Command Line Interface Manual
Page 21
...installed PoE card. Port LEDs for the XCM8848TT Module with a PoE Card (XCM88P) LED Port with power enabled Color and State Solid amber Amber blinking Slow amber blinking Port with power disabled Blinking amber/green Solid green Slow green blinking Green blinking Off Blinking amber/green Meaning Link up Activity Port disabled or Link down Power fault or insufficient power Link up Port disabled Activity Link down Power fault or insufficient power Chapter 2. 8800 Series Modules | 21 8800 Series Chassis Switch Hardware Installation Guide Port LEDs on Non-PoE Modules The following table...
...installed PoE card. Port LEDs for the XCM8848TT Module with a PoE Card (XCM88P) LED Port with power enabled Color and State Solid amber Amber blinking Slow amber blinking Port with power disabled Blinking amber/green Solid green Slow green blinking Green blinking Off Blinking amber/green Meaning Link up Activity Port disabled or Link down Power fault or insufficient power Link up Port disabled Activity Link down Power fault or insufficient power Chapter 2. 8800 Series Modules | 21 8800 Series Chassis Switch Hardware Installation Guide Port LEDs on Non-PoE Modules The following table...
Command Line Interface Manual
Page 72
... login prompt, enter the default user name admin to log on with terminal-emulation software to the Supervisory module on the switch or to the console port on the Supervisory module is no longer seated in and configure an IP address for the default VLAN (named default). the card remains partially inserted but is part of the unit, use only shielded serial cables. Connect Equipment to the Console Port Connection to an intermediate position; For example...
... login prompt, enter the default user name admin to log on with terminal-emulation software to the Supervisory module on the switch or to the console port on the Supervisory module is no longer seated in and configure an IP address for the default VLAN (named default). the card remains partially inserted but is part of the unit, use only shielded serial cables. Connect Equipment to the Console Port Connection to an intermediate position; For example...
Hardware Installation Guide
Page 58
.... 58 | Chapter 3. For example, the NETGEAR 8800 uses TFTP to download software image files, switch configuration files, and access control lists (ACLs) from one assumes the role of primary and the other assumes the role of the switch ports or a workstation with Dual Management Modules Installed If you install two MSMs/MMs, one network device to contact an external TFTP server on the network to manage the switch and modify switch configurations. Commands for failures. Telnet Telnet allows you to take...
.... 58 | Chapter 3. For example, the NETGEAR 8800 uses TFTP to download software image files, switch configuration files, and access control lists (ACLs) from one assumes the role of primary and the other assumes the role of the switch ports or a workstation with Dual Management Modules Installed If you install two MSMs/MMs, one network device to contact an external TFTP server on the network to manage the switch and modify switch configurations. Commands for failures. Telnet Telnet allows you to take...
Hardware Installation Guide
Page 115
... Telnet and SSH2 security • CLI scripting settings • Enable/disable state • Error message setting • Persistence mode • Dropped SNMP packet counter. NETGEAR 8800 Chassis Switch CLI Manual • SNMP community strings • SNMP trap receiver list • SNMP trap receiver source IP address • SNMP statistics counter • SSH access states of enabled, disabled, and module not loaded • CLI configuration logging • SNMP access states of v1, v2c disabled and v3 enabled If all three types of SNMP access are enabled or disabled, SNMP access...
... Telnet and SSH2 security • CLI scripting settings • Enable/disable state • Error message setting • Persistence mode • Dropped SNMP packet counter. NETGEAR 8800 Chassis Switch CLI Manual • SNMP community strings • SNMP trap receiver list • SNMP trap receiver source IP address • SNMP statistics counter • SSH access states of enabled, disabled, and module not loaded • CLI configuration logging • SNMP access states of v1, v2c disabled and v3 enabled If all three types of SNMP access are enabled or disabled, SNMP access...
Hardware Installation Guide
Page 190
... flow control on NETGEAR devices.) Link aggregation, or load sharing, with fiber interfaces are enabled. When autonegotiation is turned on, flow control is set , and their speed cannot be configured for your specific needs, you can be modified. You can manually configure the duplex setting on gigabit Ethernet ports. For example, VLANs see the link aggregation group (LAG) as part of load sharing, or link aggregation: static load sharing and dynamic load sharing. After you configure the ports to your specific needs. The switch comes configured...
... flow control on NETGEAR devices.) Link aggregation, or load sharing, with fiber interfaces are enabled. When autonegotiation is turned on, flow control is set , and their speed cannot be configured for your specific needs, you can be modified. You can manually configure the duplex setting on gigabit Ethernet ports. For example, VLANs see the link aggregation group (LAG) as part of load sharing, or link aggregation: static load sharing and dynamic load sharing. After you configure the ports to your specific needs. The switch comes configured...
Hardware Installation Guide
Page 300
...; Support for configuring and monitoring PoE status at the system, slot, and port levels • LED control for indicating the port's PoE inline power state • Management of powered devices (PDs) through Category 5 or Category 3 twisted pair Ethernet cables. Chapter 7. PoE Commands 7 Power over -subscribed power budget For more information about configuring and managing PoE, see the NETGEAR 8800 User Manual. 7. PoE for NETGEAR 8800 includes a method of detection to assure that power is an effective method of supplying...
...; Support for configuring and monitoring PoE status at the system, slot, and port levels • LED control for indicating the port's PoE inline power state • Management of powered devices (PDs) through Category 5 or Category 3 twisted pair Ethernet cables. Chapter 7. PoE Commands 7 Power over -subscribed power budget For more information about configuring and managing PoE, see the NETGEAR 8800 User Manual. 7. PoE for NETGEAR 8800 includes a method of detection to assure that power is an effective method of supplying...
Hardware Installation Guide
Page 392
... Machine Info dosprot dosprot Info ds Directory Services Error fdb fdb module event Error HAL Hardware Abstraction Layer Error Card Card State Driver Info 392 | Chapter 8. NETGEAR 8800 Chassis Switch CLI Manual Usage Guidelines This command displays the name, description, and default severity defined for the specified components or subcomponents. Depending on the software version running on your switch or your switch model, additional or different component information might be...
... Machine Info dosprot dosprot Info ds Directory Services Error fdb fdb module event Error HAL Hardware Abstraction Layer Error Card Card State Driver Info 392 | Chapter 8. NETGEAR 8800 Chassis Switch CLI Manual Usage Guidelines This command displays the name, description, and default severity defined for the specified components or subcomponents. Depending on the software version running on your switch or your switch model, additional or different component information might be...
Hardware Installation Guide
Page 481
... use access lists within a Layer 2 VLAN. Using access lists has no additional configuration. Each packet on an interface is compared to perform packet filtering and forwarding decisions on switch performance. NETGEAR products are a generalized category of IP access rules and are used to the access list in a policy file, it is possible to as RIP, OSPF, or BGP. Policy Manager Commands 12 This chapter describes commands for: • Creating and configuring policy files for IP access lists (ACLs) • Creating...
... use access lists within a Layer 2 VLAN. Using access lists has no additional configuration. Each packet on an interface is compared to perform packet filtering and forwarding decisions on switch performance. NETGEAR products are a generalized category of IP access rules and are used to the access list in a policy file, it is possible to as RIP, OSPF, or BGP. Policy Manager Commands 12 This chapter describes commands for: • Creating and configuring policy files for IP access lists (ACLs) • Creating...
Hardware Installation Guide
Page 485
... blackholing is not enabled: Incremental refresh is Enabled. NETGEAR 8800 Chassis Switch CLI Manual Example The following if blackholing is enabled: Incremental refresh is Disabled. Default N/A. Usage Guidelines Use this command when a new policy file for a currently active policy has been downloaded to the switch, or when the policy file for Access-list Refresh Blackhole is not possible given the configuration of Smart Refresh, disable access-list refresh blackholing by using the command: disable access-list refresh blackhole If...
... blackholing is not enabled: Incremental refresh is Enabled. NETGEAR 8800 Chassis Switch CLI Manual Example The following if blackholing is enabled: Incremental refresh is Disabled. Default N/A. Usage Guidelines Use this command when a new policy file for a currently active policy has been downloaded to the switch, or when the policy file for Access-list Refresh Blackhole is not possible given the configuration of Smart Refresh, disable access-list refresh blackholing by using the command: disable access-list refresh blackhole If...
Hardware Installation Guide
Page 656
... ports 2:3, 2:4, and 2:6: show mac-lockdown-timeout ports 2:3, 2:4, 2:6 The following command displays information about received packets that have not been discarded due to show ports {} rate-limit flood {no-refresh} Description Displays rate-limit discard statistics. Even if MAC address lock down timeout settings for the specified ports. NETGEAR 8800 Chassis Switch CLI Manual • Timeout (in seconds) 2:3 Enabled 300 2:4 Enabled 300 2:6 Disabled 15 show ports rate-limit flood show the results of data...
... ports 2:3, 2:4, and 2:6: show mac-lockdown-timeout ports 2:3, 2:4, 2:6 The following command displays information about received packets that have not been discarded due to show ports {} rate-limit flood {no-refresh} Description Displays rate-limit discard statistics. Even if MAC address lock down timeout settings for the specified ports. NETGEAR 8800 Chassis Switch CLI Manual • Timeout (in seconds) 2:3 Enabled 300 2:4 Enabled 300 2:6 Disabled 15 show ports rate-limit flood show the results of data...
User Manual
Page 39
... . If you like unconfigured ports to be recovered by NETGEAR. Would you like to change the failsafe account username and password now? [y/N]: Would you make using SNMPv3 to secure network management traffic You see this problem. Configuring Management Access This section discusses the following actions: * change your admin password * change your failsafe account username and password * change the management access: • Use the configure safe-default-script command which resets your switch to the default factory setting and reruns this interactive...
... . If you like unconfigured ports to be recovered by NETGEAR. Would you like to change the failsafe account username and password now? [y/N]: Would you make using SNMPv3 to secure network management traffic You see this problem. Configuring Management Access This section discusses the following actions: * change your admin password * change your failsafe account username and password * change the management access: • Use the configure safe-default-script command which resets your switch to the default factory setting and reruns this interactive...
User Manual
Page 79
... configure SNMP to use an ACL policy, use the following command: configure snmp access-profile By default, SNMP supports the read/write option. • To configure SNMP to remove a previously configured ACL policy, use the following command: configure snmp access-profile none • To configure SNMP to use an ACL policy and support the read-only option, use the following command: configure snmp access-profile readonly • To configure SNMP to either permit or deny a specific list of community strings on your network. NETGEAR 8800 User Manual Configuring SNMPv1/v2c Settings The...
... configure SNMP to use an ACL policy, use the following command: configure snmp access-profile By default, SNMP supports the read/write option. • To configure SNMP to remove a previously configured ACL policy, use the following command: configure snmp access-profile none • To configure SNMP to use an ACL policy and support the read-only option, use the following command: configure snmp access-profile readonly • To configure SNMP to either permit or deny a specific list of community strings on your network. NETGEAR 8800 User Manual Configuring SNMPv1/v2c Settings The...
User Manual
Page 83
... on installing the SSH module. To create a user, use the following command: configure snmpv3 engine-boots Users, Groups, and Security SNMPv3 controls access and security using the concepts of no authorization, no privacy. Managing the Switch | 83 The default password for admin is the user name. These user names are reset to the security level of users, groups, security models, and security levels. To enable default-user, use the following command: configure snmpv3 add user [[hex ] | ] {authentication [md5 | sha] [hex | ]} {privacy {des...
... on installing the SSH module. To create a user, use the following command: configure snmpv3 engine-boots Users, Groups, and Security SNMPv3 controls access and security using the concepts of no authorization, no privacy. Managing the Switch | 83 The default password for admin is the user name. These user names are reset to the security level of users, groups, security models, and security levels. To enable default-user, use the following command: configure snmpv3 add user [[hex ] | ] {authentication [md5 | sha] [hex | ]} {privacy {des...
User Manual
Page 297
... be used to change the attributes of routes installed into the switch routing table by the protocol. This ACL is evaluated for Access-list Refresh Blackhole is displayed. Supply the policy name in place of Smart Refresh, disable access-list refresh blackholing. To remove an ACL from an interface, use the keyword import-policy are applied using different commands. Commands that use the following command: unconfigure access-list {any | ports | vlan } {ingress | egress} To display the interfaces that have ACLs configured...
... be used to change the attributes of routes installed into the switch routing table by the protocol. This ACL is evaluated for Access-list Refresh Blackhole is displayed. Supply the policy name in place of Smart Refresh, disable access-list refresh blackholing. To remove an ACL from an interface, use the keyword import-policy are applied using different commands. Commands that use the following command: unconfigure access-list {any | ports | vlan } {ingress | egress} To display the interfaces that have ACLs configured...
User Manual
Page 425
... network settings and environment, you can use the commands described in this chapter for VLAN corp # No VLAN-ID is a users file entry for a specific MAC address on a FreeRADIUS server: 00E018A8C540 Auth-Type := Local, User-Password == "00E018A8C540" Note: For information about MAC-based, web-based, and 802.1x authentication methods. NETGEAR 8800 User Manual MAC-Based Network Login Configuration Example The following example is associated with your network login settings. Chapter 16. Network Login | 425 create vlan "temp" create vlan "corp" configure vlan "default" delete ports...
... network settings and environment, you can use the commands described in this chapter for VLAN corp # No VLAN-ID is a users file entry for a specific MAC address on a FreeRADIUS server: 00E018A8C540 Auth-Type := Local, User-Password == "00E018A8C540" Note: For information about MAC-based, web-based, and 802.1x authentication methods. NETGEAR 8800 User Manual MAC-Based Network Login Configuration Example The following example is associated with your network login settings. Chapter 16. Network Login | 425 create vlan "temp" create vlan "corp" configure vlan "default" delete ports...
User Manual
Page 599
... the same gateway as part of the complexity in the table, when overlapping routes with same nexthop exist. NETGEAR 8800 User Manual Note: Using route sharing makes router troubleshooting more difficult because of the Route Manager (RtMgr) process. The switch uses hardware routing tables to forward packets, but packet forwarding without software processing is applied to see if the new route and/or its immediate children are installed in Table 58. When a route is added, deleted or updated, the...
... the same gateway as part of the complexity in the table, when overlapping routes with same nexthop exist. NETGEAR 8800 User Manual Note: Using route sharing makes router troubleshooting more difficult because of the Route Manager (RtMgr) process. The switch uses hardware routing tables to forward packets, but packet forwarding without software processing is applied to see if the new route and/or its immediate children are installed in Table 58. When a route is added, deleted or updated, the...
User Manual
Page 725
...to the source. The advantage to a router (for example, Internet Group Management Protocol (IGMP)) Note: You should configure IP unicast routing before you configure IP multicast routing. NETGEAR 8800 User Manual IP multicast routing requires the following sources: • Multicast static routes (configured manually by the network administrator) • Multicast dynamic routes (learned through the network. When a multicast packet is used . Chapter 27. If the RPF lookup finds a route in the software multicast route table. Multicast Routing Table and RPF Overview Beginning with...
...to the source. The advantage to a router (for example, Internet Group Management Protocol (IGMP)) Note: You should configure IP unicast routing before you configure IP multicast routing. NETGEAR 8800 User Manual IP multicast routing requires the following sources: • Multicast static routes (configured manually by the network administrator) • Multicast dynamic routes (learned through the network. When a multicast packet is used . Chapter 27. If the RPF lookup finds a route in the software multicast route table. Multicast Routing Table and RPF Overview Beginning with...
User Manual
Page 805
...'s instructions to install the image immediately after the download is the active partition. 5. From a login session on modular switches. Determine your TFTP server, specify that reaches your booted and selected partition using the following commands: download image [[ | ] {{vr} } | memorycard ] {} {msm } • Before the download begins, the switch asks if you want to access the compact flash card and place the image onto the card. Software Upgrade and Boot...
...'s instructions to install the image immediately after the download is the active partition. 5. From a login session on modular switches. Determine your TFTP server, specify that reaches your booted and selected partition using the following commands: download image [[ | ] {{vr} } | memorycard ] {} {msm } • Before the download begins, the switch asks if you want to access the compact flash card and place the image onto the card. Software Upgrade and Boot...
User Manual
Page 814
... reboot the MSM manually before the download begins the switch asks if you install the image at a later time, use the following command: download image [[ | ] {{vr} } | memorycard ] {} {msm } Note: If the backup MSM is the backup, and confirm that the MSMs are synchronized. To reboot the switch, use the following command: reboot {time } {cancel} {msm } {slot | node-address | stack-topology {as-standby} } Reboot only the backup MSM so the switch continues to forward traffic...
... reboot the MSM manually before the download begins the switch asks if you install the image at a later time, use the following command: download image [[ | ] {{vr} } | memorycard ] {} {msm } Note: If the backup MSM is the backup, and confirm that the MSMs are synchronized. To reboot the switch, use the following command: reboot {time } {cancel} {msm } {slot | node-address | stack-topology {as-standby} } Reboot only the backup MSM so the switch continues to forward traffic...
User Manual
Page 881
... be reported if not used , it is set manually if pwOwner is set at the time the PW entered its current operational state. NETGEAR 8800 User Manual RFC 5601 (PW-STD-MIB) The following tables, groups, and variables are supported in this PW was entered prior to the last re-initialization of the local network management subsystem, then this table. Pseudowire identifier. Value...
... be reported if not used , it is set manually if pwOwner is set at the time the PW entered its current operational state. NETGEAR 8800 User Manual RFC 5601 (PW-STD-MIB) The following tables, groups, and variables are supported in this PW was entered prior to the last re-initialization of the local network management subsystem, then this table. Pseudowire identifier. Value...