User Manual
Page 1
Dell™ PowerConnect™ 3248 and 5224 Network Switches Addendum to the 3248 and 5224 User's Guides www.dell.com | support.dell.com
Dell™ PowerConnect™ 3248 and 5224 Network Switches Addendum to the 3248 and 5224 User's Guides www.dell.com | support.dell.com
User Manual
Page 4
www.dell.com | support.dell.com System Logs Remote system logging allows you to specify which levels are logged to flash memory are logged to RAM or flash memory. The levels range from the Web interface and the command line interface (CLI). System Logs Configuration The Switch/General...error messages to the logging process. 4 Addendum to the 3248 and 5224 User's Guides Enables/disables the logging of system messages directly from 0 for Emergencies to flash or RAM memory. Up to RAM. The Switch/General/System Logs page contains the following table for Debugging. To ...
www.dell.com | support.dell.com System Logs Remote system logging allows you to specify which levels are logged to flash memory are logged to RAM or flash memory. The levels range from the Web interface and the command line interface (CLI). System Logs Configuration The Switch/General...error messages to the logging process. 4 Addendum to the 3248 and 5224 User's Guides Enables/disables the logging of system messages directly from 0 for Emergencies to flash or RAM memory. Up to RAM. The Switch/General/System Logs page contains the following table for Debugging. To ...
User Manual
Page 5
...want to or less than the Ram Level. Limits log messages saved to the switch's permanent flash memory for all levels up to the specified level. For example, if level 7 is representative of PowerConnect 3248 and 5224. If you make in this page, click Apply Changes. Addendum to flash.... • Ram Level - To save the changes, click Refresh. NOTE: System log messages are logged to the 3248 and 5224 User's Guides 5 • Flash Level -...
...want to or less than the Ram Level. Limits log messages saved to the switch's permanent flash memory for all levels up to the specified level. For example, if level 7 is representative of PowerConnect 3248 and 5224. If you make in this page, click Apply Changes. Addendum to flash.... • Ram Level - To save the changes, click Refresh. NOTE: System log messages are logged to the 3248 and 5224 User's Guides 5 • Flash Level -...
User Manual
Page 6
...allows you to configure the logging of debug or error messages to syslog servers or other management stations. Limits syslog messages saved to switch memory based on logging history {flash | ram} level show logging flash Syslog logging: Disable History logging in temporary RAM (memory ... - You can also limit the error messages sent to messages of syslog messages to the 3248 and 5224 User's Guides Command logging on severity. www.dell.com | support.dell.com CLI Commands The following table summarizes the equivalent CLI commands for system and event messages Example Console...
...allows you to configure the logging of debug or error messages to syslog servers or other management stations. Limits syslog messages saved to switch memory based on logging history {flash | ram} level show logging flash Syslog logging: Disable History logging in temporary RAM (memory ... - You can also limit the error messages sent to messages of syslog messages to the 3248 and 5224 User's Guides Command logging on severity. www.dell.com | support.dell.com CLI Commands The following table summarizes the equivalent CLI commands for system and event messages Example Console...
User Manual
Page 7
... of 16 to save any changes you make in this page, click Apply Changes. Specifies a new server IP address to add to the 3248 and 5224 User's Guides 7 If you do not want to 23. Addendum to the Host IP List. Displays the list of debug or error messages to an... appropriate service. (Default: 23) • Logging Trap - To add an IP address to the specified level. To save the changes, click Refresh. The Switch/General/Remote Logs page contains the following fields that receive the syslog messages. Enables/disables the logging of remote server IP addresses that can be...
... of 16 to save any changes you make in this page, click Apply Changes. Specifies a new server IP address to add to the 3248 and 5224 User's Guides 7 If you do not want to 23. Addendum to the Host IP List. Displays the list of debug or error messages to an... appropriate service. (Default: 23) • Logging Trap - To add an IP address to the specified level. To save the changes, click Refresh. The Switch/General/Remote Logs page contains the following fields that receive the syslog messages. Enables/disables the logging of remote server IP addresses that can be...
User Manual
Page 8
...Switch/General/Remote Logs page. The no form command returns the facility type to a remote server based on severity. Limits syslog messages saved to the default. The no form command returns the remote logging of syslog messages to the default level. 8 Addendum to the 3248 and 5224... Guides The no form command removes a syslog server host. CLI Commands The following figure is representative of PowerConnect 3248 and 5224. www.dell.com | support.dell.com The following table summarizes the equivalent CLI commands for remote logging of syslog messages. Command logging host ...
...Switch/General/Remote Logs page. The no form command returns the facility type to a remote server based on severity. Limits syslog messages saved to the default. The no form command returns the remote logging of syslog messages to the default level. 8 Addendum to the 3248 and 5224... Guides The no form command removes a syslog server host. CLI Commands The following figure is representative of PowerConnect 3248 and 5224. www.dell.com | support.dell.com The following table summarizes the equivalent CLI commands for remote logging of syslog messages. Command logging host ...
User Manual
Page 9
...: 10.1.0.9 REMOTELOG server ip address: 0.0.0.0 REMOTELOG server ip address: 0.0.0.0 REMOTELOG server ip address: 0.0.0.0 REMOTELOG server ip address: 0.0.0.0 Console# Security The Switch/Security page contains new links to the 3248 and 5224 User's Guides 9 The RADIUS Settings page was renamed Authentication Settings and updated to include Terminal Access Controller Access Control System Plus...
...: 10.1.0.9 REMOTELOG server ip address: 0.0.0.0 REMOTELOG server ip address: 0.0.0.0 REMOTELOG server ip address: 0.0.0.0 REMOTELOG server ip address: 0.0.0.0 Console# Security The Switch/Security page contains new links to the 3248 and 5224 User's Guides 9 The RADIUS Settings page was renamed Authentication Settings and updated to include Terminal Access Controller Access Control System Plus...
User Manual
Page 10
...: 120 seconds) • SSH authentication retries - Default: 3) To save the changes, click Refresh. www.dell.com | support.dell.com NOTE: There are two versions of PowerConnect 3248 and 5224. 10 Addendum to the 32 48 and 5 224 User 's Guides The switch supports only SSH v1.5. Specifies the time interval in this page, click Apply Changes...
...: 120 seconds) • SSH authentication retries - Default: 3) To save the changes, click Refresh. www.dell.com | support.dell.com NOTE: There are two versions of PowerConnect 3248 and 5224. 10 Addendum to the 32 48 and 5 224 User 's Guides The switch supports only SSH v1.5. Specifies the time interval in this page, click Apply Changes...
User Manual
Page 11
... of secure shell SSH status: enable SSH authentication timeout: 100 SSH authentication retries: 5 Console#show ssh Usage Enables the SSH server on the switch. Command ip ssh server ip ssh {[timeout seconds] | [authentication-retries integer]} disconnect ssh connection_id show ip ssh show ssh Information of secure ...authentication-retries 5 Console(config)# Console#show ip ssh Information of the SSH server and the configured values for items in the Switch/Security/SSH page. The connection_id is the session number displayed when using the show ssh command. Terminates an SSH connection.
... of secure shell SSH status: enable SSH authentication timeout: 100 SSH authentication retries: 5 Console#show ssh Usage Enables the SSH server on the switch. Command ip ssh server ip ssh {[timeout seconds] | [authentication-retries integer]} disconnect ssh connection_id show ip ssh show ssh Information of secure ...authentication-retries 5 Console(config)# Console#show ip ssh Information of the SSH server and the configured values for items in the Switch/Security/SSH page. The connection_id is the session number displayed when using the show ssh command. Terminates an SSH connection.
User Manual
Page 12
...-effort delivery, while TCP offers a connection-oriented transport. Select the authentication, or authentication sequence, required: (Default: Local) - The switch authenticates the user. - RADIUS - Also, note that uses a central server to control authentication for the CLI enable command that can ... user name/password pair. The Switch/Security/Authentication Settings page contains the following fields that allows access to the switch, and level 15 allows Privileged Exec access. 0 started admin 1.5 cipher-3des session- www.dell.com | support.dell.com NOTE: When you must ...
...-effort delivery, while TCP offers a connection-oriented transport. Select the authentication, or authentication sequence, required: (Default: Local) - The switch authenticates the user. - RADIUS - Also, note that uses a central server to control authentication for the CLI enable command that can ... user name/password pair. The Switch/Security/Authentication Settings page contains the following fields that allows access to the switch, and level 15 allows Privileged Exec access. 0 started admin 1.5 cipher-3des session- www.dell.com | support.dell.com NOTE: When you must ...
User Manual
Page 13
... attempts to the RADIUS server before failure. Server IP Address - Specifies the number of request transmits to authenticate the user first, then the switch, and then a TACACS+ server. - Addendum to authenticate the user. - A RADIUS server attempts to authenticate the user first, and then... 's Guides 13 TACACS, Local, RADIUS - If using a RADIUS server, specify the following details: - Number of the RADIUS server. - - The switch attempts to authenticate the user first, and then a TACACS+ server attempts to authenticate the user first, then a RADIUS server, and then a TACACS+...
... attempts to the RADIUS server before failure. Server IP Address - Specifies the number of request transmits to authenticate the user first, then the switch, and then a TACACS+ server. - Addendum to authenticate the user. - A RADIUS server attempts to authenticate the user first, and then... 's Guides 13 TACACS, Local, RADIUS - If using a RADIUS server, specify the following details: - Number of the RADIUS server. - - The switch attempts to authenticate the user first, and then a TACACS+ server attempts to authenticate the user first, then a RADIUS server, and then a TACACS+...
User Manual
Page 14
Secret Text String - Specifies the number of seconds the switch waits for a Reply - Server IP Address - To save any changes you do not want to the 32 48 and 5 224 User 's Guides Do not use ... using a TACACS+ server, specify the following figure is shared between the switch and the TACACS+ server. www.dell.com | support.dell.com NOTE: The local switch user database must be set up through the CLI by the TACACS+ server. - Identifies the IP address of PowerConnect 3248 and 5224. 14 Addendum to save the changes, click Refresh.
Secret Text String - Specifies the number of seconds the switch waits for a Reply - Server IP Address - To save any changes you do not want to the 32 48 and 5 224 User 's Guides Do not use ... using a TACACS+ server, specify the following figure is shared between the switch and the TACACS+ server. www.dell.com | support.dell.com NOTE: The local switch user database must be set up through the CLI by the TACACS+ server. - Identifies the IP address of PowerConnect 3248 and 5224. 14 Addendum to save the changes, click Refresh.
User Manual
Page 15
... range is 1-30.) Sets the number of the TACACS+ server parameters. Sets the number of times the switch attempts to 20 characters). Displays the current configuration of seconds the switch waits for items in the Switch/Security/Authentication Settings page. The manager must change the password. Sets the RADIUS encryption key (up to...
... range is 1-30.) Sets the number of the TACACS+ server parameters. Sets the number of times the switch attempts to 20 characters). Displays the current configuration of seconds the switch waits for items in the Switch/Security/Authentication Settings page. The manager must change the password. Sets the RADIUS encryption key (up to...
User Manual
Page 16
...pack 6a), Windows 2000 Windows 98, Windows NT (with radius server: tiger Server port number: 49 Console# Hypertext Transfer Protocol, Secure Use the Switch/Security/HTTPS page to enable the Secure Hypertext Transfer Protocol (HTTPS) over the Secure Socket Layer (SSL), providing secure access (for example, an ... the HTTPS server must indicate this format: https://device:port_number. Both the HTTP and HTTPS service can be enabled independently on the switch. www.dell.com | support.dell.com NOTE: If you enable HTTPS, you must specify the port number in the URL, in this in the URL. For ...
...pack 6a), Windows 2000 Windows 98, Windows NT (with radius server: tiger Server port number: 49 Console# Hypertext Transfer Protocol, Secure Use the Switch/Security/HTTPS page to enable the Secure Hypertext Transfer Protocol (HTTPS) over the Secure Socket Layer (SSL), providing secure access (for example, an ... the HTTPS server must indicate this format: https://device:port_number. Both the HTTP and HTTPS service can be enabled independently on the switch. www.dell.com | support.dell.com NOTE: If you enable HTTPS, you must specify the port number in the URL, in this in the URL. For ...
User Manual
Page 17
... number used for Internet Explorer 5.x and Netscape Navigator 4.x. Addendum to the 3 248 and 52 24 User 's Guides 17 The Switch/Security/HTTPS page contains the following figure is representative of PowerConnect 3248 and 5224. The following fields that can be edited: • HTTPS Status - To save the changes, click Refresh. A padlock icon should...
... number used for Internet Explorer 5.x and Netscape Navigator 4.x. Addendum to the 3 248 and 52 24 User 's Guides 17 The Switch/Security/HTTPS page contains the following figure is representative of PowerConnect 3248 and 5224. The following fields that can be edited: • HTTPS Status - To save the changes, click Refresh. A padlock icon should...
User Manual
Page 18
... stop address learning. Copies an HTTPS certificate from an TFTP server to the switch's Web interface. When port security is detected and the switch can automatically take action by disabling the port and sending a trap message. www.dell.com | support.dell.com CLI Commands The following table summarizes the equivalent CLI commands for items...
... stop address learning. Copies an HTTPS certificate from an TFTP server to the switch's Web interface. When port security is detected and the switch can automatically take action by disabling the port and sending a trap message. www.dell.com | support.dell.com CLI Commands The following table summarizes the equivalent CLI commands for items...
User Manual
Page 19
...SNMP trap message sent. None: Indicates that only an SNMP trap message be disabled. - Trap: Indicates that no action should be sent. - See "Switch 3248: ReEnabling a Shutdown Port" on the screen: • Security Status - To save the changes, click Refresh. Enables or disables port security on the...and Trap - Shutdown: Indicates that is already configured as a LACP or static trunk port cannot be enabled as an LACP trunk port, but the switch does not allow the LACP trunk to a network interconnection device. • It cannot be configured as a member of a static trunk. •...
...SNMP trap message sent. None: Indicates that only an SNMP trap message be disabled. - Trap: Indicates that no action should be sent. - See "Switch 3248: ReEnabling a Shutdown Port" on the screen: • Security Status - To save the changes, click Refresh. Enables or disables port security on the...and Trap - Shutdown: Indicates that is already configured as a LACP or static trunk port cannot be enabled as an LACP trunk port, but the switch does not allow the LACP trunk to a network interconnection device. • It cannot be configured as a member of a static trunk. •...
User Manual
Page 20
...Port Configuration page. 2 For the port that is enabled on a port. The no shutdown command in Interface Configuration mode. Switch 3248: CLI Commands The following figure is representative of PowerConnect 3248. Command port security [action {shutdown | trap | trapand-shutdown}] Usage Enables and configures port security on a port and... port using the CLI, use the no form command resets the values to the defaults. 20 Addendum to enable the port. www.dell.com | support.dell.com The following table summarizes the equivalent CLI commands for items in the Ports/Port Security page.
...Port Configuration page. 2 For the port that is enabled on a port. The no shutdown command in Interface Configuration mode. Switch 3248: CLI Commands The following figure is representative of PowerConnect 3248. Command port security [action {shutdown | trap | trapand-shutdown}] Usage Enables and configures port security on a port and... port using the CLI, use the no form command resets the values to the defaults. 20 Addendum to enable the port. www.dell.com | support.dell.com The following table summarizes the equivalent CLI commands for items in the Ports/Port Security page.
User Manual
Page 21
... taken. (This is the default.) - Example Console(config)#interface ethernet 1/5 Console(config-if)#port security action shutdown Console(config-if)#port security Console(config-if)# Switch 5224: Port Security The Ports/Port Security page contains links to the following pages: • Global Configuration • Port Security Configuration...
... taken. (This is the default.) - Example Console(config)#interface ethernet 1/5 Console(config-if)#port security action shutdown Console(config-if)#port security Console(config-if)# Switch 5224: Port Security The Ports/Port Security page contains links to the following pages: • Global Configuration • Port Security Configuration...
User Manual
Page 22
...disabled due to the 32 48 and 5 224 User 's Guides See "Switch 5224: ReEnabling a Shutdown Port" on the port. (Default: Disabled) NOTICE: If a port is representative of PowerConnect 5224. Switch 5224: Port Security Configuration On the Ports/Port Security/Port Security Configuration page, ...switch port. Enables or disables port security on page 23. For each port number listed in this page, click Apply Changes. To save the changes, click Refresh. 22 Addendum to a security violation, it must be manually re-enabled from the Ports/Port Configuration page. www.dell.com | support.dell...
...disabled due to the 32 48 and 5 224 User 's Guides See "Switch 5224: ReEnabling a Shutdown Port" on the port. (Default: Disabled) NOTICE: If a port is representative of PowerConnect 5224. Switch 5224: Port Security Configuration On the Ports/Port Security/Port Security Configuration page, ...switch port. Enables or disables port security on page 23. For each port number listed in this page, click Apply Changes. To save the changes, click Refresh. 22 Addendum to a security violation, it must be manually re-enabled from the Ports/Port Configuration page. www.dell.com | support.dell...