#exit Switch(Config-PolicyMap)#exit 13.1.2.2.7 police Command: police <rate-kbps> <burst-kbyte> [exceed-action {drop | policed-dscp-transmit}] n...

Page 319 - no police aggregate

319 no mls qos aggregate-policer <aggregate-policer-name> Function: Define a policy set that can be used in one policy map by several classes; the “ no mls qos aggregate-policer <aggregate-policer-name> ” command deletes the specified policy set. Parameter: <aggregate-policer-name>...

Page 320 - no mls qos trust; no mls qos cos

320 Switch(Config-PolicyMap)#exit 13.1.2.2.10 mls qos trust Command: mls qos trust [cos [pass-through-dscp]|dscp [pass-through-cos]| ip-precedence [pass-through-cos] |port priority <cos>] [no] mls qos trust Function: Configure port trust; the “ no mls qos trust ” command disables the current t...

Page 321 - no mls qos dscp-mutation

321 Default: The default CoS value is 0. Command mode: Interface Mode Example: Set the default CoS value of port ethernet 1/1 to 5, i.e., packets coming in through this port will be assigned a default CoS value of 5 if no CoS value present. Switch(Config)#interface ethernet 1/1 Switch(Config-Etherne...

Page 322 - Usage Guide; bandwidth; no queue bandwidth; Command: queue mode strict

322 Default: There is no policy by default. Command mode: Interface Mode Usage Guide : For configuration of DSCP mutation mapping on the port to take effect, the trust status of that port must be “trust DSCP”. Applying DSCP mutation mapping allows DSCP value specified directly convert to new DSCP va...

Page 325 - Example

325 1 2 3 4 5 6 7. Switch(Config)#mls qos map cos-dscp 0 1 2 3 4 5 6 7 13.1.3 QoS Example Scenario 1: Enable QoS function, change the queue out weight of port ethernet 1/1 to 1: 1: 2: 2: 4: 4: 8: 8, and set the port in trust CoS mode without changing DSCP value, and set the default CoS value of the ...

Page 326 - Configuration result:

326 Switch(Config-PolicyMap)#class c1 Switch(Config--Policy-Class)#police 10000 4000 exceed-action drop Switch(Config--Policy-Class)#exit Switch(Config-PolicyMap)#exit Switch(Config)#interface ethernet 1/2 Switch(Config-Ethernet1/2)#service-policy input p1 Configuration result: An ACL name 1 is set ...

Page 327 - QoS configuration in Switch1:

327 precedence. Thus inside the QoS domain, packets of different priority will go to different queues and get different bandwidth. The configuration steps are listed below: QoS configuration in Switch1: Switch#config Switch(Config)#access-list 1 permit 192.168.1.0 0.0.0.255 Switch(Config)#mls qos Sw...

Page 328 - buffers

328 Usage Guide: This command indicates whether QoS is enabled or not. Example: Switch #show mls-qos Qos is enabled Displayed information Explanation Qos is enabled QoS is enabled. 13.1.4.1.2 show mls qos aggregate-policer Command: show mls qos aggregate-policer [<aggregate-policer-name>] Func...

Page 330 - show mls qos maps

330 Queue and weight type: Queue to weight mapping. QType WFQ or PQ queue out method Switch # show mls qos interface policers ethernet 1/2 Ethernet1/2 Attached policy-map for Ingress: p1 Displayed information Explanation Ethernet1/2 Port name Attached policy-map for Ingress: p1 Policy map bound to t...

Page 331 - show

331 IpPrecedence-dscp map: ipprec: 0 1 2 3 4 5 6 7 ------------------------------------- dscp: 0 8 16 24 32 40 48 56 Dscp-cos map: d1 : d2 0 1 2 3 4 5 6 7 8 9 0: 0 0 0 0 0 0 0 0 1 1 1: 1 1 1 1 1 1 2 2 2 2 2: 2 2 2 2 3 3 3 3 3 3 3: 3 3 4 4 4 4 4 4 4 4 4: 5 5 5 5 5 5 5 5 6 6 5: 6 6 6 6 6 6 7 7 7 7 6: ...

Page 333 - Management; QoS configuration

333 & Policy map can only be bound to ingress direction, egress is not supported yet. & If the policy is too complex to be configured due to hardware resource limit, error massages will be provided. 13.1.5 Web Management Select QoS configuration and it consist of six sections as following: z...

Page 334 - access-group First valid

334 13.1.5.2.1 Add/Remove Class-map Click Add/Remove class-map then entry the configure page. It is equivalent to CLI command 13.1.2.2.2. All sections describe as following: z Class - map name z Operation type － Create class table and Remove class table. Adding class-map name, specify the class-map ...

Page 335 - All sections describe as following:

335 13.1.5.3 Policy-map Configuration Click Policy-map configuration to display the extension, including five sections: z Add/Remove policy-map z Policy-map priority configuration z Policy-map bandwidth configuration z Add/Remove aggregate policer z Apply aggregate policer 13.1.5.3.1 Add/Remove Poli...

Page 338 - Port Trust Mode Configuration

338 Click Apply aggregate policer to entry the configure page. It is equivalent to CLI command 13.1.2.2.9. All sections describe as following: z Aggregate policer name z Policy-map name z Class-map name To apply the aggregate policer agg1 by c1 class-map, input the graphic presentation value, then c...

Page 339 - Port Default Cos Configuration

339 z Default － Will back to startup setting. This command will modify the configuration. The parameter will take effect alternative port trust status and port priority. To configure the port Ethernet 1/1 with trust mode, should set the packet by COS value classification first and keep it without ch...

Page 344 - DSCP Mark Down Mapping

344 To configure the DSCP mutation mapping should input the required value first, selecting Set for Operation type, then click Apply. 13.1.5.6.4 IP-Precedence-to-DSCP Mapping Click IP-Precedence-to-DSCP mapping to entry the configure page. All sections describe as following: z IP-Precedence － IP pre...

Page 348 - set

348 Default: By default, there is no policy-map. Command mode: Policy-map Mode Usage Guide: Before create a policy-map class, users must create a policy-map and enter the policy mode; Inside a policy-map, users can set the next hop according to the traffic. The priority of the classes is decided by ...

Page 349 - The Configuration Procedure is as below:

349 Parameter: input <policy-map-name> applies the specified policy-map to the current port for the inbound traffic; output <policy-map-name> applies the specified policy-map to the current port for the outbound traffic. Default: By default, there is no bound policy-map. Command mode: In...

Page 350 - Configuration Result:

350 Configuration Result: Set the ACL a1 which includes 2 policies. The first policy allows the traffic which has the source IP address as 192.168.1.0/24. The second policy denies the traffic which has the source IP address as 192.168.1.0/24 and has the destination IP address as 192.168.0.0/16. Then...

Page 351 - Layer 3 Interface

351 Chapter 14 Layer 3 Forward Configuration ES4626/ES4650 supports Layer3 forwarding. Layer3 forwarding is to forward Layer3 protocol packets (IP packets) across VLANs. Such forwarding addresses using IP address, when a port receives an IP packet, it will index in its own route table and decide the...

Page 352 - Global Mode; no interface vlan

352 14.1.2 Layer3 interface configuration 14.1.2.1 Layer3 Interface Configuration Task Sequence Create Layer3 Interface Command Explanation Global Mode interface vlan <vlan-id> no interface vlan <vlan-id> Create a VLAN interface (VLAN interface is a Layer3 interface); the “ no interface ...

Page 353 - ip fib optimize

353 14.2 IP Forwarding 14.2.1 Introduction to IP Forwarding Gateway devices can forward IP packets from one subnet to another; such forwarding uses the route to find a path. IP forwarding of ES4626/ES4650 is done with the participation of hardware and wire speed forwarding can be achieved. In additi...

Page 354 - IP Forwarding Troubleshooting Help; show ip traffic; Command: show ip traffic

354 Command mode: Global Mode Usage Guide: This command is used to optimize the aggregation algorithm: if the route table contains no default route, the next hop most frequently referred to will be used to construct a virtual default route to simplify the aggregation result. This method has the bene...

Page 356 - debug ip packet; Command: debug ip packet; ARP

356 quench 0 parameter, 0 timestamp, 0 timestamp replies Sent: 0 total 0 errors 0 time exceeded 0 redirects, 0 unreachable, 0 echo, 0 echo replies 0 mask requests, 0 mask replies, 0 quench 0 parameter, 0 timestamp, 0 timestamp replies Statistics of total ICMP packets sent and classified information ...

Page 357 - configuration; Configure static ARP; Forwarding; ethernet

357 resolution. ES4626/ES4650 supports both dynamic ARP and static configuration. Furthermore, ES4626/ES4650 supports the configuration of proxy ARP for some applications. For instance, when an ARP request is received on the port, requesting an IP address in the same IP segment of the port but not t...

Page 358 - ARP Forwarding Troubleshooting Help; arp

358 Default: No static ARP entry is set by default. Command mode: VLAN Interface Mode Usage Guide: Static ARP entries can be configured in the switch. Example: Configure static ARP for interface VLAN1. Switch(Config-If-Vlan1)#arp 1.1.1.1 00-03-0f-f0-12-34 eth 1/2 14.3.2.2.2 ip proxy-arp Command: ip ...

Page 360 - no debug arp; Troubleshooting

360 14.3.3.1.3 debug arp Command: debug arp no debug arp Function: Enable the ARP debug function: the “ no debug arp ” command disables this debug function. Default: ARP debug is disabled by default. Command mode: Admin Mode Usage Guide: Display contents for ARP packets received/sent, including type...

Page 361 - Route Table

361 Chapter 15 Routing Protocol Configuration To communicate with a remote host over the Internet, a host must choose a proper route via a set of routers/L3 switches. Both routers or layer3 switches calculate the route using CPU, the difference is that layer3 switch adds the calculated route to the ...

Page 362 - Static Route

362 layer3 switch has its own route table containing all routes used by that switch. Each route entry in the route table specifies the VLAN interface should be used for forwarding packet to reach a destination host or the next hop layer3 switch to the host. The route table mainly consists of the fol...

Page 363 - Static Route Configuration

363 convenient for load balance and route backup. However, it also has its own defects. Static route, as its name indicates, is static. It won’t modify the route automatically on network failure, and manual configuration is required on such occasions, therefore it is not suitable for mid and large-s...

Page 364 - route

364 ip route 0.0.0.0 0.0.0.0 <gateway> [<preference>] no ip route 0.0.0.0 0.0.0.0 <gateway> [<preference>] Configures a default route; the “ no ip route <ip_address> <mask> <gateway> [<preference>]” command deletes a default route entry. 15.2.3.2 Stati...

Page 366 - Scenario

366 Mask Mask of the destination network Nexthop Next hop IP address Interface The layer3 switch interface to next hop. Pref Route priority, if route of the other types exist to the destination network, only the route of the higher priority will be displayed in the core route table. 15.2.4 Configura...

Page 375 - ip rip authentication key; ip rip authentication mode

375 introducing routes from the other routing protocols to RIP. When using “ redistribute ” command to introduce routes of the other protocols without specifying detailed route metric, the default route metric set by “ default-metric ” command applies. Example: Set the default route metric for intro...

Page 378 - ip rip work

378 in multicast by default, packets are only broadcasted when v2-broadcast is set on the interface. 15.3.2.2.11 ip rip work Command: ip rip work no ip rip work Function: Configure the interface to run RIP or not; the “ no ip rip work ” command disables RIP packet sending/receiving on the interface....

Page 382 - vlan4 V2BC V12; ip; Command: show ip rip

382 and perform routing troubleshooting according to the output of this command. Example: Switch#sh ip protocols RIP information rip is turning on default metrict 16 neighbour is: NULL preference is 100 rip version information is: interface send version receive version vlan2 V2BC V12 vlan3 V2BC V12 ...

Page 383 - debug ip rip packet; Command: debug ip rip packet

383 RIP information rip is turning on default metric 16 neighbour is preference is 100 Displayed information Explanation rip is turning on RIP routing is enabled default metric 16 The default metric for introduced route is 16. neighbour is The specified destination address. preference is 100 RIP rou...

Page 384 - debug ip rip recv; Command: debug ip rip recv; no debug ip rip recv; debug ip rip send; Command: debug ip rip send

384 2: 11.11.11.2 0.0.0.0 0.0.0.0 2 00: 04: 20: start at 260********************* received a rip packet from 159.226.42.1 rip packet cmd : 2 version: 1 15.3.2.2.23 debug ip rip recv Command: debug ip rip recv no debug ip rip recv Function: Enable the RIP packet debug function for receiving: the “ no...

Page 385 - no debug ip rip send; RIP; SWI TCHA

385 Function: Enable the RIP packet debug function for sending: the “ no debug ip rip send ” command disables the debug function. Default: Debug is disabled by default. Command mode: Admin Mode Example: Switch#debug ip rip send 00: 02: 50: start at 170********************* send packets to 11.11.11.2...

Page 389 - OSPF

389 Displayed information Explanation Automatic network summarization is not in effect Disable RIP auto aggregation default metric for redistribute is : RIP protocol default metric value. neigbour is: The neighbor layer3 switch connecting to this RIP switch. Preference RIP routing priority. RIP vers...

Page 399 - ip ospf cost

399 15.4.2.2.5 default redistribute type Command: default redistribute type { 1 | 2 } no default redistribute type Function: Set the default route type(s) for exterior routes introduction; the “ no default redistribute type ” command restores the default setting. Parameter: 1 and 2 stand for type1 a...

Page 401 - ip ospf hello-interval; no ip ospf hello-interval; ip ospf passive-interface; no ip ospf passive-interface

401 interface. Example: Specify interface vlan1 to area 1. Switch(Config-If-Vlan1)#ip ospf enable area 1 15.4.2.2.10 ip ospf hello-interval Command: ip ospf hello-interval <time> no ip ospf hello-interval Function: Configure the interval for sending HELLO packets from the interface; the “ no i...

Page 402 - ip ospf priority; no ip ospf priority; ip ospf retransmit-interval; no ip ospf retransmit-interval; ip ospf transmit-delay

402 15.4.2.2.12 ip ospf priority Command: ip ospf priority <priority> no ip ospf priority Function: Set the priority of the interface in “designated layer3 switch” (DR) election; the “ no ip ospf priority ” command restores the default setting. Parameter: < priority> is the priority valu...

Page 406 - neighborid; no virtuallink neighborid; Command: show ip ospf

406 Command Mode: OSPF protocol configuration mode Usage Guide: An area can be configured to a STUB area if the area has only one egress point (connect to one layer3 switch only), or need not select egress point for each exterior destination. Type4 LSA (ASBR summary LSA) and type5 LSA (AS exterior L...

Page 407 - show ip ospf ase; Command: show ip ospf ase

407 Command mode: Admin Mode Example: Switch#show ip ospf my router ID is 11.11.4.1 preference=10 ase perference=150 export metric=1 export tag=-2147483648 area ID 0 interface count: 1 80times spf has been run for this area net range: LSRefreshTime is1800 area ID 1 interface count: 1 41times spf has...

Page 408 - show ip ospf cumulative; Command: show ip ospf cumulative

408 Displayed information Explanation Destination Target network segment or address AdvRouter Route election NextHop Next hop address Age Aging time. SeqNumber Sequence number. Type Exterior routes type for introduction. Cost Cost for introducing exterior routes 15.4.2.2.24 show ip ospf cumulative C...

Page 409 - show ip ospf database

409 LS_RTR 3 LS_NET 3 LS_SUM_NET 1 LS_SUM_ASB 0 LS_ASE 3 AS internal route 4 AS external route 0 Displayed information Explanation IO cumulative Statistics for OSPF packets in/out. type Packet type: including HELLO packet, DD packet, LS request, update and acknowledging packet, etc. In Packet in sta...

Page 411 - show ip ospf interface

411 LS ID Route type ADV rtr Age Sequence Cost Checksu Forw addr RouteTag (Ext Net's IP) Displayed information Explanation OSPF router ID The ID of the layer3 switch. Area 1>>>>>>>> Area ID: 0 Represent the LSA database information from area 1 to area 0. Router LSAs Route LSA...

Page 412 - show ip ospf neighbor; Command: show ip ospf neighbor

412 Type layer3 switch type, such as designated layer3 switch. Priority Configure the priority in electing designated layer3 switch. Transit Delay The delay value for interface to transfer LAS. DR The designated layer3 switch. BDR Backup designated layer3 switch. Authentication key OSPF packet authe...

Page 413 - show ip ospf routing; Command: show ip ospf routing

413 interface ip 51.1.1.1 area id 0 interface ip 52.1.1.1 area id 0 interface ip 100.1.1.1 area id 0 interface ip 110.1.1.1 area id 0 interface ip 150.1.1.1 area id 0 router id 12.2.0.0 router ip addr 150.1.1.2 state NFULL priority 0 DR 150.1.1.1 BDR 0.0.0.0 last hello 59011 last exch 49607 Displaye...

Page 414 - Command: show ip protocols

414 AS external routes: Destination Cost Dest Type Next Hop ADV rtr Displayed information Explanation AS internal routes Autonomous system interior route. AS external routes Autonomous system exterior route. Destination Destination network segment Area Area number. Cost Cost value. Dest Type Route T...

Page 417 - SWI T

417 15.4.3 Typical OSPF Scenario Scenario 1: OSPF autonomous system. This scenario takes an OSPF autonomous system consists of five ES4626/ES4650 layer3 switches for example, where layer3 switch Switch1 and Switch5 make up OSPF area 0, layer3 switch Switch2 and Switch3 form OSPF area 1 (assume vlan1...

Page 432 - show ip protocols

432 For example, displayed information can be: Switch#show ip ospf virtual-links no virtual-link （ 10 ） show ip protocols “show ip protocols” command can be used to display the information of the routing protocols running in the switch. For example, displayed information can be: Switch#sh ip protoco...

Page 442 - Imported route parameter configuration

442 equivalent CLI command at 18.4.2.2.8 Sending link-state packet delay – Configure sending link-state packet delay on the port. See the equivalent CLI command at 18.4.2.2.14 Sending link-state packet retransmit interval – Specify sending link-state packet retransmit interval to neighbor router. Se...

Page 447 - Multicast Protocol Overview

447 Chapter 16 Multicast Protocol Configuration 16.1 Multicast Protocol Overview 16.1.1 Introduction to Multicast When sending information (including data, voice and video) to a small number of users in the network, there are several ways of transmission, for instance, the unicast method that establ...

Page 448 - Address

448 16.1.2 Multicast Address The multicast packets uses Class D IP address as their destination addresses, ranging from 224.0.0.0 to 239.255.255.255. Class D addresses cannot be used in the source IP address field of an IP packet. In unicast, the path a packet travels is from the source address to t...

Page 450 - show ip mroute

450 network, and can significantly save the network bandwidth and reduce network traffic. The multicast feature can be conveniently used to provide some new value-added services, including online live broadcast, network TV, remote education, remote medical service, network radio, realtime video/audi...

Page 452 - Configuration Task Sequence

452 upstream nodes to inform the upstream node that no more forwarding for that multicast group is necessary. The upstream nodes will delete the corresponding interface, multicast forwarding entry(S,G), from the outgoing interface list. Hence a shortest path tree (SPT) rooted by source S is establis...

Page 455 - show ip pim mroute dm

455 SWITCHA SWITCHB Et her net 1/ 1 vl an2 Et her net 1/ 1 vl an1 Et her net 1/ 2 vl an2 Et her net 1/ 2 vl an1 Fig 16-1 Typical PIM-DM environment The followings are the configurations of SwitchA and SwitchB. (1) Configuration of SwitchA: Switch (Config)#interface vlan 1 Switch(Config-If-Vlan1)# ip...

Page 456 - Command: show ip pim mroute dm

456 show ip pim interface Display PIM-DM interface information debug ip pim Enable the debug function for displaying detailed PIM information; the “ no ” format of this command disables this debug function. 16.3.4.1.1 show ip pim mroute dm Command: show ip pim mroute dm Function: Display the PIM-DM ...

Page 458 - debug ip pim

458 Function: Display information for the PIM interface. Parameter: <ifname> is the interface name, i.e. display PIM information of the specified interface. Default: PIM information is displayed by default on all interfaces. Command mode: Admin Mode Example: Display PIM information of interfac...

Page 463 - ip pim hello-interval

463 16.4.2.2.1 ip pim sparse-mode Command: ip pim sparse-mode no ip pim sparse-mode Function: Enable PIM-SM protocol on the interface; the “ no ip pim sparse-mode ” command disables PIM-SM protocol on the interface. Parameter: N/A. Default: PIM-SM protocol is disabled by default. Command mode: Inter...

Page 464 - ip pim bsr-candidate; no ip pim bsr-candidate; ip pim rp-candidate

464 Parameter: <hello-interval-second> is the interval for sending PIM HELLO packets, ranging from 1 to 18724s. Parameter: The default interval for sending PIM HELLO is 30s. Command mode: Interface Mode Usage Guide: The HELLO message enables PIM-DM switches to locate each other and establish t...

Page 468 - show ip pim mroute sm; Command: show ip pim mroute sm

468 Function: Display PIM information of interface vlan 2. Switch #show ip pim interface vlan2 Switch # Interface Vlan2 : 192.3.1.2 owner is pimsm, Vif is 1, Hello Interval is 30, pim sm jp interval is (60) Neighbor-Address Interface Uptime Expires 192.3.1.3 Vlan2 00: 12: 18 00: 01: 38 Switch # Disp...

Page 469 - show ip pim neighbor

469 Incoming interface : Vlan1, RPF Nbr 0.0.0.0, pref 0, metric 0 Outgoing interface list: (Vlan2), protos: 0x2, UpTime: 00: 10: 18, Exp: 00: 03: 18 Switch # Displayed information Explanation (192.1.1.1, 225.0.0.1) Forwarding entry. Incoming interface Incoming interface, or RPF interface. Outgoing i...

Page 470 - show ip pim rp; Function: Display PIM RP related information

470 16.4.4.1.5 show ip pim rp Command: show ip pim rp [mapping | group-address] Function: Display PIM RP related information Parameter: mapping displays the group address and RP association. group-address is the group address. Default: No display by default. Command mode: Admin Mode Function: Displa...

Page 471 - debug ip pim bsr; PIM-SM Troubleshooting Help; show ip pim bsr-router

471 16.4.4.1.7 debug ip pim bsr Command: debug ip pim bsr Function: Enable the PIM candidate RP/BSR informaiton debug function; the “ no ” format of the command disables this debug function. Parameter: N/A. Default: Disabled. Command mode: Admin Mode Usage Guide: If detailed information about PIM ca...

Page 472 - DVMRP

472 16.5 DVMRP 16.5.1 Introduction to DVMRP Distance Vector Multicast Routing Protocol (DVMRP) is a dense mode multicast routing protocol. It employs a RIP like route exchange mechanism to establish a forwarding broadcast tree for each source, then a truncated broadcast tree (short path tree to the ...

Page 478 - ip dvmrp probe-interval; no ip dvmrp probe-interval; ip dvmrp report-interval; no ip dvmrp report-interval

478 Command mode: Interface Mode Usage Guide: When neighborhood established in DVMRP, a neighbor is considered nonsexist if no probe message from that neighbor is received in the neighbor timeout interval, and the neighborhood is terminated. Neighbor timeout interval must be greater than the interva...

Page 479 - ip dvmrp route-timeout; no ip dvmrp route-timeout; ip dvmrp tunnel; no ip dvmrp tunnel

479 updating report message for a route from the neighbor of the route is received in the specified interval, then the route is considered to be invalid. This interval configured must be no greater than the timeout interval for the route. Example: Set the interval for sending DVMRP route report mess...

Page 481 - show ip dvmrp mroute; Command: show ip dvmrp mroute; show ip dvmrp neighbor

481 16.5.4.1 Monitor and Debug Commands 16.5.4.1.1 show ip dvmrp mroute Command: show ip dvmrp mroute Function: Display the DVMRP packet forwarding entries.. Parameter: N/A. Default: Not displayed. Command mode: Admin Mode Usage Guide: This command is used to display DVMRP multicast forwarding entri...

Page 482 - show ip dvmrp route; Command: show ip dvmrp route

482 Function: Display information for DVMRP neighbors. Parameter: <ifname> is the interface name, i.e. display neighbor information of the specified interface. Default: Not displayed. Command mode: Admin Mode Example: Display neighbor information of Ethernet interface vlan1. Switch #show ip dv...

Page 484 - debug ip dvmrp pruning; Command: debug ip dvmrp pruning

484 Command mode: Admin Mode Usage Guide: If detailed information about DVMRP packets (except prune and graft) is required, this debug command can be used. Example: Switch#debug ip dvmrp detail DVMRP detail debug is on Switch#01: 18: 09: 35: DVMRP: Received probe on vlan1 from 192.168.1.22 01: 18: 0...

Page 485 - IGMP

485 02: 22: 20: 40: DVMRP: Graft source 192.168.1.105, group 224.1.1.1 02: 22: 20: 40: DVMRP: Send graft-ACK on vlan1 to 105.1.1.2, len 16 02: 22: 20: 40: DVMRP: Graft-Ack Vers: majorv 3, minorv 255 02: 22: 20: 40: DVMRP: Graft-ACK source 192.168.1.105, group 224.1.1.1 16.5.4.2 DVMRP Troubleshooting...

Page 489 - ip igmp access-group; no ip igmp access-group; ip igmp query-interval

489 16.6.2.2.1 ip igmp access-group Command: ip igmp access-group {<acl_num | acl_name>} no ip igmp access-group Function: Set the filter criteria for IGMP group on the interface; the “ no ip igmp access-group ” command cancels the filter criteria. Parameter: {<acl_num | acl_name>} is th...

Page 490 - ip igmp query-timeout

490 Command: ip igmp query-interval <time_val> no ip igmp query-interval Function: Set the interval for sending IGMP query messages; the “ no ip IGMP query interval ” command restores the default setting. Parameter: <time_val> is the interval for sending IGMP query packets, ranging from ...

Page 491 - ip igmp static-group; no ip igmp static -group; ip igmp version; no ip igmp version

491 300s. Default: The default value is 265 seconds. Command mode: Interface Mode Usage Guide: In a shared network with several routers running IGMP, one switch will be selected as the querier for that shared network, the other switches act as timers monitoring the status of the querier; if no query...

Page 494 - debug ip igmp event; debug ip igmp packet; no debug ip ospf packet

494 Switch # show ip igmp interface vlan1 Vlan1 is up, line protocol is up Internet address is 192.168.1.11, subnet mask is 255.255.255.0 IGMP is enabled, I am querier IGMP current version is V2 IGMP query interval is 125s IGMP querier timeout is 265s IGMP max query response time is 10s Inboud IGMP ...

Page 495 - web Management

495 used. Example: Switch# debug ip igmp packet igmp packet debug is on Switch #02: 17: 38: 58: IGMP: Send membership query on dvmrp2 for 0.0.0.0 02: 17: 38: 58: IGMP: Received membership query on dvmrp2 from 192.168.1.11 for 0.0.0.0 02: 17: 39: 26: IGMP: Send membership query on vlan1 for 0.0.0.0 0...

Page 503 - Chapter 17 VRRP Configuration; Introduction to VRRP

503 Chapter 17 VRRP Configuration 17.1 Introduction to VRRP VRRP (Virtual Router Redundancy Protocol) is a redundancy protocol. It uses a backup mechanism to increase reliability of the router (or the layer 3 switch) to connect the outside network. It is designed for the local area network which sup...

Page 505 - vrrp

505 ip vrrp authentication mode text no ip vrrp authentication mode Configure authentication mode of VRRP messages sent by the current interface; the “ no ip vrrp authentication mode ” command restores the default authentication mode. ip vrrp authentication string <string> no ip vrrp authentic...

Page 511 - Command mode: Any Mode

511 Fig 17-1 Typical VRRP Application Topology SWITCHA and SWITCHB are layer 3 LAN switches in the same standby group. Set SWITCHA to master switch. The configuration steps are listed below: SWITCHA: SwitchA(config)#interface vlan 1 SwitchA (Config-If-Vlan1)# ip address 10.1.1.5 255.255.255.0 Switch...

Page 512 - no debug vrrp

512 Interface is Vlan2 Priority is 100 Advertisement interval is 1 sec Preempt mode is TRUE VrId <10> State is Initialize Virtual IP is 10.1.10.1 (IP owner) Interface is Vlan1 Configured priority is 255, Current priority is 255 Advertisement interval is 1 sec Preempt mode is TRUE Circuit failo...

Page 514 - Introduction to cluster network management

514 Chapter 18 Cluster Network Management 18.1 Introduction to cluster network management Cluster network management is an in-band configuration management. Unlike CLI, SNMP and Web Config which implement a direct management of the target switches through a management workstation, cluster network ma...

Page 515 - Enable or disable cluster

515 18.2 Basic Cluster Network Management Configuration 18.2.1 Cluster Network Management Configuration Sequence Enable or disable cluster function Create cluster Create or delete cluster Configure private IP address pool for member switches of the cluster Add or remove a member switch Configure att...

Page 518 - commander; no cluster commander

518 Function: Sets interval of sending cluster registration packet; the “ no cluster register timer ” command restores the default setting. Parameter: <timer-value> is interval of sending cluster registration packet in seconds, valid range is 30 to 65535. Command mode: Global Mode Default: Clu...

Page 519 - member; no cluster

519 Parameter: <cluster-name> is the cluster’s name; <vlan-id> is the VLAN of the Layer 3 device which the cluster belongs to. If it is omitted, the cluster belongs to VLAN1. Command mode: Global Mode Default: There is no cluster by default. Usage Guide: This command sets the switch as a...

Page 520 - Command: rcommand commander

520 18.2.2.6 cluster auto-add Command: cluster auto-add enable no cluster auto-add enable Function: When this command is executed in the commander switch, the newly discovered candidate switches will be added to the cluster as a member switch automatically; the “ no cluster auto-add enable ” command...

Accton ES4626 - Manual

Table of Contents:

Summary

Other Accton Models