Page is loading ...
CLI Reference Guide
www.edge-core.com
ECS2110-26T
26-Port Web-smart Pro
10G Ethernet Switch
ECS2100-52T
52-Port Web-smart Pro
Gigabit Ethernet Switch
Software Release v1.2.37.192
CLI Reference Guide
ECS2110-26T Gigabit Ethernet Switch
Web-smart Pro 10G Ethernet Switch
with 24 10/100/1000BASE-T (RJ-45) Ports
and 2 10G SFP Ports
ECS2100-52T Gigabit Ethernet Switch
Web-smart Pro Gigabit Ethernet Switch
with 48 10/100/1000BASE-T (RJ-45) Ports
and 4 Gigabit SFP Ports
E102019-CS-R03
– 3 –
How to Use This Guide
This guide includes detailed information on the switch software, including how to
operate and use the management functions of the switch. To deploy this switch
effectively and ensure trouble-free operation, you should first read the relevant
sections in this guide so that you are familiar with all of its software features.
Who Should Read This
Guide?
This guide is for network administrators who are responsible for operating and
maintaining network equipment. The guide assumes a basic working knowledge of
LANs (Local Area Networks), the Internet Protocol (IP), and Simple Network
Management Protocol (SNMP).
How This Guide is
Organized
This guide describes the switch’s command line interface (CLI). For more detailed
information on the switch’s key features or information about the web browser
management interface refer to the Web Management Guide.
The guide includes these sections:
◆ Section I “Getting Started” — Includes information on initial configuration.
◆ Section II “Command Line Interface” — Includes all management options
available through the CLI.
◆ Section III “Appendices” — Includes information on troubleshooting switch
management access.
Related
Documentation
This guide focuses on switch software configuration through the CLI.
For information on how to manage the switch through the Web management
interface, see the following guide:
Web Management Guide
For information on how to install the switch, see the following guide:
Installation Guide
For all safety information and regulatory statements, see the following documents:
Quick Start Guide
Safety and Regulatory Information
How to Use This Guide
– 4 –
Conventions The following conventions are used throughout this guide to show information:
Note:
Emphasizes important information or calls your attention to related features
or instructions.
Caution:
Alerts you to a potential hazard that could cause loss of data, or damage
the system or equipment.
Documentation
Notice
This documentation is provided for general information purposes only. If any
product feature details in this documentation conflict with the product datasheet,
refer to the datasheet for the latest information.
Revision History This section summarizes the changes in each revision of this guide.
Revision Date Change Description
v1.2.37.192 10/2019 Added
◆
"show ntp status" on page 142
◆
"show ntp statistics peer" on page 143
◆
"show ntp peer-status" on page 143
◆
RIP commands. See "Routing Information Protocol (RIP)" on
page 651.
◆
"show ip route database" on page 650
◆
"show ip route summary" on page 651
◆
"show ip traffic" on page 651
Updated
◆
SSH commands. See "Secure Shell" on page 235.
◆
Default for "port channel load-balance" on page 380
◆
"ntp server" on page 141
◆
"exec-timeout" on page 115
◆
"ntp authentication-key" on page 139
◆
"reload (Global Configuration)" on page 78
Removed
◆
Command “show license file”
◆
Command “ip ssh server-key size”
◆
ERPS commands
v1.1.10.171 01/2019 Updated to correct errors
v1.1.10.171 01/2017 Initial release
– 5 –
Contents
How to Use This Guide 3
Contents 5
Tables 31
Section I Getting Started 37
1 Initial Switch Configuration 39
Connecting to the Switch 39
Configuration Options 39
Connecting to the Console Port 40
Logging Onto the Command Line Interface 41
Setting Passwords 41
Remote Connections 42
Configuring the Switch for Remote Management 42
Using the Network Interface 42
Setting an IP Address 42
Enabling SNMP Management Access 48
Managing System Files 50
Upgrading the Operation Code 51
Saving or Restoring Configuration Settings 51
Automatic Installation of Operation Code and Configuration Settings 53
Downloading Operation Code from a File Server 53
Specifying a DHCP Client Identifier 56
Downloading a Configuration File and Other Parameters from a DHCP Server 57
Setting the System Clock 59
Setting the Time Manually 59
Configuring SNTP 60
Configuring NTP 60
Contents
– 6 –
Section II Command Line Interface 63
2 Using the Command Line Interface 65
Accessing the CLI 65
Console Connection 65
Telnet Connection 66
Entering Commands 67
Keywords and Arguments 67
Minimum Abbreviation 67
Command Completion 67
Getting Help on Commands 68
Partial Keyword Lookup 69
Negating the Effect of Commands 70
Using Command History 70
Understanding Command Modes 70
Exec Commands 70
Configuration Commands 71
Command Line Processing 73
Showing Status Information 73
CLI Command Groups 74
3 General Commands 77
prompt 77
reload (Global Configuration) 78
enable 79
quit 80
show history 80
configure 81
disable 82
reload (Privileged Exec) 82
show reload 83
end 83
exit 83
4 System Management Commands 85
Contents
– 7 –
Device Designation 85
hostname 86
System Status 86
show access-list tcam-utilization 87
show memory 88
show process cpu 89
show process cpu guard 89
show process cpu task 90
show running-config 92
show startup-config 93
show system 94
show tech-support 95
show users 96
show version 97
show watchdog 97
watchdog software 98
Fan Control 98
fan-speed force-full 98
Frame Size 99
jumbo frame 99
File Management 100
General Commands 101
boot system 101
copy 102
delete 106
dir 107
whichboot 108
Automatic Code Upgrade Commands 108
upgrade opcode auto 108
upgrade opcode path 109
upgrade opcode reload 110
show upgrade 111
TFTP Configuration Commands 111
ip tftp retry 111
ip tftp timeout 112
Contents
– 8 –
show ip tftp 112
Line 113
line 114
databits 114
exec-timeout 115
login 116
parity 117
password 117
password-thresh 118
silent-time 119
speed 120
stopbits 120
timeout login response 121
disconnect 121
terminal 122
show line 123
Event Logging 124
logging command 124
logging facility 125
logging history 125
logging host 126
logging on 127
logging trap 128
clear log 128
show log 129
show logging 130
SMTP Alerts 131
logging sendmail 132
logging sendmail destination-email 132
logging sendmail host 133
logging sendmail level 133
logging sendmail source-email 134
show logging sendmail 135
Time 135
Contents
– 9 –
SNTP Commands 136
sntp client 136
sntp poll 137
sntp server 137
show sntp 138
NTP Commands 139
ntp authenticate 139
ntp authentication-key 139
ntp client 140
ntp server 141
show ntp 142
show ntp status 142
show ntp statistics peer 143
show ntp peer-status 143
Manual Configuration Commands 144
clock summer-time (date) 144
clock summer-time (predefined) 145
clock summer-time (recurring) 146
clock timezone 148
calendar set 149
show calendar 149
Time Range 150
time-range 150
absolute 151
periodic 152
show time-range 153
Switch Clustering 153
cluster 154
cluster commander 155
cluster ip-pool 156
cluster member 156
rcommand 157
show cluster 158
show cluster members 158
show cluster candidates 158
Contents
– 10 –
5 SNMP Commands 161
General SNMP Commands 163
snmp-server 163
snmp-server community 163
snmp-server contact 164
snmp-server location 165
show snmp 165
SNMP Target Host Commands 166
snmp-server enable traps 166
snmp-server host 167
snmp-server enable port-traps link-up-down 169
snmp-server enable port-traps mac-notification 170
show snmp-server enable port-traps 170
SNMPv3 Commands 171
snmp-server engine-id 171
snmp-server group 172
snmp-server user 173
snmp-server view 175
show snmp engine-id 176
show snmp group 177
show snmp user 178
show snmp view 179
Notification Log Commands 179
nlm 179
snmp-server notify-filter 180
show nlm oper-status 182
show snmp notify-filter 182
Additional Trap Commands 182
memory 182
process cpu 183
process cpu guard 184
6 Remote Monitoring Commands 187
rmon alarm 188
rmon event 189
Contents
– 11 –
rmon collection history 190
rmon collection rmon1 191
show rmon alarms 192
show rmon events 192
show rmon history 193
show rmon statistics 193
7 Flow Sampling Commands 195
sflow owner 195
sflow polling instance 197
sflow sampling instance 198
show sflow 199
8 Authentication Commands 201
User Accounts and Privilege Levels 202
enable password 202
username 203
privilege 205
show privilege 205
Authentication Sequence 206
authentication enable 206
authentication login 207
RADIUS Client 208
radius-server acct-port 208
radius-server auth-port 209
radius-server host 209
radius-server key 210
radius-server retransmit 211
radius-server timeout 211
show radius-server 212
TACACS+ Client 212
tacacs-server host 213
tacacs-server key 213
tacacs-server port 214
tacacs-server retransmit 214
tacacs-server timeout 215
Contents
– 12 –
show tacacs-server 215
AAA 216
aaa accounting commands 217
aaa accounting dot1x 218
aaa accounting exec 219
aaa accounting update 220
aaa authorization commands 220
aaa authorization exec 221
aaa group server 222
server 223
accounting dot1x 223
accounting commands 224
accounting exec 224
authorization commands 225
authorization exec 226
show accounting 226
show authorization 227
Web Server 228
ip http authentication 229
ip http port 229
ip http server 230
ip http secure-port 230
ip http secure-server 231
Telnet Server 232
ip telnet max-sessions 233
ip telnet port 233
ip telnet server 234
telnet (client) 234
show ip telnet 235
Secure Shell 235
ip ssh authentication-retries 237
ip ssh server 238
ip ssh timeout 239
delete public-key 239
ip ssh crypto host-key generate 240
Contents
– 13 –
ip ssh crypto zeroize 240
ip ssh save host-key 241
show ip ssh 241
show public-key 242
show ssh 242
802.1X Port Authentication 243
General Commands 244
dot1x default 244
dot1x system-auth-control 245
Authenticator Commands 245
dot1x intrusion-action 245
dot1x max-reauth-req 246
dot1x max-req 246
dot1x operation-mode 247
dot1x port-control 248
dot1x re-authentication 248
dot1x timeout quiet-period 249
dot1x timeout re-authperiod 249
dot1x timeout supp-timeout 250
dot1x timeout tx-period 251
dot1x re-authenticate 251
Supplicant Commands 252
dot1x timeout auth-period 252
dot1x timeout held-period 252
Information Display Commands 253
show dot1x 253
Management IP Filter 255
management 255
show management 256
9 General Security Measures 259
Port Security 260
mac-learning 260
port security 261
show port security 263
Contents
– 14 –
Network Access (MAC Address Authentication) 265
network-access aging 265
network-access mac-filter 266
mac-authentication reauth-time 267
network-access dynamic-qos 268
network-access dynamic-vlan 269
network-access guest-vlan 270
network-access max-mac-count 270
network-access mode mac-authentication 271
network-access port-mac-filter 272
mac-authentication intrusion-action 273
mac-authentication max-mac-count 273
clear network-access 274
show network-access 274
show network-access mac-address-table 275
show network-access mac-filter 276
Web Authentication 276
web-auth login-attempts 277
web-auth quiet-period 278
web-auth session-timeout 278
web-auth system-auth-control 279
web-auth 279
web-auth re-authenticate (Port) 280
web-auth re-authenticate (IP) 280
show web-auth 281
show web-auth interface 281
show web-auth summary 282
DHCPv4 Snooping 282
ip dhcp snooping 283
ip dhcp snooping information option 285
ip dhcp snooping information option encode no-subtype 286
ip dhcp snooping information option remote-id 288
ip dhcp snooping information option tr101 board-id 289
ip dhcp snooping information policy 289
ip dhcp snooping verify mac-address 290
Contents
– 15 –
ip dhcp snooping vlan 291
ip dhcp snooping information option circuit-id 292
ip dhcp snooping max-number 294
ip dhcp snooping trust 294
clear ip dhcp snooping binding 295
clear ip dhcp snooping database flash 295
ip dhcp snooping database flash 296
show ip dhcp snooping 296
show ip dhcp snooping binding 297
IPv4 Source Guard 297
ip source-guard binding 298
ip source-guard 300
ip source-guard max-binding 301
ip source-guard mode 302
clear ip source-guard binding blocked 303
show ip source-guard 303
show ip source-guard binding 304
ARP Inspection 305
ip arp inspection 306
ip arp inspection filter 307
ip arp inspection log-buffer logs 308
ip arp inspection validate 309
ip arp inspection vlan 310
ip arp inspection limit 311
ip arp inspection trust 311
show ip arp inspection configuration 312
show ip arp inspection interface 312
show ip arp inspection log 313
show ip arp inspection statistics 313
show ip arp inspection vlan 313
Denial of Service Protection 314
dos-protection echo-chargen 314
dos-protection smurf 315
dos-protection tcp-flooding 315
dos-protection tcp-null-scan 316
Contents
– 16 –
dos-protection tcp-syn-fin-scan 316
dos-protection tcp-xmas-scan 317
dos-protection udp-flooding 317
dos-protection win-nuke 318
show dos-protection 318
Port-based Traffic Segmentation 319
traffic-segmentation 319
traffic-segmentation session 320
traffic-segmentation uplink/downlink 321
traffic-segmentation uplink-to-uplink 322
show traffic-segmentation 323
10 Access Control Lists 325
IPv4 ACLs 325
access-list ip 326
permit, deny (Standard IP ACL) 326
permit, deny (Extended IPv4 ACL) 327
ip access-group 330
show ip access-group 331
show ip access-list 331
IPv6 ACLs 332
access-list ipv6 332
permit, deny (Standard IPv6 ACL) 333
permit, deny (Extended IPv6 ACL) 334
ipv6 access-group 337
show ipv6 access-group 337
show ipv6 access-list 338
MAC ACLs 338
access-list mac 339
permit, deny (MAC ACL) 339
mac access-group 342
show mac access-group 343
show mac access-list 343
ARP ACLs 344
access-list arp 344
Contents
– 17 –
permit, deny (ARP ACL) 345
show access-list arp 346
ACL Information 346
clear access-list hardware counters 347
show access-group 347
show access-list 348
11 Interface Commands 349
Interface Configuration 350
interface 350
capabilities 351
description 352
flowcontrol 353
history 354
media-type 354
negotiation 355
shutdown 356
speed-duplex 356
clear counters 357
show interfaces brief 358
show interfaces counters 359
show interfaces history 362
show interfaces status 364
show interfaces switchport 365
Transceiver Threshold Configuration 366
transceiver-monitor 366
transceiver-threshold-auto 367
transceiver-threshold current 367
transceiver-threshold rx-power 368
transceiver-threshold temperature 369
transceiver-threshold tx-power 370
transceiver-threshold voltage 371
show interfaces transceiver 372
show interfaces transceiver-threshold 373
Contents
– 18 –
Cable Diagnostics 374
test cable-diagnostics 374
show cable-diagnostics 375
Power Savings 376
power-save 376
show power-save 377
12 Link Aggregation Commands 379
Manual Configuration Commands 380
port channel load-balance 380
channel-group 382
Dynamic Configuration Commands 383
lacp 383
lacp admin-key (Ethernet Interface) 384
lacp port-priority 385
lacp system-priority 386
lacp admin-key (Port Channel) 387
lacp timeout 388
Trunk Status Display Commands 389
show lacp 389
show port-channel load-balance 392
13 Port Mirroring Commands 393
Local Port Mirroring Commands 393
port monitor 393
show port monitor 394
RSPAN Mirroring Commands 395
rspan source 397
rspan destination 398
rspan remote vlan 399
no rspan session 400
show rspan 401
14 Congestion Control Commands 403
Rate Limit Commands 403
rate-limit 404
Contents
– 19 –
Storm Control Commands 405
switchport packet-rate 405
15 Loopback Detection Commands 407
loopback-detection 408
loopback-detection action 408
loopback-detection recover-time 409
loopback-detection transmit-interval 410
loopback detection trap 410
loopback-detection release 411
show loopback-detection 411
16 Address Table Commands 413
mac-address-table aging-time 413
mac-address-table static 414
clear collision-mac-address-table 415
clear mac-address-table dynamic 415
show collision-mac-address-table 415
show mac-address-table 416
show mac-address-table aging-time 417
show mac-address-table count 417
17 Spanning Tree Commands 419
spanning-tree 420
spanning-tree cisco-prestandard 421
spanning-tree forward-time 421
spanning-tree hello-time 422
spanning-tree max-age 423
spanning-tree mode 423
spanning-tree mst configuration 425
spanning-tree pathcost method 425
spanning-tree priority 426
spanning-tree system-bpdu-flooding 427
spanning-tree tc-prop 427
spanning-tree transmission-limit 428
max-hops 429
Contents
– 20 –
mst priority 429
mst vlan 430
name 431
revision 431
spanning-tree bpdu-filter 432
spanning-tree bpdu-guard 433
spanning-tree cost 434
spanning-tree edge-port 435
spanning-tree link-type 436
spanning-tree loopback-detection 436
spanning-tree loopback-detection action 437
spanning-tree loopback-detection release-mode 438
spanning-tree loopback-detection trap 439
spanning-tree mst cost 439
spanning-tree mst port-priority 440
spanning-tree port-bpdu-flooding 441
spanning-tree port-priority 441
spanning-tree root-guard 442
spanning-tree spanning-disabled 443
spanning-tree tc-prop-stop 443
spanning-tree loopback-detection release 444
spanning-tree protocol-migration 445
show spanning-tree 445
show spanning-tree mst configuration 448
show spanning-tree tc-prop 448
18 VLAN Commands 449
Editing VLAN Groups 449
vlan database 450
vlan 450
Configuring VLAN Interfaces 451
interface vlan 452
switchport acceptable-frame-types 453
switchport allowed vlan 453
switchport ingress-filtering 455
/
