Page is loading ...
CLI Reference Guide
www.edge-core.com
ECS4530-54CSFP
Software Release
v1.0.3.193
CLI Reference Guide
ECS4530-54CSFP
Gigabit Ethernet Switch
with 44 1000BASE CSFP ports
4 1000BASE combo (CSFP + GE) ports
4 10GBASE SFP+ ports
and 20GBASE QSFP+ ports
E112019-MR-R01
– 3 –
How to Use This Guide
This guide includes detailed information on the switch software, including how to
operate and use the management functions of the switch. To deploy this switch
effectively and ensure trouble-free operation, you should first read the relevant
sections in this guide so that you are familiar with all of its software features.
Who Should Read This
Guide?
This guide is for network administrators who are responsible for operating and
maintaining network equipment. The guide assumes a basic working knowledge of
LANs (Local Area Networks), the Internet Protocol (IP), and Simple Network
Management Protocol (SNMP).
How This Guide is
Organized
This guide describes the switch’s command line interface (CLI). For more detailed
information on the switch’s key features or information about the web browser
management interface refer to the Web Management Guide.
The guide includes these sections:
◆ Section I “Getting Started” — Includes information on initial configuration.
◆ Section II “Command Line Interface” — Includes all management options
available through the CLI.
◆ Section III “Appendices” — Includes information on troubleshooting switch
management access.
Related
Documentation
This guide focuses on switch software configuration through the CLI.
For information on how to manage the switch through the Web management
interface, see the following guide:
Web Management Guide
For information on how to install the switch, see the following guide:
Quick Start Guide
For all safety information and regulatory statements, see the following documents:
Quick Start Guide
Safety and Regulatory Information
How to Use This Guide
– 4 –
Conventions The following conventions are used throughout this guide to show information:
Note:
Emphasizes important information or calls your attention to related features
or instructions.
Caution:
Alerts you to a potential hazard that could cause loss of data, or damage
the system or equipment.
Documentation
Notice
This documentation is provided for general information purposes only. If any
product feature details in this documentation conflict with the product datasheet,
refer to the datasheet for the latest information.
Revision History This section summarizes the changes in each revision of this guide.
Revision Date Change Description
v1.0.3.193 11/2019 Initial release
– 5 –
Contents
How to Use This Guide 3
Contents 5
Tables 37
Section I Getting Started 43
1 Initial Switch Configuration 45
Connecting to the Switch 45
Configuration Options 45
Connecting to the Console Port 46
Logging Onto the Command Line Interface 47
Setting Passwords 47
Remote Connections 48
Configuring the Switch for Remote Management 49
Using the Craft Port or Network Interface 49
Setting an IP Address 49
Enabling SNMP Management Access 55
Managing System Files 57
Upgrading the Operation Code 58
Saving or Restoring Configuration Settings 58
Automatic Installation of Operation Code and Configuration Settings 60
Downloading Operation Code from a File Server 60
Specifying a DHCP Client Identifier 63
Downloading a Configuration File and Other Parameters from a DHCP Server 64
Setting the System Clock 66
Setting the Time Manually 66
Configuring SNTP 67
Configuring NTP 67
Contents
– 6 –
Section II Command Line Interface 69
2 Using the Command Line Interface 71
Accessing the CLI 71
Console Connection 71
Telnet Connection 72
Entering Commands 73
Keywords and Arguments 73
Minimum Abbreviation 73
Command Completion 73
Getting Help on Commands 74
Partial Keyword Lookup 76
Negating the Effect of Commands 76
Using Command History 76
Understanding Command Modes 76
Exec Commands 77
Configuration Commands 78
Command Line Processing 79
Showing Status Information 80
CLI Command Groups 81
3 General Commands 83
prompt 83
reload (Global Configuration) 84
enable 85
quit 86
show history 86
configure 87
disable 88
reload (Privileged Exec) 88
show reload 89
end 89
exit 89
4 System Management Commands 91
Contents
– 7 –
Device Designation 91
hostname 92
Banner Information 92
banner configure 93
banner configure company 94
banner configure dc-power-info 95
banner configure department 95
banner configure equipment-info 96
banner configure equipment-location 97
banner configure ip-lan 97
banner configure lp-number 98
banner configure manager-info 99
banner configure mux 99
banner configure note 100
show banner 101
System Status 101
show access-list tcam-utilization 102
show memory 103
show process cpu 104
show process cpu guard 104
show process cpu task 105
show running-config 107
show startup-config 108
show system 109
show tech-support 110
show users 111
show version 112
show watchdog 112
watchdog software 113
Frame Size 113
jumbo frame 113
File Management 114
General Commands 115
boot system 115
copy 116
Contents
– 8 –
delete 120
dir 121
umount 122
whichboot 122
Automatic Code Upgrade Commands 123
upgrade opcode auto 123
upgrade opcode path 124
upgrade opcode reload 125
show upgrade 126
TFTP Configuration Commands 126
ip tftp retry 126
ip tftp timeout 127
show ip tftp 127
Line 128
line 129
databits 129
exec-timeout 130
login 131
parity 132
password 132
password-thresh 133
silent-time 134
speed 135
stopbits 135
timeout login response 136
disconnect 136
terminal 137
show line 138
Event Logging 139
logging command 139
logging facility 140
logging history 140
logging host 141
logging level 142
logging on 142
Contents
– 9 –
logging trap 143
clear log 144
show log 144
show logging 145
SMTP Alerts 147
logging sendmail 147
logging sendmail destination-email 147
logging sendmail host 148
logging sendmail level 149
logging sendmail source-email 149
show logging sendmail 150
Time 150
SNTP Commands 151
sntp client 151
sntp poll 152
sntp server 153
show sntp 153
NTP Commands 154
ntp authenticate 154
ntp authentication-key 155
ntp client 156
ntp server 156
show ntp 157
show ntp status 158
show ntp statistics peer 158
show ntp peer-status 159
Manual Configuration Commands 159
clock summer-time (date) 159
clock summer-time (predefined) 161
clock summer-time (recurring) 162
clock timezone 163
calendar set 164
show calendar 165
Time Range 165
time-range 165
Contents
– 10 –
absolute 166
periodic 167
show time-range 168
5 SNMP Commands 169
General SNMP Commands 171
snmp-server 171
snmp-server community 171
snmp-server contact 172
snmp-server location 173
show snmp 173
SNMP Target Host Commands 174
snmp-server enable traps 174
snmp-server host 175
snmp-server enable port-traps link-up-down 177
snmp-server enable port-traps mac-notification 178
show snmp-server enable port-traps 178
SNMPv3 Commands 179
snmp-server engine-id 179
snmp-server group 180
snmp-server user 181
snmp-server view 183
show snmp engine-id 184
show snmp group 185
show snmp user 186
show snmp view 187
Notification Log Commands 187
nlm 187
snmp-server notify-filter 188
show nlm oper-status 190
show snmp notify-filter 190
Additional Trap Commands 190
memory 190
process cpu 191
process cpu guard 192
Contents
– 11 –
6 Remote Monitoring Commands 195
rmon alarm 196
rmon event 197
rmon collection history 198
rmon collection rmon1 199
show rmon alarms 200
show rmon events 200
show rmon history 201
show rmon statistics 201
7 Flow Sampling Commands 203
sflow owner 204
sflow polling instance 205
sflow sampling instance 206
show sflow 207
8 Authentication Commands 209
User Accounts and Privilege Levels 210
enable password 210
username 211
privilege 213
show privilege 213
Authentication Sequence 214
authentication enable 214
authentication login 215
RADIUS Client 216
radius-server acct-port 216
radius-server auth-port 217
radius-server host 217
radius-server key 218
radius-server encrypted-key 219
radius-server retransmit 219
radius-server timeout 220
show radius-server 220
TACACS+ Client 221
tacacs-server host 221
Contents
– 12 –
tacacs-server key 222
tacacs-server encrypted-key 223
tacacs-server port 223
tacacs-server retransmit 224
tacacs-server timeout 224
show tacacs-server 225
AAA 225
aaa accounting commands 226
aaa accounting dot1x 227
aaa accounting exec 228
aaa accounting update 229
aaa authorization commands 229
aaa authorization exec 230
aaa group server 231
server 231
accounting dot1x 232
accounting commands 232
accounting exec 233
authorization commands 234
authorization exec 234
show accounting 235
show authorization 236
Web Server 237
ip http authentication 237
ip http port 238
ip http server 238
ip http secure-port 239
ip http secure-server 239
Telnet Server 241
ip telnet max-sessions 241
ip telnet port 242
ip telnet server 242
telnet (client) 242
show ip telnet 243
Secure Shell 243
Contents
– 13 –
ip ssh authentication-retries 246
ip ssh server 246
ip ssh timeout 247
delete public-key 248
ip ssh crypto host-key generate 248
ip ssh crypto zeroize 249
ip ssh save host-key 250
show ip ssh 250
show public-key 250
show ssh 251
802.1X Port Authentication 252
General Commands 253
dot1x default 253
dot1x eapol-pass-through 254
dot1x system-auth-control 254
Authenticator Commands 255
dot1x intrusion-action 255
dot1x max-reauth-req 255
dot1x max-req 256
dot1x operation-mode 257
dot1x port-control 258
dot1x re-authentication 258
dot1x timeout quiet-period 259
dot1x timeout re-authperiod 259
dot1x timeout supp-timeout 260
dot1x timeout tx-period 260
dot1x re-authenticate 261
Supplicant Commands 262
dot1x identity profile 262
dot1x max-start 262
dot1x pae supplicant 263
dot1x timeout auth-period 264
dot1x timeout held-period 264
dot1x timeout start-period 265
Contents
– 14 –
Information Display Commands 265
show dot1x 265
Management IP Filter 268
management 268
show management 269
PPPoE Intermediate Agent 270
pppoe intermediate-agent 270
pppoe intermediate-agent format-type 271
pppoe intermediate-agent port-enable 272
pppoe intermediate-agent port-format-type 273
pppoe intermediate-agent port-format-type remote-id-delimiter 274
pppoe intermediate-agent trust 275
pppoe intermediate-agent vendor-tag strip 275
clear pppoe intermediate-agent statistics 276
show pppoe intermediate-agent info 276
show pppoe intermediate-agent statistics 277
9 General Security Measures 279
Port Security 280
mac-learning 280
port security 281
port security mac-address sticky 283
port security mac-address-as-permanent 284
show port security 284
Network Access (MAC Address Authentication) 286
network-access aging 287
network-access mac-filter 288
mac-authentication reauth-time 289
network-access dynamic-qos 289
network-access dynamic-vlan 291
network-access guest-vlan 292
network-access link-detection 292
network-access link-detection link-down 293
network-access link-detection link-up 293
network-access link-detection link-up-down 294
Contents
– 15 –
network-access max-mac-count 295
network-access mode mac-authentication 295
network-access port-mac-filter 296
mac-authentication intrusion-action 297
mac-authentication max-mac-count 297
clear network-access 298
show network-access 298
show network-access mac-address-table 299
show network-access mac-filter 300
Web Authentication 301
web-auth login-attempts 302
web-auth quiet-period 302
web-auth session-timeout 303
web-auth system-auth-control 303
web-auth 304
web-auth re-authenticate (Port) 304
web-auth re-authenticate (IP) 305
show web-auth 305
show web-auth interface 306
show web-auth summary 306
DHCPv4 Snooping 307
ip dhcp snooping 308
ip dhcp snooping information option 310
ip dhcp snooping information option encode no-subtype 311
ip dhcp snooping information option remote-id 312
ip dhcp snooping information option tr101 board-id 314
ip dhcp snooping information policy 314
ip dhcp snooping verify mac-address 315
ip dhcp snooping vlan 316
ip dhcp snooping information option circuit-id 317
ip dhcp snooping max-number 318
ip dhcp snooping trust 319
clear ip dhcp snooping binding 320
clear ip dhcp snooping database flash 320
ip dhcp snooping database flash 320
Contents
– 16 –
show ip dhcp snooping 321
show ip dhcp snooping binding 321
DHCPv6 Snooping 322
ipv6 dhcp snooping 322
ipv6 dhcp snooping option remote-id 325
ipv6 dhcp snooping option remote-id policy 326
ipv6 dhcp snooping vlan 327
ipv6 dhcp snooping max-binding 328
ipv6 dhcp snooping trust 328
clear ipv6 dhcp snooping binding 329
clear ipv6 dhcp snooping statistics 330
show ipv6 dhcp snooping 330
show ipv6 dhcp snooping binding 330
show ipv6 dhcp snooping statistics 331
IPv4 Source Guard 331
ip source-guard binding 332
ip source-guard 334
ip source-guard max-binding 335
ip source-guard mode 336
clear ip source-guard binding blocked 337
show ip source-guard 337
show ip source-guard binding 338
IPv6 Source Guard 339
ipv6 source-guard binding 339
ipv6 source-guard 341
ipv6 source-guard max-binding 342
show ipv6 source-guard 343
show ipv6 source-guard binding 344
ARP Inspection 344
ip arp inspection 345
ip arp inspection filter 346
ip arp inspection log-buffer logs 347
ip arp inspection validate 348
ip arp inspection vlan 349
ip arp inspection limit 350
Contents
– 17 –
ip arp inspection trust 350
show ip arp inspection configuration 351
show ip arp inspection interface 351
show ip arp inspection log 352
show ip arp inspection statistics 352
show ip arp inspection vlan 353
Denial of Service Protection 353
dos-protection echo-chargen 354
dos-protection land 354
dos-protection smurf 355
dos-protection tcp-flooding 355
dos-protection tcp-null-scan 356
dos-protection tcp-syn-fin-scan 356
dos-protection tcp-udp-port-zero 357
dos-protection tcp-xmas-scan 357
dos-protection udp-flooding 358
dos-protection win-nuke 358
show dos-protection 359
Port-based Traffic Segmentation 359
traffic-segmentation 360
traffic-segmentation session 361
traffic-segmentation uplink/downlink 362
traffic-segmentation uplink-to-uplink 363
show traffic-segmentation 364
10 Access Control Lists 365
IPv4 ACLs 365
access-list ip 366
permit, deny (Standard IP ACL) 366
permit, deny (Extended IPv4 ACL) 367
ip access-group 370
show ip access-group 371
show ip access-list 371
IPv6 ACLs 372
access-list ipv6 372
Contents
– 18 –
permit, deny (Standard IPv6 ACL) 373
permit, deny (Extended IPv6 ACL) 374
ipv6 access-group 376
show ipv6 access-group 377
show ipv6 access-list 377
MAC ACLs 378
access-list mac 378
permit, deny (MAC ACL) 379
mac access-group 383
show mac access-group 383
show mac access-list 384
ARP ACLs 384
access-list arp 384
permit, deny (ARP ACL) 385
show access-list arp 386
ACL Information 387
clear access-list hardware counters 387
show access-group 388
show access-list 388
11 Interface Commands 391
Interface Configuration 392
interface 392
alias 393
description 394
discard 394
flowcontrol 395
history 396
media-type 396
shutdown 397
speed-duplex 398
clear counters 399
show discard 399
show interfaces brief 400
show interfaces counters 400
Contents
– 19 –
show interfaces history 404
show interfaces status 406
show interfaces switchport 407
Transceiver Threshold Configuration 409
transceiver-monitor 409
transceiver-threshold-auto 409
transceiver-threshold current 410
transceiver-threshold rx-power 411
transceiver-threshold temperature 412
transceiver-threshold tx-power 413
transceiver-threshold voltage 414
show interfaces transceiver 415
show interfaces transceiver-threshold 416
Cable Diagnostics 417
test cable-diagnostics 417
test loop internal 418
show cable-diagnostics 419
show loop internal 420
12 Link Aggregation Commands 421
Manual Configuration Commands 423
port-channel load-balance 423
channel-group 424
Dynamic Configuration Commands 425
lacp 425
lacp actor/partner mode (Ethernet Interface) 426
lacp admin-key (Ethernet Interface) 427
lacp port-priority 428
lacp system-priority 429
lacp admin-key (Port Channel) 430
lacp timeout 430
Trunk Status Display Commands 431
show lacp 431
show port-channel load-balance 435
Contents
– 20 –
MLAG Commands 435
mlag 436
mlag domain peer-link 436
mlag group member 437
show mlag 438
show mlag group 438
show mlag domain 439
13 Port Mirroring Commands 441
Local Port Mirroring Commands 441
port monitor 441
show port monitor 443
RSPAN Mirroring Commands 444
rspan source 446
rspan destination 447
rspan remote vlan 448
no rspan session 449
show rspan 450
14 Congestion Control Commands 451
Rate Limit Commands 451
rate-limit 452
Storm Control Commands 453
switchport packet-rate 453
Automatic Traffic Control Commands 454
Threshold Commands 457
auto-traffic-control apply-timer 457
auto-traffic-control release-timer 458
auto-traffic-control 459
auto-traffic-control action 459
auto-traffic-control alarm-clear-threshold 460
auto-traffic-control alarm-fire-threshold 461
auto-traffic-control auto-control-release 462
auto-traffic-control control-release 463
SNMP Trap Commands 463
snmp-server enable port-traps atc broadcast-alarm-clear 463
/