Command Line Interface (CLI) Guide (.htm)
Page 3
Contents 1 Command Groups Introduction 23 Command Groups 23 AAA Commands 25 ACL Commands 26 Address Table Commands 26 Clock Commands 28 Configuration and Image Files Commands 29 DHCP Filtering Commands 29 Ethernet Configuration Commands 29 GVRP Commands 31 IGMP Snooping Commands 31 IP Addressing 32 LACP Commands 33 LLDP Commands 34 Line Commands 35 Management ACL Commands 35 PHY Diagnostics Commands 36 Port Channel Commands 36 Port Monitor Commands 36 Power-over-Ethernet Commands 37 QoS Commands 37 Radius Commands 38 RMON Commands 38 SNMP Commands 39 Contents 3
Contents 1 Command Groups Introduction 23 Command Groups 23 AAA Commands 25 ACL Commands 26 Address Table Commands 26 Clock Commands 28 Configuration and Image Files Commands 29 DHCP Filtering Commands 29 Ethernet Configuration Commands 29 GVRP Commands 31 IGMP Snooping Commands 31 IP Addressing 32 LACP Commands 33 LLDP Commands 34 Line Commands 35 Management ACL Commands 35 PHY Diagnostics Commands 36 Port Channel Commands 36 Port Monitor Commands 36 Power-over-Ethernet Commands 37 QoS Commands 37 Radius Commands 38 RMON Commands 38 SNMP Commands 39 Contents 3
Command Line Interface (CLI) Guide (.htm)
Page 6
set enable-password active 89 show passwords configuration 89 show users login-history 91 show users accounts 92 5 ACL Commands mac access-list 95 deny (MAC 95 service-acl 96 show access-lists 97 show interfaces access-lists 97 6 Address Table Commands bridge address 99 bridge multicast filtering 100 bridge multicast address 101...
set enable-password active 89 show passwords configuration 89 show users login-history 91 show users accounts 92 5 ACL Commands mac access-list 95 deny (MAC 95 service-acl 96 show access-lists 97 show interfaces access-lists 97 6 Address Table Commands bridge address 99 bridge multicast filtering 100 bridge multicast address 101...
Command Line Interface (CLI) Guide (.htm)
Page 12
17 Management ACL management access-list 225 permit (Management 226 deny (Management 227 management access-class 228 show management access-list 229 show management access-class 230 18 ...
17 Management ACL management access-list 225 permit (Management 226 deny (Management 227 management access-class 228 show management access-list 229 show management access-class 230 18 ...
Command Line Interface (CLI) Guide (.htm)
Page 23
...application. Configures and displays ACL information. PRELIMINARY 9/13/06 - The first time you achieve greater configuration flexibility. Command Group AAA ACL Address Table Configuration and Image...Wizard guides you enter commands using this document. Configures bridging address tables. DELL CONFIDENTIAL - By directly entering commands, you use of the device or...line interpreter similar to the Getting Started Guide and User Guide for configuring the PowerConnect device, details the procedures, and provides configuration examples. Command Groups Introduction The ...
...application. Configures and displays ACL information. PRELIMINARY 9/13/06 - The first time you achieve greater configuration flexibility. Command Group AAA ACL Address Table Configuration and Image...Wizard guides you enter commands using this document. Configures bridging address tables. DELL CONFIDENTIAL - By directly entering commands, you use of the device or...line interpreter similar to the Getting Started Guide and User Guide for configuring the PowerConnect device, details the procedures, and provides configuration examples. Command Groups Introduction The ...
Command Line Interface (CLI) Guide (.htm)
Page 24
... specific target ports. Configures the device clock, name and authorized users. Configures VLANs and displays VLAN information. DELL CONFIDENTIAL - www.dell.com | support.dell.com Ethernet Configuration GVRP IGMP Snooping IP Addressing LACP Line LLDP Management ACL PHY Diagnostics Port Channel Port Monitor QoS RADIUS RMON SNMP Spanning Tree SSH Syslog Commands System Management...
... specific target ports. Configures the device clock, name and authorized users. Configures VLANs and displays VLAN information. DELL CONFIDENTIAL - www.dell.com | support.dell.com Ethernet Configuration GVRP IGMP Snooping IP Addressing LACP Line LLDP Management ACL PHY Diagnostics Port Channel Port Monitor QoS RADIUS RMON SNMP Spanning Tree SSH Syslog Commands System Management...
Command Line Interface (CLI) Guide (.htm)
Page 26
...frames on interfaces. PRELIMINARY 9/13/06 - show passwords configuration Displays information about the local user database. Applies an ACL to the group. Interface (VLAN) Configuration bridge multicast forbidden address Forbids adding a specific multicast address to the bridge... interfaces accesslists Description Creates Layer 2 ACLs. Interface (VLAN) Configuration bridge multicast filtering Enables filtering of users. www.dell.com | support.dell.com set enable-password active Reactivates a locked local password. Displays ACLs defined on the device. Interface (...
...frames on interfaces. PRELIMINARY 9/13/06 - show passwords configuration Displays information about the local user database. Applies an ACL to the group. Interface (VLAN) Configuration bridge multicast forbidden address Forbids adding a specific multicast address to the bridge... interfaces accesslists Description Creates Layer 2 ACLs. Interface (VLAN) Configuration bridge multicast filtering Enables filtering of users. www.dell.com | support.dell.com set enable-password active Reactivates a locked local password. Displays ACLs defined on the device. Interface (...
Command Line Interface (CLI) Guide (.htm)
Page 35
...Access Mode Global Configuration Line Configuration Line Configuration Line Configuration Line Configuration Line Configuration User EXEC User EXEC User EXEC Management ACL Commands Command Group management access-list permit (Management) Description Defines a management access-list, and enters the access-list ... command mode. Access Mode Global Configuration Management Access-level Management Access-level Global Configuration Privileged EXEC Privileged EXEC DELL CONFIDENTIAL - Enables the command history function. Line Commands Command Group line speed autobaud exec-timeout history history...
...Access Mode Global Configuration Line Configuration Line Configuration Line Configuration Line Configuration Line Configuration User EXEC User EXEC User EXEC Management ACL Commands Command Group management access-list permit (Management) Description Defines a management access-list, and enters the access-list ... command mode. Access Mode Global Configuration Management Access-level Management Access-level Global Configuration Privileged EXEC Privileged EXEC DELL CONFIDENTIAL - Enables the command history function. Line Commands Command Group line speed autobaud exec-timeout history history...
Command Line Interface (CLI) Guide (.htm)
Page 51
... is relevant for configuration and enters the line configuration command mode. Enables Quality of required password changes before a user account is used. DELL CONFIDENTIAL - FOR PROOF ONLY Command Modes 51 Sets the number of Service (QoS) on severity. Identifies a specific line for tracking its...stored in the local database. Modifies the DSCP to "trust" state. Limits messages logged to a syslog server. Creates Layer 2 ACLs. Sets the expiration time for passwords in the local database can be configured from an internal buffer based on the device and enters...
... is relevant for configuration and enters the line configuration command mode. Enables Quality of required password changes before a user account is used. DELL CONFIDENTIAL - FOR PROOF ONLY Command Modes 51 Sets the number of Service (QoS) on severity. Identifies a specific line for tracking its...stored in the local database. Modifies the DSCP to "trust" state. Limits messages logged to a syslog server. Creates Layer 2 ACLs. Sets the expiration time for passwords in the local database can be configured from an internal buffer based on the device and enters...
Command Line Interface (CLI) Guide (.htm)
Page 55
... the system is in basic mode. Configures the spanning tree path cost for the speed and duplex parameters of a given interface. DELL CONFIDENTIAL - Adds a description of addresses that may be learned on the port while the port is in port security mode Configures ...port storm-control includemulticast private-vlan community private-vlan isolated private-vlan primary qos cos qos trust (Interface) rmon collection history service-acl shutdown sntp client enable (Interface) spanning-tree cost spanning-tree disable Enables automatic crossover on an interface. Configures the maximum number...
... the system is in basic mode. Configures the spanning tree path cost for the speed and duplex parameters of a given interface. DELL CONFIDENTIAL - Adds a description of addresses that may be learned on the port while the port is in port security mode Configures ...port storm-control includemulticast private-vlan community private-vlan isolated private-vlan primary qos cos qos trust (Interface) rmon collection history service-acl shutdown sntp client enable (Interface) spanning-tree cost spanning-tree disable Enables automatic crossover on an interface. Configures the maximum number...
Command Line Interface (CLI) Guide (.htm)
Page 58
... methods Displays information about the authentication methods. show crypto key pubkey-chain Displays SSH public keys stored on a flash file system. DELL CONFIDENTIAL - dot1x re-authenticate Manually initiates a re-authentication of the device. more Displays a file. set username active Reactivates a ... active Reactivates a locked line. show bridge address-table Displays all VLANs or at startup show access-lists Displays ACLs defined on the device. show bridge address-table count Displays the number of files on the device. login Changes a login username....
... methods Displays information about the authentication methods. show crypto key pubkey-chain Displays SSH public keys stored on a flash file system. DELL CONFIDENTIAL - dot1x re-authenticate Manually initiates a re-authentication of the device. more Displays a file. set username active Reactivates a ... active Reactivates a locked line. show bridge address-table Displays all VLANs or at startup show access-lists Displays ACLs defined on the device. show bridge address-table count Displays the number of files on the device. login Changes a login username....
Command Line Interface (CLI) Guide (.htm)
Page 95
... user guidelines for all . Specifies the MAC address of the host to create a MAC ACL. Syntax mac access-list name no form of the ACL. DELL CONFIDENTIAL - PRELIMINARY 9/13/06 - To delete an ACL, use the no mac access-list name • name-Specifies the name of this command.... Default Configuration The default for this command. FOR PROOF ONLY ACL Commands 95 Example The following example...
... user guidelines for all . Specifies the MAC address of the host to create a MAC ACL. Syntax mac access-list name no form of the ACL. DELL CONFIDENTIAL - PRELIMINARY 9/13/06 - To delete an ACL, use the no mac access-list name • name-Specifies the name of this command.... Default Configuration The default for this command. FOR PROOF ONLY ACL Commands 95 Example The following example...
Command Line Interface (CLI) Guide (.htm)
Page 96
... 66:66:66:66:66:66 Console(config-mac-acl)# exit Console(config)# service-acl The service-acl Interface (VLAN) Configuration mode command applies an ACL to create a MAC ACL with rules. DELL CONFIDENTIAL - Syntax service-acl input acl-name no service-acl input • acl-name-Specifies the ACL to the input interface. PRELIMINARY 9/13/06 - FOR PROOF ONLY 96...
... 66:66:66:66:66:66 Console(config-mac-acl)# exit Console(config)# service-acl The service-acl Interface (VLAN) Configuration mode command applies an ACL to create a MAC ACL with rules. DELL CONFIDENTIAL - Syntax service-acl input acl-name no service-acl input • acl-name-Specifies the ACL to the input interface. PRELIMINARY 9/13/06 - FOR PROOF ONLY 96...
Command Line Interface (CLI) Guide (.htm)
Page 97
...VLAN number. Syntax show interfaces access-lists Privileged EXEC mode command displays access lists applied on the device. DELL CONFIDENTIAL - Examples The following example, binds (services) an ACL to VLAN 2. PRELIMINARY 9/13/06 - Example The following example displays the access lists. Console(config)#... interface vlan 2 Console(config-if)# service-acl input macl-1 show access-lists The show access-lists [name] • name -Name of the ACL. FOR PROOF ONLY ACL Commands 97 Syntax show access-lists Privileged EXEC mode command displays ...
...VLAN number. Syntax show interfaces access-lists Privileged EXEC mode command displays access lists applied on the device. DELL CONFIDENTIAL - Examples The following example, binds (services) an ACL to VLAN 2. PRELIMINARY 9/13/06 - Example The following example displays the access lists. Console(config)#... interface vlan 2 Console(config-if)# service-acl input macl-1 show access-lists The show access-lists [name] • name -Name of the ACL. FOR PROOF ONLY ACL Commands 97 Syntax show access-lists Privileged EXEC mode command displays ...
Command Line Interface (CLI) Guide (.htm)
Page 98
Examples The following example displays an ACLs applied on the device interfaces: Console# show interfaces access-lists Interface --------VLAN 2 VLAN 10 Input ACL ---------ACL1 ACL3 DELL CONFIDENTIAL - PRELIMINARY 9/13/06 - www.dell.com | support.dell.com Default Configuration This command has no user guidelines for this command. Command Mode Privileged EXEC mode User Guidelines There are no default configuration. FOR PROOF ONLY 98 ACL Commands
Examples The following example displays an ACLs applied on the device interfaces: Console# show interfaces access-lists Interface --------VLAN 2 VLAN 10 Input ACL ---------ACL1 ACL3 DELL CONFIDENTIAL - PRELIMINARY 9/13/06 - www.dell.com | support.dell.com Default Configuration This command has no user guidelines for this command. Command Mode Privileged EXEC mode User Guidelines There are no default configuration. FOR PROOF ONLY 98 ACL Commands
Command Line Interface (CLI) Guide (.htm)
Page 110
... - PRELIMINARY 9/13/06 - Syntax show bridge address-table static Privileged EXEC mode command displays statically created entries in the bridge-forwarding database. www.dell.com | support.dell.com User Guidelines • Internal usage VLANs (VLANs that are automatically allocated on ports with a defined Layer 3 interface) are presented in the ... valid VLAN, such as VLAN 1. • interface - Example In this example, all classes of entries in the bridge-forwarding database are displayed in ACLs. A valid port-channel number. A valid Ethernet port. • port-channel-number -
... - PRELIMINARY 9/13/06 - Syntax show bridge address-table static Privileged EXEC mode command displays statically created entries in the bridge-forwarding database. www.dell.com | support.dell.com User Guidelines • Internal usage VLANs (VLANs that are automatically allocated on ports with a defined Layer 3 interface) are presented in the ... valid VLAN, such as VLAN 1. • interface - Example In this example, all classes of entries in the bridge-forwarding database are displayed in ACLs. A valid port-channel number. A valid Ethernet port. • port-channel-number -
Command Line Interface (CLI) Guide (.htm)
Page 225
... User Guidelines • Use this command. PRELIMINARY 9/13/06 - Syntax management access-list name no default configuration. Management ACL management access-list The management access-list Global Configuration mode command configures a management access list and enters the Management Access-list...name. (Range: 1-32 characters) Default Configuration This command has no management access-list name • name - DELL CONFIDENTIAL - Management ACL only restricts access to select the active access list. • The active management list cannot be updated or removed. ...
... User Guidelines • Use this command. PRELIMINARY 9/13/06 - Syntax management access-list name no default configuration. Management ACL management access-list The management access-list Global Configuration mode command configures a management access list and enters the Management Access-list...name. (Range: 1-32 characters) Default Configuration This command has no management access-list name • name - DELL CONFIDENTIAL - Management ACL only restricts access to select the active access list. • The active management list cannot be updated or removed. ...
Command Line Interface (CLI) Guide (.htm)
Page 226
www.dell.com | support.dell.com Examples The following example creates a management access list called mlist, configures management Ethernet interfaces 1/e1 and 2/e9 and makes the new access list the ... | prefix-length] [ethernet interface-number | vlan vlan-id | port-channel port-channel-number] [service service] • interface-number - DELL CONFIDENTIAL - A valid Ethernet port number. • vlan-id - FOR PROOF ONLY 226 Management ACL PRELIMINARY 9/13/06 - A valid VLAN number. • port-channel-number - A valid network mask of the source IP address. A valid...
www.dell.com | support.dell.com Examples The following example creates a management access list called mlist, configures management Ethernet interfaces 1/e1 and 2/e9 and makes the new access list the ... | prefix-length] [ethernet interface-number | vlan vlan-id | port-channel port-channel-number] [service service] • interface-number - DELL CONFIDENTIAL - A valid Ethernet port number. • vlan-id - FOR PROOF ONLY 226 Management ACL PRELIMINARY 9/13/06 - A valid VLAN number. • port-channel-number - A valid network mask of the source IP address. A valid...
Command Line Interface (CLI) Guide (.htm)
Page 227
...permit rule is defined, the default is defined on the appropriate interface. • The system supports up to deny. Service type. DELL CONFIDENTIAL - Example The following example permits all ports in the mlist access list. A valid VLAN number. • port-channel-...Management) The deny Management Access-List Configuration mode command defines a deny rule. A valid port-channel number. • ip-address - FOR PROOF ONLY Management ACL 227 • prefix-length - The prefix length must be preceded by a forward slash (/). (Range: 0 - 32) • service - PRELIMINARY 9/13...
...permit rule is defined, the default is defined on the appropriate interface. • The system supports up to deny. Service type. DELL CONFIDENTIAL - Example The following example permits all ports in the mlist access list. A valid VLAN number. • port-channel-...Management) The deny Management Access-List Configuration mode command defines a deny rule. A valid port-channel number. • ip-address - FOR PROOF ONLY Management ACL 227 • prefix-length - The prefix length must be preceded by a forward slash (/). (Range: 0 - 32) • service - PRELIMINARY 9/13...
Command Line Interface (CLI) Guide (.htm)
Page 228
...no default configuration. To disable this restriction, use the no form of the access list to 128 management access rules. www.dell.com | support.dell.com Default Configuration This command has no management access-class • name - Specifies the name of this command. PRELIMINARY 9/...are valid only if an IP address is used . (Range: 1-32 characters) • console-only - DELL CONFIDENTIAL - FOR PROOF ONLY 228 Management ACL Console(config)# management access-list mlist Console(config-macl)# deny management access-class The management access-class Global ...
...no default configuration. To disable this restriction, use the no form of the access list to 128 management access rules. www.dell.com | support.dell.com Default Configuration This command has no management access-class • name - Specifies the name of this command. PRELIMINARY 9/...are valid only if an IP address is used . (Range: 1-32 characters) • console-only - DELL CONFIDENTIAL - FOR PROOF ONLY 228 Management ACL Console(config)# management access-list mlist Console(config-macl)# deny management access-class The management access-class Global ...
Command Line Interface (CLI) Guide (.htm)
Page 229
... access-list The show management access-list mlist mlist ----- Command Mode Privileged EXEC mode User Guidelines There are no default configuration. FOR PROOF ONLY Management ACL 229 Console# show management access-list Privileged EXEC mode command displays management access-lists. Example The following example configures an access list called mlist as... this command. Syntax show management access-list [name] • name - PRELIMINARY 9/13/06 - permit ethernet 1/e1 permit ethernet 2/e2 ! (Note: all other access implicitly denied) DELL CONFIDENTIAL -
... access-list The show management access-list mlist mlist ----- Command Mode Privileged EXEC mode User Guidelines There are no default configuration. FOR PROOF ONLY Management ACL 229 Console# show management access-list Privileged EXEC mode command displays management access-lists. Example The following example configures an access list called mlist as... this command. Syntax show management access-list [name] • name - PRELIMINARY 9/13/06 - permit ethernet 1/e1 permit ethernet 2/e2 ! (Note: all other access implicitly denied) DELL CONFIDENTIAL -