Manuel d'utilisation / d'entretien du produit 445942-001 du fabricant HP (Hewlett-Packard)
Aller à la page of 199
HP 1 0Gb Ether net BL -c S w itc h IS CLI R ef er ence Gui de Part number: 445942-001 Third Edition: June 2007.
2 Legal notices © 2007 Hewlett-Packard Development Company, L.P. The information contained here in is subject to change without no tice. The only warranties for HP products and services are set forth in the express warranty statements accompanying such products and services.
Contents 3 Contents ISCLI reference Introduction ................................................................................................................... ........................ 9 Additional references .....................................
Contents 4 Common Internal Spanning Tree information ...................................................................................... 41 Trunk group in formation ...................................................................................
Contents 5 ICMP stat istics ................................................................................................................ ................ 83 TCP stat istics ..........................................................................
Contents 6 802.1x Port co nfigurat ion ...................................................................................................... ... 128 Rapid Spanning Tree Protocol / Multiple Spanning Tree Protocol co nfigura tion ......................
Contents 7 Access Control configuration ................................................................................................... ............ 171 Access Control List configuration ............................................................
Contents 8 Panic co mmand .................................................................................................................. .......... 197 Unscheduled sy stem dumps .....................................................................
ISCLI reference 9 I SC L I re f e re n c e Introduction The HP 10Gb Ethernet BL-c Switch is ready to perfor m basic switching functions right out of the box. Some of the more advanced features, however, require so me administrative configuration before they can be used effectively.
ISCLI reference 10 Establishing a console connection To establish a console connecti on with the switch, you need: • A null modem cable with a female DB-9 connector (See the HP 10Gb Ethernet BL-c Switch User Guide for more information .
ISCLI reference 11 Establishing a Telnet connection A Telnet connection offer s the convenience of accessing the HP 10GbE switch fro m any workstation connected to the network. Telnet provides the same options for user, operator, and administrator access as those available through the console port.
ISCLI reference 12 The following SSH clients are support ed: • SSH 3.0.1 for Linux (freeware) • SecureCRT® 4.1.8 (VanDy ke Technologies, Inc.) • OpenSSH_3.9 for Linux (FC 3) • FedoraCore 3 for SCP commands • PuTTY Release 0.58 (Simon Tatham) for Windows NOTE: The HP 10GbE switch implem entation of SSH is based on versions 1.
ISCLI reference 13 Table 2 User acces s levels User account Description and tasks performed User The User has no direct responsibility for sw itch management. He or she can view all switch status information and statistics, but cannot make any configuration changes to the switch.
ISCLI reference 14 Typographical conventions The following table describes the typogra phic styles used in this guide: Table 3 Typographical conventions Typeface or symbol Meaning angle brackets < > Indicate a variable to enter based on the de scription inside the brackets.
ISCLI basics 15 IS CL I b as ics Introduction The ISCLI is used for view ing switch information and statistics. In addition, the administrator can use the CLI for performing all levels of swit ch configuration.
ISCLI basics 16 The following table describe s the ISCLI command modes. Table 4 ISCLI Command Modes Command Mode/Prompt Command used to enter or exit. User EXEC Switch> Default mode, entered automa.
ISCLI basics 17 Global commands Some basic commands are recognized throughout th e ISCLI hierarchy. These commands are usef ul for obtaining online Help, navigating th rough the interface, and saving co nfiguration changes. To get help about a specific command, type the command, followed by help .
ISCLI basics 18 Command line interface shortcuts The following short cuts allow you to enter commands q uickly and easily. Command abbreviation Most commands can be abbreviated by entering the fi rst characters that distinguish the command from the others in the same mode.
Information Commands 19 Inf or mati o n Co mmands Introduction You can view configuration information for the switch in the ISCLI. This chapter discusses how to us e the ISCLI to display switch information. The following table describes general information commands.
Information Commands 20 Table 6 Information commands Command Usage show information-dump Dumps all switch information available (10K or more, depending on your configuration). If you want to capture dump data to a file, set your communication software on your workstation to capture sessi on data prior to issuing the dump commands.
Information Commands 21 SNMPv3 Information commands SNMP version 3 (SNMPv3) is an extensible SNMP Fra mework that supplements the SNMPv2 Framework by supporting the following: • a new SNMP message f.
Information Commands 22 SNMPv3 USM User Table information The following command displays SNMPv3 user inform ation: show snmp-server v3 user Command mode: All The User-based Security Model (USM) in SNMPv3 provid es security se rvices such as authentication and privacy of messages.
Information Commands 23 The following table describes the SNMPv3 View Table information. Table 10 View Table parameters Field Description View Name Displays the name of the view. Subtree Displays the MIB subtree as an OID string. A view subtree is the set of all MIB object instances which have a commo n Object Identifier prefix to their names.
Information Commands 24 SNMPv3 Group Table information The following command displays SNMPv3 group information: show snmp-server v3 group Command mode: All Sec Model User Name Group Name ---------- --.
Information Commands 25 SNMPv3 Target Address Table information The following command displays SN MPv3 target address information: show snmp-server v3 target-address Command mode: All Name Transport Addr Port Taglist Params ---------- --------------- ---- ---------- --------------- trap1 47.
Information Commands 26 Table 15 Target Parameters Table information Field Description Sec Model Displays the security model used when generating SNMP messages using this entry. The system may choose to return an inconsistentValue error if an attempt is made to set this variable to a value for a security model which the system does not support.
Information Commands 27 SNMPv3 dump The following command displays SNMPv3 information: show snmp-server v3 Command mode: All Engine ID = 80:00:07:50:03:00:0F:6A:F8:EF:00 usmUser Table: User Name Proto.
Information Commands 28 System information The following command displa ys system information: show sys-info Command mode: All System Information at 6:56:22 Thu Jan 11, 2007 Time zone: America/US/Paci.
Information Commands 29 Show recent syslog messages The following command displays system log messages: show logging messages Command mode: All Date Time Severity level Message ---- ---- -------------.
Information Commands 30 System user information The following command d isplays user status information : show access user Command mode: All except User EXEC Usernames: user - enabled oper - disabled .
Information Commands 31 Layer 2 information The following table describes the Layer 2 Information co mmands. The following sections provide more detailed information and commands. Table 18 Layer 2 information commands Command Usage show mac-address-table Displays Forwarding Database Information.
Information Commands 32 Table 18 Layer 2 information commands Command Usage show vlan information Displays VLAN configuration information, inclu ding: • VLAN Number • VLAN Name • Status • Port.
Information Commands 33 Show all FDB information The following command displays Forwarding Database information: show mac-address-table Command mode: All MAC address VLAN Port Trnk State -------------.
Information Commands 34 LACP dump The following command disp lays LACP information: show lacp information Command mode: All >> LACP# dump port lacp adminkey operkey selected prio attached trunk .
Information Commands 35 802.1x information The following command displays 802.1x information: show dot1x information Command mode: All System capability : Authenticator System status : disabled Protoc.
Information Commands 36 Table 21 802.1x information Field Description Authenticator PAE State Displays the Authenticator Port Access Entity State. The PAE state can be one of the following: • initia.
Information Commands 37 Spanning Tree information The following table describes the Spanning Tree Protocol (STP) information commands. Table 22 STP information commands Command Usage show spanning-tree stp < 1-128 > Displays information about the spanning tree group.
Information Commands 38 You can also refer to the following port-specifi c STP information: • Port number and priority • Cost • State • Port Fast Forwarding state • Designated bridge • Designated port The following table descri bes the STP parameters.
Information Commands 39 Rapid Spanning Tree and Multiple Spanning Tree information The following command displa ys RSTP/M STP information: show spanning-tree stp < 1-128 > information Command mo.
Information Commands 40 You can also refer to the following port-specifi c RSTP information: • Port number and priority • Cost • State • Role • Designated bridge and port • Link type The following table describes the STP parameters in RSTP or MSTP mode.
Information Commands 41 Table 24 Rapid Spanning Tree par ameter descriptions Parameter Description Role Shows the current role of this port in the Sp anning Tree. The port role can be one of the following: Designated ( DESG ), Root ( ROOT ), Alternate ( ALTN ), Backup ( BKUP ), Master ( MAST ), or Unknown ( UNK ).
Information Commands 42 In addition to seeing if Common Internal Spanning Tr ee (CIST) is enabled or disabled, you can view the following CIST bridge infor mation: • Status of Uplink Fast ( upfast ).
Information Commands 43 Table 25 Common Internal Spanning Tr ee parameter descriptions Parameter Description Role Shows the current role of this port in the Spanning Tree. The port role can be one of the following: Designated ( DESG ), Root ( ROOT ), Alternate ( ALTN ), Backup ( BKUP ), Master ( MAST ).
Information Commands 44 VLAN information The following table describes th e VLAN information co mmands. Table 26 VLAN information commands Command Usage show vlan Displays VLAN information Command mode: All show vlan information Displays VLAN inf ormation, incl uding spanning tree assignment.
Information Commands 45 Layer 3 information The following table describes basic Layer 3 Information commands. The following sections provide more detailed information and commands. Table 27 Layer 3 information commands Command Usage show ip route Displays all routes configured in the switch.
Information Commands 46 Route information Using the commands listed below, you can display all or a portion of the IP routes current ly held in the switch. Table 28 Route Information commands Command Usage show ip route address < IP address > Displays a single route by destination IP address.
Information Commands 47 The following table describes the Type parameter. Table 29 IP Routing Type information Field Description indirect The next hop to the host or subnet destinatio n will be forwarded through a router at the Gateway address. direct Packets will be delivered to a destination host or subnet attached to the switch.
Information Commands 48 ARP information The Address Resolution Protocol (ARP) information includes IP address and MAC address of each entry, address status flags, VLAN, and port for the address, and port referencing information. The following table describe s the Address Resolution Protocol comman ds.
Information Commands 49 ARP address list information The following command displays ARP address list information: show ip arp reply Command mode: All except User EXEC IP address IP mask MAC address VLAN Flags --------------- --------------- ----------------- ---- ----- 205.
Information Commands 50 OSPF general information The following command displays general OSPF inform ation: show ip ospf general-information Command mode: All except User EXEC OSPF Version 2 Router ID: 10.
Information Commands 51 OSPF Database information The following table describes the OS PF Database information commands. Table 34 OSPF Database information commands Command Usage show ip ospf database advertising- router < router ID > Takes advertising router as a pa rameter.
Information Commands 52 Table 34 OSPF Database information commands Command Usage show ip ospf database summary [ advertising-router < router ID > | linkstate-id < A.B.C.D > | self] Displays the network summary (t ype 3) LSAs with detailed information of each field of the LSAs.
Information Commands 53 Routing Information Protocol The following table describes th e Routing Information Pr otocol (RIP) information commands. Table 35 RIP information commands Command Usage show ip rip routes Displays RIP routes. Command mode: All except User EXEC show ip rip interface [< 1-249 >] Displays RIP interface information.
Information Commands 54 IP information The following command displa ys Layer 3 information: show layer3 information Command mode: All IP information: Interface information: 1: 10.80.23.243 255.255.254.0 10.80.23.255, vlan 1, up 250: 10.20.7.144 255.255.
Information Commands 55 IGMP multicast group information The following table describes the comman ds used to display information about IGMP groups learned by the switch. Table 36 IGMP Multicast Group commands Command Usage show ip igmp groups address < IP address > Displays a single IGMP multic ast group by its IP address.
Information Commands 56 IGMP multicast router information The following table describes the comman ds used to display information about multicast routers learned through IGMP Snooping.
Information Commands 57 VRRP information Virtual Router Redundan cy Protocol (VRRP) support on HP 10GbE switch provides redundancy between routers in a LAN. This is accomplished by configurin g the same virtual router IP address and ID number on each participating VRRP-capable routing device.
Information Commands 58 802.1p information The following command displays 802.1p information: show qos transmit-queue information Command mode: All Current priority to COS queue information: Priority .
Information Commands 59 ACL information The following table describes the comman ds used to display information about Access C ontrol Lists and Groups. Table 40 ACL information commands Command Usage show access-control list < 1-384 > Displays information about the selected ACL.
Information Commands 60 RMON Information The following command displays general RMON in formation: show rmon Command mode: All RMON history information The following command displays RMON history info.
Information Commands 61 RMON alarm information The following command displays RMON alarm information: show rmon alarm Command mode: All RMON Alarm group configuration: Index Interval Type rLimit fLimi.
Information Commands 62 Table 42 RMON Alarm Information Command Usage rEvtIdx Displays the rising alarm event index that is triggered when a rising threshold is crossed. fEvtIdx Displays the falling alarm event index that is triggered when a falling threshold is crossed.
Information Commands 63 Link status information The following command displays link information: show interface link Command mode: All except User EXEC ------------------------------------------------.
Information Commands 64 Port information The following command displays port information: show interface information Command mode: All except User EXEC Port Tag RMON PVID NAME VLAN(s) ---- --- ---- --.
Information Commands 65 Logical Port to GEA Port mapping The following command displays information about GEA ports: show geaport Command mode: All Logical Port GEA Port(0-based) GEA Unit ------------.
Information Commands 66 Uplink Failure Detection information The following command displays Uplink Failure Detecti on (UFD) information: show ufd Command mode: All except User EXEC Uplink Failure Dete.
Statistics Commands 67 S tatisti c s C ommands Introduction You can view switch perfor mance statistics in the us er, operator, and administrator command modes. This chapter discusses how to use the IS C LI to display switch statistics. The following table describes ge neral Stat istics commands.
Statistics Commands 68 Port Statistics The following table describes the Port Statistics comma nds. The following sections p rovide more detailed information and commands. Table 45 Port Statistics co mmands Command Usage show interface port < port number > dot1x counters Displays IEEE 802.
Statistics Commands 69 802.1x statistics Use the following command to display the 802.1x au thenticator statistics of the selected port: show interface port < port number > dot1x counters Comman.
Statistics Commands 70 Table 46 802.1x statistics for port Statistics Description authEntersAuthenticating Total number of times that the state machine transitions from CONNECTING to AUTHENTICATING, as a result of an EAPResponse / Identity message being received from the Supplicant.
Statistics Commands 71 Table 46 802.1x statistics for port Statistics Description backendNonNakResponsesFrom Supplicant Total number of times that the state machine receives a response from the Supplicant to an initial EAP-Request, and the response is something other than EAP-NAK.
Statistics Commands 72 Table 47 Bridging statis tics for port Statistics Description dot1TpLearnedEntryDiscards The total number of Forwarding Data base entries, which have been or would have been learned, but have been discarded due to a lack of space to store them in the Forwarding Database.
Statistics Commands 73 Table 48 Ethernet statistics for port Statistics Description dot3StatsFCSErrors A count of frames received on a particular interface that are an integral number of octets in length but do not pass the Frame Check Sequence (FCS) check.
Statistics Commands 74 Table 48 Ethernet statistics for port Statistics Description dot3StatsFrameTooLongs A count of frames received on a particular interface that exceeds the maximum permitted frame size.
Statistics Commands 75 Table 49 Interface statistics for port Statistics Description MulticastPkts—IfHCIn The total number of packets, delivered by this sublayer.
Statistics Commands 76 Internet Protocol (IP) statistics Use the following command to display the interfac e protocol statisti cs of the selected port: show interface port < port number > ip-cou.
Statistics Commands 77 Layer 2 statistics The following table describes the Layer 2 statistics commands. The followin g sections provide more detailed information and commands. Table 52 Layer 2 Statisti cs commands Command Usage show mac-address-table counters Displays the Forwarding Database st atistics.
Statistics Commands 78 LACP statistics Use the following command to display Link Aggr egatio n Control Protocol (LACP) statistics: show interface port < port number > lacp counters Command mode:.
Statistics Commands 79 Layer 3 statistics The following table describes basic Layer 3 statistics commands. The following sections provide more detailed information and commands. Table 54 Layer 3 Statisti cs commands Command Usage show ip counters Displays IP statistics.
Statistics Commands 80 Table 54 Layer 3 Statisti cs commands Command Usage show ip rip counters Displays Routing Information Protocol (RIP) statistics. Command mode: All above Priv EXEC clear ip rip counters Clears Routing Information Protocol (RIP) statist ics.
Statistics Commands 81 Table 55 IP statistics Statistics Description ipInDiscards The number of input IP datagrams for wh ich no problems were encountered to prevent their continued processing, but whic h were discarded (for example, for lack of buffer space).
Statistics Commands 82 ARP statistics The following command displays Addre ss Resolution Protocol stati stics. show ip arp counters Command mode: All except User EXEC ARP statistics: arpEntriesCur: 2 .
Statistics Commands 83 ICMP statistics The following command displays ICMP statisti cs: show ip icmp counters Command mode: All except User EXEC ICMP statistics: icmpInMsgs: 245802 icmpInErrors: 1393 .
Statistics Commands 84 Table 59 ICMP statistics Statistics Description icmpOutErrors The number of ICMP messages that this switch did not send due to problems discovered within ICMP such as a lack of bu ffer. This value should not inclu de errors discovered outside the ICMP layer such as th e inability of IP to route the resultant datagram.
Statistics Commands 85 Table 60 TCP statistics Statistics Description tcpRtoMin The minimum value permitted by a TCP implem entation for the retransmission timeout, measured in milliseconds. More refined semantic s for objects of this type depend upon the algorithm used to determine the retransmission timeout.
Statistics Commands 86 UDP statistics The following command displays UDP statistics: show ip udp counters Command mode: All except User EXEC UDP statistics: udpInDatagrams: 54 udpOutDatagrams: 43 udpI.
Statistics Commands 87 Table 62 IGMP statistics Statistic Description rxIgmpGrpSpecificQueries Total number of Membership Query packets received from sp ecific groups Total number of Group Source Spec.
Statistics Commands 88 OSPF global statistics The following command displays OSPF global statisti cs: show ip ospf counters general Command mode: All except User EXEC OSPF stats ---------- Rx/Tx Stats.
Statistics Commands 89 Table 64 OSPF global statistics Statistic Description Tx Database The sum total of all Database Description pa ckets transmitted on all OSPF areas and interfaces. Rx ls Requests The sum total of all Link State Request packet s received on all OSPF areas and interfaces.
Statistics Commands 90 Table 64 OSPF global statistics Statistic Description n1way The sum total number of Hello pack ets received from neighbors, in which this router is not mentioned across all OSPF interfaces and areas. rst_ad The sum total number of times the Neighbor adjacency has been reset across all OPSF areas and interfaces.
Statistics Commands 91 VRRP statistics Virtual Router Redundancy Protocol (VRRP) support on the HP 10GbE switch provides redundancy between routers in a LAN. This is accomplished by configuring the same virtual router IP address and ID number on each participating VRRP-capable routing device.
Statistics Commands 92 RIP statistics The following command displays RIP statistics: show ip rip counters Command mode: All except User EXEC RIP ALL STATS INFORMATION: RIP packets received = 12 RIP pa.
Statistics Commands 93 Management Processor statistics The following table describes the MP -spe cific Statistics commands. The follo wing sections provide more detailed information and commands. Table 67 MP-specific S tatistics commands Command Usage show mp packet Displays packet statistics, to check for leads and load.
Statistics Commands 94 Table 68 MP specific packet statistics Field Description smalls Total number of packet allocations with size less than 128 bytes from the packet buffer pool by the TCP/IP protocol stack.
Statistics Commands 95 UDP statistics The following command displays UDP statistics: show mp udp-block Command mode: All except User EXEC All UDP allocated control blocks: 161: listen The following ta.
Statistics Commands 96 SNMP statistics The following command displays SNMP statistics: show snmp-server counters Command mode: All except User EXEC SNMP statistics: snmpInPkts: 54 snmpInBadVersions: 0.
Statistics Commands 97 Table 72 SNMP statistics Statistics Description snmpOutPkts The total number of SNMP messages whic h were passed from the SNMP protocol entity to the transport service. snmpInBadTypes The total number of SNMP message s which failed ASN.
Statistics Commands 98 Table 72 SNMP statistics Statistics Description snmpOutGetRequests The total number of SNMP Get-Request Prot ocol Data Units (PDUs), which ha ve been generated by the SNMP protocol entity. snmpOutGetNexts The total number of SNMP Get-Next Protoc ol Data Units (PDUs), which have been generated by the SNMP protocol entity.
Statistics Commands 99 Table 73 NTP statistics Statistics Description Primary Server • Requests Sent —The total number of NTP re quests the switch sent to the primary NTP server to synchronize time. • Responses Received —The total number of NTP responses received from the primary NTP server.
Statistics Commands 100 Statistics dump The following command dumps swit ch statistics: show counters Use the dump command to dump all switch statistics av ailable (40K or more, depending on your configuration). This data can be u sed to tune or debug switch performanc e.
Configuration Commands 101 C onf i gur ation C o mmands Introduction The Configuration commands are available only from an administrator login. They include commands for configuring every aspect o f the HP 10GbE switch . Changes can be saved to non-volatile memory (NVRAM).
Configuration Commands 102 System configuration These commands allow you to configure switch manage ment parameters such as user and administrator privilege mode passwords, browser-based manage ment settings, and management access list. The following table describes the System Configuration commands.
Configuration Commands 103 Table 76 System Configuration commands Command Usage [no] enable < string > Allows administrators to assign the Privilege EXEC password. The password will be required to enter Privilege EXEC mode. The default value is disabled .
Configuration Commands 104 Table 77 Syslog Configuration comman ds Com mand Desc rip tio n [no] logging log {< feature >} Displays a list of features for which syslog mes sages can be generated. You can choose to enable/disable specific features or enable/disable syslog on all available features.
Configuration Commands 105 Secure Shell Server configuration Telnet traffic on the network is not secure. These commands enable Secure Shell (SSH) acce ss from any SSH client. The SSH program securely logs into another computer over a network and executes commands in a secure environment.
Configuration Commands 106 Table 78 SSHD Configuration commands Com mand Desc rip tio n no ssh enable Disables the SSH server. This is the default for the SSH server. Command mode: Global configura tion show ssh Displays the current SSH server configuration.
Configuration Commands 107 Table 79 RADIUS Server Configuration commands Com mand Desc rip tio n no radius-server enable Disables the RADIUS server. This is the default. Command mode: Global configuration show radius-server Displays the current RADIUS server parameters.
Configuration Commands 108 Table 80 TACACS+ Server Configuration commands Com mand Desc rip tio n tacacs-server port < TCP port number > Enter the number of the TCP port to be configured, between 1 and 65000.
Configuration Commands 109 and use the administrator password to log into the swit ch. The switch allows this only if TACACS + servers are not available. NTP server configuration These commands enable you to synchroni ze the switch clock to a Network Time Pr otocol (NTP) server.
Configuration Commands 110 System SNMP configuration The switch software supports SNMP-based netw ork management. In SNMP model of network management, a management station (client/mana ger) accesses a set of variables known as MIBs (Management Information Base) provided by th e managed device (agent).
Configuration Commands 111 Table 82 System SNMP Configuration commands Com mand Desc rip tio n snmp-server timeout < 1-30 > Sets the timeout value for the SNMP state machine.
Configuration Commands 112 Table 83 SNMPv3 Configuration commands Com mand Desc rip tio n snmp-server group < 1-16 > Configures an SNMP group. A group maps the user name to the access group names and their access rights needed to access SNMP management objects.
Configuration Commands 113 User Security Model configuration You can make use of a defined set of user identities using this Securi ty Model. An SNMP engine must have the knowledge of applicable attributes of a user. These commands help you create a user security mode l entry for an authorized user.
Configuration Commands 114 SNMPv3 View configuration The following table describes the SN MPv3 View Configuration commands. Table 85 SNMPv3 View Configuration commands Com mand Desc rip tio n snmp-server view < 1-128 > name < 1-32 characters > Defines the name for a family of view subtrees up to a maximum of 32 characters.
Configuration Commands 115 Table 86 View-based Access Control Configuration commands Com mand Desc rip tio n snmp-server access < 1-32 > level {noAuthNoPriv|authNo- Priv|authPriv} Defines the minimum level of security required to gain access rights.
Configuration Commands 116 Table 87 SNMPv3 Group Configuration commands Com mand Desc rip tio n show snmp-server group < 1-16 > Displays the current vacmSecurityToGroup configuration . Command mode: All SNMPv3 Community Table configuration These commands are used f or configuring the communit y t able entry.
Configuration Commands 117 Table 89 SNMPv3 Target Address Table Configuration commands Com mand Desc rip tio n snmp-server target-address < 1-16 > name < 1-32 characters > address < transport IP address > Configures a transport address IP that can be used in the generation of SNMP traps.
Configuration Commands 118 Table 90 SNMPv3 Target Parameter s Table Configuration comman ds Com mand Desc rip tio n snmp-server target-parameters < 1-16 > level {noAuthNo- Priv|authNoPriv|authPriv} Selects the level of security to be used when generating the SNMP messages using this entry.
Configuration Commands 119 System Access configuration The following table describes the Sy stem Access Configuration commands. Table 92 System Access Configuration commands Com mand Desc rip tio n [no] access http enable Enables or disables HTTP (Web) access to the Browser-based Interface.
Configuration Commands 120 Table 93 Management Networks Configuration commands Com mand Desc rip tio n clear access management-network Clears the management network definitions. Command mode: All except User EXEC User Access Control configuration The following table describes the User A ccess Control commands.
Configuration Commands 121 Table 95 User ID Configuration commands Com mand Desc rip tio n access user <1-10> password <1-128 characters> Sets the user password of up to 128 characters maximum. Command mode: Global configuration access user <1-10> enable Enables the user ID.
Configuration Commands 122 HTTPS Access configuration The following table describes the HT TPS Access Configuration comma nds. Table 96 HTTPS Access Configuration commands Com mand Desc rip tio n [no] access https enable Enables or disables BBI access (Web acce ss) using HTTPS.
Configuration Commands 123 Port configuration Use the port configuration commands to configur e settings for individual switch ports. NOTE: Port 17 is reserved for switch ma nagement. The following table describes the Port Config uration commands. The following sections provide more detailed information and commands.
Configuration Commands 124 Table 97 Port Configuration commands Com mand Desc rip tio n shutdown Disables the port. To temporarily di sable a port without changing its configuration attributes, see the “Temporarily disabling a port” section later in this chapter.
Configuration Commands 125 Table 98 Gigabit Link Conf iguration commands Com mand Desc rip tio n no flowcontrol Sets the flow control to none. Command mode: Interface port [no] auto Enables or disables auto-negotiation for the port. All downlink and uplink ports are fixed at 10000 Mbp s, and cannot be set to auto-negotiate.
Configuration Commands 126 Layer 2 configuration The following table describes the La yer 2 Conf iguration commands. The following sections provide more detailed information and commands. Table 100 Layer 2 Configuration comma nds Com mand Desc rip tio n vlan { <1-4094> } Enter VLAN configuration mode.
Configuration Commands 127 802.1x Global configuration The global 802.1x commands allow yo u to configure para meters that affect all ports in the switch (except management port 17). The following table descri bes the 802.1x Gl obal Configuration commands.
Configuration Commands 128 Table 102 802.1x Global Configuration commands Com mand Desc rip tio n show dot1x Displays current global 802.1x pa rameters. Command mode: All 802.1x Port configuration The 802.1x port commands allow you to configure parameter s that affect the selected port in the switch.
Configuration Commands 129 Table 103 802.1x Port Configuration commands Com mand Desc rip tio n dot1x re-authentication-interval {< 1-604800 >} Sets the time, in seconds, the authenticator waits before re- authenticating a supplicant (client) when periodic re-authentication is enabled.
Configuration Commands 130 Table 104 Multiple Spanning Tree Configuration commands Com mand Desc rip tio n spanning-tree mstp maximum-hop <4-60> Configures the maximum number of bridge hops a packet may to traverse before it is dropped. The range is from 4 to 60 hops.
Configuration Commands 131 Common Internal Spanning Tree configuration The Common Internal Spanning Tree (CIST) provides compatibility with different MSTP regions and with devices running different Spanning Tree instances. It is equi valent to Spanning Tree Group 0.
Configuration Commands 132 Table 106 CIST Bridge Configuration commands Com mand Desc rip tio n spanning-tree mstp cist- bridge forward-delay { <4-30> } Configures the CIST bridge forward delay parameter.
Configuration Commands 133 Table 107 CIST Port Configuration commands Com mand Desc rip tio n spanning-tree mstp cist hello { <1-10> } Configures the CIST port Hello time. The Hello time specifies how often the root bridge transmits a configura tion bridge protocol da ta unit (BPDU).
Configuration Commands 134 Spanning Tree configuration The switch supports the IEEE 802.1d Spanning Tree Pr otocol (STP) and Cisco proprietary PVS T and PVST+ protocols. You can configure up to 127 spanning tr ee groups on the switch (STG 128 is reserved for switch management).
Configuration Commands 135 Bridge Spanning Tree configuration Spanning tree bridge parameters can be configur ed for each Spanning Tree Group. ST P bridge parameters include: • Bridge priority • B.
Configuration Commands 136 When configuring STP bridge parameters, the following formulas must be used: • 2*( fwd -1) ≥ mxage • 2*( hello +1) ≤ mxage Spanning Tree port configuration The default config uration for STP/PVST+ is off for downlink ports (1-16) and the management port (17), and on for uplink ports (18-21).
Configuration Commands 137 Table 110 Spanning Tree Port Configuration commands Com mand Desc rip tio n [no] spanning-tree stp { <1-128> } edge Enables or disables this port as an edge port. An edge port is not connected to a bridge, and can begin forwarding traffic as soon as the link is up.
Configuration Commands 138 Table 112 Static FDB Configuration commands Com mand Desc rip tio n mac-address-table static all [ <interface>|<VLAN>|<port> ] Clears specified static FDB .
Configuration Commands 139 Layer 2 IP Trunk Hash configuration Trunk hash parameter s are set globally for the HP 10GbE swit ch. You can enable one or two parameters, to configure any of the follo win.
Configuration Commands 140 Link Aggregation Control Protocol configuration The following table describes th e LACP Configuration commands. Table 115 LACP Configuration commands Com mand Desc rip tio n lacp system-priority {< 1-65535 >} Defines the priority value (1 through 65 535) for the switch.
Configuration Commands 141 VLAN configuration The commands in this section configure V LAN attributes , change the status of the VLAN, delete the VLAN, and change the port membership of the VLAN. By default, the VLANs are disabled except VLAN 1, which is always enabled.
Configuration Commands 142 Layer 3 configuration The following table describes basic Layer 3 Configuration commands. The foll owing s ections provide more detailed information and commands. Table 118 L3 Configuration commands Com mand Desc rip tio n interface ip { <1-250> } Enter IP Interface mode.
Configuration Commands 143 Table 119 IP Interface Configuration co mmands Com mand Desc rip tio n no enable Disables this IP interface. Command mode: Interface IP no interface ip { <1-250> } Removes this IP interface. Command mode: Global configura tion show interface ip { <1-250> } Displays the current interface settings.
Configuration Commands 144 IP Static Route configuration The following table describes the Stat ic Route Config uration commands. Table 121 Static Route Configuration commands Com mand Desc rip tio n ip route < IP subnet > < IP netmask > < IP nexthop > [< IP interface (1-250) >] Adds a static route.
Configuration Commands 145 Static ARP configuration Static ARP entries are permanent in the ARP cache and do not age out like the ARP entries that are learnt dynamically. Static ARP entries enable the sw itch to reach the hosts without sending an ARP broadcast request to the network.
Configuration Commands 146 IP Forwarding configuration The following table describes the IP Forwarding Configuration commands. Table 124 IP Forwarding Configuration commands Com mand Desc rip tio n [no] ip routing direct-broadcasts Enables or disables forwarding directed broadcasts.
Configuration Commands 147 Route Map configuration Routing maps control and modify ro uting information. The map number < 1-32 > represents the routing map you wish to configure. The following table describes the basic Route Map Configuration commands.
Configuration Commands 148 IP Access List configuration The route map number < 1-32 > and the access list number < 1-8 > represent the IP access list you wish to configure. The following table describes th e IP Access List Configuration comman ds.
Configuration Commands 149 RIP Interface configuration The RIP command s are used for configurin g Routing Info rmation Protocol parameters. This opt ion is turned off by default. NOTE: Do not configure RIP versi on 1 parameters if your routing equipment us es RIP version 2.
Configuration Commands 150 Table 129 RIP Interface Conf iguration commands Com mand Desc rip tio n ip rip authentication key {< password >} Configures the authentication key password. Command mode: Interface IP ip rip enable Enables this RIP interface.
Configuration Commands 151 Open Shortest Path First configuration The following table describes the basic Open Shortest Path First (OSPF) commands. The following sections provide more detailed information and commands. Table 131 OSPF Configuration commands Com mand Desc rip tio n router ospf Enter Router OSPF configuration mode.
Configuration Commands 152 OSFP Area Index configu ration The following table describes the Ar ea Index Configuration command s. Table 132 OSPF Area Index Configuration commands Com mand Desc rip tio n area < 0-2 > area-id < A.B.C.D > Defines the area ID of the OSPF area number.
Configuration Commands 153 Table 132 OSPF Area Index Configuration commands Com mand Desc rip tio n show ip ospf area < 0-2 > Displays the current OSPF configuration. Command mode: All except User EXEC OSPF Summary Range configuration The following table describe s the OSPF Summary Range Configuration commands.
Configuration Commands 154 OSPF Interface configuration The following table descri bes the OSPF Interface Configuration commands. Table 134 OSPF Interface Conf iguration commands Com mand Desc rip tio n ip ospf area < 0-2 > Configures the OSPF area index.
Configuration Commands 155 OSPF Virtual Link configuration The following table describe s the OSPF Virtual Link Config uration commands. Table 135 OSPF Virt ual Link Configu ration c ommands Com mand Desc rip tio n area-virtual-link < 1-3 > area < 0-2 > Configures the OSPF area index.
Configuration Commands 156 OSPF Host Entry configuration The following table descri bes the OSPF Host Entry Configuration commands. Table 136 OSPF Host Entry Configuration commands Com mand Desc rip tio n host < 1-128 > address < IP address > Configures the base IP ad dress for the host entry.
Configuration Commands 157 OSPF MD5 Key configuration The following table descri bes the OSPF MD5 Key Configuration commands. Table 138 OSPF MD5 Key Configuration commands Com mand Desc rip tio n message-digest-key < 1-255 > md5-key < key string > Sets the authentication key for this OSPF packet.
Configuration Commands 158 Table 139 IGMP Snooping commands Com mand Desc rip tio n [no] ip igmp snoop flood Configures the switch to flood unregistered IP multicast reports to all ports. Command mode: Global configurat ion [no] ip igmp snoop aggregate Enables or disables IGMP Membership Report aggregation.
Configuration Commands 159 Table 140 IGMPv3 Snooping commands Com mand Desc rip tio n [no] ip igmp snoop igmpv3 exclude Enables or disables snooping on IGMPv3 Exclude Reports. When disabled, the switch ignores Exclude Reports. The default value is enabled .
Configuration Commands 160 IGMP static multicast router configuration The following table describes the Static Mu lticast Router C onfiguration co mmands. NOTE: When you configure a static multicast ro uter on a VLAN, th e process of learning multicast routers is disabled for that VLAN.
Configuration Commands 161 IGMP filter definition The following table describes the IG MP Filter Definition commands. Table 143 IGMP Filter Definition commands Com mand Desc rip tio n ip igmp profile <1-16> range <IP multicast address> <IP multicast address> Configures the range of IP multic ast addresses for this filter.
Configuration Commands 162 Domain Name System configuration The Domain Name System (DNS) Configuration co mmands are used for defining the primary and secondary DNS servers on your loca l network, and for setting th e defa ult domain name served by the switch services.
Configuration Commands 163 Virtual Router Redundancy Protocol configuration Virtual Router Redundancy Protocol (VRRP) support on the HP 10GbE switch provides redundancy between routers in a LAN. This is accomplished by configuring the same virtual router IP address and ID number on each participating VRRP-capable routing device .
Configuration Commands 164 VRRP Virtual Router configuration Virtual Router command s are used for configurin g virtual routers for this switch. A virtual router i s defined by its virtual router ID and an IP address.
Configuration Commands 165 Table 148 Virtual Router Config uration commands Com mand Desc rip tio n [no] virtual-router < 1-250 > preemption Enables or disables master preemption.
Configuration Commands 166 Table 149 Virtual Router Priority T racking Configuration commands Com mand Desc rip tio n [no] virtual-router < 1-250 > track interfaces When enabled, the priority for this vi rtual router will be increased for each other IP interface active on this switch.
Configuration Commands 167 Table 150 Virtual Router G roup Configuration command s Com mand Desc rip tio n group advertisement < 1-255 > Defines the time interval between VRRP master advertisements. This can be any integer between 1 and 255 seconds.
Configuration Commands 168 VRRP Interface configuration These commands are used f or configuring VRRP authent i cation parameters for the IP interfaces used with the virtual routers. The interf ace number represents the IP interface on which auth entication parameters must be configured.
Configuration Commands 169 NOTE: These priority tracking options only define in crement values. These options do not affect the VRRP master router el ection process until op tions under VRRP Virtual Router Pr iority Tracking are enabled.
Configuration Commands 170 Quality of Service configuration Use the Quality of Service (QoS) commands to configure the IEEE 802.1p priority value of in coming packets. This allows you to different iate between various types of traffi c, and provide different priority levels.
Configuration Commands 171 Access Control configuration Use these commands to create Access Control Lists (ACLs) and ACL Groups. ACL s define matching criteria used for IP filtering and Qual ity of Service functions. Access Control List configuration These commands allow you to define f iltering criteria for each Access Control L ist (ACL).
Configuration Commands 172 Table 156 Ethernet Filter Configuration commands Com mand Desc rip tio n access-control list < 1-384 > ethernet ethernet-type {ARP|IP|IPv6|MPLS| RARP|any|0xXXXX} Defines the Ethernet type for this ACL.
Configuration Commands 173 ACL TCP/UDP Filter configuration These commands allow you to define TCP/UDP matchi ng crit eria for an ACL. The following table describes the TCP/UDP Filter Configuration commands.
Configuration Commands 174 ACL Packet Format configuration The following table describes the Pack et Format Configuration commands. Table 159 Packet Format Configuration commands Com mand Desc rip tio n access-control list < 1 - 384 > packet-format ethernet {ethertype2|snap|llc} Defines the Ethernet format for the ACL.
Configuration Commands 175 ACL Re-mark configuration You can choose to re-mark IP header data for the se lected ACL. You can configure differ ent re-mark values, based on whether packets fall within the AC L Mete ring profile, or out of the ACL Metering profile.
Configuration Commands 176 Re-Mark Update User Priority configuration The following table describe s the Update User Priority Configuration commands. Table 163 ACL Update User Priority Configuration commands Com mand Desc rip tio n access-control list < 1-384 > re-mark in-profile dot1p < 0-7 > Defines 802.
Configuration Commands 177 ACL Group configuration These commands allow you to compile one or more AC Ls into an ACL Group. Once you create an ACL Group, you can assign the ACL Group to one or more ports. The following table describes the AC L Group Configuration command s.
Configuration Commands 178 Remote Monitoring configuration Remote Monito ring (R MON) allo ws you to monitor traffic flowing through the switch. The RMON MIB is described in RFC 1757. The following table describes the basic RMON Configuration commands.
Configuration Commands 179 RMON event configuration The following table describes the RMON Event commands. Table 168 RMON Event commands Com mand Desc rip tio n rmon event <1-65535> description <1-127 characters> Enter a text string to describe the event.
Configuration Commands 180 RMON alarm configuration The Alarm RMON group can track rising or falling va lues for a MIB object. The MIB object must be a counter, gauge, integer, or time interval. Each alarm index must co rrespond to an event index that triggers once the alarm threshold is crossed.
Configuration Commands 181 Table 169 RMON Alarm commands Com mand Desc rip tio n rmon alarm <1-65535> owner <1-127 characte rs > Enter a text string that identifies the person or entity that uses this alarm index. The owner can have a maximum of 127 characters.
Configuration Commands 182 Port-based port mirroring The following table describes the port-based Port Mirroring Con figuration commands. Table 171 Port Mirroring Config uration commands Com mand Desc rip tio n port-mirroring monitor-port <port number> mirroring-port <port number> {in|out|both} Adds the port to be mirrored.
Configuration Commands 183 Failure Detection Pair configuration Use these commands to configure a Fail ure Detection Pair , which consists of one Link to Monitor (LtM) and one Link to Disable (LtD). When the switch detects a f a ilure on the LtM, it automatic ally disables the ports in the LtD.
Configuration Commands 184 Link to Disable configuration The following table describes the Link to Disable (LtD) commands. The LtD can consist of any mix of downlink ports (ports 1-16) and trunk grou ps that c ontain only downlink ports.
Configuration Commands 185 Saving the active switch configuration When the copy running-global configuration {tftp|ftp} command is used, the active configuration commands of the switch will be uploaded to the specified script co nfiguration file on the FTP/TFTP serv er.
Operations Commands 186 Oper ations C ommands Introduction Operations-level command s are used for making immediate and temporary changes to switch configuration. Operations commands ar e used for bringing ports temporar ily in and out of service. These commands are available only from an administrator and operator login.
Operations Commands 187 Operations-level port 802.1x options Operations-level port 802.1x options are used to tem porarily set 802.1x parameters for a port. Table 178 Operations-Level Port 802.1x commands Com mand Desc rip tio n interface port < port number > dot1x init Re-initializes the 802.
Boot Options 188 Boot Opti ons Introduction You must be logged in to the switch as the adm inistrator to use the Boot Options commands. The Boot Options allow you to perform the follo wing functions: • Select a switch software image to be us ed when the switch is next reloaded.
Boot Options 189 When the above requirements are met, use the foll owing procedure to download the new software to the HP 10GbE switch . 1. In Privileged EXEC mode, enter: Switch# copy tftp {<image1|image2|boot-image>} -or- Switch# copy ftp {<image1|image2|boot-image>} 2.
Boot Options 190 Selecting a software image to run You can select which software image ( image1 or image2 ) you want to run in switch memory for the next reboot. 1. In Global Configuration mode, enter: Router(config)# boot image {image1|image2} 2. Enter the name of the image you want the switch to us e upon the next boot.
Boot Options 191 Selecting a configuration block When you make configura tion changes to the switch, yo u must save the change s so that they are retained beyond the next time the switch is reset. When you execute a save operation ( copy running-config startup-config ), your new configuration changes are placed in the active configuration block.
Maintenance Commands 192 Maintenance C ommands Introduction The Maintenance commands are used for debugging pu rposes, enabling you to generate a technical support dump of the critical state information in the switch, and to clear entries in the Forwarding Database and the Address Resolution Protocol (ARP) and routing tables.
Maintenance Commands 193 Forwarding Database maintenance The Forwarding Database (FDB) Manipulation commands can be used to view information and to delete a MAC address from the Forwarding Database or clear th e entire Forwarding Database. This is helpful in identifying problems associated with MAC address learning an d packet forwarding decisions.
Maintenance Commands 194 Table 182 Miscellaneous Debug commands Command Usage debug mp-snap Displays the management processor snap (o r post-mortem) trace buffer. This buffer contains information traced at the time that a reset occurred. Command mode: All except User EXEC clear flash-config Deletes all flash configuration blocks.
Maintenance Commands 195 Table 184 IGMP Snooping Maintenan ce commands Command Usage show ip igmp groups interface <port number> Shows IGMP Multicast groups on a single port. Command mode: All except User EXEC show ip igmp groups Shows all IGMP Multicast groups.
Maintenance Commands 196 To access dump information, at the prompt, enter: Switch# show flash-dump-uuencode The dump information is displayed on your screen and, if you have configured your communication software to do so, captured to a file. If the dump region is empty, the following displays: No FLASH dump available.
Maintenance Commands 197 Panic command The panic command causes the switch to dump st ate information immediately to flash memory and reboot. To select panic, at the prompt, enter: >> Switch# debug panic A FLASH dump already exists.
Index 198 Inde x 8 802.1x information, 35 802.1x statistics, 69 A abbreviating commands, 18 access control, user, 116 active configuration block, 101, 191 active switch conf iguration: gtcfg, 185; ptc.
Index 199 O online help, 17 operating mode, configur ation, 124 Operations-level port options, 186, 187 ospf: interface, 151; Not-So-Stubby Area, 152; stub area, 152; transit area, 152 P panic: comman.
Un point important après l'achat de l'appareil (ou même avant l'achat) est de lire le manuel d'utilisation. Nous devons le faire pour quelques raisons simples:
Si vous n'avez pas encore acheté HP (Hewlett-Packard) 445942-001 c'est un bon moment pour vous familiariser avec les données de base sur le produit. Consulter d'abord les pages initiales du manuel d'utilisation, que vous trouverez ci-dessus. Vous devriez y trouver les données techniques les plus importants du HP (Hewlett-Packard) 445942-001 - de cette manière, vous pouvez vérifier si l'équipement répond à vos besoins. Explorant les pages suivantes du manuel d'utilisation HP (Hewlett-Packard) 445942-001, vous apprendrez toutes les caractéristiques du produit et des informations sur son fonctionnement. Les informations sur le HP (Hewlett-Packard) 445942-001 va certainement vous aider à prendre une décision concernant l'achat.
Dans une situation où vous avez déjà le HP (Hewlett-Packard) 445942-001, mais vous avez pas encore lu le manuel d'utilisation, vous devez le faire pour les raisons décrites ci-dessus,. Vous saurez alors si vous avez correctement utilisé les fonctions disponibles, et si vous avez commis des erreurs qui peuvent réduire la durée de vie du HP (Hewlett-Packard) 445942-001.
Cependant, l'un des rôles les plus importants pour l'utilisateur joués par les manuels d'utilisateur est d'aider à résoudre les problèmes concernant le HP (Hewlett-Packard) 445942-001. Presque toujours, vous y trouverez Troubleshooting, soit les pannes et les défaillances les plus fréquentes de l'apparei HP (Hewlett-Packard) 445942-001 ainsi que les instructions sur la façon de les résoudre. Même si vous ne parvenez pas à résoudre le problème, le manuel d‘utilisation va vous montrer le chemin d'une nouvelle procédure – le contact avec le centre de service à la clientèle ou le service le plus proche.