Command Line Interface Guide
Page 18
show (mst 372 exit (mst 373 abort (mst 374 show spanning-tree 375 spanning-tree guard root 389 29 SSH Commands 391 ip ssh port 391 ip ssh server 391 crypto key generate dsa 392 crypto key generate rsa 393 ip ssh pubkey-auth 393 crypto key pubkey-chain ssh 394 user-key 395 key-string 396 show ip ssh 398 show crypto key mypubkey 399 show crypto key pubkey-chain ssh 400 30 Syslog Commands 401 logging on 401 logging 401 logging console 403 logging buffered 404 logging buffered size 404 clear logging 405 logging file 406 18 Contents
show (mst 372 exit (mst 373 abort (mst 374 show spanning-tree 375 spanning-tree guard root 389 29 SSH Commands 391 ip ssh port 391 ip ssh server 391 crypto key generate dsa 392 crypto key generate rsa 393 ip ssh pubkey-auth 393 crypto key pubkey-chain ssh 394 user-key 395 key-string 396 show ip ssh 398 show crypto key mypubkey 399 show crypto key pubkey-chain ssh 400 30 Syslog Commands 401 logging on 401 logging 401 logging console 403 logging buffered 404 logging buffered size 404 clear logging 405 logging file 406 18 Contents
Command Line Interface Guide
Page 29
... CLI The device can be managed over cable to the RS-232 serial port of the device to enter the SSH Public Key-chain Configuration mode. • QoS - • SSH Public Key-chain - NOTE: The following steps: 1 Connect the DB9 null-modem or cross over a direct connection...the MAC access-list configuration mode. The qos Global Configuration mode command is for Function, Arrow, and Ctrl keys. For more information, see Dell™ PowerConnect™ 3500 Series User's Guide. 2 Enter the following commands to enter the QoS services configuration mode. • MAC Access-List- ...
... CLI The device can be managed over cable to the RS-232 serial port of the device to enter the SSH Public Key-chain Configuration mode. • QoS - • SSH Public Key-chain - NOTE: The following steps: 1 Connect the DB9 null-modem or cross over a direct connection...the MAC access-list configuration mode. The qos Global Configuration mode command is for Function, Arrow, and Ctrl keys. For more information, see Dell™ PowerConnect™ 3500 Series User's Guide. 2 Enter the following commands to enter the QoS services configuration mode. • MAC Access-List- ...
Command Line Interface Guide
Page 34
...IGMP configuration and IGMP information. Configures and manages IPv6 addresses on specific target ports. Configures and displays LACP information. Configures SSH authentication. Describes user commands used for , example ports, storm control, and auto-negotiation. Configures Voice VLANs and displays...Ethernet Commands Port Channel Commands Port Monitor Commands QoS Commands RADIUS Commands RMON Commands SNMP Commands Spanning Tree Commands SSH Commands Syslog Commands System Management Commands TACACS Commands TIC Commands Tunnel Commands User Interface Commands VLAN Commands Voice VLAN...
...IGMP configuration and IGMP information. Configures and manages IPv6 addresses on specific target ports. Configures and displays LACP information. Configures SSH authentication. Describes user commands used for , example ports, storm control, and auto-negotiation. Configures Voice VLANs and displays...Ethernet Commands Port Channel Commands Port Monitor Commands QoS Commands RADIUS Commands RMON Commands SNMP Commands Spanning Tree Commands SSH Commands Syslog Commands System Management Commands TACACS Commands TIC Commands Tunnel Commands User Interface Commands VLAN Commands Voice VLAN...
Command Line Interface Guide
Page 53
... Controls error messages logging. Access Mode Global Configuration Global Configuration Global Configuration Global Configuration Command Groups 53 Enables the device to be used by the SSH server. Enters SSH Public Key-chain configuration mode. Access Mode Global Configuration Global Configuration Global Configuration Global Configuration Global Configuration Global Configuration...
... Controls error messages logging. Access Mode Global Configuration Global Configuration Global Configuration Global Configuration Command Groups 53 Enables the device to be used by the SSH server. Enters SSH Public Key-chain configuration mode. Access Mode Global Configuration Global Configuration Global Configuration Global Configuration Global Configuration Global Configuration...
Command Line Interface Guide
Page 60
... dot1x timeout reauthperiod dot1x reauthentication dot1x timeout quietperiod dot1x timeout txperiod dot1x max-req dot1x timeout supptimeout dot1x timeout servertimeout show ip https Displays the SSH certificates of seconds that the device remains in the quiet state following a failed authentication exchange. Interface Configuration Interface Configuration Sets the number of the client...
... dot1x timeout reauthperiod dot1x reauthentication dot1x timeout quietperiod dot1x timeout txperiod dot1x max-req dot1x timeout supptimeout dot1x timeout servertimeout show ip https Displays the SSH certificates of seconds that the device remains in the quiet state following a failed authentication exchange. Interface Configuration Interface Configuration Sets the number of the client...
Command Line Interface Guide
Page 63
... certificate generate crypto certificate import crypto certificate request crypto key generate dsa crypto key generate rsa crypto key pubkey-chain ssh dot1x system-auth-control dot1x traps macauthentication failure Description Specifies one or more authentication, authorization, and accounting (AAA) ...Configures an external time source for HTTPS. Defines authentication method lists for display purposes Generates a self-signed HTTPS certificate. Enters SSH Public Key-chain configuration mode. Sets the time zone for accessing higher privilege levels. Adds a permanent entry in the ARP...
... certificate generate crypto certificate import crypto certificate request crypto key generate dsa crypto key generate rsa crypto key pubkey-chain ssh dot1x system-auth-control dot1x traps macauthentication failure Description Specifies one or more authentication, authorization, and accounting (AAA) ...Configures an external time source for HTTPS. Defines authentication method lists for display purposes Generates a self-signed HTTPS certificate. Enters SSH Public Key-chain configuration mode. Sets the time zone for accessing higher privilege levels. Adds a permanent entry in the ARP...
Command Line Interface Guide
Page 65
...buffer based on severity. Defines a management access-list, and enters the access-list for incoming SSH sessions. Enables logging management access list events. Enables the device to be configured from a SSH server. Specifies the TCP port for passwords in the internal buffer. Limits syslog messages displayed ...certificate ip https exec-timeout ip https port ip https server ip igmp snooping (Global) ip name-server ip ssh port ip ssh pubkey-auth ip ssh server lacp system-priority line logging logging buffered logging buffered size logging console logging file logging on mac access-...
...buffer based on severity. Defines a management access-list, and enters the access-list for incoming SSH sessions. Enables logging management access list events. Enables the device to be configured from a SSH server. Specifies the TCP port for passwords in the internal buffer. Limits syslog messages displayed ...certificate ip https exec-timeout ip https port ip https server ip igmp snooping (Global) ip name-server ip ssh port ip ssh pubkey-auth ip ssh server lacp system-priority line logging logging buffered logging buffered size logging console logging file logging on mac access-...
Command Line Interface Guide
Page 74
...VLANs or at startup show access-lists Displays ACLs defined on the device. show crypto certificate mycertificate Displays the SSH certificates of the DHCP snooping binding file. Displays the statically configured multicast addresses. show authentication methods Displays information... device. show cpu utilization Displays information about the authentication methods. table static show crypto key mypubkey Displays the SSH public keys stored on the device. show bridge multicast filtering Displays the Multicast filtering configuration. set line active ...
...VLANs or at startup show access-lists Displays ACLs defined on the device. show crypto certificate mycertificate Displays the SSH certificates of the DHCP snooping binding file. Displays the statically configured multicast addresses. show authentication methods Displays information... device. show cpu utilization Displays information about the authentication methods. table static show crypto key mypubkey Displays the SSH public keys stored on the device. show bridge multicast filtering Displays the Multicast filtering configuration. set line active ...
Command Line Interface Guide
Page 75
.... show interfaces advertise Displays autonegotiation advertisement data. show dot1x advanced Displays 802.1x enhanced features for the device or for all interfaces. show ip ssh Displays the SSH server configuration. show ip https Displays the HTTPS server configuration. show hosts Displays the default domain name, a list of name server hosts, the static...
.... show interfaces advertise Displays autonegotiation advertisement data. show dot1x advanced Displays 802.1x enhanced features for the device or for all interfaces. show ip ssh Displays the SSH server configuration. show ip https Displays the HTTPS server configuration. show hosts Displays the default domain name, a list of name server hosts, the static...
Command Line Interface Guide
Page 76
... (SNTP). Shows the status of SNMP users. Displays VLAN information. Reloads stack members. Specifies which SSH public key is manually configured and enters the SSH public key-string configuration command. Shows the configuration of SNMP filters. Displays the syslog servers settings. ...SP (SSH Public Key) Mode Command Group key-string user-key Description Manually specifies a SSH public key. Changes a login username. Displays information about the login history of a copper ...
... (SNTP). Shows the status of SNMP users. Displays VLAN information. Reloads stack members. Specifies which SSH public key is manually configured and enters the SSH public key-string configuration command. Shows the configuration of SNMP filters. Displays the syslog servers settings. ...SP (SSH Public Key) Mode Command Group key-string user-key Description Manually specifies a SSH public key. Changes a login username. Displays information about the login history of a copper ...
Command Line Interface Guide
Page 88
Example The following example specifies password secret on a line. Console(config)# line console Console(config-line)# password secret 88 AAA Commands Line Console Telnet SSH Login Method List Default Default Default Enable Method List Default Default Default http https dot1x console# : Local : Local : password The password Line Configuration mode command ...
Example The following example specifies password secret on a line. Console(config)# line console Console(config-line)# password secret 88 AAA Commands Line Console Telnet SSH Login Method List Default Default Default Enable Method List Default Default Default http https dot1x console# : Local : Local : password The password Line Configuration mode command ...
Command Line Interface Guide
Page 237
... Mode Global Configuration mode. Examples The following example configures the device as a virtual terminal for secured remote console access (SSH). Virtual terminal for remote console access. Console(config)# line telnet Console(config-line)# Line Commands 237 Virtual terminal for configuration...command. Line Commands line The line Global Configuration mode command identifies a specific line for remote console access (Telnet). • ssh - User Guidelines There are no default configuration. Console terminal line. • telnet - Syntax • line {console | telnet...
... Mode Global Configuration mode. Examples The following example configures the device as a virtual terminal for secured remote console access (SSH). Virtual terminal for remote console access. Console(config)# line telnet Console(config-line)# Line Commands 237 Virtual terminal for configuration...command. Line Commands line The line Global Configuration mode command identifies a specific line for remote console access (Telnet). • ssh - User Guidelines There are no default configuration. Console terminal line. • telnet - Syntax • line {console | telnet...
Command Line Interface Guide
Page 242
... history buffer size to the default setting. Virtual terminal for secured remote console access (SSH). 242 Line Commands Console> terminal history size 20 show line The show line [console | telnet | ssh] • console - Command Mode User EXEC mode. To change the default size...256. Syntax • show line User EXEC mode command displays line parameters. Virtual terminal for remote console access (Telnet). • ssh - terminal history size The terminal history size User EXEC command configures the command history buffer size for the current terminal session. Console ...
... history buffer size to the default setting. Virtual terminal for secured remote console access (SSH). 242 Line Commands Console> terminal history size 20 show line The show line [console | telnet | ssh] • console - Command Mode User EXEC mode. To change the default size...256. Syntax • show line User EXEC mode command displays line parameters. Virtual terminal for remote console access (Telnet). • ssh - terminal history size The terminal history size User EXEC command configures the command history buffer size for the current terminal session. Console ...
Command Line Interface Guide
Page 243
User Guidelines There are no user guidelines for this command. Command Mode User EXEC mode. Examples The following example displays the line configuration. Default Configuration If the line is not specified, the default value is console. Console> show line Console configuration: Interactive timeout: Disabled History: 10 Baudrate: 9600 Databits: 8 Parity: none Stopbits: 1 Telnet configuration: Interactive timeout: 10 minutes 10 seconds History: 10 SSH configuration: Interactive timeout: 10 minutes 10 seconds History: 10 Line Commands 243
User Guidelines There are no user guidelines for this command. Command Mode User EXEC mode. Examples The following example displays the line configuration. Default Configuration If the line is not specified, the default value is console. Console> show line Console configuration: Interactive timeout: Disabled History: 10 Baudrate: 9600 Databits: 8 Parity: none Stopbits: 1 Telnet configuration: Interactive timeout: 10 minutes 10 seconds History: 10 SSH configuration: Interactive timeout: 10 minutes 10 seconds History: 10 Line Commands 243
Command Line Interface Guide
Page 247
...] [ethernet interface-number | vlan vlan-id | port-channel number] [service service] • ethernet interface-number - Command Mode Management Access-list Configuration mode. Possible values: telnet, ssh, http, https and snmp. A valid network mask of bits that comprise the source IP address prefix. permit (Management) The permit Management Access-List Configuration mode...
...] [ethernet interface-number | vlan vlan-id | port-channel number] [service service] • ethernet interface-number - Command Mode Management Access-list Configuration mode. Possible values: telnet, ssh, http, https and snmp. A valid network mask of bits that comprise the source IP address prefix. permit (Management) The permit Management Access-List Configuration mode...
Command Line Interface Guide
Page 248
... port-channel parameters are valid only if an IP address is optional. • mask mask - A valid port-channel number. • ipv4-address - Possible values: telnet, ssh, http, https and snmp. deny (Management) The deny Management Access-List Configuration mode command defines a deny rule. Syntax • deny [ethernet interface-number | vlan vlan...
... port-channel parameters are valid only if an IP address is optional. • mask mask - A valid port-channel number. • ipv4-address - Possible values: telnet, ssh, http, https and snmp. deny (Management) The deny Management Access-List Configuration mode command defines a deny rule. Syntax • deny [ethernet interface-number | vlan vlan...
Command Line Interface Guide
Page 275
Syntax • show banner motd • show banner login • show banner Privileged EXEC mode command displays the banners configuration. Command Mode Privileged EXEC mode. Example The following example displays the banners configuration. show banner The show banner exec Default Configuration This command has no user guidelines for this command. User Guidelines There are no default configuration. Device> show motd Console: Enabled Telnet: Enabled SSH: Enabled MOTD Message $(bold)Upgrade$(bold) to all devices begins at March 12 Login Banner 275
Syntax • show banner motd • show banner login • show banner Privileged EXEC mode command displays the banners configuration. Command Mode Privileged EXEC mode. Example The following example displays the banners configuration. show banner The show banner exec Default Configuration This command has no user guidelines for this command. User Guidelines There are no default configuration. Device> show motd Console: Enabled Telnet: Enabled SSH: Enabled MOTD Message $(bold)Upgrade$(bold) to all devices begins at March 12 Login Banner 275
Command Line Interface Guide
Page 391
... specifies the port to be configured from a SSH server. Syntax • ip ssh server • no form of this command. Use the no ip ssh port • port-number - Console(config)# ip ssh port 8080 ip ssh server The ip ssh server Global Configuration mode command enables the device to... disable this command to be used by the SSH server. (Range: 1 - 65535) Default Configuration The...
... specifies the port to be configured from a SSH server. Syntax • ip ssh server • no form of this command. Use the no ip ssh port • port-number - Console(config)# ip ssh port 8080 ip ssh server The ip ssh server Global Configuration mode command enables the device to... disable this command to be used by the SSH server. (Range: 1 - 65535) Default Configuration The...
Command Line Interface Guide
Page 392
...to the backup master. • This command may take a considerable period of time to execute. 392 SSH Commands User Guidelines • If encryption keys are not generated, the SSH server is in the private configuration, which is never displayed to replace the existing keys with new keys... are generated in the device configuration; To generate SSH server keys, use the crypto key generate dsa, and crypto key generate rsa Global Configuration mode commands. Command Mode Global Configuration mode....
...to the backup master. • This command may take a considerable period of time to execute. 392 SSH Commands User Guidelines • If encryption keys are not generated, the SSH server is in the private configuration, which is never displayed to replace the existing keys with new keys... are generated in the device configuration; To generate SSH server keys, use the crypto key generate dsa, and crypto key generate rsa Global Configuration mode commands. Command Mode Global Configuration mode....
Command Line Interface Guide
Page 393
Example The following example generates DSA key pairs. Syntax • ip ssh pubkey-auth • no form of time to disable this command are saved in the private configuration which is not saved in pairs: one public ... take a considerable period of this command to execute. Use the no ip ssh pubkey-auth SSH Commands 393 Console(config)# crypto key generate rsa ip ssh pubkey-auth The ip ssh pubkey-auth Global Configuration mode command enables public key authentication for incoming SSH sessions. Syntax • crypto key generate rsa Default Configuration RSA key...
Example The following example generates DSA key pairs. Syntax • ip ssh pubkey-auth • no form of time to disable this command are saved in the private configuration which is not saved in pairs: one public ... take a considerable period of this command to execute. Use the no ip ssh pubkey-auth SSH Commands 393 Console(config)# crypto key generate rsa ip ssh pubkey-auth The ip ssh pubkey-auth Global Configuration mode command enables public key authentication for incoming SSH sessions. Syntax • crypto key generate rsa Default Configuration RSA key...