Page is loading ...
CLI Reference Guide
www.edge-core.com
10G Data Center Switches
AS5812-54X-EC
AS5812-54T-EC
Software Release v1.2.184.183
CLI Reference Guide
AS5812-54T-EC
54-Port 10G Data Center Switch with
48 10GbE RJ-45 Copper Ports,
6 40GBASE QSFP+ Ports,
2 Power Supply Units,
and 4 +1 Fan Trays (4 + 1 Fans with F2B and B2F Airflow)
AS5812-54X-EC
54-Port 10G Data Center Switch with
48 10GBASE SFP+ Ports,
6 40GBASE QSFP+ Ports,
2 Power Supply Units,
and 4 +1 Fan Trays (4 + 1 Fans with F2B and B2F Airflow)
E122019-CS-R02
150000000063A
– 3 –
How to Use This Guide
This guide includes detailed information on the switch’s AOS (EdgeCOS) software,
including how to operate and use the management functions of the switch. To
deploy this switch effectively and ensure trouble-free operation, you should first
read the relevant sections in this guide so that you are familiar with all of its
software features.
Who Should Read This
Guide?
This guide is for network administrators who are responsible for operating and
maintaining network equipment. The guide assumes a basic working knowledge of
LANs (Local Area Networks), the Internet Protocol (IP), and Simple Network
Management Protocol (SNMP).
How This Guide is
Organized
This guide describes the switch’s AOS (EdgeCOS) command line interface (CLI). For
more detailed information on the switch’s key features refer to the Web
Management Guide.
The guide includes these sections:
◆ Section I “Getting Started” — Includes a description of the switch’s boot modes
(SDN/EdgeCOS) and information on connecting to the switch including basic
configuration procedures.
◆ Section II “Command Line Interface” — Includes all management options
available through the CLI.
◆ Section III “Appendices” — Includes information on troubleshooting switch
management access.
Related
Documentation
This guide focuses on switch software configuration through the AOS (EdgeCOS)
CLI when the switch is booted utilizing the AOS (EdgeCOS) boot mode.
For information on how to manage the switch using the EdgeCOS Web
management interface, see the following guide:
Web Management Guide
Note:
For a general description of switch features including SDN operation, refer to
“Introduction” in the Web Management Guide.
How to Use This Guide
– 4 –
For information on how to install the switch, see the following guide:
Installation Guide
For all safety information and regulatory statements, see the following documents:
Quick Start Guide
Safety and Regulatory Information
Conventions The following conventions are used throughout this guide to show information:
Note:
Emphasizes important information or calls your attention to related features
or instructions.
Caution:
Alerts you to a potential hazard that could cause loss of data, or damage
the system or equipment.
Warning:
Alerts you to a potential hazard that could cause personal injury.
Revision History This section summarizes the changes in each revision of this guide.
December 2019 Revision
This is the second version of this guide. This guide is valid for AOS (EdgeCOS)
software release v1.2.184.183. It include the following changes:
◆ Modified model numbers to AS5812-54X-EC and AS5812-54T-EC
◆ Removed support for AS6812-32X switch
October 2019 Revision
This is the first version of this guide. This guide is valid for AOS (EdgeCOS) software
release v1.2.184.183
– 5 –
Contents
How to Use This Guide 3
Contents 5
Figures 43
Tables 45
Section I Getting Started 53
1 Introduction and Boot Mode 55
Introduction 55
Legacy Mode (AOS - EdgeCOS) 55
SDN Mode (OpenFlow) 55
Boot Selection 56
2 Initial Switch Configuration 57
Connecting to the Switch 57
Configuration Options 57
Connecting to the Console Port 58
Logging Onto the Command Line Interface 59
Setting Passwords 59
Remote Connections (Network Interface or Craft Port) 60
Obtaining and Installing a License for the Network Ports 61
Configuring the Switch for Remote Management 63
Using the Service Port or Network Interface 63
Setting an IP Address 63
Enabling SNMP Management Access 69
Managing System Files 71
Upgrading the Operation Code 72
Saving or Restoring Configuration Settings 72
Contents
– 6 –
Configuring Automatic Installation of Code and Configuration Settings 74
Downloading Operation Code from a File Server 74
Specifying a DHCP Client Identifier 76
Downloading a Configuration File Referenced by a DHCP Server 77
Setting the System Clock 79
Setting the Time Manually 79
Configuring SNTP 80
Configuring NTP 80
Section II Command Line Interface 83
3 Using the Command Line Interface 85
Accessing the CLI 85
Console Connection 85
Telnet Connection 85
Entering Commands 87
Keywords and Arguments 87
Minimum Abbreviation 87
Command Completion 87
Getting Help on Commands 88
Partial Keyword Lookup 89
Negating the Effect of Commands 90
Using Command History 90
Understanding Command Modes 90
Exec Commands 90
Configuration Commands 91
Command Line Processing 94
CLI Command Groups 95
4 General Commands 97
prompt 97
reload (Global Configuration) 98
enable 99
quit 100
show history 100
Contents
– 7 –
configure 101
disable 102
reload (Privileged Exec) 102
show reload 103
end 103
exit 103
5 System Management Commands 105
Device Designation 105
hostname 106
Banner Information 106
banner configure 107
banner configure company 108
banner configure dc-power-info 109
banner configure department 110
banner configure equipment-info 110
banner configure equipment-location 111
banner configure ip-lan 112
banner configure lp-number 112
banner configure manager-info 113
banner configure mux 114
banner configure note 114
show banner 115
System Status 115
location-led 116
show access-list tcam-utilization 117
show license file 118
show location-led status 119
show memory 119
show process cpu 119
show running-config 120
show startup-config 122
show system 122
show tech-support 124
show users 125
Contents
– 8 –
show version 125
show watchdog 126
watchdog software 126
Fan Control 127
fan-speed force-full 127
Frame Size 127
jumbo frame 128
File Management 128
General Commands 130
boot system 130
copy 131
delete 134
dir 135
onie 136
umount usbdisk 138
whichboot 138
Automatic Code Upgrade Commands 139
upgrade opcode auto 139
upgrade opcode path 140
upgrade opcode reload 141
show upgrade 142
TFTP Configuration Commands 142
ip tftp retry 142
ip tftp timeout 143
show ip tftp 143
Line 144
line 144
databits 145
exec-timeout 146
login 146
parity 147
password 148
password-thresh 149
silent-time 150
speed 150
Contents
– 9 –
stopbits 151
timeout login response 151
disconnect 152
show line 153
Event Logging 153
logging facility 154
logging history 155
logging host 156
logging on 156
logging trap 157
clear log 158
show log 158
show logging 159
Time 160
SNTP Commands 161
sntp client 161
sntp poll 162
sntp server 163
show sntp 163
NTP Commands 164
ntp authenticate 164
ntp authentication-key 165
ntp client 166
ntp server 166
show ntp 167
Manual Configuration Commands 168
clock summer-time date 168
clock summer-time predefined 169
clock summer-time recurring 170
clock timezone 172
clock timezone-predefined 172
calendar set 173
show calendar 174
6 SNMP Commands 175
Contents
– 10 –
General SNMP Commands 176
snmp-server 176
snmp-server community 177
snmp-server contact 178
snmp-server location 178
show snmp 179
SNMP Target Host Commands 180
snmp-server enable traps 180
snmp-server host 181
snmp-server enable port-traps mac-notification 183
show snmp-server enable port-traps 184
SNMPv3 Commands 184
snmp-server engine-id 184
snmp-server group 185
snmp-server user 187
snmp-server view 188
show snmp engine-id 189
show snmp group 190
show snmp user 191
show snmp view 192
Notification Log Commands 193
nlm 193
snmp-server notify-filter 193
show nlm oper-status 195
show snmp notify-filter 195
Additional Trap Commands 195
memory 195
process cpu 196
process cpu guard 197
show process cpu guard 198
7 Remote Monitoring Commands 199
rmon alarm 200
rmon event 201
rmon collection history 202
Contents
– 11 –
rmon collection rmon1 203
show rmon alarms 204
show rmon events 204
show rmon history 205
show rmon statistics 205
8 Authentication Commands 207
User Accounts 208
enable password 208
username 209
Authentication Sequence 210
authentication enable 210
authentication login 211
RADIUS Client 212
radius-server acct-port 213
radius-server auth-port 213
radius-server host 214
radius-server key 215
radius-server retransmit 215
radius-server timeout 216
show radius-server 216
TACACS+ Client 217
tacacs-server host 217
tacacs-server key 218
tacacs-server port 218
tacacs-server retransmit 219
tacacs-server timeout 219
show tacacs-server 220
Web Server 220
ip http authentication 221
ip http port 221
ip http server 222
ip http secure-port 222
ip http secure-server 223
Telnet Server 224
Contents
– 12 –
ip telnet max-sessions 225
ip telnet port 225
ip telnet server 226
show ip telnet 226
Secure Shell 227
ip ssh authentication-retries 230
ip ssh server 230
ip ssh server-key size 231
ip ssh timeout 231
delete public-key 232
ip ssh crypto host-key generate 233
ip ssh crypto zeroize 233
ip ssh save host-key 234
show ip ssh 234
show public-key 235
show ssh 236
802.1X Port Authentication 236
General Commands 237
dot1x default 237
dot1x eapol-pass-through 237
dot1x system-auth-control 238
Authenticator Commands 239
dot1x intrusion-action 239
dot1x max-reauth-req 240
dot1x max-req 240
dot1x operation-mode 241
dot1x port-control 242
dot1x re-authentication 242
dot1x timeout quiet-period 243
dot1x timeout re-authperiod 243
dot1x timeout supp-timeout 244
dot1x timeout tx-period 244
Information Display Commands 245
show dot1x 245
Management IP Filter 248
Contents
– 13 –
management 248
show management 249
9 General Security Measures 251
Port Security 252
mac-learning 252
port security 253
show port security 255
Network Access (MAC Address Authentication) 257
network-access aging 258
network-access mac-filter 258
mac-authentication reauth-time 259
network-access dynamic-qos 260
network-access dynamic-vlan 261
network-access guest-vlan 262
network-access link-detection 262
network-access link-detection link-down 263
network-access link-detection link-up 263
network-access link-detection link-up-down 264
network-access max-mac-count 264
network-access mode mac-authentication 265
network-access port-mac-filter 266
mac-authentication intrusion-action 267
mac-authentication max-mac-count 267
clear network-access 268
show network-access 268
show network-access mac-address-table 269
show network-access mac-filter 270
Web Authentication 270
web-auth login-attempts 271
web-auth quiet-period 272
web-auth session-timeout 272
web-auth system-auth-control 273
web-auth 273
web-auth re-authenticate (Port) 274
Contents
– 14 –
web-auth re-authenticate (IP) 274
show web-auth 275
show web-auth interface 275
show web-auth summary 276
DHCPv4 Snooping 276
ip dhcp snooping 277
ip dhcp snooping information option 279
ip dhcp snooping information option encode no-subtype 280
ip dhcp snooping information option remote-id 281
ip dhcp snooping information policy 282
ip dhcp snooping limit rate 282
ip dhcp snooping verify mac-address 283
ip dhcp snooping vlan 284
ip dhcp snooping information option circuit-id 284
ip dhcp snooping trust 286
clear ip dhcp snooping binding 287
clear ip dhcp snooping database flash 287
ip dhcp snooping database flash 287
show ip dhcp snooping 288
show ip dhcp snooping binding 288
DHCPv6 Snooping 289
ipv6 dhcp snooping 289
ipv6 dhcp snooping option remote-id 292
ipv6 dhcp snooping option remote-id policy 293
ipv6 dhcp snooping vlan 294
ipv6 dhcp snooping max-binding 295
ipv6 dhcp snooping trust 295
clear ipv6 dhcp snooping binding 296
clear ipv6 dhcp snooping statistics 297
show ipv6 dhcp snooping 297
show ipv6 dhcp snooping binding 297
show ipv6 dhcp snooping statistics 298
IPv4 Source Guard 298
ip source-guard binding 299
ip source-guard 301
Contents
– 15 –
ip source-guard max-binding 302
ip source-guard mode 303
clear ip source-guard binding blocked 304
show ip source-guard 304
show ip source-guard binding 305
IPv6 Source Guard 306
ipv6 source-guard binding 306
ipv6 source-guard 308
ipv6 source-guard max-binding 309
show ipv6 source-guard 310
show ipv6 source-guard binding 311
IPv6 Source Guard 311
ipv6 source-guard binding 312
ipv6 source-guard 313
ipv6 source-guard max-binding 315
show ipv6 source-guard 316
show ipv6 source-guard binding 316
ARP Inspection 317
ip arp inspection 318
ip arp inspection filter 319
ip arp inspection log-buffer logs 320
ip arp inspection validate 321
ip arp inspection vlan 321
ip arp inspection limit 322
ip arp inspection trust 323
show ip arp inspection configuration 324
show ip arp inspection interface 324
show ip arp inspection log 325
show ip arp inspection statistics 325
show ip arp inspection vlan 325
Port-based Traffic Segmentation 326
traffic-segmentation 326
traffic-segmentation session 328
traffic-segmentation uplink/downlink 328
traffic-segmentation uplink-to-uplink 329
Contents
– 16 –
show traffic-segmentation 330
10 Access Control Lists 331
IPv4 ACLs 331
access-list ip 332
permit, deny (Standard IP ACL) 333
permit, deny (Extended IPv4 ACL) 334
ip access-group 336
show ip access-group 337
show ip access-list 337
IPv6 ACLs 338
access-list ipv6 338
permit, deny (Standard IPv6 ACL) 339
permit, deny (Extended IPv6 ACL) 340
ipv6 access-group 341
show ipv6 access-group 342
show ipv6 access-list 342
MAC ACLs 343
access-list mac 343
permit, deny (MAC ACL) 344
mac access-group 346
show mac access-group 347
show mac access-list 347
ARP ACLs 348
access-list arp 348
permit, deny (ARP ACL) 349
show access-list arp 350
show arp access-list 350
ACL Information 351
clear access-list hardware counters 351
show access-group 352
show access-list 352
11 Interface Commands 355
Interface Configuration 356
interface 356
Contents
– 17 –
description 357
flowcontrol 357
history 358
media-type 359
shutdown 359
switchport mtu 360
clear counters 361
hardware profile portmode 362
show hardware profile portmode 363
show interfaces brief 363
show interfaces counters 364
show interfaces history 368
show interfaces status 371
show interfaces switchport 372
Transceiver Threshold Configuration 373
transceiver-threshold-auto 373
transceiver-monitor 373
transceiver-threshold current 374
transceiver-threshold rx-power 375
transceiver-threshold temperature 376
transceiver-threshold tx-power 377
transceiver-threshold voltage 378
show interfaces transceiver 379
show interfaces transceiver-threshold 381
Cable Diagnostics 382
test loop internal 382
show loop internal 382
12 Link Aggregation Commands 385
Manual Configuration Commands 387
port channel load-balance 387
channel-group 388
Dynamic Configuration Commands 389
lacp 389
lacp admin-key (Ethernet Interface) 390
Contents
– 18 –
lacp port-priority 391
lacp system-priority 392
lacp admin-key (Port Channel) 393
lacp timeout 394
Trunk Status Display Commands 395
show lacp 395
show port-channel load-balance 399
MLAG Commands 399
mlag 400
mlag peer-link 401
mlag group member 401
show mlag 403
show mlag domain 403
13 Port Mirroring Commands 405
Local Port Mirroring Commands 405
port monitor 405
show port monitor 406
RSPAN Mirroring Commands 407
rspan source 409
rspan destination 410
rspan remote vlan 411
no rspan session 412
show rspan 412
14 Congestion Control Commands 415
Rate Limit Commands 415
rate-limit 416
Storm Control Commands 417
switchport packet-rate 417
15 Loopback Detection Commands 419
loopback-detection 420
loopback-detection action 420
loopback-detection recover-time 421
loopback-detection transmit-interval 422
Contents
– 19 –
loopback detection trap 422
loopback-detection release 423
show loopback-detection 424
16 UniDirectional Link Detection Commands 425
udld detection-interval 425
udld message-interval 426
udld recovery 427
udld recovery-interval 427
udld aggressive 428
udld port 429
show udld 430
17 Address Table Commands 433
mac-address-table aging-time 433
mac-address-table static 434
clear mac-address-table dynamic 435
show mac-address-table 435
show mac-address-table aging-time 436
show mac-address-table count 437
18 Spanning Tree Commands 439
spanning-tree 440
spanning-tree forward-time 441
spanning-tree hello-time 441
spanning-tree max-age 442
spanning-tree mode 443
spanning-tree pathcost method 444
spanning-tree priority 445
spanning-tree mst configuration 445
spanning-tree transmission-limit 446
max-hops 446
mst priority 447
mst vlan 448
name 448
revision 449
Contents
– 20 –
spanning-tree bpdu-filter 450
spanning-tree bpdu-guard 450
spanning-tree cost 451
spanning-tree edge-port 453
spanning-tree link-type 454
spanning-tree mst cost 455
spanning-tree mst port-priority 456
spanning-tree port-priority 456
spanning-tree root-guard 457
spanning-tree spanning-disabled 458
spanning-tree tc-prop-stop 458
spanning-tree protocol-migration 459
show spanning-tree 460
show spanning-tree mst configuration 461
19 VLAN Commands 463
Editing VLAN Groups 464
vlan database 464
vlan 465
Configuring VLAN Interfaces 466
interface vlan 466
switchport acceptable-frame-types 467
switchport allowed vlan 468
switchport forbidden vlan 469
switchport ingress-filtering 470
switchport mode 470
switchport native vlan 471
vlan-trunking 472
Displaying VLAN Information 474
show vlan 474
Configuring IEEE 802.1Q Tunneling 475
dot1q-tunnel system-tunnel-control 476
dot1q-tunnel tpid 477
switchport dot1q-tunnel mode 478
switchport dot1q-tunnel priority map 479
/
