User Manual
Page 1
Dell™ PowerConnect™ 3248 and 5224 Network Switches Addendum to the 3248 and 5224 User's Guides www.dell.com | support.dell.com
Dell™ PowerConnect™ 3248 and 5224 Network Switches Addendum to the 3248 and 5224 User's Guides www.dell.com | support.dell.com
User Manual
Page 4
... by severity, into eight levels. Up to flash memory are permanently stored in the switch. To assist in the flash memory. Enables/disables the logging of system messages directly ... the Web interface and the command line interface (CLI). The default is set for Emergencies to the 3248 and 5224 User's Guides When the available memory for descriptions: Level Argument Emergencies Alerts Critical Errors Warnings ... to the logging process. 4 Addendum to 7 for Debugging. www.dell.com | support.dell.com System Logs Remote system logging allows you to configure and limit system...
... by severity, into eight levels. Up to flash memory are permanently stored in the switch. To assist in the flash memory. Enables/disables the logging of system messages directly ... the Web interface and the command line interface (CLI). The default is set for Emergencies to the 3248 and 5224 User's Guides When the available memory for descriptions: Level Argument Emergencies Alerts Critical Errors Warnings ... to the logging process. 4 Addendum to 7 for Debugging. www.dell.com | support.dell.com System Logs Remote system logging allows you to configure and limit system...
User Manual
Page 5
..., all levels up to flash. • Ram Level - Limits log messages saved to the switch's permanent flash memory for all messages from level 0 to level 3 are logged to the specified level. For example, if level 7 is representative of PowerConnect 3248 and 5224. • Flash Level - If you make in this page, click Apply...
..., all levels up to flash. • Ram Level - Limits log messages saved to the switch's permanent flash memory for all messages from level 0 to level 3 are logged to the specified level. For example, if level 7 is representative of PowerConnect 3248 and 5224. • Flash Level - If you make in this page, click Apply...
User Manual
Page 6
...based on logging history {flash | ram} level show logging flash Syslog logging: Disable History logging in the Switch/General/System Logs page. www.dell.com | support.dell.com CLI Commands The following table summarizes the equivalent CLI commands for system and event messages Example Console(config)#logging.... 6 Addendum to the default level. You can also limit the error messages sent to messages of syslog messages to the 3248 and 5224 User's Guides The no form command disables the logging process. event history stored in flash memory (permanent memory) ram - flash -...
...based on logging history {flash | ram} level show logging flash Syslog logging: Disable History logging in the Switch/General/System Logs page. www.dell.com | support.dell.com CLI Commands The following table summarizes the equivalent CLI commands for system and event messages Example Console(config)#logging.... 6 Addendum to the default level. You can also limit the error messages sent to messages of syslog messages to the 3248 and 5224 User's Guides The no form command disables the logging process. event history stored in flash memory (permanent memory) ram - flash -...
User Manual
Page 7
... in the Host IP List, and click Remove Host IP. The maximum number of host IP addresses allowed is specified, all levels up to the 3248 and 5224 User's Guides 7 To delete an IP address, click the entry in the Host IP Address box, and click Add IP Host. Specifies a... new server IP address to add to the remote logging process. (Default: Enabled) • Logging Facility - The Switch/General/Remote Logs page contains the following fields that receive the syslog messages. Enables/disables the logging of remote server IP addresses that can be...
... in the Host IP List, and click Remove Host IP. The maximum number of host IP addresses allowed is specified, all levels up to the 3248 and 5224 User's Guides 7 To delete an IP address, click the entry in the Host IP Address box, and click Add IP Host. Specifies a... new server IP address to add to the remote logging process. (Default: Enabled) • Logging Facility - The Switch/General/Remote Logs page contains the following fields that receive the syslog messages. Enables/disables the logging of remote server IP addresses that can be...
User Manual
Page 8
...The no form command returns the remote logging of syslog messages. CLI Commands The following figure is representative of PowerConnect 3248 and 5224. Sets the facility type for items in the Switch/General/Remote Logs page. Limits syslog messages saved to a remote server based on severity. The no form... command returns the facility type to the default. The no form command removes a syslog server host. www.dell.com | support.dell.com The following table ...
...The no form command returns the remote logging of syslog messages. CLI Commands The following figure is representative of PowerConnect 3248 and 5224. Sets the facility type for items in the Switch/General/Remote Logs page. Limits syslog messages saved to a remote server based on severity. The no form... command returns the facility type to the default. The no form command removes a syslog server host. www.dell.com | support.dell.com The following table ...
User Manual
Page 9
... address: 10.1.0.9 REMOTELOG server ip address: 0.0.0.0 REMOTELOG server ip address: 0.0.0.0 REMOTELOG server ip address: 0.0.0.0 REMOTELOG server ip address: 0.0.0.0 Console# Security The Switch/Security page contains new links to the 3248 and 5224 User's Guides 9 The RADIUS Settings page was renamed Authentication Settings and updated to include Terminal Access Controller Access Control System...
... address: 10.1.0.9 REMOTELOG server ip address: 0.0.0.0 REMOTELOG server ip address: 0.0.0.0 REMOTELOG server ip address: 0.0.0.0 REMOTELOG server ip address: 0.0.0.0 Console# Security The Switch/Security page contains new links to the 3248 and 5224 User's Guides 9 The RADIUS Settings page was renamed Authentication Settings and updated to include Terminal Access Controller Access Control System...
User Manual
Page 10
... Refresh. Allows you make in seconds that a client is representative of PowerConnect 3248 and 5224. 10 Addendum to 5 times; Specifies the number of the SSH protocol currently available: SSH v1.x and SSH v2.x. The switch supports only SSH v1.5. www.dell.com | support.dell.com NOTE: There are two versions of authentication attempts that the...
... Refresh. Allows you make in seconds that a client is representative of PowerConnect 3248 and 5224. 10 Addendum to 5 times; Specifies the number of the SSH protocol currently available: SSH v1.x and SSH v2.x. The switch supports only SSH v1.5. www.dell.com | support.dell.com NOTE: There are two versions of authentication attempts that the...
User Manual
Page 11
...command disables the SSH server. The connection_id is the session number displayed when using the show ssh Usage Enables the SSH server on the switch. Command ip ssh server ip ssh {[timeout seconds] | [authentication-retries integer]} disconnect ssh connection_id show ip ssh show ssh command. ... Specifies the authentication timeout for authentication timeout and retries. CLI Commands The following table summarizes the equivalent CLI commands for items in the Switch/Security/SSH page. The no form command resets the values to the 3 248 and 52 24 User 's Guides 11 Terminates an SSH...
...command disables the SSH server. The connection_id is the session number displayed when using the show ssh Usage Enables the SSH server on the switch. Command ip ssh server ip ssh {[timeout seconds] | [authentication-retries integer]} disconnect ssh connection_id show ip ssh show ssh command. ... Specifies the authentication timeout for authentication timeout and retries. CLI Commands The following table summarizes the equivalent CLI commands for items in the Switch/Security/SSH page. The no form command resets the values to the 3 248 and 52 24 User 's Guides 11 Terminates an SSH...
User Manual
Page 12
...levels on the RADIUS server for this command is a system that allows access to the Privileged Exe level from the client to switches on the authentication server together with user names, passwords, and specific privilege levels for authentication, you must be edited: • ...RADIUS or TACACS+ server, level 0 allows Normal Exec access to RADIUS, TACACS+ is $Enable. A RADIUS server authenticates the user. - www.dell.com | support.dell.com NOTE: When you are using the console port, Web browser, or Telnet. A TACACS+ server authenticates the user. - The RADIUS system ...
...levels on the RADIUS server for this command is a system that allows access to the Privileged Exe level from the client to switches on the authentication server together with user names, passwords, and specific privilege levels for authentication, you must be edited: • ...RADIUS or TACACS+ server, level 0 allows Normal Exec access to RADIUS, TACACS+ is $Enable. A RADIUS server authenticates the user. - www.dell.com | support.dell.com NOTE: When you are using the console port, Web browser, or Telnet. A TACACS+ server authenticates the user. - The RADIUS system ...
User Manual
Page 13
...TACACS, Local, RADIUS - If using a RADIUS server, specify the following details: - A RADIUS server attempts to authenticate the user first, then the switch, and then a RADIUS server. - A RADIUS server attempts to the 3 248 and 52 24 User 's Guides 13 Addendum to authenticate the user first..., then a TACACS+ server, and then the switch. - A TACACS+ server attempts to authenticate the user. - Local, RADIUS, TACACS - RADIUS, TACACS, Local - Server IP Address - Identifies the ...
...TACACS, Local, RADIUS - If using a RADIUS server, specify the following details: - A RADIUS server attempts to authenticate the user first, then the switch, and then a RADIUS server. - A RADIUS server attempts to the 3 248 and 52 24 User 's Guides 13 Addendum to authenticate the user first..., then a TACACS+ server, and then the switch. - A TACACS+ server attempts to authenticate the user. - Local, RADIUS, TACACS - RADIUS, TACACS, Local - Server IP Address - Identifies the ...
User Manual
Page 14
... for a Reply - If using a TACACS+ server, specify the following figure is shared between the switch and the TACACS+ server. Do not use blank spaces in this page, click Apply Changes. Identifies the Transmission ...PowerConnect 3248 and 5224. 14 Addendum to save the changes, click Refresh. Secret Text String - Specifies the text string that is representative of the TACACS+ server. - Timeout for a reply from the RADIUS server before it resends the request. • TACACS+ Server Settings - Server Port Number - www.dell.com | support.dell.com NOTE: The local switch...
... for a Reply - If using a TACACS+ server, specify the following figure is shared between the switch and the TACACS+ server. Do not use blank spaces in this page, click Apply Changes. Identifies the Transmission ...PowerConnect 3248 and 5224. 14 Addendum to save the changes, click Refresh. Secret Text String - Specifies the text string that is representative of the TACACS+ server. - Timeout for a reply from the RADIUS server before it resends the request. • TACACS+ Server Settings - Server Port Number - www.dell.com | support.dell.com NOTE: The local switch...
User Manual
Page 15
... command is 1-65535.) Displays the current configuration of the RADIUS server parameters. Sets the RADIUS server UDP port number. Sets the number of times the switch attempts to 20 characters). The manager must change the password. Sets the TACACS+ server TCP port number. Sets the TACACS+ encryption key (up to ...resending a request. (The range is super. Specifies the RADIUS server IP address. Specifies the TACACS+ server IP address. Displays the current configuration of seconds the switch waits for items in the Switch/Security/Authentication Settings page.
... command is 1-65535.) Displays the current configuration of the RADIUS server parameters. Sets the RADIUS server UDP port number. Sets the number of times the switch attempts to 20 characters). The manager must change the password. Sets the TACACS+ server TCP port number. Sets the TACACS+ encryption key (up to ...resending a request. (The range is super. Specifies the RADIUS server IP address. Specifies the TACACS+ server IP address. Displays the current configuration of seconds the switch waits for items in the Switch/Security/Authentication Settings page.
User Manual
Page 16
...6a), Windows 2000 Windows 98, Windows NT (with radius server: tiger Server port number: 49 Console# Hypertext Transfer Protocol, Secure Use the Switch/Security/HTTPS page to enable the Secure Hypertext Transfer Protocol (HTTPS) over the Secure Socket Layer (SSL), providing secure access (for example, an... encrypted connection) to the switch's Web interface. www.dell.com | support.dell.com NOTE: If you enable HTTPS, you change the HTTPS port number, clients attempting to connect to the HTTPS server ...
...6a), Windows 2000 Windows 98, Windows NT (with radius server: tiger Server port number: 49 Console# Hypertext Transfer Protocol, Secure Use the Switch/Security/HTTPS page to enable the Secure Hypertext Transfer Protocol (HTTPS) over the Secure Socket Layer (SSL), providing secure access (for example, an... encrypted connection) to the switch's Web interface. www.dell.com | support.dell.com NOTE: If you enable HTTPS, you change the HTTPS port number, clients attempting to connect to the HTTPS server ...
User Manual
Page 17
... connection to save any changes you to the 3 248 and 52 24 User 's Guides 17 Addendum to enable/disable the HTTPS server feature on the switch. (Default: Enabled) • HTTPS Port - A padlock icon should appear in this page, click Apply Changes. If you start HTTPS, the client and ...Specifies the UDP port number used for Internet Explorer 5.x and Netscape Navigator 4.x. The following fields that can be edited: • HTTPS Status - The Switch/Security/HTTPS page contains the following figure is representative of PowerConnect 3248 and 5224. When you do not want to the...
... connection to save any changes you to the 3 248 and 52 24 User 's Guides 17 Addendum to enable/disable the HTTPS server feature on the switch. (Default: Enabled) • HTTPS Port - A padlock icon should appear in this page, click Apply Changes. If you start HTTPS, the client and ...Specifies the UDP port number used for Internet Explorer 5.x and Netscape Navigator 4.x. The following fields that can be edited: • HTTPS Status - The Switch/Security/HTTPS page contains the following figure is representative of PowerConnect 3248 and 5224. When you do not want to the...
User Manual
Page 18
...the network through that port. The no form command disables the HTTPS server. If a device with source addresses already stored in the Switch/Security/HTTPS page. Example Console(config)#ip http secure-server Console(config)#ip http secure-port 441 Console(config)# Port Security Port ...a trap message. To use the switch port, the intrusion is a feature that allows you enable the learning function long enough to the 32 48 and 5 224 User 's Guides The no form command restores the default port. www.dell.com | support.dell.com CLI Commands The following table summarizes...
...the network through that port. The no form command disables the HTTPS server. If a device with source addresses already stored in the Switch/Security/HTTPS page. Example Console(config)#ip http secure-server Console(config)#ip http secure-port 441 Console(config)# Port Security Port ...a trap message. To use the switch port, the intrusion is a feature that allows you enable the learning function long enough to the 32 48 and 5 224 User 's Guides The no form command restores the default port. www.dell.com | support.dell.com CLI Commands The following table summarizes...
User Manual
Page 19
...as a member of a static trunk. • It can be configured as an LACP trunk port, but the switch does not allow the LACP trunk to be taken when a port security violation is detected: - See "Switch 3248: ReEnabling a Shutdown Port" on the port. (Default: Disabled) • Intrusion Shutdown and Trap - NOTICE: ... Shutdown: Indicates that is the default.) - Enables or disables port security on page 20. NOTICE: A port that the port should be sent. - Switch 3248: Port Security Configuration On the Ports/Port Security page, you do not want to the 3 248 and 52 24 User 's Guides 19
...as a member of a static trunk. • It can be configured as an LACP trunk port, but the switch does not allow the LACP trunk to be taken when a port security violation is detected: - See "Switch 3248: ReEnabling a Shutdown Port" on the port. (Default: Disabled) • Intrusion Shutdown and Trap - NOTICE: ... Shutdown: Indicates that is the default.) - Enables or disables port security on page 20. NOTICE: A port that the port should be sent. - Switch 3248: Port Security Configuration On the Ports/Port Security page, you do not want to the 3 248 and 52 24 User 's Guides 19
User Manual
Page 20
Switch 3248: CLI Commands The following figure is enabled on a port. To re-enable a shutdown port, follow these steps: 1 Click the Ports/Port Configuration page. 2 For the ... intrusion action set to Shutdown or Trap and Shutdown, then a security violation will cause the port to be disabled. Switch 3248: Re-Enabling a Shutdown Port If security is representative of PowerConnect 3248. www.dell.com | support.dell.com The following table summarizes the equivalent CLI commands for items in the Admin/Oper column. 3 Click Apply Changes...
Switch 3248: CLI Commands The following figure is enabled on a port. To re-enable a shutdown port, follow these steps: 1 Click the Ports/Port Configuration page. 2 For the ... intrusion action set to Shutdown or Trap and Shutdown, then a security violation will cause the port to be disabled. Switch 3248: Re-Enabling a Shutdown Port If security is representative of PowerConnect 3248. www.dell.com | support.dell.com The following table summarizes the equivalent CLI commands for items in the Admin/Oper column. 3 Click Apply Changes...
User Manual
Page 21
... Example Console(config)#interface ethernet 1/5 Console(config-if)#port security action shutdown Console(config-if)#port security Console(config-if)# Switch 5224: Port Security The Ports/Port Security page contains links to the following pages: • Global Configuration • Port Security Configuration... Switch 5224: Global Configuration On the Ports/Port Security/Global Configuration page, you make in this page, click Apply Changes. The...
... Example Console(config)#interface ethernet 1/5 Console(config-if)#port security action shutdown Console(config-if)#port security Console(config-if)# Switch 5224: Port Security The Ports/Port Security page contains links to the following pages: • Global Configuration • Port Security Configuration... Switch 5224: Global Configuration On the Ports/Port Security/Global Configuration page, you make in this page, click Apply Changes. The...
User Manual
Page 22
...: ReEnabling a Shutdown Port" on the port. (Default: Disabled) NOTICE: If a port is representative of PowerConnect 5224. Switch 5224: Port Security Configuration On the Ports/Port Security/Port Security Configuration page, you can enable/disable security for any changes you do ...not want to the 32 48 and 5 224 User 's Guides For each port number listed in this page, click Apply Changes. www.dell.com | support.dell.com...
...: ReEnabling a Shutdown Port" on the port. (Default: Disabled) NOTICE: If a port is representative of PowerConnect 5224. Switch 5224: Port Security Configuration On the Ports/Port Security/Port Security Configuration page, you can enable/disable security for any changes you do ...not want to the 32 48 and 5 224 User 's Guides For each port number listed in this page, click Apply Changes. www.dell.com | support.dell.com...