Fortinet 548B - Manual

- 8 - 2. Product Overview 2.1 Switch Description FortiSwitch-548B is a SFP+ 10-Gigabit Ethernet backbone switch designed for adaptability and scalability. The Switch provides a management platform and uplink to backbone. Alternatively, the Switch can utilize up to 48 10-Gigabit Ethernet ports to fun...

- 14 - 3. Installation and Quick Startup 3.1 Package Contents Before you begin installing the Switch, confirm that your package contains the following items: • One FortiSwitch-548B Layer III 10-Gigabit Managed Switch • Mounting kit: 2 mounting brackets and screws • Four rubber feet with adhesive bac...

- 15 - 3.2 Switch Installation Installing the Switch Without the Rack 1. Install the Switch on a level surface that can safely support the weight of the Switch and its attached cables. The Switch must have adequate space for ventilation and for accessing cable connectors. 2. Set the Switch on a flat...

- 16 - 3.3 Installing the Switch in a Rack You can install the Switch in most standard 19-inch (48.3-cm) racks. Refer to the illustrations below. 1. Use the supplied screws to attach a mounting bracket to each side of the Switch. 2. Align the holes in the mounting bracket with the holes in the rack....

- 17 - 3.4 Quick Starting the Switch 1. Read the device Installation Guide for the connectivity procedure. In-band connectivity allows access to the FortiSwitch-548B Series Switch locally. From a remote workstation,the device must be configured with IP information (IP address, subnet mask, and defau...

- 18 - 3.5 System Information Setup 3.5.1 Quick Start up Software Version Information Table 2-1. Quick Start up Software Version Information Command Details show hardware Allows the user to see the HW & SW version the device contains System Description - switch's model name show version Allows t...

- 19 - (Read/Write) or is only able to view (Read Only). As a factory default, admin has Read/Write access and guest has Read Only access. There can only be one Read/Write user and up to 5 Read Only users. show loginsession Displays all login session information username <username> {passwd | n...

- 20 - Management VLAN Id - Specifies VLAN id Web Mode - Indicates whether HTTP/Web is enabled. Java Mode - Indicates whether java mode is enabled. ip address (Config)# interface vlan 1 (if-vlan 1)# ip address <ipaddr> <netmask> (if-vlan 1)# exit (Config)# ip default-gateway <gateway&...

- 21 - copy <url> startup-config <filename> Sets the download datatype to be an image or config file. The URL must be specified as: tftp://ipAddr/filepath/fileName. The startup-config option downloads the config file using tftp and image option downloads the code file. 3.5.8 Quick Start ...

- 22 - 4. Console and Telnet Administration Interface This chapter discusses many of the features used to manage the Switch, and explains many concepts and important points regarding these features. Configuring the Switch to implement these concepts is discussed in detail in chapter 6. 4.1 Local Con...

- 24 - 4.3 Set Up your Switch Using Telnet Access Once you have set an IP address for your Switch, you can use a Telnet program (in a VT-100 compatible terminal mode) to access and control the Switch. Most of the screens are identical, whether accessed from the console port or from a Telnet interfac...

- 25 - 5. Web-Based Management Interface 5.1 Overview The Fortinet FortiSwitch-548B Series Layer III plus QoS Managed Switch provides a built-in browser interface that lets you configure and manage it remotely using a standard Web browser such as Microsoft Internet Explorer 5.0 or later or Netscape ...

- 26 - 5.2 How to log in The Fortinet FortiSwitch-548B Series Layer III plus QoS Managed Switch can be configured remotely from Microsoft Internet Explorer (version 5.0 or above), or Mozilla FireFox (version 3.6 or above). 1. Determine the IP address of your managed switch. 2. Open your Web browser....

- 27 - 5.3 Web-Based Management Menu Menus The Web-based interface enables navigation through several menus. The main navigation menu is on the left of every page and contains the screens that let you access all the commands and statistics the switch provides. Main Menus • System • Switching • Routi...

- 31 - 6. Command Line Interface Structure and Mode-based CLI The Command Line Interface (CLI) syntax, conventions, and terminology are described in this section. Each CLI command is illustrated using the structure outlined below. 6.1 CLI Command Format Commands are followed by values, parameters, o...

- 32 - 6.2 CLI Mode-based Topology Parameters Parameters are order dependent. The text in bold italics should be replaced with a name or number. To use spaces as part of a name parameter, enclose it in double quotes like this: "System Name with Spaces". Parameters may be mandatory values, op...

- 33 - Conventions Network addresses are used to define a link to a remote host, workstation, or network. Network addresses are shown using the following syntax: Table 5-1. Network Address Syntax Address Type Format Range IPAddr A.B.C.D 0.0.0.0 to 255.255.255.255 MacAddr YY:YY:YY:YY:YY:YY hexidecima...

- 34 - 7. Switching Commands le 7.1 System Information and Statistics commands 7.1.1 show arp This command displays connectivity between the switch and other devices. The Address Resolution Protocol (ARP) cache identifies the MAC addresses of the IP stations communicating with the switch. Syntax sho...

- 35 - 7.1.3 show process cpu This command provides the percentage utilization of the CPU by different tasks. Syntax show process cpu i It is not necessarily the traffic to the CPU, but different tasks that keep the CPU busy Default Setting None Command Mode Privileged Exec Display Message The follo...

- 36 - 7.1.4 show eventlog This command displays the event log, which contains error messages from the system, in the Primary Management System or in the specified unit. The event log is not cleared on a system reset. Syntax show eventlog [unit] unit - The unit number of the remote system. The range...

- 38 - Display Message System Description: Text used to identify this switch. System Object ID: The manufacturing ID System Information System Up Time: The time in days, hours and minutes since the last switch reboot. System Name: Name used to identify the switch. System Location: Text used to ident...

- 40 - Name: Name provided by Power Supply vendor. Model: Model Number provided by Power Supply vendor. Revision Number: Revision Number provided by Power Supply vendor. Manufacturer Location: Location provided by Power Supply vendor. Date of Manufacturing: Date of Manufacturing provided by Power Su...

- 41 - Serial Number: The unique box serial number for this switch. Hardware Version: The hardware version of this switch. It is divided into four parts. The first byte is the major version and the second byte represents the minor version. Number of ports: Total number of port for this swirch system...

- 42 - 7.1.12 show command filter This command displays the information that begin/include/exclude the regular expression. Syntax show command [| begin/include/exclude <LINE>] Default Setting None Command Mode Privileged Exec Display Message command: Any show command of the CLI begin: Begin wi...

- 43 - Source: This port is a monitoring port. PC Mbr: This port is a member of a port-channel (LAG). Dest: This port is a probe port. Admin Mode: Selects the Port control administration state. The port must be enabled in order for it to be allowed into the network. It may be enabled or disabled. Th...

- 53 - Command Mode Global Config 7.2.1.8 storm-control flowcontrol This command enables 802.3x flow control for the switch. i 802.3x flow control only applies to full-duplex mode ports. Syntax storm-control flowcontrol no storm-control flowcontrol no - This command disables 802.3x flow control for ...

- 56 - Interface Config 7.2.2 L2 MAC Address and Multicast Forwarding Database Tables 7.2.2.1 show mac-addr-table This command displays the forwarding database entries. If the command is entered with no parameter, the entire table is displayed. This is the same as entering the optional all parameter...

- 60 - Type: This displays the type of the entry. Static entries are those that are configured by the end user. Dynamic entries are added to the table as a result of a learning process or protocol. Description: The text description of this multicast table entry. Interfaces: The list of interfaces th...

- 63 - Display Message VLAN ID: There is a VLAN Identifier (VID) associated with each VLAN. The range of the VLAN ID is 1 to 3965. VLAN Name: A string associated with this VLAN as a convenience. It can be up to 16 alphanumeric characters, including blanks. The default is blank. VLAN ID 1 is always n...

- 75 - Default Setting 0 Command Mode Global Config 7.2.3.21 switchport protocol group This command adds the physical <slot/port> interface to the protocol-based VLAN identified by < group-name> . A group may have more than one interface associated with it. Each interface and protocol co...

- 76 - Global Config This command adds all physical interfaces to the protocol-based VLAN identified by < group-name> . A group may have more than one interface associated with it. Each interface and protocol combination can only be associated with one group. If adding an interface to a group ...

- 77 - None Command Mode Global Config 7.2.4 Double VLAN commands 7.2.4.1 show dvlan-tunnel/ dot1q-tunnel This command is used without the optional parameters to display all interfaces enabled for Double VLAN Tunneling. Use the optional parameters to display detailed information about Double VLAN Tu...

- 78 - Default Setting Vman Command Mode Interface Config 7.2.4.3 switchport dvlan-tunnel/ dot1q-tunnel This command is used to enable Double VLAN Tunneling on the specified interface. Syntax switchport {dvlan-tunnel|dot1q-tunnel} no switchport {dvlan-tunnel|dot1q-tunnel} Default Setting Disable Com...

- 79 - GVRP Admin Mode: This displays the administrative mode of GARP VLAN Registration Protocol (GVRP) for the system. 7.2.5.2 show gvrp configuration This command displays Generic Attributes Registration Protocol (GARP) information for one or all interfaces. Syntax show gvrp configuration {<slo...

- 81 - Syntax show garp configuration {<slot/port> | all} <slot/port> - An interface number. all - All interfaces. Default Setting None Command Mode Privileged Exec User Exec Display Message Interface: This displays the slot/port of the interface that this row in the table describes. GVR...

- 82 - 7.2.5.6 bridge-ext gmrp This command enables GARP Multicast Registration Protocol (GMRP) on the system. The default value is disabled. Syntax bridge-ext gmrp no bridge-ext gmrp no - This command disables GARP Multicast Registration Protocol (GMRP) on the system. Default Setting Disabled Comma...

- 84 - all - All interfaces. no - This command disables GMRP Multicast Registration Protocol on a selected interface. Default Setting Disabled Command Mode Global Config 7.2.5.9 garp timer This command sets the GVRP join time per port and per GARP. Join time is the interval between the transmission ...

- 85 - garp timer join all < 10-100 > no garp timer join all <10-100> - join time (Range: 10 – 100) in centiseconds. all - All interfaces. no - This command sets the GVRP join time for all ports and per GARP to 20 centiseconds (0.2 seconds). This command has an effect only when GVRP and ...

- 88 - Default Setting 1000 centiseconds (10 seconds) Command Mode Global Config 7.2.6 IGMP Snooping 7.2.6.1 ip igmp snooping The user can go to the CLI Global Configuration Mode to set IGMP Snooping on the system, use the ip igmp snooping global configuration command. Use the no ip igmp snooping to...

- 91 - 7.2.6.7 ip igmp snooping mrouter interface The user can go to the CLI Interface Configuration Mode to configure the interface as a multicast router-attached interface or configure the VLAN ID for the VLAN that has the multicast router attached mode enabled, use the ip igmp snooping mrouter in...

- 97 - Default Setting None Command Mode Privilege Exec Display Message MAC Address : A multicast MAC address for which the switch has forwarding or filtering information. The format is twodigit hexadecimal numbers that are separated by colons, for example 01:00:5e:67:89:AB. Type : The type of entry...

- 104 - show ipv6 mld snooping mrouter interface <slot/port> Default Setting None Command Mode Privileged Exec User Exec Display Message Interface: Shows the interface on which multicast router information is being displayed. Multicast Router Attached: Indicates whether multicast router is sta...

- 111 - 10 Command Mode VLAN Mode 7.2.8.19 set ipv6 mld mcrtrexpiretime The user can go to the CLI Interface VLAN Configuration Mode to set the Multicast Router Present Expiration time on a particular VLAN, use the set mld mcrtrexpiretime <vlanid> <0-3600> vlan configuration command. Use...

- 115 - Command Mode Global Config 7.2.9.8 ipv6 mld snooping querier vlan The user can go to the CLI Global Configuration Mode to set MLD snooping querier vlan admin mode, use the ipv6 mld snooping querier vlan <1-3965> global configuration command. Use the no ipv6 mld snooping querier vlan &l...

- 116 - Syntax ipv6 mld snooping querier vlan election participate <1-3965> no ipv6 mld snooping querier vlan election participate <1-3965> Default Setting Disabled Command Mode Global Config 7.2.10 Port Channel 7.2.10.1 show port-channel This command displays the static capability of al...

- 127 - Default Setting None Command Mode Global Config 7.2.11 Storm Control 7.2.11.1 show storm-control This command is used to display broadcast storm control information. Syntax show storm-control broadcast Default Setting None Command Mode Privileged Exec Display Message Intf: Displays interface...

- 131 - Global Config 7.2.11.5 switchport broadcast packet-rate This command will protect your network from broadcast storms by setting a threshold level for broadcast traffic on each port. Syntax switchport broadcast packet-rate {1 | 2 | 3 | 4} 1 - Threshold level represents 64 pps for 1G Port or 1...

- 134 - Default Setting Level 4 Command Mode Global Config 7.2.12 L2 Priority 7.2.12.1 show queue cos-map This command displays the class of service priority map on specific interface. Syntax show queue cos-map [<slot/port>] <slot/port> - Interface number. Default Setting None Command Mo...

- 135 - priority queue 0 1 1 0 2 0 3 1 4 2 5 2 6 3 7 3 Command Mode Interface Config 7.2.13 Port Mirror 7.2.13.1 show port-monitor session This command displays the Port monitoring information for the specified session. Syntax show port-monitor session <Session Number> <Session Number> -...

- 137 - port-monitor session <session-id> mode no port-monitor session <session-id> mode <session-id> - Session ID. no - This command disables port-monitoring function for a monitor session. Default Setting None Command Mode Global Config 7.2.14 Link State 7.2.14.1 show link state ...

- 138 - Syntax link state [group | [enable <1-6>]] no link state [group <1-6> | [enable <1-6>]] no - This command disables link state function. Command Mode Global Config 7.2.14.3 link state group Set upstream port or downstream port for a link state group. Use ‘link state group &l...

- 147 - <0 - 7> - Priority Id from 0 to 7. lan - Sets ETS Priority Id to LAN priority group san - Sets ETS Priority Id to SAN priority group ipc - Sets ETS Priority Id to IPC priority group no - This command restores the priority to priority group mapping list to default value. Default Setting...

- 148 - outer CFI: Displays Outer Packet CFI for Congestion Notification Message inner CFI: Displays Inner Packet CFI for Congestion Notification Message inner Dot1p: Displays Inner Packet Priority for Congestion Notification Message no-generate: Generate CNM or not. 7.2.18.2 show congestion-notify ...

- 158 - Syntax show line console Default Setting None Command Mode Privileged Exec Display Message Serial Port Login Timeout (minutes): Specifies the time, in minutes, of inactivity on a Serial port connection, after which the Switch will close the connection. Any numeric value between 0 and 160 is ...

- 160 - Syntax password-threshold <0-120> no password-threshold <threshold> - max threshold (Range: 0 - 120). no - This command sets the maximum value to the default. Default Setting 3 Command Mode Line Config 7.3.2.6 silent-time This command uses to set the amount of time the management...

- 161 - Default Setting 24 Command Mode Line Config 7.3.3 Telnet Session Commands 7.3.3.1 telnet This command establishes a new outbound telnet connection to a remote host. Syntax telnet <host> [port] [debug] [line] [echo] <host> - A hostname or a valid IP address. [port] - A valid decim...

- 162 - Command Mode Privileged Exec Display Message Remote Connection Login Timeout (minutes): This object indicates the number of minutes a remote connection session is allowed to remain inactive before being logged off. A zero means there will be no timeout. May be specified as a number from 0 to...

- 164 - no - This command sets the value to the default. Default Setting 24 Command Mode Line Vty 7.3.3.7 maxsessions This command specifies the maximum number of remote connection sessions that can be established. A value of 0 indicates that no remote connection can be established. The range is 0 t...

- 167 - Syntax show telnet Default Setting None Command Mode Privileged Exec User Exec Display Message Outbound Telnet Login Timeout (in minutes) Indicates the number of minutes an outbound telnet session is allowed to remain inactive before being logged off. A value of 0, which is the default, resu...

- 168 - 7.3.4.2 sshc sessions This command regulates new outbound ssh connections. If enabled, new outbound ssh sessions can be established until it reaches the maximum number of simultaneous outbound ssh sessions allowed. If disabled, no new outbound ssh session can be established. An established s...

- 169 - i Changing the timeout value for active sessions does not become effective until the session is reaccessed. Any keystroke will also activate the new timeout duration. Syntax sshc exec-timeout <1-160> no sshc exec-timeout <1-160> - max connect time (Range: 1 -160). no - This comma...

- 170 - 7.3.5 SNMP Server Commands 7.3.5.1 show snmp This command displays SNMP community information. Six communities are supported. You can add, change, or delete communities. The switch does not have to be reset for changes to take effect. The SNMP agent of the switch complies with SNMP versions ...

- 171 - Syntax show trapflags Default Setting None Command Mode Privileged Exec Display Message Authentication Flag: May be enabled or disabled. The factory default is enabled. Indicates whether authentication failure traps will be sent. Link Up/Down Flag: May be enabled or disabled. The factory def...

- 183 - Command Mode Privileged Exec Display Message HTTP Mode (Unsecure): This field indicates whether the HTTP mode is enabled or disabled. HTTP Port: This field specifies the port configured for HTTP. HTTP Mode (Secure): This field indicates whether the administrative mode of secure HTTP is enabl...

- 186 - Default Setting SSL3 and TLS1 Command Mode Global Config 7.3.8 Secure Shell (SSH) Commands 7.3.8.1 show ip ssh This command displays the SSH settings. Syntax show ip ssh Default Setting None Command Mode Privileged Exec Display Message Administrative Mode: This field indicates whether the ad...

- 188 - 7.3.8.5 ip ssh timeout This command sets the SSH connection session timeout value, in minutes. A session is active as long as the session has been idle for the value set. A value of 0 indicates that a session remains active indefinitely. The time is a decimal value from 0 to 160. Changing th...

- 198 - 7.3.13.12 set sflow poller index The user can go to the CLI Interface Configuration Mode to configure a new sFlow poller instance, use the sflow poller <index> interface configuration command. Use the no sflow poller return to default setting. Syntax sflow poller <index> no sflow...

- 199 - 7.3.14.2 show serviceport ndp This command displays IPv6 Neighbor entries. Syntax show serviceport ndp Default Setting None Command Mode Privileged Exec Display Message IPv6 Address: Specifies the IPv6 address of neighbor or interface. MAC Address: Specifies MAC address associated with an in...

- 202 - Syntax serviceport ipv6 gateway <gateway-address> no serviceport ipv6 gateway <gateway-address> : Gateway address in IPv6 global or link-local address format. no - This command remove IPv6 gateways on the service port interface. i Only a single IPv6 gateway address can be configu...

- 210 - no - This command sets the spanning-tree operational mode to be disabled. While disabled, the spanning-tree configuration is retained and can be changed, but is not activated. Default Setting Disabled Command Mode Global Config 7.4.2.2 spanning-tree protocol-migration This command enables BP...

- 211 - Default Setting The base MAC address displayed using hexadecimal notation as specified in IEEE 802 standard. Command Mode Global Config This command sets the Configuration Identifier Revision Level for use in identifying the configuration that this switch is currently using. The Configuratio...

- 215 - This command sets the bridge priority for a specific multiple spanning tree instance. The instance <mstid> is a number that corresponds to the desired existing multiple spanning tree instance. The priority value is a number within a range of 0 to 61440 in increments of 4096. If 0 (defi...

- 222 - 7.4.2.16 spanning-tree tcnguard This command sets the TCN Guard parameter to prevent a port from propagating topology change notifications. Syntax spanning-tree tcnguard no spanning-tree tcnguard no - This command sets the tcnguard parameter to the default value, that is Disabled. Default Se...

- 227 - None Command Mode Privileged Exec 7.5.2.5 logging host This command enables logging to a host where up to eight hosts can be configured. Syntax logging host <hostaddress> [ <port>] [[<severitylevel> | <0-7>]] <hostaddress> - IP address of the log server. <por...

- 228 - Syntax logging host reconfigure <hostindex> <hostaddress> <hostindex> - Index of the log server. <hostaddress> - New IP address of the log server. Default Setting None Command Mode Globla Config 7.5.2.6 logging syslog This command enables syslog logging. Syntax loggin...

- 229 - Command Mode Globla Config 7.5.2.7 clear logging buffered This command clears all in-memory log. Syntax clear logging buffered Default Setting None Command Mode Privileged Exec 7.6 Script Management Commands 7.6.1 script apply This command applies the commands in the configuration script to ...

- 231 - <scriptname> - Name of the script file. Default Setting None Command Mode Privileged Exec 7.6.4 script validate This command displays the content of a script file. Syntax script validate <scriptname> <scriptname> - Name of the script file. Default Setting None Command Mode ...

- 238 - Display Message User: This field lists every user that has an authentication login list assigned. System Login: This field displays the authentication login list assigned to the user for system login. 802.1x: This field displays the authentication login list assigned to the user for 802.1x p...

- 240 - Protocol Version: The protocol version associated with this port. The only possible value is 1, corresponding to the first version of the dot1x specification. PAE Capabilities: The port access entity (PAE) functionality of this port. Possible values are Authenticator or Supplicant. Control M...

- 251 - None Command Mode Global Config 7.8.2.2 username defaultlogin This command assigns the authentication login list to use for non-configured users when attempting to log in to the system. This setting is overridden by the authentication login list assigned to a specific user if the user is con...

- 254 - 7.8.3.5 dot1x user This command adds the specified user to the list of users with access to the specified port or all ports. The <username> parameter must be a configured user. Syntax dot1x user <user> {<slot/port> | all} no dot1x user <user> {<slot/port> | all}...

- 257 - 7.8.3.10 dot1x re-reauthenticate This command begins the re-authentication sequence on the specified port. This command is only valid if the control mode for the specified port is 'auto'. If the control mode is not 'auto' an error will be returned. Syntax dot1x re-authenticate <slot/port&...

- 259 - 7.8.4 Radius Configuration Commands 7.8.4.1 radius accounting mode This command is used to enable the RADIUS accounting function. Syntax radius accounting mode no radius accounting mode no - This command is used to set the RADIUS accounting function to the default value - that is, the RADIUS...

- 261 - number, the IP address must match that of a previously configured RADIUS authentication server. The port number must lie between 1 - 65535, with 1812 being the default value. If the 'acct' token is used, the command configures the IP address to use for the RADIUS accounting server. Only a si...

- 262 - Default Setting None Command Mode Global Config 7.8.4.7 radius-server retransmit This command sets the maximum number of times a request packet is re-transmitted when no response is received from the RADIUS server. The retries value is an integer in the range of 1 to 15. Syntax radius-server...

- 263 - Command Mode Global Config 7.8.4.9 radius-server msgauth This command enables the message authenticator attribute for a specified server. Syntax radius-server msgauth <ipaddr|hostname > <ipaddr|hostname > - is a IP address or hostname. Default Setting None Command Mode Global Con...

- 266 - Default Setting 0 Command Mode TACACS Host Config 7.8.5.3 tacacs timeout This command is used to configure the TACACS+ connection timeout value. Syntax tacacs timeout [<timeout>] no tacacs timeout <timeout> - The connection timeout value. Max timeout (Range: 1 to 30). no - This c...

- 267 - 7.8.6 Port Security Configuration Commands 7.8.6.1 port-security This command enables port locking at the system level (Global Config) or port level (Interface Config). Syntax port-security no port-security Default Setting None Command Mode Global Config Interface Config 7.8.6.2 port-securit...

- 272 - Syntax cdp no cdp no - This command is used to disable CDP Admin Mode. Default Setting Enabled Command Mode Global Config 7.9.2.2 cdp run This command is used to enable CDP on a specified interface. Syntax cdp run no cdp run no - This command is used to disable CDP on a specified interface. ...

- 273 - Command Mode Global Config 7.9.2.3 cdp timer This command is used to configure an interval time (seconds) of the sending CDP packet. Syntax cdp timer <5-254> no cdp timer <5-254> - interval time (Range: 5 – 254). no - This command is used to reset the interval time to the default...

- 274 - 7.10 SNTP (Simple Network Time Protocol) Commands 7.10.1 Show Commands 7.10.1.1 show sntp This command displays the current time and configuration settings for the SNTP client, and indicates whether the local time has been properly updated. Syntax show sntp Default Setting None Command Mode ...

- 275 - Client Mode: Configured SNTP Client Mode. Unicast Poll Interval Poll interval value for SNTP clients in seconds as a power of two. Poll Timeout (Seconds) Poll timeout value in seconds for SNTP clients. Poll Retry Poll retry value for SNTP clients. This command displays configured SNTP server...

- 276 - 7.10.2 Configuration Commands 7.10.2.1 sntp broadcast client poll-interval This command will set the poll interval for SNTP broadcast clients in seconds as a power of two where <poll-interval> can be a value from 6 to 10. Syntax sntp broadcast client poll-interval <6-10> no sntp ...

- 280 - sntp multicast client poll-interval <poll-interval> no sntp multicast client poll-interval <poll-interval> - Polling interval. It’s 2^(value) seconds where the range of value is 6 to 10. no – This command will reset the poll interval for SNTP multicast client to its default value...

- 284 - Syntax voice vlan data priority untrust | trust Default Setting trust Command Mode Interface Config 7.12 LLDP (Link Layer Discovery Protocol) Commands 7.12.1 Show Commands 7.12.1.1 show lldp This command uses to display a summary of the current LLDP configuration. Syntax show lldp Default Se...

- 301 - 7.13 Denial Of Service Commands 7.13.1 Show Commands 7.13.1.1 show dos-control This command displays the Denial of Service configurations for the entire system. Syntax show dos-control Default Setting None Command Mode Privileged Exec Display Message TCP Fragment Mode: May be enabled or disa...

- 306 - 7.13.2.9 dos-control icmpv4 This command enables Maximum ICMPv4 Packet Size Denial of Service protections. If the mode is enabled, Denial of Service prevention is active for this type of attack. If ICMPv4 Echo Request (PING) packets ingress having a size greater than the configured value, th...

- 307 - 7.13.2.11 dos-control icmpfrag This command enables the ICMP Fragment Denial of Service protection. If the mode is enabled, Denial of Service prevention is active for this type of attack. If packets ingress has fragmented ICMP packets, the packets will be dropped if the mode is enabled. Synt...

- 308 - ingress having TCP FIN, URG, and PSH all set and TCP Sequence Number set to 0, the packets will be dropped if the mode is enabled. Syntax dos-control tcpfinurgpsh no dos-control tcpfinurgpsh no - This command disables the TCP FIN and URG and PSH and SEQ=0 checking Denial of Service protectio...

- 309 - Syntax dos-control tcpsynfin no dos-control tcpsynfin no - This command disables the TCP SYN & FIN Denial of Service protection. Default Setting Disabled Command Mode Global Config 7.13.2.16 dos-control tcpoffset This command enables the TCP Fragment Offset Denial of Service protection. ...

- 316 - Default Setting Disabled Command Mode Interface Config 7.15 Protected Ports Commands 7.15.1 Show Commands 7.15.1.1 show switchport protected This command displays the status of all the interfaces, including protected and unprotected interfaces. Syntax show switchport protected {all|<0-2&g...

- 318 - switchport protected <0-2> no switchport protected <0-2> no - This command uses to configure a port as unprotected. Default Setting None Command Mode Interface Config 7.16 Static MAC Filtering Commands 7.16.1 Show Commands 7.16.1.1 show mac-address-table static This command displ...

- 320 - Interface Config 7.16.2.3 macfilter addsrc all This command adds all interfaces to the source filter set for the MAC filter with the MAC address of <macaddr> and <vlanid>. You must specify the <macaddr> parameter as a 6-byte hexadecimal number in the format of b1:b2:b3:b4:b...

- 324 - Syntax clear cdp [traffic] traffic - this command is used to clear the CDP packet counters. Default Setting None Command Mode Privileged Exec 7.17.1.10 clear vlan This command resets VLAN configuration parameters to the factory defaults. Syntax clear vlan Default Setting None Command Mode Pr...

- 325 - 7.17.1.11 clear igmpsnooping This command clears the tables managed by the IGMP Snooping function and will attempt to delete these entries from the Multicast Forwarding Database. Syntax clear igmpsnooping Default Setting None Command Mode Privileged Exec 7.17.1.12 clear port-channel This com...

- 327 - 7.17.1.16 clear domain-list This command is used to clear all entries domain names for incomplete host names. Syntax clear domain-list Default Setting None Command Mode Privileged Exec 7.17.1.17 clear hosts This command is used to clear all static host name-to-address mapping. Syntax clear h...

- 329 - 7.17.1.21 clear lldp remote-data This command will use to delete all information from the LLDP remote data table. Syntax clear lldp remote-data Default Setting None Command Mode Privileged Exec 7.17.1.22 enable passwd This command changes Privileged EXEC password. Syntax enable passwd Defaul...

- 331 - 7.17.1.26 clear ipv6 dhcp This command will use to clear DHCPv6 statistics for all interfaces or for a specific interface. Use the <slot/port> parameter to specify the interface. Syntax clear ipv6 dhcp {statistics | interface <slot/port> statistics} <slot/port> - Specify th...

- 342 - Default Setting None Command Mode Privileged Exec Display Message Cable Status : One of the following statuses is returned: Normal : The cable is working correctly. Open : The cable is disconnected or there is a faulty connector. Short : There is an electrical short in the cable. Cable Test ...

- 353 - Syntax ip verify binding <mac-address> vlan <vlan id> <ip address> interface <slot/port> no ip verify binding <mac-address> vlan <vlan id> <ip address> interface <slot/port> no - This command removes the IPSG static entry from the IPSG database...

- 360 - 7.21 Differentiated Service Command ! This Switching Command function can only be used on the QoS software version. This chapter contains the CLI commands used for the QOS Differentiated Services (DiffServ) package. The user configures DiffServ in several stages by specifying: 1. Class − cre...

- 361 - − 'all' within 'all' − no nested 'not' conditions − no nested 'acl' class types − each class contains at most one referenced class • hierarchical service policies not supported in a class definition • access list matched by reference only, and must be sole criterion in a class − that is, ACL...

- 362 - Syntax no diffserv Command Mode Global Config 7.21.2 Class Commands The 'class' command set is used in DiffServ to define: Traffic Classification specifies Behavior Aggregate (BA) based on DSCP, and Multi- Field (MF) classes of traffic (name, match criteria) Service Levels specifies the BA f...

- 365 - Restrictions The class types of both < classname> and < refclassname> must be identical (that is, any vs. any, or all vs. all). A class type of acl is not supported by this command. Cannot specify <refclassname> the same as < classname> (that is, self-referencing of c...

- 366 - Syntax match cos <0-7> Default Setting None Command Mode Class-Map Config 7.21.2.8 match destination-address mac This command adds to the specified class definition a match condition based on the destination MAC address of a packet. The <address> parameter is any layer 2 MAC addr...

- 367 - <ipaddr> specifies an IP address. < ipmask> specifies an IP address bit mask; note that although similar to a standard subnet mask, this bit mask need not be contiguous. Default Setting None Command Mode Class-Map Config 7.21.2.10 match dstl4port This command adds to the specifie...

- 368 - 7.21.2.11 match ethertype This command adds to the specified class definition a match condition based on the value of the ethertype. The <ethertype> value is specified as one of the following keywords: appletalk, arp, ibmsna, ipv4, ipv6, ipx, mplsmcast, mplsucast, netbios, novell, pppo...

- 369 - None Command Mode Class-Map Config / Ipv6-Class-Map Config 7.21.2.13 match ip precedence This command adds to the specified class definition a match condition based on the value of the IP Precedence field in a packet, which is defined as the high-order three bits of the Service Type octet in...

- 370 - i The ip dscp, ip precedence, and ip tos match conditions are alternative ways to specify a match criterion for the same Service Type field in the IP header, but with a slightly different user notation. In essence, this the “free form” version of the IP DSCP/Precedence/TOS match specificatio...

- 372 - Syntax match srcl4port {<portkey> | <0-65535>} <portkey> is one of the supported port name keywords (listed below). The currently supported <portkey> values are: domain, echo, ftp, ftpdata, http, smtp, snmp, telnet, tftp, www. Each of these translates into its equival...

- 373 - 7.21.2.20 match dstip6 This command adds to the specified class definition a match condition based on the destination IPv6 address of a packet. Syntax match dstip6 <destination-ipv6-prefix/prefix-length> Default Setting None Command Mode IPv6-Class-Map Config 7.21.2.21 match srcip6 Thi...

- 374 - 7.21.3 Policy Commands The 'policy' command set is used in DiffServ to define: Traffic Conditioning Specify traffic conditioning actions (policing, marking, shaping) to apply to traffic classes Service Provisioning Specify bandwidth and queue depth management requirements of service levels (...

- 379 - Syntax mark ip-precedence <0-7> Command Mode Policy-Class-Map Config Policy Type In Incompatibilities Drop, Mark (all forms) 7.21.3.11 police-simple This command is used to establish the traffic policing style for the specified class. The simple form of the police command uses a single...

- 380 - <set-cos-transmit> - an priority value is required and is specified as an integer from 0-7. <set-dscp-transmit> - is required and is specified as either an integer from 0 to 63, or symbolically through one of the following keywords: af11, af12, af13, af21, af22, af23, af31, af32,...

- 388 - The following information is repeated for each class instance within this policy: Class Name: The name of this class instance. In Offered Packets: A count of the packets offered to this class instance before the defined DiffServ treatment is applied. Only displayed for the 'in' direction. In...

- 389 - 7.22 ACL Command 7.22.1 Show Commands 7.22.1.1 show mac access-lists name This command displays a MAC access list and all of the rules that are defined for the ACL. The <name> parameter is used to identify a specific MAC ACL to display. Syntax show mac access-lists <name> <nam...

- 392 - Sequence Number: An optional sequence number may be specified to indicate the order of this access list relative to other access lists already assigned to this interface and direction. A lower number indicates higher precedence order. If a sequence number is already in use for this interface...

- 394 - A rule may either deny or permit traffic according to the specified classification fields. At a minimum, the source and destination MAC value and mask pairs must be specified, each of which may be substituted using the keyword any to indicate a match on any value in that field. The bpdu keyw...

- 400 - The assign-queue parameter allows specification of a particular hardware queue for handling traffic that matches this rule. The allowed <queue-id> value is 0-(n-1), where n is the number of user configurable queues available for the hardware platform. The assign-queue parameter is vali...

- 408 - 7.25 Domain Name Server Relay Commands 7.25.1 Show Commands 7.25.1.1 show hosts This command displays the static host name-to-address mapping table. Syntax show hosts Default Setting None Command Mode Privileged Exec Display Message Domain Name List: Domain Name. IP Address: IPv4 or IPv6 add...

- 414 - 8. Routing Commands le 8.1 Address Resolution Protocol (ARP) Commands 8.1.1 Show Commands 8.1.1.1 show ip arp This command displays the Address Resolution Protocol (ARP) cache. Syntax show ip arp Default Setting None Command Mode Privileged Exec Display Message Age Time: Is the time it takes...

- 417 - no - This command disables proxy ARP on a router interface. Default Setting Enabled Command Mode Interface Config 8.1.2.3 ip local-proxy-arp This command enables or disables Local Proxy ARP on an interface. Syntax ip local-proxy-arp no ip local-proxy-arp no - This command disables Local Prox...

- 419 - arp resptime <1-10> no arp resptime <1-10> - The range of default response time is 1 to 10 seconds. no - This command configures the default response timeout time. Default Setting The default response time is 1. Command Mode Global Config 8.1.2.8 arp retries This command configur...

- 420 - Default Setting The default value is 1200. Command Mode Global Config 8.1.2.10 clear ip arp-cache This command causes all ARP entries of type dynamic to be removed form the ARP cache. If the [gateway] parameter is specified, the dynamic entries of type gateway are purged as well. Syntax clea...

- 423 - None Command Mode Privileged Exec Display Message Route Codes: Displays the key for the routing protocol codes that might appear in the routing table output. The command displays the routing tables in the following format: Code IP-Address/Mask [Preference/Metric] via Next-Hop, Interface Code...

- 430 - Default Setting None Command Mode Interface Config 8.2.2.4 ip route This command configures a static route. Syntax ip route <networkaddr> <subnetmask> [ <nexthopip> [<1-255 >] ] no ip route <networkaddr> <subnetmask> [ { <nexthopip> | <1-255 > ...

- 431 - None Command Mode Global Config 8.2.2.6 ip route precedence This command sets the default precedence for static routes. Lower route preference values are preferred when determining the best route. The "ip route" and "ip default-next-hop" commands allow you to optionally set t...

- 432 - Interface Config 8.2.2.8 encapsulation This command configures the link layer encapsulation type for the packet. Syntax encapsulation {ethernet | snap} ethernet - The link layer encapsulation type is ethernet. snap - The link layer encapsulation type is SNAP. Default Setting The default valu...

- 448 - Syntax enable no enable Default Setting Enabled Command Mode Router OSPF Config Mode 8.3.2.3 network area Use network area command to enable OSPFv2 on an interface and set its area ID if the IP address of an interface is covered by this network command. Use no network area command to disable...

- 449 - Interface Config 8.3.2.5 1583compatibility 1583 compatibility mode is enabled by default. If all OSPF routers in the routing domain are capable of operating according to RFC 2328, OSPF 1583 compatibility mode should be disabled. 1583compatibility command enables OSPF 1583 compatibility. no 1...

- 468 - Default Setting Disabled Command Mode Router OSPF Config Mode 8.3.2.51 timers spf Use this command to configure the SPF delay time and hold time. The valid range for both parameters is 0-65535 seconds.. Syntax timers spf <delay-time> <hold-time> Default Setting delay-time—5 hold-...

- 471 - 8.4.2.5 bootpdhcprelay serverip This command configures the server IP Address for BootP/DHCP Relay on the system. Syntax bootpdhcprelay serverip <ipaddr> no bootpdhcprelay serverip <ipaddr> - The IP address of the BootP/DHCP server. no - Clear the IP address of the BootP/DHCP ser...

- 474 - Syntax enable no enable no - This command sets the administrative mode of RIP in the router to inactive. Default Setting Enabled Command Mode Router RIP Config 8.5.2.2 ip rip This command enables RIP on a router interface. Syntax ip rip no ip rip no - This command disables RIP on a router in...

- 475 - Disabled Command Mode Router RIP Config 8.5.2.4 default-information originate This command is used to set the advertisement of default routes. Syntax default-information originate no default-information originate no - This command is used to cancel the advertisement of default routes. Defaul...

- 480 - rip2 Command Mode Interface Config 8.6 Router Discovery Protocol Commands 8.6.1 Show Commands 8.6.1.1 show ip irdp This commands displays the router discovery information for all interfaces, or a specified interface. Syntax show ip irdp {<slot/port> | all} <slot/port> - Show rout...

- 481 - 8.6.2 Configuration Commands 8.6.2.1 ip irdp This command enables Router Discovery on an interface. Syntax ip irdp no ip irdp <no> - Disable Router Discovery on an interface. Default Setting Disabled Command Mode Interface Config 8.6.2.2 ip irdp broadcast This command configures the ad...

- 483 - no - This command sets the minimum time to 450. Default Setting The default value is 450. Command Mode Global Config 8.6.2.6 ip irdp preference This command configures the preferability of the address as a default router address, relative to other router addresses on the same subnet. Syntax ...

- 484 - Command Mode Privileged Exec User Exec Display Message MAC Address used by Routing VLANs: Is the MAC Address associated with the internal bridgerouter interface (IBRI). The same MAC Address is used by all VLAN routing interfaces. It will be displayed above the per-VLAN information. VLAN ID: ...

- 491 - The default priority value is 100 unless the router is the address owner, in which case its priority is automatically set to 255. Command Mode Interface Config 8.8.2.7 ip vrrp timers advertise This command sets the advertisement value for a virtual router in seconds. Syntax ip vrrp <1-255...

- 493 - 9. IP Multicast Commands 9.1 Distance Vector Multicast Routing Protocol (DVMRP) Commands This section provides a detailed explanation of the DVMRP commands. The commands are divided into the following different groups: Show commands are used to display device settings, statistics and other i...

- 498 - Command Mode Interface Config 9.1.2.2 ip dvmrp metric This command configures the metric for an interface. This value is used in the DVMRP messages as the cost to reach this network. Syntax ip dvmrp metric <value> no ip dvmrp metric <value> <value> - This field has a range ...

- 501 - Robustness: This field displays the tuning for the expected packet loss on a subnet. If a subnet is expected to be have a lot of loss, the Robustness variable may be increased for that interface. This is a configured value. Startup Query Interval (secs): This value indicates the interval bet...

- 507 - 9.2.2.9 ip igmp startup-query-interval This command sets the interval between General Queries sent by a Querier on startup on the interface. The time interval value is in seconds. Syntax ip igmp startup-query-interval <1-300> no ip igmp startup-query-interval <1-300> - The range ...

- 518 - 9.4.2 Configuration Commands 9.4.2.1 ip multicast This command sets the administrative mode of the IP multicast forwarder in the router to active. For multicast routing to become operational, IGMP must be currently enabled. An error message will be displayed on the CLI if multicast routing i...

- 519 - no - This command deletes an administrative scope multicast boundary specified by <groupipaddr> and <mask> for which this multicast administrative boundary is applicable. <groupipaddr> is a group IP address and <mask> is a group IP mask. Default Setting None Command M...

- 522 - Display Message Neighbor Addr: This field displays the IP Address of the neighbor on an interface. Interface: Valid slot and port number separated by forward slashes. Up Time: This field indicates the time since this neighbor has become active on this interface. Expiry Time: This field indic...

- 523 - Interface Config 9.5.2.3 ip pimdm hello-interval This command configures the transmission frequency of hello messages between PIM enabled neighbors. This field has a range of 10 to 3600 seconds. Syntax ip pimdm hello-interval <10 - 3600> no ip pimdm hello-interval <10 - 3600> - T...

- 529 - 9.6.2.5 ip pimsm rp-address This command is used to create RP IP address for the PIM-SM router. The parameter <rp-address> is the IP address of the RP. The parameter <group-address> is the group address supported by the RP. The parameter <group-mask> is the group mask for t...

- 532 - ip pimsm rp-candidate interface <slot/port> <group-address> <group-mask> no ip pimsm rp-candidate interface <slot/port> <group-address> <group-mask> no - This command is used to disable the router to advertise itself as a PIM candidate rendezvous point (RP...

- 537 - 9.8 MLD Proxy Commands MLD-Proxy is the IPv6 equivalent of IGMP-Proxy. MLD-Proxy commands allow you to configure the network device as well as to view device settings and statistics using either serial interface or telnet session. The operation of MLD-Proxy commands is the same as for IGMP-P...

- 540 - 9.8.2 Configuration Commands 9.8.2.1 ipv6 mld-proxy This command enables MLD-Proxy on the router. To enable MLD-Proxy on the router, you must enable multicast forwarding. Also, make sure that there are no other multicast routing protocols enabled n the router. Syntax ipv6 mld-proxy no ipv6 m...

- 542 - 10. IPv6 Commands 10.1 Tunnel Interface Commands The commands in this section describe how to create, delete, and manage tunnel interfaces.Several different types of tunnels provide functionality to facilitate the transition of IPv4 networks to IPv6 networks. These tunnels are divided into t...

- 544 - 10.1.2.3 tunnel destination This command specifies the destination transport address of the tunnel. Syntax tunnel destination {<ipv4-address>} <ipv4-address> - A valid IP Address. Default Setting None Command Mode Interfacel Tunnel Mode 10.1.2.4 tunnel mode ipv6ip This command sp...

- 546 - interface loopback <0-7> no interface loopback <0-7> no - This command removes the loopback interface and associated configuration parameters for the specified loopback interface. Default Setting Disabled Command Mode Global Config 10.3 IPv6 Routing Commands This section describe...

- 565 - 10.3.2.19 ipv6 unreachables Use this command to enable the generation of ICMPv6 Destination Unreachable messages. By default, the generation of ICMPv6 Destination Unreachable messages is enabled. Syntax ipv6 unreachables no ipv6 unreachables no – This command prevent the generation of ICMPv6...

- 579 - Retransmit Interval: Is the configured retransmit interval for the OSPFv3 virtual interface. Transit Delay: Is the configured transit delay for the OSPFv3 virtual interface. 10.4.2 Configuration Commands 10.4.2.1 ipv6 ospf This command enables OSPF on a router interface or loopback interface...

- 587 - 10.4.2.18 area nssa translator-stab-intv This command configures the translator stability interval of the NSSA. The <stabilityinterval> is the period of time that an elected translator continues to perform its duties after it determines that its translator status has been deposed by an...

- 592 - 10.4.2.28 default-information originate This command is used to control the advertisement of default routes. Syntax default-information originate [always] [metric <1-16777215>] [metric-type {1 | 2}] no default-information originate [metric] [metric-type] [always] - Sets the router adve...

- 593 - 10.4.2.30 distance ospf This command sets the route preference value of OSPF in the router. Lower route preference values are preferred when determining the best route. The type of OSPF can be intra, inter, type-1, or type-2. The OSPF specification (RFC 2328) requires that preferences must b...

- 595 - 10.4.2.34 maximum-paths This command sets the number of paths that OSPF can report for a given destination where <maxpaths> is platform dependent. Syntax maximum-paths <1-2> no maximum-paths <1-2> - The maximum number of paths that OSPF can report for a given destination. T...

- 615 - 7. IPv4 Multicast Menu: This section provides users to configure IGMP, DVMRP, Multicast, PIM-DM, PIM-SM. It also provides information for a multicast distribution tree. 8. IPv6 Multicast Menu: This section provides users to configure MLD, PIM-DM, PIM-SM. It also provides information for a mu...

- 616 - Non-Configurable Data System Description - The product name of this switch. Machine Type - The machine type of this switch. Machine Model - The model within the machine type. Serial Number - The unique box serial number for this switch. Part Number - The manufacturing part number. Base MAC A...

- 618 - Interface = y...................... SFP+ (The yth 10-Giga information of switch 1). 10 Gigabit Ethernet Compliance Codes : Transceiver’s compliance codes. Vendor Name: The SFP transceiver vendor name shall be the full name of the corporation, a commonly accepted abbreviation of the name of t...

- 622 - 11.2.3.4 Configuring Network Connectivity Page The network interface is the logical interface used for in-band connectivity with the switch via any of the switch's front panel ports. The configuration parameters associated with the switch's network interface do not affect the configuration o...

- 625 - Selection Criteria Maximum Number of Telnet Sessions - Use the pulldown menu to select how many simultaneous telnet sessions will be allowed. The maximum is 5, which is also the factory default. Allow New Telnet Sessions - If you set this to no, new telnet sessions will not be allowed. The f...

- 626 - Selection Criteria Admin Mode - Specifies if the Outbound Telnet service is Enabled or Disabled. Default value is Enabled. Maximum Sessions - Specifies the maximum number of Outbound Telnet Sessions allowed. Default value is 5. Valid Range is (0 to 5). Configurable Data Session Timeout - Spe...

- 635 - packets that have TCP Flags FIN, URG, and PSH set and TCP Sequence Number=0. The factory default is disabled. TCP Flag&Sequence - Enable or disable this option by selecting the corresponding line on the pulldown entry field. Enabling TCP Flag DoS prevention causes the switch to drop pack...

- 637 - ifIndex - The ifIndex of the MIB interface table entry associated with the source port. Status - The status of this entry. The possible values are: Static : the entry was added when a static MAC filter was defined. Learned : the entry was learned by observing the source MAC addresses of inco...

- 644 - 11.2.6 Managing Switch Interface 11.2.6.1 Configuring Switch Interface Page Selection Criteria Slot/Port - Selects the interface for which data is to be displayed or configured. Admin Mode - Use the pulldown menu to select the Port control administration state. You must select enable if you ...

- 651 - Selection Criteria Slot/Port - Select the physical interface for which you want to display or configure data. Configurable Data Interface Mode - This specifies the administrative mode via which Double VLAN Tagging can be enabled or disabled. The default value for this is Disabled. Interface ...

- 652 - Non-Configurable Data Slot/Port - The physical interface for which data is being displayed. Interface Mode - This specifies the administrative mode via which Double VLAN Tagging can be enabled or disabled. The default value for this is Disabled. Interface EtherType - The two-byte hex EtherTy...

- 657 - Broadcast Packets Received Rate - The total number of packets received rates that were directed to the broadcast address. Note that this does not include multicast packets. Discarded Packets Received Rate - The number of inbound packets which were chosen to be discarded rates even though no ...

- 660 - 11.2.8.3 Viewing SNMP supported MIBs Page This is a list of all the MIBs supported by the switch. Non-configurable Data Name - The RFC number if applicable and the name of the MIB. Description - The RFC title or MIB description. Command Buttons Refresh - Update the data. 11.2.9 Viewing Stati...

- 667 - Time Since Counters Last Cleared - The elapsed time, in days, hours, minutes, and seconds since the statistics for this port were last cleared. Command Buttons Clear Counters - Clear all the counters, resetting all statistics for this port to default values. Clear All Counters - Clear all th...

- 669 - 11.2.10 Managing System Utilities 11.2.10.1 Saving All Configuration Changed Page Command Buttons Save - Click this button to have configuration changes you have made saved across a system reboot. All changes submitted since the previous save or system reboot will be retained by the switch. ...

- 670 - Command Buttons Reset - Clicking the Reset button will reset all of the system login passwords to their default values. If you want the switch to retain the new values across a power cycle, you must perform a save. 11.2.10.4 Resetting the Passwords to Default Values Page Command Buttons Rese...

- 673 - Start File Transfer - To initiate the upload you need to check this box and then select the submit button. Non-Configurable Data The last row of the table is used to display information about the progress of the file transfer. The screen will refresh automatically until the file transfer com...

- 682 - Command Buttons Clear Log - Clear all entries in the log. Subsequent displays of the log will only show new log entries. 11.2.13 Configuring SNTP 11.2.13.1 Configuring SNTP Global Configuration Page Selection Criteria Client Mode - Specifies the mode of operation of SNTP Client. An SNTP clie...

- 688 - Direction • before-utc - Sets the local time zone before (east) of UTC • after-utc - Sets the local time zone after (west) of UTC Configurable Data Time Zone Name - The name of time zone, usually an acronym. (Range: 1-15 characters). Time Zone Hours - The number of hours before/after UTC. (R...

- 694 - 11.3 Switching Menu 11.3.1 Managing DHCP Snooping 11.3.1.1 Configuring DHCP Snooping Configuration Page Configurable Data DHCP Snooping Mode - Enables or disables the DHCP Snooping feature. The factory default is disabled. MAC Address Validation - Enables or disables the validation of sender...

- 695 - Command Buttons Submit - Applies the new configuration and causes the changes to take effect. These changes will not be retained across a power cycle unless a save configuration is performed. 11.3.1.3 Configuring DHCP Snooping Interface Configuration Page Selection Criteria Slot/Port - Selec...

- 697 - • Lease Time - This is the remaining Lease time for the Dynamic entries • Page - Lists the Number of Pages the dynamic binding entries occupied. Select the Page Number from this list to display the particular Page entries. Command Buttons Add - Adds DHCP snooping binding entry into the datab...

- 699 - Configurable Data IPSG - Enables or disables validation of Sender IP Address on this interface. If IPSG is Enabled Packets will not be forwarded if Sender IP Address is not in DHCP Snooping Binding database. The factory default is disabled. IPSG Port Security - Enables or disables the IPSG P...

- 703 - Selection Criteria Slot/Port - Select the physical interface for which data is to be displayed or configured. Configurable Data Trusted State - Indicates whether the interface is trusted for Dynamic ARP Inspection purpose. If this object is set to 'Enable', the interface is trusted. ARP pack...

- 706 - Command Buttons Refresh - Refresh the data on the screen with the present state of the data in the switch. 11.3.4 Managing Filters 11.3.4.1 Configuring MAC filter Configuration Page Selection Criteria MAC Filter - This is the list of MAC address and VLAN ID pairings for all configured filter...

- 707 - 11.3.4.2 MAC filter Summary Page Non-Configurable Data MAC Address - The MAC address of the filter in the format 00:01:1A:B2:53:4D. VLAN ID - The VLAN ID associated with the filter. Source Port Members - A list of ports to be used for filtering inbound packets. 11.3.5 Managing Port-based VLA...

- 710 - 11.3.5.4 Viewing VLAN Port Summary Page Non-Configurable Data Slot/Port - The interface. Port VLAN ID - The VLAN ID that this port will assign to untagged frames or priority tagged frames received on this port. Acceptable Frame Types - Specifies the types of frames that may be received on th...

- 711 - 11.3.5.5 Resetting VLAN Configuration Page Command Buttons Reset - If you select this button and confirm your selection on the next screen, all VLAN configuration parameters will be reset to their factory default values. Also, all VLANs, except for the default VLAN, will be deleted. The fact...

- 712 - Selection Criteria Group ID - The protected ports can be combined into a logical group. Traffic can flow between protected ports belonging to different groups, but not within the same group. The selection box lists all the possible protected port Group IDs supported for the current platform....

- 713 - Group ID - The protected ports can be combined into a logical group. Traffic can flow between protected ports belonging to different groups, but not within the same group. The valid range of the Group ID is (0 to 2) . Group Name - Displays the alphanumeric string associated with a Group ID. ...

- 715 - Group ID - The number used to identify the group. It was automatically assigned when you created the group. Protocol(s) - The protocol(s) that belongs to the group. There are three configurable protocols: IP, IPX, and ARP. IP - IP is a network layer protocol that provides a connectionless se...

- 716 - VLAN ID - VLAN ID can be any number in the range of (1 to 3965). Command Buttons Submit - Update the switch with the values on this screen. If you want the switch to retain the new values across a power cycle, you must perform a save. Delete - Delete an entry of IP Subnet to VLAN mapping. 11...

- 718 - 11.3.10 Managing MAC-based Voice VLAN 11.3.10.1 Voice VLAN Administration Page Configurable Data VLAN ID - Sets the VLAN as a Voice VLAN. Admin Mode - Enables or disables the Voice VLAN function. Command Buttons Submit - Applies the new configuration and causes the changes to take effect. Th...

- 721 - 11.3.12 Defining GARP 11.3.12.1 Viewing GARP Information Page This screen shows the GARP Status for the switch and for the individual ports. Note that the timers are only relevant when the status for a port shows as enabled. Non-Configurable Data Switch GVRP - Indicates whether the GARP VLAN...

- 722 - will need to rejoin in order to maintain registration. An instance of this timer exists for each GARP participant for each port. The Leave All Period Timer is set to a random value in the range of LeaveAllTime to 1.5*LeaveAllTime. Permissible values are 200 to 6000 centiseconds (2 to 60 seco...

- 724 - 11.3.13 Managing IGMP Snooping 11.3.13.1 Configuring IGMP Snooping Global Configuration Page Use this menu to configure the parameters for IGMP Snooping, which is used to build forwarding lists for multicast traffic. Note that only a user with Read/Write access privileges may change the data...

- 725 - 11.3.13.2 Defining IGMP Snooping Interface Configuration Page Selection Criteria Slot/Port - The single select box lists all physical ,VLAN and LAG interfaces. Select the interface you want to configure. Admin Mode - Select the interface mode for the selected interface for IGMP Snooping for ...

- 728 - Selection Criteria Slot/Port - The single select box lists all physical and LAG interfaces. Select the interface for which you want to display the statistics. Non-Configurable Data Multicast Router - Specifies for the selected interface whether multicast router is enable or disabled. Command...

- 731 - 11.3.14 Managing IGMP Snooping Querier 11.3.14.1 Configuring IGMP Snooping Querier Configuration Page Use this menu to configure the parameters for IGMP Snooping Querier, Note that only a user with Read/Write access privileges may change the data on this screen. Selection Criteria Snooping Q...

- 732 - Selection Criteria VLAN ID - Selects the VLAN ID on which IGMP Snooping Querier is enabled. Querier Election Participate Mode - Enable or disable the Igmp Snooping Querier participate in election mode. When this mode is disabled, up on seeing other querier of same version in the vlan, the sn...

- 734 - Last Querier Version - Displays the IGMP protocol version of the last querier from which a query was snooped on the VLAN. Operational Max Response Time - Displays maximum response time to be used in the queries that are sent by the Snooping Querier. Command Buttons Refresh - Reload the infor...

- 735 - Selection Criteria Admin Mode - Select the administrative mode for MLD Snooping for the switch from the pulldown menu. The default is disable. Non-Configurable Data Multicast Control Frame Count - The number of multicast control frames that are processed by the CPU. Interfaces Enabled for ML...

- 736 - Multicast Router Present Expiration Time - Specify the amount of time you want the switch to wait to receive a query on an interface before removing it from the list of interfaces with multicast routers attached. Enter a value between 0 and 3600 seconds. The default is 0 seconds. A value of ...

- 742 - 11.3.16 Managing MLD Snooping Querier 11.3.16.1 Configuring MLD Snooping Querier Configuration Page Use this menu to configure the parameters for MLD Snooping Querier, Note that only a user with Read/Write access privileges may change the data on this screen. Selection Criteria Snooping Quer...

- 744 - Non-Configurable Data VLAN ID - Specifies the VLAN ID on which MLD Snooping Querier is administratively enabled. Admin Mode - Display the administrative mode for MLD Snooping for the switch. Querier Election Participate Mode - Displays the querier election participate mode on the VLAN. When ...

- 748 - Configurable Data MAC Address - Enter the VLAN ID - MAC Address pair whose MFDB table entry you want displayed. Enter eight two-digit hexadecimal numbers separated by colons, for example 00:01:23:43:45:67:89:AB. The first two two-digit hexadecimal numbers are the VLAN ID and the remaining nu...

- 749 - Non-Configurable Data MAC Address - A VLAN ID - multicast MAC address pair for which the switch has forwarding and/or filtering information. The format is 8 two-digit hexadecimal numbers that are separated by colons, for example 00:01:23:45:67:89:AB:CD. Type - This displays the type of the e...

- 750 - 11.3.18.4 Viewing MLD Snooping MFDB Table Page Non-Configurable Data MAC Address - A VLAN ID - multicast MAC address pair for which the switch has forwarding and or filtering information. The format is 8 two-digit hexadecimal numbers that are separated by colons, for example 00:01:23:45:67:8...

- 751 - Refresh - Refresh the data on the screen with the present state of the data in the switch. 11.3.19 Managing Spanning Tree 11.3.19.1 Configuring Switch Spanning Tree Configuration Page Selection Criteria Spanning Tree Mode - Specifies whether spanning tree operation is enabled on the switch. ...

- 752 - Command Buttons Submit - Applies the new configuration and causes the changes to take effect. These changes will not be retained across a power cycle unless a save configuration is performed. Refresh - Refreshes the screen with most recent data. 11.3.19.2 Configuring Spanning Tree CST Config...

- 755 - Delete - Deletes the selected MST instance. All VLANs associated with the instance are associated with the CST Refresh - Refreshes the screen with most recent data. 11.3.19.4 Configuring each Port CST Configuration Page Selection Criteria Slot/Port - Selects one of the physical or LAG interf...

- 761 - 11.3.21 Managing Port Security 11.3.21.1 Configuring Port Security Administration Mode Page Selection Criteria Port Security Mode - Enables or disables the Port Security feature. Command Buttons Submit - Applies the new configuration and causes the changes to take effect. These changes will ...

- 764 - 11.3.21.6 Clearing Port Security Dynamically Learned MAC Addresses Page Use this menu to clear a Dynamic MAC addresses of port security on switch. Configurable Data Dynamically MAC Address - Accepts user input for the MAC address to be deleted. The factory default is blank Command Buttons De...

- 778 - VLAN Id - Specifies the VLAN id associated with a particular policy type. Priority - Specifies the priority associated with a particular policy type. DSCP - Specifies the DSCP associated with a particular policy type. Unknown Bit Status - Specifies the unknown bit associated with a particula...

- 785 - • FC ID - ID number of the virtual port that was created by the FCF when the ENode logged into the network. FIP Snooping FCFs • Interface - Name of the interface to which the FCoE Forwarder (FCF) is connected. • VLAN - ID number of the VLAN to which the FCF belongs. • FCMAP - May FC-Map valu...

- 788 - 11.4.2 Managing IP Interfaces 11.4.2.1 Configuring IP Use this menu to configure routing parameters for the switch as opposed to an interface. Selection Criteria Routing Mode - Select enable or disable from the pulldown menu. You must enable routing for the switch before you can route throug...

- 789 - Non-Configurable Data IpInReceives - The total number of input datagrams received from interfaces, including those received in error. IpInHdrErrors - The number of input datagrams discarded due to errors in their IP headers, including bad checksums, version number mismatch, other format erro...

- 793 - MAC Address - The burned-in physical address of the specified interface. The format is six two-digit hexadecimal numbers separated by colons, for example 00:06:29:32:81:40. Link Speed Data Rate - An integer representing the physical link data rate of the specified interface. This data is val...

- 796 - LSAs Received - The number of LSAs (link state advertisements) received that were determined to be new instantiations. This number does not include newer instantiations of self-originated LSAs. Command Buttons Submit - Send the updated configuration to the switch. Configuration changes take ...

- 800 - Selection Criteria Slot/Port - Select the interface for which data is to be displayed. Non-Configurable Data OSPF Area ID - The OSPF area to which the selected router interface belongs. An OSPF Area ID is a 32 bit integer in dotted decimal format that uniquely identifies the area to which th...

- 813 - Delete - Delete the entry of the Source Route selected as Configured Source from the list of Sources configured for OSPF Route Redistribution. 11.4.3.13 Viewing OSPF Route Redistribution Summary Information This screen displays the OSPF Route Redistribution Configurations. Non-Configurable D...

- 814 - 11.4.4 Managing BOOTP/DHCP Relay Agent 11.4.4.1 Configuring BOOTP/DHCP Relay Agent Configurable Data Maximum Hop Count - Enter the maximum number of hops a client request can take before being discarded. Admin Mode - Select enable or disable from the pulldown menu. When you select 'enable' B...

- 815 - Maximum Hop Count - The maximum number of Hops a client request can go without being discarded. Admin Mode - Administrative mode of the relay. When you select 'enable' BOOTP/DHCP requests will be forwarded to the IP address you entered in the 'Server IP address' field. Minimum Wait Time (sec...

- 816 - None - no special processing for this case. Simple - a route will not be included in updates sent to the router from which it was learned. Poisoned reverse - a route will be included in updates sent to the router from which it was learned, but the metric will be set to infinity. The default ...

- 817 - None - RIP control packets will not be transmitted. The default is RIP-2. Receive Version - Which RIP version control packets will be accepted by the interface. The value is one of the following: RIP-1 - only RIP version 1 formatted packets will be received. RIP-2 - only RIP version 2 format...

- 819 - 11.4.5.4 Configuring Route Redistribution Configuration This screen can be used to configure the RIP Route Redistribution parameters. The allowable values for each field are displayed next to the field. If any invalid values are entered, an alert message will be displayed with the list of al...

- 820 - External 1 - Sets External Type 1 OSPF Routes to be redistributed External 2 - Sets External Type 2 OSPF Routes to be redistributed NSSA-External 1 - Sets NSSA External Type 1 OSPF Routes to be redistributed NSSA-External 2 - Sets NSSA External Type 2 OSPF Routes to be redistributed The defa...

- 821 - Source - The Source Route to be Redistributed by RIP. Metric - The Metric of redistributed routes for the given Source Route. Displays "Unconfigured" when not configured. Match - List of Routes redistributed when "OSPF" is selected as Source. The list may include one or more ...

- 823 - Maximum Advertise Interval (secs) - The maximum time (in seconds) allowed between router advertisements sent from the interface. Minimum Advertise Interval (secs) - The minimum time (in seconds) allowed between router advertisements sent from the interface. Advertise Lifetime (secs) - The va...

- 828 - Local - This field displays the local route preference value. Command Buttons Submit - Send the updated configuration to the switch. Configuration changes take effect immediately. These changes will not be retained across a power cycle unless a save is performed. 11.4.8 Managing VLAN Routing...

- 829 - • Change back to the VLAN Routing Summary page. The new VLAN should appear in the table with the correct IP address and subnet mask assigned. 11.4.8.2 Viewing VLAN Routing Summary Information Non-Configurable Data VLAN ID - The ID of the VLAN whose data is displayed in the current table row ...

- 838 - Zero Priority Packets Received - The total number of VRRP packets received by the virtual router with a priority of '0'. Zero Priority Packets Sent - The total number of VRRP packets sent by the virtual router with a priority of '0'. Invalid Type Packets Received - The number of VRRP packets...

- 840 - Refresh - Refresh the page with the latest Tunnel entries. 11.4.11 Managing Loopbacks 11.4.11.1 Configuring Loopbacks Configuration Page Loopback interfaces can be created, configured and removed on this page. Configurable Data Loopback - Select list of currently configured loopback interfac...

- 842 - Configurable Data Administrative Mode - This selector lists the two options for administrative mode: enable and disable. The default value is disabled. Guest Vlan Supplicant Mode - This selector lists the two options for Guest VLAN Supplicant mode: enable and disable. The default value is di...

- 844 - Maximum Requests - This input field allows the user to enter the maximum requests for the selected port. The maximum requests value is the maximum number of times the authenticator state machine on this port will retransmit an EAPOL EAP Request/Identity before timing out the supplicant. The ...

- 845 - Selection Criteria Port - Selects the port to be displayed. When the selection is changed, a screen refresh will occur causing all fields to be updated for the newly selected port. All physical interfaces are valid. Non-Configurable Data Control Mode - Displays the configured control mode fo...

- 846 - Transmit Period(secs) - This field displays the configured transmit period for the selected port. The transmit period is the value, in seconds, of the timer used by the authenticator state machine on the specified port to determine when to send an EAPOL EAP Request/Identity frame to the supp...

- 853 - Non-Configurable Data Port - Displays the port in Slot/Port format. Users - Displays the users that have access to the port. Command Buttons Refresh - Update the information on the page. 11.5.2 Managing RADIUS 11.5.2.1 Configuring RADIUS Configuration Page

- 857 - Access Rejects - The number of RADIUS Access-Reject packets, including both valid and invalid packets that were received from this server. Access Challenges - The number of RADIUS Access-Challenge packets, including both valid and invalid packets that were received from this server. Malforme...

- 860 - 11.5.3 Defining TACACS+ Configuration 11.5.3.1 Configuring TACACS Configuration Page Configurable Data Key String - Specifies the authentication and encryption key for TACACS+ communications between the device and the TACACS+ server. The valid range is 0-128 characters. The key must match th...

- 861 - Selection Criteria TACACS+ Server Selects the TACACS+ server for which data is to be displayed or configured. If the add item is selected, a new TACACS server can be configured. Configurable Data IP Address - Specifies the TACACS+ Server IP address. You cannot define these IP addresses: 0.0....

- 862 - designated management stations, only the chosen stations, as defined by IP address, will be allowed management privilege through the web manager, Telnet session, Secure Shell (SSH) or Secure Socket Layer (SSL) for secure HTTP. Selection Criteria Admin Mode - Selects the IP Filter admin mode ...

- 864 - Delete - Used to delete the corresponding certificate, if it is present. 11.5.6 Defining Secure Shell Configuration 11.5.6.1 Configuring Secure Shell Configuration Page Selection Criteria Admin Mode - This select field is used to Enable or Disable the administrative mode of SSH. The currentl...

- 865 - Generate RSA Host Keys - Begin generating the RSA host keys. Note that to generate SSH key files SSH must be administratively disabled and there can be no active SSH sessions. Generate DSA Host Key - Begin generating the DSA host keys. Note that to generate SSH key files SSH must be administ...

- 866 - 11.6.2 Configuring IPv6 Interface Configuration Page Selection Criteria Interface - Selects the interface to be configured. When the selection is changed, a screen refresh will occur causing all fields to be updated for the newly selected port. All physical interfaces are valid. IPv6 Prefix ...

- 867 - IPv6 Implicit Mode - When ipv6 implicit mode is enabled, interface is capable of ipv6 operation without a global address. In this case, an eui-64 based link-local address is used. This selector lists the two options for ipv6 mode: enable and disable. Default value is disable. IPv6 Routing Op...

- 868 - Non-Configurable Data Interface - Specifies the interface whose settings are displayed in the current table row. Routing Mode - Specifies routing mode of an interface. Admin Mode - Specifies administrative mode of an interface. Implicit Mode - When ipv6 implicit mode is enabled, interface is...

- 873 - ICMPv6 Redirect Messages Transmitted - The number of Redirect messages sent. ICMPv6 Group Membership Query Messages Transmitted - The number of ICMPv6 Group Membership Query messages sent. ICMPv6 Group Membership Response Messages Transmitted - The number of ICMPv6 Group Membership Response ...

- 874 - • Stale - More than ReachableTime milliseconds have elapsed since the last positive confirmation was received that the forward path was functioning properly. While in STALE state, the device takes no action until a packet is sent. • Delay - More than ReachableTime milliseconds have elapsed s...

- 875 - 11.6.7 Managing OSPFv3 Protocol 11.6.7.1 Configuring OSPFv3 Configuration Page Configurable Data Router ID - The 32 bit integer in dotted decimal format that uniquely identifies the router within the autonomous system (AS). If you want to change the Router ID you must first disable OSPFv3. A...

- 883 - • Other Designated Router - The interface is connected to a broadcast or NBMA network on which other routers have been selected to be the Designated Router and Backup Designated Router either. The router attempts to form adjacencies to both the Designated Router and the Backup Designated Rou...

- 887 - 11.6.7.8 Viewing OSPFv3 Neighbor Table Information Page This screen shows the OSPFv3 Neighbor Table, either for all interfaces on which valid OSPFv3 Neighbors are present or the neighbors specific to a given interface on which OSPFv3 Neighbors exist. This information is displayed only if OSP...

- 889 - 11.6.7.10 Configuring OSPFv3 Virtual Link Configuration Page Selection Criteria Create New Virtual Link - Select this option from the dropdown menu to define a new virtual link. The area portion of the virtual link identification is fixed: you will be prompted to enter the Neighbor Router ID...

- 891 - Neighbor Router ID - The neighbor portion of the virtual link identification. Virtual links may be configured between any pair of area border routers having interfaces to a common (non-backbone) area. Hello Interval - The OSPFv3 hello interval for the virtual link in units of seconds. Dead I...

- 892 - Metric Type - Sets the OSPFv3 metric type of redistributed routes. Tag - Sets the tag field in routes redistributed. This field displays the tag if the source was pre-configured, else a default tag value of 0 is displayed. The valid values are (0 to 4294967295) Command Buttons Submit - Send ...

- 897 - Selection Criteria Slot/Port - Select the interface for which data is to be configured. Configurable Data Interface Mode - Select enable or disable from the pulldown menu. Before you enable RIPv6 version 1 or version 1c on an interface, you must first enable network directed broadcast mode o...

- 898 - Available Source - This select box is a dynamic selector and would be populated by only those Source Routes that have not previously been configured for redistribution by RIPv6. This select box would appear only if the user selects "Create" option as Configured Source. The valid valu...

- 899 - 11.7 QOS Menu 11.7.1 Managing Access Control Lists 11.7.1.1.1 Configuring IP Access Control List Configuration Page An IP ACL consists of a set of rules which are matched sequentially against a packet. When a packet meets the match criteria of a rule, the specified rule action (Permit/Deny) ...

- 901 - Selection Criteria IP ACL ID - Use the pulldown menu to select the IP ACL for which to create or update a rule. Rule - Select an existing rule from the pulldown menu, or select 'Create New Rule.' ACL as well as an option to add a new Rule. New rules cannot be created if the maximum number of...

- 903 - 11.7.1.4 Configuring IPv6 Access Control List Configuration Page An IPv6 ACL consists of a set of rules which are matched sequentially against a packet. When a packet meets the match criteria of a rule, the specified rule action (Permit/Deny) is taken and the additional rules are not checked...

- 906 - Flow Label - Flow label is 20-bit number that is unique to an IPv6 packet, used by end stations to signify quality-of-service handling in routers. Flow label can specified within the range (0 to 1048575). IPv6 DSCP Service - Specify the IP DiffServ Code Point (DSCP) field.The DSCP is defined...

- 908 - Selection Criteria MAC ACL - Select the MAC ACL for which to create or update a rule. Rule - Select an existing rule or select 'Create New Rule' to add a new Rule. New rules cannot be created if the maximum number of rules has been reached. For each rule, a packet must match all the specifie...

- 913 - VLAN(s) - VLAN(s) to which the IP ACL applies. Direction - The direction of packet traffic affected by the IP ACL. Direction can only be one of the following: • Inbound ACL Type - Displays the type of ACL assigned to selected VLAN and direction. ACL Identifier - Displays the ACL Number(in ca...

- 921 - 11.7.2.10 Viewing DiffServ Service Statistics Page This screen displays service-level statistical information in tabular form for all interfaces in the system to which a DiffServ policy has been attached in the inbound and/or outbound traffic directions. Use the 'Counter Mode Selector' to sp...

- 922 - Direction - List of the traffic direction of interface. Only shows the direction(s) for which a DiffServ policy is currently attached. Member Classes - List of all DiffServ classes currently defined as members of the selected Policy Name. Choose one member class name at a time to display its...

- 923 - Each port selected will be added to the policy created. Selection Criteria Traffic Type - Traffic type is used to define the DiffServ Class. Traffic type options: VOIP, HTTP, FTP, Telnet, and Any. Policing - Enabling policing will add policing to the DiffServ Policy and the policing rate wil...

- 925 - Selection Criteria Slot/Port - Specifies all CoS configurable interfaces. The option "Global" represents the most recent global configuration settings. Configurable Data IP DSCP Value Traffic Class - Specify which internal traffic class to map the corresponding IP DSCP value. Valid R...

- 933 - 11.8 IPv4 Multicast Menu 11.8.1 Managing DVMRP Protocol 11.8.1.1 Configuring DVMRP Global Configuration Page Configurable Data Admin Mode - Select enable or disable from the dropdown menu. This sets the administrative status of DVMRP to active or inactive. The default is disable. Non-Configu...

- 934 - Selection Criteria Slot/Port - Select the interface for which data is to be configured. You must configure at least one router interface before you configure a DVMRP interface. Otherwise you will see a message telling you that no router interfaces are available, and the configuration screen ...

- 937 - Refresh - Refresh the screen with the new data 11.8.1.6 Viewing DVMRP Route Summary Non-Configurable Data Source Address - The network address that is combined with the source mask to identify the sources for this entry. Source Mask - The subnet mask to be combined with the source address to...

- 943 - Source Filter Mode - The source filter mode (Include/Exclude/NA) for the specified group on this interface. Source Hosts - This parameter shows source addresses which are members of this multicast address. Expiry Time - This parameter shows expiry time interval against each source address wh...

- 944 - 11.8.2.7 Viewing IGMP Proxy Configration Summary Page Non-Configurable Data Slot/Port - Displays the interface on which IGMP proxy is enabled. IP Address - The IP address of the IGMP Proxy interface. Subnet Mask - The subnet mask for the IP address of the IGMP Proxy interface. Admin Mode - T...

- 946 - Up Time - Displays the up time since the entry was created in cache table. State - The state of the host entry. A Host can be in one of the state. Non-member state - does not belong to the group on the interface. Delaying member state - host belongs to the group on the interface and report t...

- 947 - 11.8.3.2 Configuring Interface’s Multicast Configuration Page Selection Criteria Slot/Port - Select the routing interface you want to configure from the dropdown menu. Configurable Data TTL Threshold - Enter the TTL threshold below which a multicast data packet will not be forwarded from the...

- 948 - Outgoing Interface(s) - The list of outgoing interfaces on which multicast packets for this source/group are forwarded. Up Time (secs) - The time in seconds since the entry was created. Expiry Time (secs) - The time in seconds before this entry will age out and be removed from the table. RPF...

- 949 - Slot/Port - Select the interface number from the dropdown menu. This is the interface that connects to the neighbor router for the given source IP address. Command Buttons Submit - Send the updated configuration to the router. Configuration changes take effect immediately. These changes will...

- 950 - Slot/Port - Select the router interface for which the administratively scoped boundary is to be configured. Configurable Data Group IP - Enter the multicast group address for the start of the range of addresses to be excluded. The address must be in the range of 239.0.0.0 through 239.255.255...

- 951 - Admin Mode - Select enable or disable from the pulldown menu to set the administrative status of PIM-DM in the router. The default is disabled. Command Buttons Submit - Send the updated configuration to the router. Configuration changes take effect immediately. These changes will not be reta...

- 952 - Selection Criteria Slot/Port - Select the physical interface for which data is to be displayed. There must be configured at least one router interface before displaying data for a PIM-DM interface, otherwise a message will be displayed. Non-Configurable Data Interface Mode - Displays the adm...

- 958 - 11.8.5.9 Configuring PIM-SM Static RP Configuration Page Configurable Data IP Address - IP Address of the RP to be created or deleted. Group - Group Address of the RP to be created or deleted. Group Mask - Group Mask of the RP to be created or deleted. Command Buttons Submit - Attempts to cr...

- 963 - Refresh - Refresh the data on the screen with the present state of the data in the router. Clear Traffic - Clears all the parameters for the selected interface. 11.9.1.6 Configuring MLD Proxy Interface Congiuration Page Selection Criteria Slot/Port - Select the port for which data is to be d...

- 964 - Non-Configurable Data Slot/Port - Displays the interface on which MLD proxy is enabled. IPv6 Address - The IPv6 address of the MLD Proxy interface. Subnet Mask - The subnet mask for the IPv6 address of the MLD Proxy interface. Admin Mode - The administrative status of MLD Proxy on the select...

- 967 - Selection Criteria Slot/Port - Select the Slot and port for which data is to be displayed or configured. Slot 0 is the base unit. You must have configured at least one router interface before configuring or displaying data for a PIM-DM interface, otherwise an error message will be displayed....