Page 1 CLI Manual DGS-3612G Product Model: Layer 3 Gigabit Ethernet Managed Switch Release 1...
Page 2: Table Of Contents
Table of Contents INTRODUCTION ................................1 USING THE CONSOLE CLI............................3 COMMAND SYNTAX ..............................7 BASIC SWITCH COMMANDS.............................9 SWITCH PORT COMMANDS ............................21 PORT SECURITY COMMANDS ..........................24 NETWORK MANAGEMENT (SNMP) COMMANDS ....................27 SWITCH UTILITY COMMANDS (INCLUDING FILE SYSTEM COMMANDS) ............46 NETWORK MONITORING COMMANDS ........................59 MULTIPLE SPANNING TREE PROTOCOL (MSTP) COMMANDS .................71 FORWARDING DATABASE COMMANDS.......................83 BROADCAST STORM CONTROL COMMANDS .....................90...
Page 3 IP MULTICASTING COMMANDS..........................247 MD5 COMMANDS..............................249 OSPF CONFIGURATION COMMANDS........................251 ROUTE PREFERENCE COMMANDS ........................268 MAC NOTIFICATION COMMANDS ........................271 ACCESS AUTHENTICATION CONTROL COMMANDS ..................275 SSH COMMANDS..............................295 SSL COMMANDS ..............................302 JUMBO FRAME COMMANDS ..........................307 D-LINK SINGLE IP MANAGEMENT COMMANDS....................309 COMMAND HISTORY LIST.............................319 TECHNICAL SPECIFICATIONS..........................322...
Page 4: Introduction
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual INTRODUCTION The DGS-3612G is a member of the D-Link xStack switch family. xStack is a complete family of stackable devices that ranges from edge 10/100Mbps switches to core Gigabit switches. xStack provides unsurpassed performance, fault tolerance, scalable flexibility, robust security, standard-based interoperability and an impressive support for 10Gigabit technology to future-proof departmental and enterprise network deployments with an easy migration path.
Page 5 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Figure 1-2. Boot Screen The Switch’s MAC address can also be found in the Web management program on the Switch Information (Basic Settings) window on the Configuration menu. The IP address for the Switch must be set before it can be managed with the Web-based manager. The Switch IP address can be automatically set using BOOTP or DHCP protocols, in which case the actual address assigned to the Switch must be known.
Page 6: Using The Console Cli
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual SING THE ONSOLE The Switch supports a console management interface that allows the user to connect to the Switch’s management agent via a serial port and a terminal or a computer running a terminal emulation program. The console can also be used over the network using the TCP/IP Telnet protocol.
Page 7 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Figure 2- 2. The ? Command When users enter a command without its required parameters, the CLI will prompt a Next possible completions: message. Figure 2- 3. Example Command Parameter Help In this case, the command config account was entered with the parameter <username>.
Page 8 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Figure 2- 4. Using the Up Arrow to Re-enter a Command In the above example, the command config account was entered without the required parameter <username>, the CLI returned the Next possible completions: <username>...
Page 9 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Figure 2- 6. Next possible completions: Show Command In the above example, all of the possible next parameters for the show command are displayed.
Page 10: Command Syntax
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual OMMAND YNTAX The following symbols are used to describe how command entries are made and values and arguments are specified in this manual. The online help contained in the CLI and available through the console interface uses the same syntax.
Page 11 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual {braces} Purpose Encloses an optional value or set of optional arguments. Syntax reset {[config | system]} Description In the above syntax example, users have the option to specify config or system.
Page 12: Basic Switch Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual ASIC WITCH OMMANDS The basic switch commands in the Command Line Interface (CLI) are listed (with the appropriate parameters) in the following table. Command Parameters create account [admin | user] <username 15>...
Page 13 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To create an administrator-level user account with the username “dlink”. DGS-3612G:4#create account admin dlink Command: create account admin dlink Enter a case-sensitive new password:**** Enter the new password again for confirmation:**** Success.
Page 14 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show account Command: show account Current Accounts: Username Access Level --------------- ------------ dlink Admin DGS-3612G:4# delete account Purpose Used to delete an existing user account. Syntax delete account <username> Description The delete account command deletes a user account that has been created using the create account command.
Page 15 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual show switch Purpose Used to display general information about the Switch. Syntax show switch Description This command displays general information about the Switch. Parameters None. Restrictions Only Administrator-level users can issue this command.
Page 16 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual show serial_port Purpose Used to display the current serial port settings. Syntax show serial_port Description This command displays the current serial port settings. Parameters None. Restrictions None Example usage: To display the serial port setting:...
Page 17 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#config serial_port baud_rate 115200 Command: config serial_port baud_rate 115200 Success. DGS-3612G:4# enable clipaging Purpose Used to pause the scrolling of the console screen when a command displays more than one page.
Page 18 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual enable telnet Purpose Used to enable communication with and management of the Switch using the Telnet protocol. Syntax enable telnet <tcp_port_number 1-65535> Description This command is used to enable the Telnet protocol on the Switch.
Page 19 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To enable HTTP and configure port number: DGS-3612G:4#enable web 80 Command: enable web 80 Success. DGS-3612G:4# disable web Purpose Used to disable the HTTP-based management software on the Switch.
Page 20 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual reboot Purpose Used to restart the Switch. Syntax reboot Description This command is used to restart the Switch. Parameters None. Restrictions None. Example usage: To restart the Switch: DGS-3612G:4#reboot Command: reboot Are you sure want to proceed with the system reboot? (y|n) Please wait, the switch is rebooting...
Page 21 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual login Purpose Used to log in a user to the Switch’s console. Syntax login Description This command is used to initiate the login procedure. The user will be prompted for a Username and Password.
Page 22 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config command_prompt Purpose Used to configure the command prompt for the Command Line Interface. Syntax config command_prompt [<string 16> | username | default] Description This command is used to configure the command prompt for the CLI interface of the Switch.
Page 23 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#config greeting_message Command: config greeting_message Greeting Messages Editor =============================================================================== DGS-3612G Gigabit Ethernet Switch Command Line Interface Firmware: Build 1.00.B62 Copyright(C) 2004-2007 D-Link Corporation. All rights reserved. =============================================================================== <Function Key> <Control Key>...
Page 24: Switch Port Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual WITCH OMMANDS The switch port commands in the Command Line Interface (CLI) are listed (with the appropriate parameters) in the following table. Command Parameters config ports [<portlist> | all] {medium_type [fiber | copper]} {speed [auto | 10_half | 10_full |100_half | 100_full | 1000_full {master | slave]}] | flow_control [enable | disable] | learning [enable | disable] | state [enable | disable]} | description [<desc 32>...
Page 25 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To configure the speed of port 9-10 to be 100Mbps, full duplex, with learning and state enabled: DGS-3612G:4#config ports 9-10 speed 100_full learning enable state enable Command: config ports 9-10 speed 100_full learning enable state enable Success.
Page 26 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To display the configuration of all ports on the Switch, with description: DGS-3612G:4#show ports description Command: show ports description Port Port Settings Connection Address State Speed/Duplex/FlowCtrl Speed/Duplex/FlowCtrl Learning...
Page 27: Port Security Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual ECURITY OMMANDS The Switch’s port security commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config port_security ports [<portlist> | all] {admin_state [enable| disable] | max_learning_addr <max_lock_no 0-16>...
Page 28 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#config port_security ports 1-5 admin_state enable max_learning_addr 5 lock_address_mode DeleteOnReset Command: config port_security ports 1-5 admin_state enable max_learning_addr 5 lock_address_mode DeleteOnReset Success. DGS-3612G:4# delete port_security_entry_vlan_name Used to delete a port security entry by MAC address, port number Purpose and VLAN ID.
Page 29 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4# clear port_security_entry port 6 Command: clear port_security_entry port 6 Success. DGS-3612G:4# show port_security Used to display the current port security configuration. Purpose Syntax show port_security {ports <portlist>} Description This command is used to display port security information of the Switch’s ports.
Page 30: Network Management (Snmp) Commands
The xStack DGS-3612G supports the Simple Network Management Protocol (SNMP) versions 1, 2c, and 3. After enabling SNMP, users can specify which version of SNMP to use to monitor and control the Switch. Three versions of SNMP vary in the level of security provided between the management station and the network device.
Page 31 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Command Parameters create snmp host <ipaddr> {v1 | v2c | v3 [noauth_nopriv | auth_nopriv | auth_priv]} <auth_string 32> delete snmp host <ipaddr> show snmp host <ipaddr> create trusted_host <ipaddr> delete trusted_host <ipaddr>...
Page 32 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual create snmp user auth - The user may also choose the type of authentication algorithms used to authenticate the snmp user. The choices are: md5 − Specifies that the HMAC-MD5-96 authentication level will be used.
Page 33 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual delete snmp user Purpose Used to remove an SNMP user from an SNMP group and also to delete the associated SNMP group. Syntax delete snmp user <user_name 32> Description The delete snmp user command removes an SNMP user from its SNMP group and then deletes the associated SNMP group.
Page 34 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual create snmp view Purpose Used to assign views to community strings to limit which MIB objects and SNMP manager can access. Syntax create snmp view <view_name 32> <oid> view_type [included |...
Page 35 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#delete snmp view dlinkview all Command: delete snmp view dlinkview all Success. DGS-3612G:4# show snmp view Purpose Used to display an SNMP view previously created on the Switch. Syntax show snmp view {<view_name 32>}...
Page 36 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual create snmp community Description The create snmp community command is used to create an SNMP community string and to assign access-limiting characteristics to this community string. Parameters <community_string 32> − An alphanumeric string of up to 32 characters that is used to identify members of an SNMP community.
Page 37 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual show snmp community Purpose Used to display SNMP community strings configured on the Switch. Syntax show snmp community <community_string 32> Description The show snmp community command is used to display SNMP community strings that are configured on the Switch.
Page 38 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual show snmp engineID Purpose Used to display the identification of the SNMP engine on the Switch. Syntax show snmp engineID Description The show snmp engineID command displays the identification of the SNMP engine on the Switch.
Page 39 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual create snmp group messages. write_view – Specifies that the SNMP group being created has write privileges. notify_view − Specifies that the SNMP group being created can receive SNMP trap messages generated by the Switch’s SNMP agent.
Page 40 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual show snmp groups Parameters None. Restrictions None. Example usage: To display the currently configured SNMP groups on the Switch: DGS-3612G:4#show snmp groups Command: show snmp groups Vacm Access Table Settings...
Page 41 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual create snmp host Purpose Used to create a recipient of SNMP traps generated by the Switch’s SNMP agent. Syntax create snmp host <ipaddr> [v1 | v2c | v3 [noauth_nopriv | auth_nopriv | auth_priv] <auth_string 32>]...
Page 42 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual delete snmp host Parameters <ipaddr> − The IP address of a remote SNMP manager that will receive SNMP traps generated by the Switch’s SNMP agent. Restrictions Only administrator-level users can issue this command.
Page 43 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual create trusted_host Purpose Used to create the trusted host. Syntax create trusted_host <ipaddr> Description The create trusted_host command creates the trusted host. The Switch allows specification of up to four IP addresses that are allowed to manage the Switch via in-band SNMP or TELNET based management software.
Page 44 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual delete trusted_host Purpose Used to delete a trusted host entry made using the create trusted_host command above. Syntax delete trusted _host <ipaddr> Description This command is used to delete a trusted host entry made using the create trusted_host command above.
Page 45 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#enable snmp authenticate traps Command: enable snmp authenticate traps Success. DGS-3612G:4# show snmp traps Purpose Used to show SNMP trap support on the Switch . Syntax show snmp traps Description This command is used to view the SNMP trap support status currently configured on the Switch.
Page 46 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual disable snmp authenticate traps Purpose Used to disable SNMP authentication trap support. Syntax disable snmp authenticate traps Description This command is used to disable SNMP authentication support on the Switch.
Page 47 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To configure the Switch location for “HQ 5F”: DGS-3612G:4#config snmp system_location HQ 5F Command: config snmp system_location HQ 5F Success. DGS-3612G:4# config snmp system_name Purpose Used to configure the name for the Switch.
Page 48 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual disable rmon Purpose Used to disable RMON on the Switch. Syntax disable rmon Description This command is used, in conjunction with the enable rmon command above, to enable and disable remote monitoring (RMON) on the Switch.
Page 49: Switch Utility Commands (Including File System Commands)
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual WITCH TILITY OMMANDS NCLUDING YSTEM OMMANDS The download/upload commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters download [firmware_fromTFTP <ipaddr> <path_filename 64> {<path_filename 64>} | config_fromTFTP <ipaddr>...
Page 50 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual download exceed 64 alphanumeric characters. config_fromTFTP − Download and install a configuration file on the Switch from a TFTP server. • <ipaddr> − The IP address of the TFTP server.
Page 51 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4# download firmware_fromTFTP 10.53.13.201 c:/3612Gfirm.had c:/firm1 Command: download firmware_fromTFTP 10.53.13.201 c:/3612Gfirm.had c:/firm1 Connecting to server…………………………..Done. Download firmware…………………………….Done. Do not power off! Upload file to FLASH…………………………..Done. DGS-3612G:4# upload Purpose Used to upload a configuration file or log file to a TFTP server or to the internal FLASH memory.
Page 52 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual To upload a configuration file saved in the FLASH memory of the Switch to the TFTP server. DGS-3612G:4# upload cfg_toTFTP 10.53.13.3 c:/3612g.cfg c:/startup.cfg Command: upload cfg_toTFTP 10.53.13.3 c:/3612g.cfg c:/startup.cfg Connecting to server…………………………..Done.
Page 53 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual show configuration 1. Basic (serial port, Telnet and web 21. SNTP management status) 22. LACP 2. Storm control 23. IP 3. IP group management (Single 24. IGMP snooping 25. MLD Snooping 4.
Page 54 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show configuration current_config Command: show configuration current_config #----------------------------------------------------------------------------------------------- DGS-3612G Gigabit Ethernet Switch Configuration Firmware: Build 1.00-B62 Copyright(C) 2004-2007 D-Link Corporation. All rights reserved. #----------------------------------------------------------------------------------------------- # BASIC config serial_port baud_rate 9600 auto_logout 10_minutes...
Page 55 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual erase Purpose Used to delete a file located on the internal FLASH memory of the Switch. Syntax erase <path_filename 64> Description This command is used to erase a file located on the internal FLASH memory of the Switch.
Page 56 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Restrictions Only administrator-level users can issue this command. Example usage: To view the directory files on the internal FLASH drive: DGS-3612G:4#dir c: Command: dir c: Current Directory: C:\ File name...
Page 57 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual show storage_media_info Purpose Used to view FLASH memory information on the Switch. Syntax show storage_media_info Description This command will display information regarding the internal FLASH memory of the Switch. This command will display the following information: Drive: The name of the drive of the storage media accessory.
Page 58 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#ping 10.48.74.121 times 4 Command: ping 10.48.74.121 Reply from 10.48.74.121, time<10ms Reply from 10.48.74.121, time<10ms Reply from 10.48.74.121, time<10ms Reply from 10.48.74.121, time<10ms Ping statistics for 10.48.74.121 Packets: Sent =4, Received =4, Lost =0...
Page 59 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual enable autoconfig Description When autoconfig is enabled on the Switch, the DHCP reply will contain a configuration file and path name. It will then request the file from the TFTP server specified in the reply. When autoconfig is enabled, the ipif settings will automatically become DHCP client.
Page 60 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G Gigabit Ethernet Switch Command Line Interface Firmware: Build 1.00-B62 Copyright(C) 2004-2007 D-Link Corporation. All rights reserved. DGS-3612G:4#download configuration 10.41.44.44 c:\cfg\setting.txt Command: download configuration 10.41.44.44 c:\cfg\setting.txt Connecting to server....Done.
Page 61 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#disable autoconfig Command: disable autoconfig Success. DGS-3612G:4# show autoconfig Purpose Used to display the current autoconfig status of the Switch. Syntax show autoconfig Description This will list the current status of the autoconfiguration function.
Page 62: Network Monitoring Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual ETWORK ONITORING OMMANDS The network monitoring commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters show packet ports <portlist>...
Page 63 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show packet ports 2 Command: show packet ports 2 Port number : 2 ================================================================ Frame Size/Type Frame Counts Frames/sec ------------ -------------------- ------------------- 3275 65-127 128-255 256-511 512-1023 1024-1518 Unicast RX...
Page 64 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual show utilization Purpose Used to display real-time port and cpu utilization statistics. Syntax show utilization [ports |cpu] Description This command will display the real-time port and CPU utilization statistics for the Switch.
Page 65 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To clear the counters: DGS-3612G:4#clear counters ports 2-9 Command: clear counters ports 2-9 Success. DGS-3612G:4# clear log Purpose Used to clear the Switch’s history log. Syntax clear log Description This command will clear the Switch’s history log.
Page 66 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual enable syslog Purpose Used to enable the system log to be sent to a remote host. Syntax enable syslog Description The enable syslog command enables the system log to be sent to a remote host.
Page 67 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show syslog Command: show syslog Syslog Global State: Enabled DGS-3612G:4# create syslog host Purpose Used to create a new syslog host. Syntax create syslog host <index 1-4> {severity [informational | warning | all] | facility [local0 | local1 | local2 | local3 | local4 | local5 | local6 | local7] | udp_port <udp_port_number>...
Page 68 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual create syslog host security/authorization messages FTP daemon NTP subsystem log audit log alert clock daemon local use 0 (local0) local use 1 (local1) local use 2 (local2) local use 3 (local3)
Page 69 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config syslog host Purpose Used to configure the syslog protocol to send system log data to a remote host. Syntax config syslog host [all | <index 1-4>] {severity [informational | warning | all] | facility [local0 | local1 | local2 | local3 | local4 | local5 | local6 | local7] | udp_port <udp_port_number>...
Page 70 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config syslog host Numerical Facility Code kernel messages user-level messages mail system system daemons security/authorization messages messages generated internally by syslog line printer subsystem network news subsystem UUCP subsystem clock daemon...
Page 71 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To configure a syslog host for all hosts: DGS-3612G:4#config syslog host all severity all facility local0 Command: config syslog host all severity all facility local0 Success. DGS-3612G:4# delete syslog host...
Page 72 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show syslog host Command: show syslog host Syslog Global State: Disabled Host Id Host IP Address Severity Facility UDP port Status ------- --------------- -------------- -------- -------- -------- 10.1.1.2 Local0 Disabled 10.40.2.3...
Page 73 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual To configure the system severity settings for critical traps only: DGS-3612G:4#config system_severity trap critical Command: config system_severity trap critical Success. DGS-3612G:4# show system_severity Purpose Used to display the log and trap information regarding the system severity on the Switch.
Page 74: Multiple Spanning Tree Protocol (Mstp) Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual (MSTP) C ULTIPLE PANNING ROTOCOL OMMANDS This Switch supports three versions of the Spanning Tree Protocol; 802.1d STP, 802.1w Rapid STP and 802.1s MSTP. Multiple Spanning Tree Protocol, or MSTP, is a standard defined by the IEEE community that allows multiple VLANs to be mapped to a single spanning tree instance, which will provide multiple pathways across the network.
Page 75 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Command Parameters show stp show stp ports {<portlist>} show stp instance_id {<value 0-15>} show stp mst_config id Each command is listed, in detail, in the following sections. enable stp Purpose Used to globally enable STP on the Switch.
Page 76 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config stp version Description This command allows the user to choose the version of the spanning tree to be implemented on the Switch. Parameters mstp – Selecting this parameter will set the Multiple Spanning Tree Protocol (MSTP) globally on the Switch.
Page 77 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config stp switches utilizing the Multiple Spanning Tree Protocol. forwarddelay <value 4-30> − The maximum amount of time (in seconds) that the root device will wait before changing states. The user may choose a time between 4 and 30 seconds.
Page 78 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config stp ports probability the port will be chosen to forward packets. hellotime <value 1-10> − The time interval between transmission of configuration messages by the designated port, to other devices on the bridged LAN, thus stating that the Switch is still functioning.
Page 79 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual create stp instance_id Purpose Used to create a STP instance ID for MSTP. Syntax create stp instance_id <value 1-15> Description This command allows the user to create a STP instance ID for the Multiple Spanning Tree Protocol.
Page 80 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#config stp instance_id 2 add_vlan 10 Command : config stp instance_id 2 add_vlan 10 Success. DGS-3612G:4# Example usage: To remove VID 10 from instance ID 2: DGS-3612G:4#config stp instance_id 2 remove_vlan 10 Command : config stp instance_id 2 remove_vlan 10 Success.
Page 81 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config stp priority Restrictions Only administrator-level users can issue this command. Example usage: To set the priority value for instance_id 2 as 4096: DGS-3612G:4#config stp priority 4096 instance_id 2 Command : config stp priority 4096 instance_id 2 Success.
Page 82 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config stp mst_ports blocked. Remember that lower priority values mean higher priorities for forwarding packets. Parameters <portlist> - Specifies a range of ports to be configured. The beginning and end of the port list range are separated by a dash. For example, 1-4 specifies all of the ports between port 1 and port 4.
Page 83 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Status 1: STP enabled with STP compatible version DGS-3612G:4#show stp Command: show stp STP Status : Enabled STP Version : STP Compatible Max Age : 20 Hello Time Forward Delay...
Page 84 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual show stp ports Purpose Used to display the Switch’s current instance_id configuration. Syntax show stp ports <portlist> Description This command displays the STP Instance Settings and STP Instance Operational Status currently implemented on the Switch.
Page 85 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show stp instance_id 0 Command: show stp instance_id 0 STP Instance Settings --------------------------- Instance Type : CIST Instance Status : Enabled Instance Priority : 32768(bridge priority : 32768, sys ID ext : 0 )
Page 86: Forwarding Database Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual ORWARDING ATABASE OMMANDS The layer 2 forwarding database commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters create fdb <vlan_name 32>...
Page 87 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#create fdb default 00-00-00-00-01-02 port 5 Command: create fdb default 00-00-00-00-01-02 port 5 Success. DGS-3612G:4# create multicast_fdb Purpose Used to create a static entry to the multicast MAC address forwarding table (database) Syntax create multicast_fdb <vlan_name 32>...
Page 88 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#config multicast_fdb default 01-00-00-00-00-01 add 1-5 Command: config multicast_fdb default 01-00-00-00-00-01 add 1-5 Success. DGS-3612G:4# config fdb aging_time Purpose Used to set the aging time of the forwarding database. Syntax config fdb aging_time <sec 10-1000000>...
Page 89 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#delete fdb default 00-00-00-00-01-02 Command: delete fdb default 00-00-00-00-01-02 Success. DGS-3612G:4# Example usage: To delete a multicast FDB entry: DGS-3612G:4#delete fdb default 01-00-00-00-01-02 Command: delete fdb default 01-00-00-00-01-02 Success. DGS-3612G:4#...
Page 90 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To display multicast MAC address table: DGS-3612G:4#show multicast_fdb vlan default Command: show multicast_fdb vlan default VLAN Name : default MAC Address : 01-00-5E-00-00-00 Egress Ports : 1-5 Mode...
Page 91 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show fdb Command: show fdb Unicast MAC Address Aging Time = 300 VID VLAN Name MAC Address Port Type ---- ---------------- ----------------- ------ ---------------- default 00-00-39-34-66-9A Dynamic default 00-00-51-43-70-00 Dynamic...
Page 92 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config multicast filtering_mode Purpose Used to configure the multicast packet filtering mode for specific VLANs . Syntax config multicast filtering_mode [<vlan_name 32> | all] [forward_all_groups | forward_unregistered_groups | filter_unregistered_groups] Description This command will configure the multicast packet filtering mode for specified VLANs on the Switch.
Page 93: Broadcast Storm Control Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual ROADCAST TORM ONTROL OMMANDS On a computer network, packets such as Multicast packets and Broadcast packets continually flood the network as normal procedure. At times, this traffic may increase do to a malicious endstation on the network or a malfunctioning device, such as a faulty network card.
Page 94 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config traffic control • shutdown - Utilizes the Switch’s software Traffic Control mechanism to determine the Packet Storm occurring. Once detected, the port will deny all incoming traffic to the port except STP BPDU packets, which are essential in keeping the Spanning Tree operational on the Switch.
Page 95 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config traffic control_recover Purpose Used to configure traffic control recover for any or all ports. Syntax config traffic control_recover [<portlist> | all] Description Configuring a port for traffic control recover will require an administrator to restart the specified ports if storm control shuts down the port or ports.
Page 96 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual show traffic control Purpose Used to display current traffic control settings. Syntax show traffic control {<portlist>} Description This command displays the current storm traffic control configuration on the Switch. Parameters <portlist>...
Page 97: Qos Commands
OMMANDS The xStack DGS-3612G supports 802.1p priority queuing. The Switch has seven configurable priority queues. These priority queues are numbered from 6 (Class 6) — the highest priority queue — to 0 (Class 0) — the lowest priority queue. The eight priority tags specified in IEEE 802.1p (p0 to p7) are mapped to the Switch’s priority queues as follows:...
Page 98 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config bandwidth_control Purpose Used to configure bandwidth control on a port by-port basis. Syntax <portlist> {rx_rate [no_limit | <value 1-156249>] | tx_rate [no_limit | <value 1-156249>]} Description The config bandwidth_control command is used to configure bandwidth on a port by-port basis.
Page 99 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show bandwidth_control 1-10 Command: show bandwidth_control 1-10 Bandwidth Control Table Port RX Rate (64Kbit/sec) TX_Rate (64Kbit/sec) ---- ------------------------ ---------------------- no_limit no_limit no_limit no_limit no_limit no_limit no_limit no_limit no_limit no_limit DGS-3612G:4#...
Page 100 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config scheduling reset the weighted round-robin (WRR) cycle of forwarding packets, starting with the highest available priority class. Priority classes with an equal level of priority and equal entries in their max_packet field will empty their fields based on hardware priority scheduling.
Page 101 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config 802.1p user_priority Purpose Used to map the 802.1p user priority of an incoming packet to one of the seven hardware queues available on the Switch. Syntax config 802.1p user_priority <priority 0-7> <class_id 0-7>...
Page 102 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To show 802.1p user priority: DGS-3612G:4#show 802.1p user_priority Command: show 802.1p user_priority QOS Class of Traffic Priority-0 -> <Class-2> Priority-1 -> <Class-0> Priority-2 -> <Class-1> Priority-3 -> <Class-3>...
Page 103 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual show 802.1 default_priority default-priority. Restrictions None. Example usage: To display the current 802.1p default priority configuration on the Switch: DGS-3612G:4#show 802.1p default_priority Command: show 802.1p default_priority Port Priority ------- -----------...
Page 104 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual To configure the traffic scheduling mechanism for each CoS queue: DGS-3612G:4#config scheduling_mechanism strict Command: config scheduling_mechanism strict Success. DGS-3612G:4# show scheduling_mechanism Purpose Used to display the current traffic scheduling mechanisms in use on the Switch.
Page 105 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#enable hol_prevention Command: enable hol_prevention Success. DGS-3612G:4# disable hol_prevention Purpose Used to disable HOL prevention. Syntax disable hol_prevention Description The disable hol_prevention command disables Head of Line prevention. Parameters None.
Page 106: Port Mirroring Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual IRRORING OMMANDS The port mirroring commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config mirror port <port> [add | delete] source ports <portlist> [rx | tx | both]...
Page 107 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4# config mirror port 1 add source ports 2-7 both Command: config mirror port 1 add source ports 2-7 both Success. DGS-3612G:4# Example usage: To delete the mirroring ports: DGS-3612G:4#config mirror port 1 delete source port 2-4 Command: config mirror 1 delete source 2-4 Success.
Page 108 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#disable mirror Command: disable mirror Success. DGS-3612G:4# show mirror Purpose Used to show the current port mirroring configuration on the Switch. Syntax show mirror Description This command displays the current port mirroring configuration on the Switch.
Page 109: Vlan Commands
VLAN C OMMANDS The xStack DGS-3612G incorporates protocol-based VLANs. This standard, defined by the IEEE 802.1v standard maps packets to protocol-defined VLANs by examining the type octet within the packet header to discover the type of protocol associated with it.
Page 110 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual create vlan snaEthernet2 | protocol-netBios | protocol-xns | protocol-vines | protocol-ipV6 | protocol-userDefined <hex0x0-0xffff> encap [ethernet | llc | snap | all] | protocol-rarp]}} Description This command allows the creation of a VLAN on the Switch. The user may choose between an 802.1Q VLAN or a protocol-based VLAN.
Page 111 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual create vlan concurrent with this protocol. This packet header information is defined by the Systems Network Architecture (SNA) Ethernet II Protocol. • protocol-netBios - Using this parameter will instruct the Switch to forward packets to this VLAN if the tag in the packet header is concurrent with this protocol.
Page 112 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To create a VLAN v1, tag 2: DGS-3612G:4#create vlan v1 tag 2 Command: create vlan v1 tag 2 Success. DGS-3612G:4# delete vlan Purpose Used to delete a previously configured VLAN on the Switch.
Page 113 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#config vlan v1 add tagged 4-8 Command: config vlan v1 add tagged 4-8 Success. DGS-3612G:4# config vlan delete Purpose Used to delete ports from a previously configured VLAN. Syntax config vlan <vlan_name 32> delete <portlist>...
Page 114 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#config gvrp 1-4 state enable ingress_checking enable acceptable_frame tagged_only pvid 2 Command: config gvrp 1-4 state enable ingress_checking enable acceptable_frame tagged_only pvid 2 Success. DGS-3612G:4# enable gvrp Purpose Used to enable GVRP on the Switch.
Page 115 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual show vlan Purpose Used to display the current VLAN configuration on the Switch. Syntax show vlan {<vlan_name 32>} Description This command displays summary information about each VLAN including the VLAN ID, VLAN name, the Tagging/Untagging status, and the Member/Non-member/Forbidden status of each port that is a member of the VLAN.
Page 116 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show gvrp Command: show gvrp Global GVRP : Disabled Port PVID GVRP Ingress Checking Acceptable Frame Type ------ ---- -------- ---------------- --------------------------- Disabled Enabled All Frames Disabled Enabled All Frames...
Page 117 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config 802.1x guest_vlan ports Purpose Used to configure ports for a pre-existing 802.1x guest VLAN. Syntax config 802.1x guest_vlan ports [<portlist> | all] state [enable | disable] Description The config 802.1x guest_vlan ports command is used to configure ports to be enabled or disabled for the 802.1x guest VLAN.
Page 118 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual delete 802.1x guest_vlan Purpose Used to delete an 802.1x Guest VLAN. Syntax delete 802.1x guest_vlan Description The delete 802.1x guest_vlan command is used to delete a VLAN that has been enabled as an 802.1x Guest VLAN. Guest 802.1X VLAN clients are those who have not been authorized for 802.1x or they haven’t yet installed...
Page 119: Link Aggregation Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual GGREGATION OMMANDS The link aggregation commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters create link_aggregation group_id <value 1-32> {type [lacp | static]} delete link_aggregation group_id <value 1-32>...
Page 120 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual delete link_aggregation group_id Purpose Used to delete a previously created link aggregation group. Syntax delete link_aggregation group_id <value 1-32> Description This command is used to delete a previously configured link aggregation group.
Page 121 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config link_aggregation algorithm Purpose Used to configure the link aggregation algorithm. Syntax config link_aggregation algorithm [mac_source | mac_destination | mac_source_dest | ip_source | ip_destination | ip_source_dest] Description This command configures the part of the packet examined by the Switch when selecting the egress port for transmitting load-sharing data.
Page 122 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show link_aggregation Command: show link_aggregation Link Aggregation Algorithm = MAC-source-dest Group ID Type : TRUNK Master Port Member Port : 8-10 Active Port Status : Disabled Flooding Port DGS-3612G:4# config lacp_ports Purpose Used to configure settings for LACP compliant ports.
Page 123 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual show lacp_port Purpose Used to display current LACP port mode settings. Syntax show lacp_port {<portlist>} Description This command will display the LACP mode settings as they are currently configured. Parameters <portlist>...
Page 124: Ip-Mac Binding
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual IP-MAC B INDING The IP network layer uses a four-byte address. The Ethernet link layer uses a six-byte MAC address. Binding these two address types together allows the transmission of data between the layers. The primary purpose of IP-MAC binding is to restrict the access to a switch to a number of authorized users.
Page 125 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Command Parameters create address_binding ip_mac ipaddress <ipaddr> mac_address <macaddr> {ports [<portlist> | all] | mode [arp | acl]} config address_binding ip_mac ipaddress <ipaddr> mac_address <macaddr> {ports [<portlist> | all] |...
Page 126 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#create address_binding ip_mac ipaddress 10.1.1.3 mac_address 00-00-00-00-00-04 Command: create address_binding ip_mac ipaddress 10.1.1.3 mac_address 00-00-00-00-00-04 Success. DGS-3612G:4# To create address binding on the Switch for ACL mode: DGS-3612G:4#create address_binding ip_mac ipaddress 10.1.1.3 mac_address 00-00-00-00-00-04 mode acl Command: create address_binding ip_mac ipaddress 10.1.1.3 mac_address...
Page 127 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config address_binding ip_mac ipaddress Purpose Used to configure an IP-MAC Binding entry. Syntax <ipaddr> mac_address <macaddr> {ports [<portlist> | all] | mode {arp | acl]} Description This command will configure an IP-MAC Binding entry.
Page 128 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config address_binding ip_mac ports all – specifies all ports on the switch. state [enable | disable] – Enables or disables the specified range of ports. Restrictions Only administrator-level users can issue this command.
Page 129 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show address_binding ip_mac ipaddress 10.1.1.8 mac_address 00-00-00-00-00-12 Command: show address_binding ip_mac ipaddress 10.1.1.8 mac_address 00-00-00-00-00-12 ACL_mode : Enabled Trap/Log : Disabled Enabled ports: 2 IP Address MAC Address Ports Status...
Page 130 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual enable address_binding acl_mode Purpose Used to enable the ACL mode for an IP-MAC binding entry. Syntax enable address_binding acl_mode Description This command, along with the disable address_binding acl_mode will enable and disable the ACL mode for IP-MAC binding on the Switch, without altering previously set configurations.
Page 131 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#disable address_binding acl_mode Command: disable address_binding acl_mode Success. DGS-3612G:4# enable address_binding trap_log Purpose Used to enable the trap log for the IP-MAC binding function. Syntax enable address_binding trap_log Description This command, along with the disable address_binding trap_log will enable and disable the sending of trap log messages for IP-MAC binding.
Page 132: Ip Commands (Including Ip Multinetting)
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual IP C IP M OMMANDS NCLUDING ULTINETTING IP Multinetting is a function that allows multiple IP interfaces to be assigned to the same VLAN. This is beneficial to the administrator when the number of IPs on the original interface is insufficient and the network administrator wishes not to resize the interface.
Page 133 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To create the primary IP interface, p1 on VLAN Trinity: DGS-3612G:4#create ipif p1 ipaddress 10.1.1.1 Trinity state enabled Command: create ipif p1 ipaddress 10.1.1.1 Trinity state enabled Success.
Page 134 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual enable ipif Purpose Used to enable an IP interface on the Switch. Syntax enable ipif {<ipif_name 12> | all} Description This command will enable the IP interface function on the Switch.
Page 135 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To delete the IP interface named s2: DGS-3612G:4#delete ipif s2 Command: delete ipif s2 Success. DGS-3612G:4# show ipif Purpose Used to display the configuration of an IP interface on the Switch.
Page 136: Igmp Commands (Including Igmp V3)
The current release of the xStack DGS-3612G now implements IGMPv3. Improvements of IGMPv3 over version 2 include: The introduction of the SSM or Source Specific Multicast. In previous versions of IGMP, the host would receive all packets sent •...
Page 137 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config igmp that the Switch will wait for reports from members. robustness_variable <value 1-255> − This value states the permitted packet loss that guarantees IGMP. last_member_query_interval <value 1-25> − The Max Response Time...
Page 138 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual show igmp group Purpose Used to display the Switch’s IGMP group table. Syntax show igmp group {group <group> | ipif <ipif_name 12>} Description This command will display the IGMP group configuration.
Page 139: Igmp Snooping Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual IGMP S NOOPING OMMANDS The IGMP Snooping commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config igmp_snooping [vlan <vlan_name 32> | all] {host_timeout <sec 1-16711450> | router_timeout <sec 1-16711450>...
Page 140 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To configure IGMP snooping: DGS-3612G:4#config igmp_snooping vlan default host_timeout 250 state enable Command: config igmp_snooping vlan default host_timeout 250 state enable Success. DGS-3612G:4# NOTE: The Fast Leave function in the config igmp_snooping command can only be implemented if IGMP is disabled for all IP interfaces on the Switch.
Page 141 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config igmp_snooping querier last_member_query_interval <sec 1-25> − The maximum amount of time between group-specific query messages, including those sent in response to leave-group messages. Users may lower this interval to reduce the amount of time it takes a router to detect the loss of the last member of a group.
Page 142 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config router_ports_forbidden Parameters <vlan_name 32> − The name of the VLAN on which the router port resides. [add | delete] - Specifies whether to add or delete forbidden ports of the specified VLAN.
Page 143 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual disable igmp_snooping The Switch will then forward all multicast traffic to any IP router. Entering this command without the parameter will disable igmp snooping on the Switch. Restrictions Only administrator-level users can issue this command.
Page 144 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show igmp_snooping Command: show igmp_snooping IGMP Snooping Global State : Disabled Multicast router Only : Disabled VLAN Name : default Query Interval : 125 Max Response Time : 10 Robustness Value...
Page 145 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show igmp_snooping group Command: show igmp_snooping group VLAN Name : default Multicast group: 224.0.0.2 MAC address : 01-00-5E-00-00-02 Reports Port Member : 2,5 VLAN Name : default Multicast group: 224.0.0.9...
Page 146 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show router_ports Command: show router_ports VLAN Name : default Static router port : 1-2,10 Dynamic router port : Forbidden router port : Total Entries: 1 DGS-3612G:4# show igmp_snooping forwarding Purpose Used to display the IGMP snooping forwarding table entries on the Switch.
Page 147: Mld Snooping Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual MLD S NOOPING OMMANDS Multicast Listener Discovery (MLD) Snooping is an IPv6 function used similarly to IGMP snooping in IPv4. It is used to discover ports on a VLAN that are requesting multicast data. Instead of flooding all ports on a selected VLAN with multicast traffic, MLD snooping will only forward multicast data to ports that wish to receive this data through the use of queries and reports produced by the requesting ports and the source of the multicast traffic.
Page 148 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Each command is listed, in detail, in the following sections. enable mld_snooping Purpose Used to enable MLD snooping globally on the switch. Syntax enable mld_snooping {forward_mcrouter_only} Description This command, in conjunction with the disable mld_snooping will enable and disable MLD snooping globally on the Switch without affecting configurations.
Page 149 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config mld_snooping Parameters vlan <vlan_name 32> − The name of the VLAN for which MLD snooping is to be configured. all – Entering this parameter will configure MLD snooping for all VLANs on the Switch.
Page 150 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#config mld_snooping mrouter_ports default add 1-10 Command : config mld_snooping mrouter_ports default add 1-10 Success. DGS-3612G:4# config mld_snooping mrouter_ports_forbidden Purpose Used to configure ports on the Switch as forbidden router ports.
Page 151 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config mld_snooping querier last_listener_query_interval <sec 1-25> - The maximum amount of time to be set between group-specific query messages. This interval may be reduced to lower the amount of time it takes a router to detect the loss of a last listener group. The user may set this interval between 1 and 25 seconds with a default setting of 1 second.
Page 152 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show mld_snooping Command: show mld_snooping MLD Snooping Global State : Disabled Multicast Router Only : Disabled VLAN Name : default Query Interval : 125 Max Response Time : 10 Robustness Value...
Page 153 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show mld_snooping group Command : show mld_snooping group VLAN Name : default Multicast Group : FF02 ::13 MAC Address : 33-33-00-00-00-13 Reports Listening Port : 1,7 VLAN Name : default...
Page 154 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show mld_snooping mrouter_ports Commands : show mld_snooping mrouter_ports VLAN Name : default Static mrouter port : 1-10 Dynamic mrouter port Forbidden mrouter port : Total Entries : 1 DGS-3612G:4# show mld_snooping forwarding...
Page 155: Dhcp Relay
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DHCP R ELAY The DHCP relay commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config dhcp_relay {hops <value 1-16> | time <sec 0-65535>} config dhcp_relay add ipif <ipif_name 12>...
Page 156 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config dhcp_relay add ipif Purpose Used to add an IP destination address to the switch's DHCP/BOOTP relay table. Syntax config dhcp_relay add ipif <ipif_name 12> <ipaddr> Description This command adds an IP address as a destination to which to forward (relay) DHCP/BOOTP relay packets.
Page 157 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config dhcp_relay option_82 state DHCP server and client. When the relay agent receives the DHCP request, it adds the option 82 information, and the IP address of the relay agent (if the relay agent is configured), to the packet. Once the...
Page 158 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#config dhcp_relay option_82 check enable Command: config dhcp_relay option_82 check enable Success. DGS-3612G:4# config dhcp_relay option_82 policy Purpose Used to configure the reforwarding policy of relay agent information option 82 of the Switch.
Page 159 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show dhcp_relay Command: show dhcp_relay DHCP/BOOTP Relay Status : Enabled DHCP/BOOTP Hops Count Limit DHCP/BOOTP Relay Time Threshold : 23 DHCP Relay Agent Information Option 82 State : Enabled DHCP Relay Agent Information Option 82 Check : Enabled...
Page 160 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To disable DHCP relay: DGS-3612G:4#disable dhcp_relay Command: disable dhcp_relay Success. DGS-3612G:4#...
Page 161: Limited Ip Multicast Address
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual IP M IMITED ULTICAST DDRESS The Limited IP Multicast command allows the administrator to permit or deny access to a port or range of ports by specifying a range of multicast addresses. The Limited IP Multicast Commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
Page 162 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual delete limited multicast address Purpose Used to delete Limited IP multicast address range. Syntax delete limited multicast address [all | <portlist>] Description The delete limited multicast address command allows the user to delete all multicast address ranges or a selected range based on what port or ports the range has been assigned to.
Page 163: Commands
802.1X C OMMANDS The xStack DGS-3612G implements the server-side of the IEEE 802.1x Port-based and MAC-based Network Access Control. This mechanism is intended to allow only authorized users, or other network devices, access to network resources by establishing criteria for each port on the Switch that a user or network device must meet before allowing that port to forward or receive frames.
Page 164 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual enable 802.1x Purpose Used to enable the 802.1x server on the Switch. Syntax enable 802.1x Description The enable 802.1x command enables the 802.1x Network Access control server application on the Switch. To select between port-based or MAC- based, use the config 802.1x auth_mode command.
Page 165 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual show 802.1x auth_configuration address or by port. Authentication Protocol: Radius_Eap − Shows the authentication protocol suite in use between the Switch and a RADIUS server. May read Radius_Eap or Radius_Pap.
Page 166 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual show 802.1x auth_state Purpose Used to display the current authentication state of the 802.1x server on the Switch. Syntax show 802.1x auth_state {ports [<portlist> | all]} Description The show 802.1x auth_state command is used to display the current authentication state of the 802.1x Port-based or MAC-based Network...
Page 167 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show 802.1x auth_state Command: show 802.1x auth_state Port number : 1 Index MAC Address Auth PAE State Backend State Port Status ------ ------------------- ----------------------- --------------------- ----------------- 00-08-02-4E-DA-FA Authenticated Idle Authorized...
Page 168 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config 802.1x capability ports Parameters <portlist> − Specifies a port or range of ports to be configured. all − Specifies all of the ports on the Switch. authenticator − A user must pass the authentication process to gain access to the network.
Page 169 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config 802.1x auth_parameter from a supplicant (user) for all EAP packets, except for the Request/Identity packets. server_timeout <sec 1-65535> - Configure the length of time to wait for a response from a RADIUS server.
Page 170 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config 802.1x reauth Purpose Used to configure the 802.1x re-authentication feature of the Switch. Syntax config 802.1x reauth {port_based ports [<portlist> | all] | mac_based [ports] [<portlist> | all] {mac_address <macaddr>}] Description The config 802.1x reauth command is used to re-authenticate a...
Page 171 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To configure the RADIUS server communication settings: DGS-3612G:4#config radius add 1 10.48.74.121 key dlink default Command: config radius add 1 10.48.74.121 key dlink default Success. DGS-3612G:4# config radius delete Purpose Used to delete a previously entered RADIUS server configuration.
Page 172 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To configure the RADIUS settings: DGS-3612G:4#config radius 1 ipaddress 10.48.74.121 key dlink default Command: config radius 1 ipaddress 10.48.74.121 key dlink default Success. DGS-3612G:4# show radius Purpose Used to display the current RADIUS configurations on the Switch.
Page 173 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show acct_client Command: show acct_client radiusAcctClient --------------------------------------------------------------------------------------- radiusAcctClientInvalidServerAddresses radiusAcctClientIdentifier D-Link radiusAuthServerEntry --------------------------------------------------------------------------------------- radiusAccServerIndex radiusAccServerAddress 10.53.13.199 radiusAccClientServerPortNumber radiusAccClientRoundTripTime radiusAccClientRequests radiusAccClientRetransmissions radiusAccClientResponses radiusAccClientMalformedResponses radiusAccClientBadAuthenticators radiusAccClientPendingRequests radiusAccClientTimeouts radiusAccClientUnknownTypes radiusAccClientPacketsDropped CTRL+C ESC q Quit...
Page 174 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual radiusAuthClientUnknownTypes radiusAuthClientPacketsDropped CTRL+C ESC q Quit SPACE n Next Page Enter Next Entry show auth_diagnostics Purpose Used to display the current authentication diagnostics. Syntax show auth_diagnostics {ports [<portlist> | all]}...
Page 175 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show auth_session_statistics ports 1 Command: show auth_session_statistics ports 1 Port number : 1 SessionOctetsRx SessionOctetsTx SessionFramesRx SessionFramesTx SessionId SessionAuthenticMethod Remote Authentication Server SessionTime SessionTerminateCause SupplicantLogoff SessionUserName Trinity CTRL+C ESC q...
Page 176 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual create 802.1x user length. Restrictions Only administrator-level users can issue this command. Example Usage: To create an 802.1x user: DGS-3612G:4#create 802.1x user dtremblett Command: create 802.1x user dtremblett Enter a case-sensitive new password:****** Enter the new password again for confirmation:****** Success.
Page 177 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual To delete 802.1x users: DGS-3612G:4#delete 802.1x user dtremblett Command: delete 802.1x user dtremblett Success. DGS-3612G:4# create 802.1x guest_vlan Purpose Used to configure a pre-existing VLAN as a 802.1x Guest VLAN.
Page 178 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual To configure the ports for a previously created 802.1x Guest VLAN as enabled. DGS-3612G:4#config 802.1x guest_vlan ports 1-5 state enable Command: config 802.1x guest_vlan ports 1-5 state enable Success. DGS-3612G:4# show 802.1x guest_vlan...
Page 179 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#delete 802.1x guest_vlan Triton Command: delete 802.1x guest_vlan Triton Success. DGS-3612G:4#...
Page 180: Access Control List (Acl) Commands
ONTROL OMMANDS The xStack DGS-3612G implements Access Control Lists that enable the Switch to deny network access to specific devices or device groups based on IP settings and MAC address. Access profiles allow you to establish criteria to determine whether or not the Switch will forward packets based on the information contained in each packet’s header.
Page 181 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Command Parameters 65535>} | protocol_id <value 0 - 255> {user_define <hex 0x0-0xffffffff>}]} port [<portlist> | all] [permit {priority <value 0-7> {replace_priority} | replace_dscp <value 0-63>} | rx_rate [no_limit | <value 1-156249>]} | deny] | ipv6 {[{class <value 0-255>...
Page 182 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual create access_profile (for Ethernet) Description This command will allow the user to create a profile for packets that may be accepted or denied by the Switch by examining the Ethernet part of the packet header. Specific values for rules pertaining to the Ethernet part of the packet header may be defined by configuring the config access_profile command for Ethernet, as stated below.
Page 183 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config access_profile (for Ethernet) a numerical value (between 1 and 128) for the rule being configured. ethernet - Specifies that the Switch will look only into the layer 2 part of each packet to determine if it is to be filtered or forwarded based on one or more of the following: vlan <vlan_name 32>...
Page 184 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual create access_profile (IP) Purpose Used to create an access profile on the Switch by examining the IP part of the packet header. Masks entered can be combined with the values the Switch finds in the specified frame header fields.
Page 185 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4# create access_profile profile_id 2 ip protocol_id_mask 0xFF Command: create access_profile profile_id 2 ip protocol_id_mask 0xFF Success. DGS-3612G:4# config access_profile (IP) Purpose Used to configure the IP access profile on the Switch and to define specific values for the rules that will be used to by the Switch to determine if a given packet should be forwarded or filtered.
Page 186 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config access_profile (IP) • syn: TCP control flag (synchronize) • fin: TCP control flag (finish) udp − Specifies that the Switch will examine the User Datagram Protocol (UDP) field in •...
Page 187 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual create access_profile (ipv6) Purpose Used to create an access profile on the Switch by examining the IPv6 part of the packet header. Masks can be entered that will be combined with the values the Switch finds in the specified frame header fields.
Page 188 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config access_profile profile_id (ipv6) Parameters profile_id <value 1-14> - Enter an integer between 1 and 6 that is used to identify the access profile that will be configured with this command. This value is assigned to the access profile when it is created with the create access_profile command.
Page 189 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#config access_profile profile_id 4 add access_id 1 ipv6 class 1 flowlabel 0xABCD port 4 deny Command: config access_profile profile_id 4 add access_id 1 ipv6 class 1 flowlabel 0xABCD port 4 deny Success.
Page 190 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show access_profile Command: show access_profile Access Profile Table Access Profile ID: 1 TYPE : Ethernet ====================================================================== MASK Option : VLAN 802.1p ----------- ------ Access ID : 3 Mode: Permit(replaced) priority: 1...
Page 191 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual create cpu access_profile destination_mac <macmask> - Specifies to examine the destination MAC address mask. • 802.1p - Specifies that the Switch will examine the 802.1p priority value in the frame’s •...
Page 192 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4# create cpu access_profile profile_id 1 ip vlan source_ip_mask 20.0.0.0 destination_ip_mask 10.0.0.0 dscp icmp type code Command: create cpu access_profile profile_id 1 ip vlan source_ip_mask 20.0.0.0 destination_ip_mask 10.0.0.0 dscp icmp type code Success.
Page 193 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config cpu access_profile AND operational method, with masks entered with the create cpu access_profile command, above. Parameters profile_id <value 1-5> − Enter an integer used to identify the access profile that will be configured with this command.
Page 194 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config cpu access_profile following rules. • user_define_mask <hex 0x0-0xffffffff> − Specifies that the rule applies to the Parameters IP protocol ID and the mask options behind the IP header. packet_content_mask – Specifies that the Switch will mask the packet header •...
Page 195 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4# show cpu_access_profile Purpose Used to view the CPU access profile entry currently set in the Switch. Syntax show cpu access_profile {profile_id <value 1-5>} Description The config cpu_interface_filtering state command is used view the current CPU interface filtering entries set on the Switch.
Page 196: Time Range Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual ANGE OMMANDS The Time Range commands are used in conjunction with the Access Profile commands listed in the previous chapter to determine a starting point and an ending point, based on days of the week, when an Access Profile configuration will be enabled on the Switch.
Page 197 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To configure the time range time1 to be between 6:30 a.m. and 9:40 p.m., Monday to Friday: DGS-3612G:4#config time_range time1 hours start_time 6:30:00 end_time 21:40:00 weekdays mon-fri Command: config time_range time1 hours start_time 6:30:00 end_time 21:40:00 weekdays mon-fri Success.
Page 198: Time And Sntp Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual SNTP C IME AND OMMANDS The Simple Network Time Protocol (SNTP) (an adaptation of the Network Time Protocol (NTP)) commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
Page 199 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual show sntp Purpose Used to display the SNTP information. Syntax show sntp Description This command will display SNTP settings information including the source IP address, time and poll interval. Parameters None.
Page 200 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example: To disable SNTP support: DGS-3612G:4#disable sntp Command: disable sntp Success. DGS-3612G:4# config time Purpose Used to manually configure system time and date settings. Syntax config time <date ddmthyyyy> <time hh:mm:ss>...
Page 201 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual To configure time zone settings: DGS-3612G:4#config time_zone operator + hour 2 min 30 Command: config time_zone operator + hour 2 min 30 Success. DGS-3612G:4# config dst Purpose Used to enable and configure time adjustments to allow for the use of Daylight Savings Time (DST).
Page 202 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config dst e_mth - Configure the month in which DST ends. • <end_mth 1-12> - The month to end DST expressed as a number. s_time – Configure the time of day to begin DST.
Page 203 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show time Command: show time Current Time Source : System Clock Boot Time : 23 Aug 2006 09:44:18 Current Time : 23 Aug 2006 15:42:52 Time Zone : GMT +02:30...
Page 204: Policy Route Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual OLICY OUTE OMMANDS Policy Based routing is a method used by the Switch to give specified devices a cleaner path to the Internet. Used in conjunction with the Access Profile feature, the Switch will identify traffic originating from a specified IP address and forward it on to a next hop router that has a less congested connection to the Internet than the normal routing scheme of your network.
Page 205 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config policy_route Purpose Used to configure the parameters to set the policy route on the Switch. Syntax config policy_route name <policyroute_name 32> [acl [profile_id <value 1-14> | access_id <value 1-128>]] | nexthop <ipaddr> | {state [enable | disable]}...
Page 206 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#delete policy_route name manager Command: delete policy_route name manager Success. DGS-3612G:4# show policy_route Purpose Used to display policy route settings. Syntax show policy_route Description This command is used to display policy route settings.
Page 207: Safeguard Engine Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual AFEGUARD NGINE OMMANDS Periodically, malicious hosts on the network will attack the Switch by utilizing packet flooding (ARP Storm) or other methods. These attacks may increase the CPU utilization beyond its capability. To alleviate this problem, the Safeguard Engine function was added to the Switch’s software.
Page 208 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config safeguard_engine Purpose To config ARP storm control for system. Syntax config safeguard_engine {state [enable | disable] | utilization {rising <value 20-100> | falling <value 20-100>} | trap_log [enable | disable] |...
Page 209 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show safeguard_engine Command: show safeguard_engine Safeguard engine state : Disabled Safeguard engine current status : normal mode ======================================================= CPU utilization information: Rising : 30% Falling : 20% Trap/Log state : Disabled...
Page 210: Traffic Segmentation Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual RAFFIC EGMENTATION OMMANDS Traffic segmentation allows users to further sub-divide VLANs into smaller groups of ports that will help to reduce traffic on the VLAN. The VLAN rules take precedence, and then the traffic segmentation rules are applied.
Page 211 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual show traffic_segmentation Purpose Used to display the current traffic segmentation configuration on the Switch. Syntax show traffic_segmentation {<portlist>} Description The show traffic_segmentation command is used to display the current traffic segmentation configuration on the Switch.
Page 212: Arp Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual ARP C OMMANDS The ARP commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters create arpentry <ipaddr> <macaddr> create arpentry ipv6 <ipv6addr>...
Page 213 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual create arpentry ipv6 Restrictions Only administrator-level users can issue this command. The Switch supports up to 255 static ARP entries. Example usage: To create a static ARP entry for the IPv6 address 10.48.74.121.125 and MAC address 00:50:BA:00:07:36:...
Page 214 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#delete arpentry ipv6 2D30::AC21 Command: delete arpentry ipv6 2D30::AC21 Success. DGS-3612G:4# config arp_aging time Purpose Used to configure the age-out timer for ARP table entries on the Switch. Syntax config arp_aging time <value 0-65535>...
Page 215 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show arpentry Command: show arpentry ARP Aging Time : 30 Interface IP Address MAC Address Type ------------- --------------- ----------------- --------------- System 10.0.0.0 FF-FF-FF-FF-FF-FF Local/Broadcast System 10.1.1.169 00-50-BA-70-E4-4E Dynamic System 10.1.1.254...
Page 216 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual clear arptable Purpose Used to remove all dynamic ARP table entries. Syntax clear arptable Description This command is used to remove dynamic ARP table entries from the Switch’s ARP table. Static ARP table entries are not affected.
Page 217: Vrrp Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual VRRP C OMMANDS VRRP or Virtual Routing Redundancy Protocol is a function on the Switch that dynamically assigns responsibility for a virtual router to one of the VRRP routers on a LAN. The VRRP router that controls the IP address associated with a virtual router is called the Master, and will forward packets sent to this IP address.
Page 218 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#enable vrrp Command: enable vrrp Success. DGS-3612G:4# Example usage: To enable the virtual IP address to be pinged: DGS-3612G:4#enable vrrp ping Command: enable vrrp ping Success. DGS-3612G:4# disable vrrp Purpose To disable the VRRP function on the Switch.
Page 219 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual create vrrp vrid Purpose To create a VRRP router on the Switch. Syntax vrid <vrid 1-255> ipif <ipif_name 12> ipaddress <ipaddr> {state [enable | disable] | priority <int 1-254> | advertisement_interval <int 1-255>...
Page 220 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To create a VRRP entry: DGS-3612G:4#create vrrp vrid 1 ipif Darren ipaddress 11.1.1.1 state enable priority 200 advertisement_interval 1 preempt true critical_ip 10.53.13.224 critical_ip_state enable Command: create vrrp vrid 1 ipif Darren ipaddress 11.1.1.1 state enable priority 200 advertisement_interval 1 preempt true critical_ip 10.53.13.224...
Page 221 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config vrrp vrid routers participating within the same VRRP group. The default setting is true. critical_ip <ipaddr> - Enter the IP address of the physical device that will provide the most direct route to the Internet or other critical network connections from this virtual router.
Page 222 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To set the authentication type for a VRRP entry: DGS-3612G:4#config vrrp ipif Trinity authtype simple authdata tomato Command: config vrrp ipif Trinity authtype simple authdata tomato Success. DGS-3612G:4#...
Page 223 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual delete vrrp Purpose Used to delete a VRRP entry from the switch. Syntax delete vrrp {vrid <vrid 1-255> ipif <ipif_name 12>} Description This command is used to remove a VRRP router running on a local device.
Page 224: Routing Table Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual OUTING ABLE OMMANDS The routing table commands in the Command Line Interface (CLI) are listed (with the appropriate parameters) in the following table. Command Parameters create iproute <network_address> <ipaddr> {<metric 1-65535>} {[primary | backup]} create iproute default <ipaddr>...
Page 225 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual create iproute default Purpose Used to create IP route entries to the Switch’s IP routing table. Syntax create iproute default <ipaddr> {<metric>} Description This command is used to create a default static IP route entry to the Switch’s IP routing table.
Page 226 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual delete iproute default Purpose Used to delete a default IP route entry from the Switch’s IP routing table. Syntax delete iproute default Description This command will delete an existing default entry from the Switch’s IP routing table.
Page 227 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual create iproute ipv6 format as ipv6address / prefix_length (ipv6address is hexadecimal number, prefix length is decimal number, for example 1234::5D7F/32). <ipv6addr> − IPv6 address for the next hop router. <metric 1-65535> − Allows the entry of a routing protocol metric entry, representing the number of routers between the Switch and the IP address above.
Page 228 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual show iproute ipv6 (ipv6address is hexadecimal number, prefix length is decimal number, for example 1234::5D7F/32). Restrictions None. Example usage: To display the static IPv6 entries in the routing table: DGS-3612G:4# show iproute ipv6...
Page 229 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To delete the default IPv6 route: DGS-3612G:4#delete iproute default Command: delete iproute default Success. DGS-3612G:4#...
Page 230: Route Redistribution Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual OUTE EDISTRIBUTION OMMANDS The route redistribution commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters create route redistribute dst ospf src [static | rip | local] {mettype [1 | 2] | metric <value 0-16777214>}...
Page 231 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Allowed Metric Type combinations are mettype 1 or mettype 2. The metric value 0 above will be redistributed in OSPF as the metric Example usage: To add route redistribution settings:...
Page 232 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Entering the Type combination − internal type_1 type_2 is functionally equivalent to all. Entering the combination type_1 type_2 is functionally equivalent to external. Entering the combination internal external is functionally equivalent to all.
Page 233 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual To configure route redistributions: DGS-3612G:4#config route redistribute dst ospf src all metric 2 Command: config route redistribute dst ospf src all metric 2 Success. DGS-3612G:4# config route redistribute dst rip src...
Page 234 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual delete route redistribute Purpose Used to delete an existing route redistribute configuration on the Switch. Syntax delete route redistribute {dst [rip | ospf] src [rip | static | local | ospf]} Description This command will delete the route redistribution settings on this switch.
Page 235: Dns Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DNS C OMMANDS The DNS relay commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config dnsr [[primary | secondary] nameserver <ipaddr> | [add | delete] static <domain_name 32>...
Page 236 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual To delete an entry domain name dns1, IP address 10.43.21.12 from DNS static table. DGS-3612G:4#config dnsr delete static dns1 10.43.21.12 Command: config dnsr delete static dns1 10.43.21.12 Success. DGS-3612G:4# enable dnsr Purpose Used to enable DNS relay.
Page 237 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual disable dnsr Purpose Used to disable DNS relay on the Switch. Syntax disable dnsr {[cache | static]} Description This command is used, in combination with the enable dnsr command above, to enable and disable DNS Relay on the Switch.
Page 238 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show dnsr Command: show dnsr DNSR Status : Disabled Primary Name Server : 0.0.0.0 Secondary Name Server : 0.0.0.0 DNSR Cache Status : Disabled DNSR Static Cache Table Status : Disabled...
Page 239: Rip Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual RIP C OMMANDS The RIP commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config rip [ipif <ipif_name 12> | all] {authentication [enable <password 16>...
Page 240 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual To change the RIP receive mode for the IP interface System: DGS-3612G:4#config rip ipif System rx_mode v1_only Command: config rip ipif System rx_mode v1_only Success. DGS-3612G:4# enable rip Purpose Used to enable RIP.
Page 241 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual show rip Purpose Used to display the RIP configuration and statistics for the Switch. Syntax show rip {ipif <ipif_name 12>} Description This command will display the RIP configuration and statistics for a given IP interface or for all IP interfaces.
Page 242: Dvmrp Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DVMRP C OMMANDS The DVMRP commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config dvmrp [ipif <ipif_name 12> | all] {metric <value 1-31> | probe <sec 1-65535> | neighbor_timeout <sec 1-65535>...
Page 243 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#config dvmrp ipif System neighbor_timeout 30 metric 1 probe 5 Command: config dvmrp ipif System neighbor_timeout 30 metric 1 probe 5 Success DGS-3612G:4# enable dvmrp Purpose Used to enable DVMRP.
Page 244 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual show dvmrp routing_table Parameters ipaddress <network_address> − The IP address and netmask of the destination. The address and mask information can be specified using the traditional format (for example, 10.1.2.3/255.0.0.0 or in CIDR format, 10.1.2.3/8).
Page 245 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual show dvmrp nexthop Purpose Used to display the current DVMRP routing next hop table. Syntax show dvmrp nexthop {ipaddress <network_address> | ipif <ipif_name 12>} Description This command will display the DVMRP routing next hop table.
Page 246 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show dvmrp Command: show dvmrp DVMRP Global State : Disabled Interface IP Address Neighbor Timeout Probe Metric State ------------ --------------- --------------- ----- ------ ------- System 10.90.90.90/8 Disabled Trinity 12.1.1.1/8 Enabled...
Page 247: Pim Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual PIM C OMMANDS The PIM commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config pim [[ipif <ipif_name 12> | all] {hello <sec 1-18724> | jp_interval <sec 1-18724>...
Page 248 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual enable pim Purpose Used to enable PIM function on the Switch. Syntax enable pim Description This command will enable PIM for the Switch. PIM settings must first be configured for specific IP interfaces using the config pim command.
Page 249 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual show pim neighbor If no parameters are specified, all PIM neighbor router tables are displayed. Restrictions None. Example usage: To display PIM settings as configured on the Switch: DGS-3612G:4#show pim neighbor...
Page 250: Ip Multicasting Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual IP M ULTICASTING OMMANDS The IP multicasting commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters show ipmc cache {group <group>} {ipaddress <network_address>}...
Page 251 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual show ipmc • inactive – Specifying this parameter will display entries that are currently inactive. • dvmrp – Specifying this parameter will display only those entries that are related to the DVMRP protocol.
Page 252: Md5 Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual MD5 C OMMANDS The MD5 configuration commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters create md5 key <key_id 1-255> <password 16>...
Page 253 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#config md5 key 1 taboo Command: config md5 key 1 taboo Success. DGS-3612G:4# delete md5 key Purpose Used to delete an entry in the MD5 key table. Syntax delete md5 key <key_id 1-255>...
Page 254: Ospf Configuration Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual OSPF C ONFIGURATION OMMANDS The OSPF configuration commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config ospf router_id <ipaddr>...
Page 255 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Each command is listed, in detail, in the following sections. config ospf router_id Purpose Used to configure the OSPF router ID. Syntax config ospf router_id <ipaddr> Description This command is used to configure the OSPF router ID.
Page 256 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#disable ospf Command: disable ospf Success. DGS-3612G:4# show ospf Purpose Used to display the current OSPF state on the Switch. Syntax show ospf Description This command will display the current state of OSPF on the Switch,...
Page 257 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual 10.0.0.0 20.0.0.0 None DOWN 10.1.1.1 20.1.1.1 None DOWN Total Entries : 2 OSPF Area Aggregation Settings Area ID Aggregated LSDB Advertise Network Address Type --------------- ------------------ -------- --------- 244.0.0.6 11.0.0.0/8...
Page 258 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual To create an OSPF area: DGS-3612G:4#create ospf area 10.48.74.122 type normal Command: create ospf area 10.48.74.122 type normal Success. DGS-3612G:4# To create an OSPF NSSA area: DGS-3612G:4#create ospf area 11.1.1.1 type nssa translate enable metric 5 stub_summary enable Command: create ospf area 11.1.1.1 type nssa translate enable metric 5 stub_summary enable...
Page 259 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config ospf area configured here as a stub area. • nssa – Choosing this parameter will define the OSPF area configured here as an NSSA (Not So Stubby Area) area.
Page 260 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual create ospf host_route Purpose Used to configure OSPF host route settings. Syntax create ospf host_route <ipaddr> {area <area_id> | metric <value 1-65535>} Description This command is used to configure the OSPF host route settings.
Page 261 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Usage example: To configure an OSPF host route: DGS-3612G:4#config ospf host_route 10.48.74.122 area 10.1.1.1 metric 2 Command: config ospf host_route 10.48.74.122 area 10.1.1.1 metric 2 Success. DGS-3612G:4# show ospf host_route Purpose Used to display the current OSPF host route table.
Page 262 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual create ospf aggregation • advertise [enable | disable] − Allows for the advertisement trigger to be enabled or disabled. Restrictions Only administrator-level users can issue this command. Usage example: To create an OSPF area aggregation: DGS-3612G:4#create ospf aggregation 10.1.1.1 10.48.76.122/16...
Page 263 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config ospf aggregation uniquely identifies the network that corresponds to the OSPF Area. lsdb_type − The type of address aggregation. The user has two choices for the LSDB type: •...
Page 264 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual show ospf lsdb Purpose Used to display the OSPF Link State Database (LSDB). Syntax show ospf lsdb {area_id <area_id> | advertise_router <ipaddr> | type [rtrlink | netlink | summary | assummary | asextlink | nssa_ext]} Description This command will display the current OSPF Link State Database (LSDB).
Page 265 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show ospf neighbor Command: show ospf neighbor IP Address of Router ID of Neighbor Neighbor Neighbor Neighbor Priority State --------------- -------------- -------- ------------ 10.48.74.122 10.2.2.2 Initial Total Entries: 1 DGS-3612G:4#...
Page 266 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config ospf ipif hello_interval <sec 1-65535> − Allows the specification of the interval between the transmission of OSPF Hello packets, in seconds. Between 1 and 65535 seconds can be specified. The Hello Interval, Dead Interval, Authorization Type, and Authorization Key should be the same for all routers on the same network.
Page 267 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual To display the current OSPF interface settings, for a specific OSPF interface: DGS-3612G:4#show ospf ipif ipif2 Command: show ospf ipif ipif2 Interface Name: ipif2 IP Address: 123.234.12.34/24 ((Link Up) Network Medium Type: BROADCAST Metric: 1 Area ID: 1.0.0.0...
Page 268 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual create ospf virtual_link Purpose Used to create an OSPF virtual interface. Syntax create ospf virtual_link <area_id> <neighbor_id> {hello_interval <sec 1-65535> | dead_interval <sec 1-65535> | authentication [none | simple <password 8> | md5 <key_id 1-255>]} Description This command is used to create an OSPF virtual interface.
Page 269 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config ospf virtual_link <neighbor_id> − The OSPF router ID for the remote area. This is a 32-bit number in the form of an IP address (xxx.xxx.xxx.xxx) that uniquely identifies the remote area’s Area Border Router.
Page 270 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#delete ospf virtual_link 10.1.12 20.1.1.1 Command: delete ospf virtual_link 10.1.12 20.1.1.1 Success. DGS-3612G:4# show ospf virtual_link Purpose Used to display the current OSPF virtual interface configuration. Syntax show ospf virtual_link {<area_id> <neighbor_id>} Description This command will display the current OSPF virtual interface configuration.
Page 271: Route Preference Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual OUTE REFERENCE OMMANDS Route Preference is a way for routers to select the best path when there are two or more different routes to the same destination from two different routing protocols. The majority of routing protocols are not compatible when used in conjunction with each other. This Switch supports and may be configured for many routing protocols, as a stand alone switch or more importantly, in utilizing the stacking function and Single IP Management of the Switch.
Page 272 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config route preference Purpose Used to configure the route preference of each route type. Syntax config route preference [static | rip | ospfIntra | ospfInter | ospfExt1 | ospfExt2] <value 1-999>...
Page 273 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual show route preference the RIP route. ospfIntra - Enter this parameter to view the route preference settings for the Ospf Intra-area route. ospfInter - Enter this parameter to view the route preference settings for the OSPF Inter-area route.
Page 274: Mac Notification Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual MAC N OTIFICATION OMMANDS The MAC notification commands in the Command Line Interface (CLI) are listed, in the following table, along with their appropriate parameters. Command Parameters enable mac_notification disable mac_notification config mac_notification {interval <int 1-2147483647>...
Page 275 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#disable mac_notification Command: disable mac_notification Success. DGS-3612G:4# config mac_notification Purpose Used to configure MAC address notification. Syntax config mac_notification {interval <int 1-2147483647> | historysize <int 1-500>} Description MAC address notification is used to monitor MAC addresses learned and entered into the FDB.
Page 276 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual show mac_notification Purpose Used to display the Switch’s MAC address table notification global settings Syntax show mac_notification Description This command is used to display the Switch’s MAC address table notification global settings.
Page 277 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show mac_notification ports Command: show mac_notification ports Port # MAC Address Table Notification State ------ ----------------------------------------------------- Disabled Disabled Disabled Disabled Disabled Disabled Disabled Disabled Disabled Disabled Disabled Disabled CTRL+C ESC q Quit SPACE n Next Page p Previous Page r Refresh...
Page 278: Access Authentication Control Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual CCESS UTHENTICATION ONTROL OMMANDS The TACACS / XTACACS / TACACS+ / RADIUS commands allow users to secure access to the Switch using the TACACS / XTACACS / TACACS+ / RADIUS protocols. When a user logs in to the Switch or tries to access the administrator level privilege, he or she is prompted for a password.
Page 279 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual The Access Authentication Control commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters enable authen_policy disable authen_policy show authen_policy create authen_login method_list_name <string 15>...
Page 280 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual enable authen_policy Purpose Used to enable system access authentication policy. Syntax enable authen_policy Description This command will enable an administrator-defined authentication policy for users trying to access the Switch. When enabled, the device will check the method list and choose a technique for user authentication upon login.
Page 281 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To display the system access authentication policy: DGS-3612G:4#show authen_policy Command: show authen_policy Authentication Policy: Enabled DGS-3612G:4# create authen_login method_list_name Purpose Used to create a user defined method list of authentication methods for users logging on to the Switch.
Page 282 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config authen_login administrator level, the user must implement the enable admin command, followed by a previously configured password. (See the enable admin part of this section for more detailed information, concerning the enable admin command.)
Page 283 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To configure the user defined method list “Trinity” with authentication methods TACACS, XTACACS and local, in that order. DGS-3612G:4#config authen_login method_list_name Trinity method tacacs xtacacs local Command: config authen_login method_list_name Trinity method tacacs xtacacs local Success.
Page 284 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual show authen_login all – Entering this parameter will display all the authentication login methods currently configured on the Switch. The window will display the following parameters: Method List Name – The name of a previously configured method list name.
Page 285 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#create authen_enable method_list_name Permit Command: show authen_login method_list_name Permit Success. DGS-3612G:4# config authen_enable Purpose Used to configure a user-defined method list of authentication methods for promoting normal user level privileges to Administrator level privileges on the Switch.
Page 286 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config authen_enable defined by the user (create authen_enable). The user may add one, or a combination of up to four (4) of the following authentication methods to this method list: tacacs –...
Page 287 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual delete authen_enable method_list_name authentication methods for promoting user level privileges to Administrator level privileges. Parameters <string 15> - Enter an alphanumeric string of up to 15 characters to define the given enable method list to delete.
Page 288 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show authen_enable all Command: show authen_enable all Method List Name Priority Method Name Comment ---------------- -------- --------------- ------------------ Permit tacacs+ Built-in Group tacacs Built-in Group Darren User-defined Group local Keyword...
Page 289 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#config authen application http login default Command: config authen application http login default Success. DGS-3612G:4# show authen application Purpose Used to display authentication methods for the various applications on the Switch.
Page 290 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual create authen server_host TACACS protocol. xtacacs - Enter this parameter if the server host utilizes the XTACACS protocol. tacacs+ - Enter this parameter if the server host utilizes the TACACS+ protocol.
Page 291 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config authen server_host protocol – The protocol used by the server host. The user may choose one of the following: tacacs – Enter this parameter if the server host utilizes the TACACS protocol.
Page 292 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual delete authen server_host XTACACS protocol. tacacs+ - Enter this parameter if the server host utilizes the TACACS+ protocol. radius - Enter this parameter if the server host utilizes the RADIUS protocol.
Page 293 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual create authen server_group Purpose Used to create a user-defined authentication server group. Syntax create authen server_group <string 15> Description This command will create an authentication server group. A server group is a technique used to group TACACS/XTACACS/TACACS+/RADIUS server hosts into user defined categories for authentication using method lists.
Page 294 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config authen server_group server group. server_host <ipaddr> - Enter the IP address of the previously configured server host to add or delete. protocol – Enter the protocol utilized by the server host. There are three options: tacacs –...
Page 295 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual show authen server_group configured on the Switch. This command will display the following fields: Group Name: The name of the server group currently configured on the Switch, including built in groups and user defined groups.
Page 296 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config authen parameter attempt Purpose Used to configure the maximum number of times the Switch will accept authentication attempts. Syntax config authen parameter attempt <int 1-255> Description This command will configure the maximum number of times the Switch will accept authentication attempts.
Page 297 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual enable admin Purpose Used to promote user level privileges to administrator level privileges Syntax enable admin Description This command is for users who have logged on to the Switch on the normal user level, to become promoted to the administrator level.
Page 298: Ssh Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual SSH C OMMANDS The steps required to use the Secure Shell (SSH) protocol for secure communication between a remote PC (the SSH Client) and the Switch (the SSH Server), are as follows: Create a user account with admin-level access using the create account admin <username>...
Page 299 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#enable ssh Command: enable ssh Success. DGS-3612G:4# disable ssh Purpose Used to disable SSH. Syntax disable ssh Description This command allows users to disable SSH on the Switch. Parameters None.
Page 300 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#config ssh authmode password enable Command: config ssh authmode password enable Success. DGS-3612G:4# show ssh authmode Purpose Used to display the SSH authentication mode setting. Syntax show ssh authmode Description This command will allow users to display the current SSH authentication set on the Switch.
Page 301 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4# config ssh server maxsession 2 contimeout 300 authfail 2 Command: config ssh server maxsession 2 contimeout 300 authfail 2 Success. DGS-3612G:4# show ssh server Purpose Used to display the SSH server setting.
Page 302 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config ssh user use an administrator defined password for authentication. Upon entry of this command, the Switch will prompt the user for a password, and then to retype the password for confirmation.
Page 303 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config ssh algorithm Purpose Used to configure the SSH algorithm. Syntax config ssh algorithm [3DES | AES128 | AES192 | AES256 | arcfour | blowfish | cast128 | twofish128 | twofish192 | twofish256 | MD5 | SHA1 |...
Page 304 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual show ssh algorithm Parameters None. Restrictions None. Usage Example: To display SSH algorithms currently set on the Switch: DGS-3612G:4#show ssh algorithm Command: show ssh algorithm Encryption Algorithm ----------------------------------------- 3DES :Enabled...
Page 305: Ssl Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual SSL C OMMANDS Secure Sockets Layer or SSL is a security feature that will provide a secure communication path between a host and client through the use of authentication, digital signatures and encryption. These security functions are implemented through the use of a ciphersuite,...
Page 306 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual enable ssl Purpose To enable the SSL function on the Switch. Syntax enable ssl {ciphersuite {RSA_with_RC4_128_MD5 | RSA_with_3DES_EDE_CBC_SHA | DHE_DSS_with_3DES_EDE_CBC_SHA | RSA_EXPORT_with_RC4_40_MD5}} Description This command will enable SSL on the Switch by implementing any one or combination of listed ciphersuites on the Switch.
Page 307 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual disable ssl Purpose To disable the SSL function on the Switch. Syntax disable ssl {ciphersuite {RSA_with_RC4_128_MD5 | RSA_with_3DES_EDE_CBC_SHA | DHE_DSS_with_3DES_EDE_CBC_SHA | RSA_EXPORT_with_RC4_40_MD5}} Description This command will disable SSL on the Switch and can be used to disable any one or combination of listed ciphersuites on the Switch.
Page 308 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual config ssl cachetimeout timeout Parameters timeout <value 60-86400> - Enter a timeout value between 60 and 86400 seconds to specify the total time an SSL key exchange ID stays valid before the SSL module will require a new, full SSL negotiation for connection.
Page 309 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show ssl Command: show ssl SSL Status Disabled RSA_WITH_RC4_128_MD5 0x0004 Enabled RSA_WITH_3DES_EDE_CBC_SHA 0x000A Enabled DHE_DSS_WITH_3DES_EDE_CBC_SHA 0x0013 Enabled RSA_EXPORT_WITH_RC4_40_MD5 0x0003 Enabled DGS-3612G:4# Example usage: To view certificate file information on the Switch:...
Page 310: Jumbo Frame Commands
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual UMBO RAME OMMANDS Certain switches can support jumbo frames (frames larger than the Ethernet frame size of 1536 bytes). To transmit frames of up to 9216 bytes (and 9220 bytes tagged), the user can increase the maximum transmission unit (MTU) size from the default of 1536 by enabling the Jumbo Frame command.
Page 311 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#disable jumbo_frame Command: disable jumbo_frame Success. DGS-3612G:4# show jumbo_frame Purpose Used to show the status of the jumbo frame function on the Switch. Syntax show jumbo_frame Description This command will show the status of the jumbo frame function on the Switch.
Page 312: D-Link Single Ip Management Commands
6. The CaS can be configured through the CS to become a MS. After configuring one switch to operate as the CS of a SIM group, additional the xStack DGS-3612G may join the group by either an automatic method or by manually configuring the Switch to be a MS. The CS will then serve as the in band entry point for access to...
Page 313 CS, do not belong. The Upgrade to v1.6 To better improve SIM management, the xStack DGS-3612G has been upgraded to version 1.6 in this release. Many improvements have been made, including: The Commander Switch (CS) now has the capability to automatically rediscover member switches that have left the SIM group, either through a reboot or web malfunction.
Page 314 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual enable sim Purpose Used to enable Single IP Management (SIM) on the Switch Syntax enable sim Description This command will enable SIM globally on the Switch. SIM features and functions will not function properly unless this function is enabled.
Page 315 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual show sim MAC Address - Displays the MAC Address of the Switch. Capabilities – Displays the type of switch, be it Layer 2 (L2) or Layer 3 (L3). Platform – Switch Description including name and model number.
Page 316 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show sim candidates Command: show sim candidates ID MAC Address Platform / Hold Firmware Device Name Capability Time Version --- ----------------- ------------------------ ----- --------- ---------------- 00-55-55-00-55-00 DGS-3612G L3 Switch 1.00-B62...
Page 317 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show sim neighbor Command: show sim neighbor Neighbor Info Table Port MAC Address Role ------ ------------------ --------- 00-35-26-00-11-99 Commander 00-35-26-00-11-91 Member 00-35-26-00-11-90 Candidate Total Entries: 3 DGS-3612G:4# reconfig Purpose Used to connect to a member switch, through the commander switch, using telnet.
Page 318 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#config sim_group add 2 Command: config sim_group add 2 Please wait for ACK!!! SIM Config Success !!! Success. DGS-3612G:4# To delete a member: DGS-3612G:4#config sim_group delete 1 Command: config sim_group delete 1...
Page 319 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4# config sim commander dp_interval 40 Command: config sim commander dp_interval 40 Success. DGS-3612G:4# To change the hold time of the discovery protocol: DGS-3612G:4# config sim hold_time 120 Command: config sim hold_time 120 Success.
Page 320 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual download sim_ms members – Enter this parameter to specify the members the user prefers to download firmware or switch configuration files to. The user may specify a member or members by adding one of the following: <mslist 1-32>...
Page 321 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual upload sim_ms log_to_tftp - Specify this parameter to download a switch log to members of a SIM group. <ipaddr> - Enter the IP address of the TFTP server to upload a configuration file to.
Page 322: Command History List
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual OMMAND ISTORY The switch history commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters {<command>} config command_history <value 1-40>...
Page 323 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual To display the parameters for a specific command: DGS-3612G:4#? config stp Command:? config stp Command: config stp Usage: {maxage <value 6-40> | maxhops <value1-20> | hellotime <value 1- 10> | forwarddelay <value 4-30> | txholdcount <value 1-10> | fbpdu [enable | disable] | lbd [enable | disable] | lbd_recover_timer [0 | <value 60-1000000>]}...
Page 324 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3612G:4#show command_history Command: show command_history ? show show vlan show command history DGS-3612G:4#...
Page 325: Technical Specifications
DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual ECHNICAL PECIFICATIONS General IEEE 802.3 10BASE-T Ethernet Protocols IEEE 802.3u 100BASE-TX Fast Ethernet IEEE 802.3ab 1000BASE-T Gigabit Ethernet IEEE 802.3z 1000BASE-T (SFP “Mini GBIC”) IEEE 802.1D Spanning Tree IEEE 802.1s Multiple Spanning Tree IEEE 802.1w Rapid Spanning Tree...
Page 326 DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Physical and Environmental Input: 100~240V, AC/1.3A, 50~60Hz Internal power supply Output: 12V, 10A (MAX), Power Consumption DGS-3612G – 60W DC fans DGS-3612G – Three 40mm x 40mm x 20mm; one 50mm x 50mm x 20mm fans Operating Temperature 0 - 40°C...

D-Link xstack DGS-3612G Instruction Manual

Quick Links

Related Manuals for D-Link xstack DGS-3612G

Summary of Contents for D-Link xstack DGS-3612G

Table of Contents