+1GigaX-2024/2048 TC 01-32dlcdnet.asus.com/pub/ASUS/Networking/Switch/GigaX2048/...- 5 4.5.4 IGMP...

2 -

GigaX

Windows MS-DOS Microsoft

Adobe Acrobat Adobe System

©2005

: GigaX 2024/2048 : T2064 V2.2: 2005 5

- 3

ASUSTeK COMPUTER INC.( )

112 [email protected]

0800-093-456 AM 9:00 ~ PM 9:00 AM 9:00 ~ PM 6:00

+886-2-2890-7698tw.asus.com

ASUS COMPUTER INTERNATIONAL ( )

44370 Nobel Drive, Fremont, CA 94538, [email protected]

+1-502-933-8713+1-502-995-0883http://vip.asus.com/eservice/techserv.aspxwww.asus.com

ASUS COMPUTER GmbH ( / )

Harkort str. 25, D-40880 Ratingen, [email protected]/sales

49-2102-9599-0 ..... /49-2102-9599-10 .. 49-2102-9599-11www.asuscom.de/support

4 -

GigaX

.................................................................................. 3

1 ..................................................................................... 71.1 .................................................................. 71.2 ........................................................... 8

2 GigaX 2024/2048 .......................... 92.1 ............................................................................. 92.2 .............................................................................. 102.3 .............................................................................. 112.4 ........................................................................... 11

3 ............................................................................ 123.1 Part 1 ............................................................ 12 3.1.1 ............................................ 12 3.1.2 .................................................... 123.2 Part 2 ..................................................... 13 3.2.1 ....................................................... 13 3.2.2 LAN .................................. 13 3.2.3 RPS ......................................... 13 3.2.4 .................................................................. 133.3 Part 3 .......................................... 15 3.3.1 Console Port ............. 15 3.3.2 WEB ............................................. 17

4 .................................................................... 194.1 ................................................. 194.2 ................................................. 21 4.2.1 ........................................................... 23 4.2.2 ........................................................... 234.3 ........................................................................... 23 4.3.1 Management ....................................................... 23 4.3.2 Reboot ................................................................ 24 4.3.3 Administration ..................................................... 25 4.3.4 IP Setup ...................................................................... 26 4.3.5 ...................................................................... 264.4 ........................................................................... 284.5 .................................................................................. 29 4.5.1 Link Aggregation ................................... 30 4.5.2 Mirroring ....................................................... 33 4.5.3 static Multicast ................................ 35

- 5

4.5.4 IGMP IGMP Snooping .................................. 37 4.5.5 Traffic Control ........................................ 38 4.5.6 dynamic address ................................... 39 4.5.7 Static address ........................................ 40 4.5.8 VLAN Tagged VLAN .................................... 41 4.5.9 VLAN CoS ....................... 43 4.5.10 DHCP DHCP Snooping .............................. 444.6 SNMP ................................... 46 4.6.1 Community Table .................................. 46 4.6.2 Host Table ............................................. 47 4.6.3 Trap Trap Setting ......................................... 48 4.6.4 VACM VACM Group ..................................... 49 4.6.5 VACM VACM View ....................................... 50 4.6.6 USM ................................................................ 514.7 ................................................................... 52 4.7.1 ...................................................................... 52 4.7.2 .............................................................. 544.8 ........................................................................... 56 4.8.1 ........................................................... 56 4.8.2 .................................................................. 58 4.8.3 RADIUS ...................................................................... 59 4.8.4 .............................................................. 604.9 QoS .................................................................................. 65 4.9.1 Trust State .................................................................. 65 4.9.2 Mapping ...................................................................... 67 4.9.3 ...................................................................... 68 4.9.4 Policy Set .................................................................... 69 4.9.5 Policy Attach ............................................................... 71 4.9.6 CoS ............................................................................. 724.10 Static chart ............................................... 73 4.10.1 ............................................................ 73 4.10.2 .................................................................... 74 4.10.3 .................................................................... 75 4.10.4 ................................................................ 76

5. Console Interface ......................................... 775.1 ................................................................... 78 5.1.1 Boot ROM .................................................... 79 5.1.2 Boot ROM ........................................................... 805.2 ....................................................................... 805.3 CLI ........................................................................... 81 5.3.1 ...................................................................... 81 5.3.2 ............................................................... 84

6 -

GigaX

5.3.3 ...................................................................... 85 5.3.4 ................................................. 93 5.3.5 ................................................................... 98 5.3.6 .................................................................... 102 5.3.7 QoS .................................................................... 1075.4 ......................................................................... 111

6. IP ............................................... 1116.1 IP ........................................................................... 111 6.1.1 IP ........................................................... 111 6.1.2 .................................................................... 1126.2 ..................................................................... 113

7 ................................................................................. 1157.1 IP ...................................... 1157.2 ................................................................. 1187.3 ......................................................................... 120

8 .................................................................................... 122

- 7

1 GigaX 2024/2048

GigaX 2024/2048

GigaX 2024/2048

1.1 • 24 10/100BASE-T GigaX 2024• 48 10/100BASE-T GigaX 2048• 2 10/100/1000BASE-T Gigabit • 2 (SFP) Gigabit (GBIC)• MDI/MDIX 10/100BASE-TX 10/100/1000BASE-T • 802.3u,802.3z 802.3ab • 802.1D / (Transparent bridge/Spanning tree protocol)• 802.1w RSTP• 802.1X • RADIUS• 8K MAC • 802.3x • 802.1Q-based 255 • 802.1p 4 • IGMP (Snooping)• 802.3ad Trunk 6 • LACP• (Port Mirroring) •• 4 (1,2,3,9) RMON • SNMP V1,V2,V3 • MIB II • MIB• Telnet SSH2 • FTP • IEEE 802.1x VLAN • DHCP • Syslog • Telnet CLI• Port Security

8 -

GigaX

1.2

1.2.1 GigaX

Web GigaX2024/2048

1.2.3

:

:

:

• QoS • GUI• LED • LED

- 9

2.1GigaX

• GigaX 2024/2048

• AC

• (DB9)

• 2 6 #6-32

• USB

•

•

2 GigaX 2024/2048

GigaX 2024/2048

10 -

GigaX

LED LED (RPS)

1 No.

1 SYSTEM

2 RPS

system LED , system

3 FAN

4 10/100 RJ-45 SFP

port status

5 10/100/1000 RJ-45 SFP

port status

6 10/100/1000 1000Mbps

port speed 100Mbps

10Mbps

GigaX 2024

GigaX 2048

- 11

2.3

2

No.

1 Power

2 FAN1 – FAN2

3 Console USB USB

4 Console RS232 RS-232

5 RPS

2.43

43.5mm(H) X 444 mm(W) X 265mm(D)

100-240V AC/2.5A 50-60Hz < 90 watts

(RPS)

100-240V AC/1.8A 50-60Hz 12V DC/12.5A

: :

-10 to 50C (14 to 122 F) -40 to 70C (-40 to 158 F)

15 to 90% 0 to 95%

up to 10,000 ft (3,000m) 40,000 ft (12,000m)

40 x 40 x 20 mm 12VDC, 0.13A 8200RPM

12 -

GigaX

3

GigaX

Part1. GigaX

Part2.

part3. GigaX

IP

3.1 Part1

3.1.1

3.1.2

1.

2.

- 13

3.2 Part2

3.2.1 RS-232 (DB9) USB

3.2.2 LAN

Hub

Category 5 1000BASE-T 1Gbps

3.2.3 RPS RPS

RPS

3.2.3 1. AC

2. 4

14 -

GigaX

4 LED

No. LED

1 System

2 Switch ports[1] to [12]

3 RPS RPS

4 Fan

5

RPS

RS232

Console Management

USB

/

Cat 5

- 15

3.3 Part3

JavaIE5.5

3.3.1 Console Port1. RS-232

DB-9 DTE

Hyper Terminal

2. USB USB USB USB

Windows ME/2000/XP COM

3.

a)

b) 9600.

c) (No parity) 8 (Data bit) 1 (Stop bit)

d)

e) (Emulation mode) VT100

4. ASUS5. l o g i n

Admin Enter

CLI 5.3.1

16 -

GigaX

6. IP

a) Net interface ip sw0 <your ip address> <your network mask> IP 192.168.10.1 255.255.255.0

Net interface ip sw0 192.168.10.1 255.255.255.0

b) Net route static add 0.0.0.0 <your network gateway IP> 0.0.0.

01

6 IP

- 17

3.3.2 WEB

IP IP IP

3.3.1 IP DHCP IP

1. Web

System Administration

22.

Web

Internet Explorer http://192.168.

1.1 Enter

Web Configuration Manager

Admin

(no password)

5.3.1

3. IP IP Interface SWO IP

4.

IP EnterWeb

18 -

GigaX

5. Web AdmnistrationEnabled

7 IP (GigaX 2024)

8 IP (GigaX 2048)

- 19

4

Internet Explorer5.5

Netscape

4.1 1.

http://192.168.1.1 < Enter> IP 8

9

2.

90 5.3.1

Default User Name admin

Default Password

9

20 -

GigaX

10

11

- 21

4.2 10

LED 4 5

12 GigaX 2024

5

10

System Bridge

13 GigaX 2048

22 -

GigaX

14

4.3

- 23

4.2.1

[>] [V]

[>]

[>]

4.2.2

6

MAC ACL

MAC ACL

ACL

4.3 Management Administration Reboot Firmware Update

4.3.1 Management Management

Model Name

MAC Adress MAC

System Name

System Contact

System Location

24 -

GigaX

12

15 Management

4.3.2 IP Setup IP IP Setup

VLAN ID VLAN ID VLAN

DHCP Client IP IP

IP Address IP

Network Mask

Default Gateway

16 IP Setup

- 25

4.3.3 Administration Administration

13

CLI

17 Administration

26 -

GigaX

4.3.5 Firmware Upgrade Fireware

Hardware Version

BootROM Version boot code

Fireware Version

4.3.2 Reboot Reboot [Reboot]

16 Fireware Upgrade

- 27

14

upload

19 Fireware Upgrade

28 -

GigaX

4.4

Port

Admin

Mode

Flow Control 802.3x

Port Status Window

a) Link status

b) State STP

c) Admin

d) Mode

e) Flow Control 802.3x

Safe Configuration

20

- 29

4.5 Bridge Bridge Link aggreration, STP

Spanning TreeSTP

STP

STP

Disable Enable STP STP STP

Hello Time BPDU

MAX Age

Forward Delay

Bridge Priority

STP

Port

Priority

STP

Cost 1 65535 STP

Fast Link STP

Edge Port: BPDU STP

Point to Point: Auto/Yes/No

Auto

30 -

GigaX

21

4.5.1 Link aggregation 6

Show Trunk Add a new Trunk

- 31

Port Selection Criterion MAC MAC MAC

IP IP IP

Name

Trunk ID

LACP / LACP LACP Active

Remove Trunk

Port Icon

[OK] HTTP [Reload] S a v e

configuration [Save]

Physical Interface

auto-negotiation

VLAN

1 2 1 2

32 -

GigaX

22 GigaX 2048

23 GigaX 2024

- 33

4.5.2 Mirroring

Mirror 24 Fast Ethernet 1 Gigabit GigaX 2048

Mirror Mode

Monitor Port

GigaX 2048 24 2 Gigabit

GigaX 2024 24 2 Gigabit

HTTP

24 GigaX 2048

34 -

GigaX

25 GigaX 2024

- 35

4.5.3 Static Multicast

256

Show Group Add a new group

MAC Address

VLAN

CoS

[OK] HTTP [Reload]

26 GigaX 2048

36 -

GigaX

27 GigaX 2024

- 37

4.5.4 IGMP IGMP Snooping IGMP

IGMP 256

IGMP 256

28 IGMP

38 -

GigaX

4.5.5 Traffic control

HTTP Save Configuration

29

- 39

30

4.5.6 Dynamic addressVLAN ID MAC MAC

MAC

10 1,000,000

Save configuration

VLAN ID MAC MAC

40 -

GigaX

4.5.7 Static addresses MAC MAC

MAC Address MAC

VLAN ID MAC VLAN ID

Port Selection MAC

Discard MAC

MAC

MAC

S a v econfiguration

31

- 41

4.5.8 VLAN Tagged VLAN 4094 VLAN

VLAN VLAN VLAN

VLAN

U VLAN tag

T

VLAN

VLAN PVID Default Port VLAN & CoS VLAN

VLAN VLAN VLAN

Show VLAN VLAN Add a newVLAN VLAN

Name VLAN

VLAN ID VLAN VLAN ID

Remove VLAN VLAN VLAN

SaveConfiguration

42 -

GigaX

32 GigaX 2048

33 GigaX 2024

- 43

4.5.9 VLAN CoS

Port

PVID VLAN ID VLAN ID

CoS Class of Service Value CoS VLAN

Save Configuration

34 VLAN CoS

44 -

GigaX

4.5.10 DHCP DHCP SnoopingDHCP DHCP DHCP DHCP

DHCP DHCP ACK

DHCP Snooping DHCP

35 DHCP Snooping GigaX 2048

- 45

36 DHCP Snooping GigaX 2024

46 -

GigaX

4.6 SNMP Trap SNMP

4.6.1 Community Table

37

- 47

4.6.2 Host table IP

IP

38

48 -

GigaX

4.6.3 Trap Trap Setting Trap IP SNMP Trap

v1 v2c Trap

39

- 49

4.6.4 VACM VACM GroupVACM View-based Access Control Model

Group Name

Read View Name GetNext GetBulg SNMP

Write View Name SNMP Set

Notify View Name SNMP Trap Report

Security Model Any v1,v2, v3 USM SNMPv3

Security Level NoAuth,AuthNopriv, AuthPriv

VACM

VACM

Save Configuration

40 VACM

50 -

GigaX

4.6.5 VACM VACM ViewVACM View-based Access Control Model

View Name

View Type View Subtree SNMP v3 Oid Include

Exclude

View Subtree View Subtree Subtree SNMPv3 Oid Subtree SNMPv3

Oid

View Mask View Mask View Subtree

VACM

VACM

Save Configuration

41 VACM

- 51

4.6.6 USM USM User-based Security Model,

SNMPv3 USM User

Engine Id ID Engine ID

Name Engine ID Engine ID

Auth Protocol Engine Id Auth Protocol NoAuth, MD5, SHA1 NoAuth

Auth Password Auth Protocaol

Priv Protocol Engine Id Priv Protocol NoPriv, DES NoPriv

Priv Password Priv Protocol

USM

USM

Save Configuration

42 USM

52 -

GigaX

4.7 Filter pages

4.7.1 Filter setID

MAC IP

IP FTP

Filter Set 39 ID

[ ]

IP IP

43

- 53

MAC 34 IP 35

MAC MAC IP IP IP

Action Action

44 MAC

54 -

GigaX

4.8.2 Filter attach

Save Configuration

Attach AllDetach All

MAC 00 10 20 30 40 50 1 2

1 MAC 00 10 20 30 40 50 2 flooding

2

45 GigaX 2048

- 55

46 GigaX 2048

56 -

GigaX

4.8 Security 802.1x port-based

RADIUS MD5

802.1x VLAN / VLAN

4.8.1 Port Access Control 802.1x 802.1x RADIUS

Bridge

Reauthentication IP

Reauthentication Time

Authentication Method RADIUS

Quiet Period RADIUS

Retransmission Time

MAX Reauthentication Atempts

- 57

Port

Port

Multi-host

Authentication Control force_authorized

force_unauthorizedAuto

802.1x Auto

Guest VLAN VLAN 802.1x

47

58 -

GigaX

4.8.2 Dial-In User

User Name

Password

Confirm Password

Dynamic VLAN VLAN ID 802.1x

MAX Reauthentication Atempts

48

- 59

4.9.3 RADIUS RADIUS

Authentication Server IP RADIUS IP

Authentication Server Port RADIUS

Authentication Server Key GigaX RADIUS

Confirm Authentication Key

RADIUS VLAN VLAN

49 RADIUS

60 -

GigaX

4.8.4 Port Security MAC

4.8.4.1 Port Configuration MAC

1024

Port

Violation Mode Violation Mode

MAC Violation Mode

a Protect

b Restrict SNMP Trap

c Shutdown SNMP Trap

Violation

Max MAC Address MAC 1 132

MAC

Aging Time 0 1440 MAC

0

- 61

Aging Type MAC

a Absolute

b Inactivity

50

62 -

GigaX

4.8.4.2 Port Status

Port

Status

a NoOper

b Secure Up

c SecureDown

d Restrict Violation Mode Restrict

e Shutdown: Violation Mode Shutdown

Restart (Yes/No)

TotalMacAddrCount MAC

StaticMacAddrCount MAC

ViolationCount

SecureDown

802.1x

Shutdown , Yes

- 63

51

4.8.4.3 MAC Security MAC Address MAC MAC

MAC MAC MAC MAC

MAC Address MAC

Port Selection MAC

64 -

GigaX

MAC

Port Selection MAC

Shift

52 MAC

- 65

4.9 QoS QoS CoS

QoS trust state mapping class set policy set policy attach CoS

4.9.1 Trust State Trust State

Port

State trust state state

a) No

trust state

b) CoS

CoS

(Tagged) IP -- DSCP CoS-

to-DSCP map

(Untagged) IP -- DSCP CoS-to-DSCP map

c) DSCP

DSCP

(Tagged) IP -- CoS 0

(Untagged) IP -- CoS CoS

IP -- DSCP-to-CoS map CoS

66 -

GigaX

CosOverride / CoS CoS Overide Trust State No CoS Override

trust state CoS CoS CoS

CoS CoS

Save Configuration

53 Trust State

- 67

4.9.2 Mapping CoS Classification of Service DSCP

Differentiated Services Code Point

Map CoS to DSCP CoS DSCP CoS-to-DSCP map CoS

DSCP QoS

Map DSCP to CoS DSCP CoS DSCP-to-CoS map

DSCP CoS

Save Configuration

54 Mapping

68 -

GigaX

4.9.3 Class Set QoS

match Filter Set ID DSCP ACL

ACL class-map policy

56

Class Name

Match

Filter Set ID Filter ID

DSCP DSCP DSCP

Save Configuration

55

- 69

4.9.4 Policy SetPolicy Policy

DSCP Burst Size

policy Policy 56 policies 256 policy

Policy policy

Policy policy Policy 6 policy

56

Policy Policy Policy Policy 6

Class ID ID

DSCP DSCP ID DSCP ID

70 -

GigaX

Traffic Rate 1 125 Gigabit 8 10

10Mbps Gigabit 80Mbps

Traffic Burst Size 4K Gigabit

8 4K 4K Bytes Gigabit

32K Bytes

Exceed Action None

Exceed DSCP DSCP DSCP

policy policy policy

policy policy

policy Save Configuration

57 Policy Edit

- 71

4.9.5 Policy Attach policy policy

policy policy

Save Configuration

policy

Attach to all ports Policy

Attach to certain ports

Detach all policy

58 policy

72 -

GigaX

4.9.6 CoS CoS

Strict priority scheduling CoS

Weight 0

WRR WRR CoS WRR

WRR

3 4

1 255 WRR

Save Configuration

59 CoS

- 73

4.10 Statistic chart

MIB-II

Refresh Rate Color

Draw Draw

4.10.1 Traffic comparison

Draw

60 GigaX 2048

74 -

GigaX

4.10.2 Error Group Chart Port Color Draw

62 Error Group Chart

61 GigaX 2024

- 75

4.10.3 Historical Status

63

76 -

GigaX

4.10.4 Save configuration

64

- 77

5 Console interface

RS232 USB PC PC HyperTerminal command line interpreter

9600 8 bit no parity 1

CLI CLI CLI 10 CLI CLI

CLI

sys syssys

sys sys(system name)sys%

78 -

GigaX

5.1 Power On Self TestPOST

LED

(ASUS)% 41

65 CLI

- 79

5.1.1 Boot ROM <Enter> Boot ROM

Command 50

42 Slot 0 Slot 1

66 Boot ROM

80 -

GigaX

5.1.2 Boot ROM

7 Boot ROM

d Address [,length]

p NONE

g NONE CLI

a NONE MAC

b O or 1 or a Slot ID

S 0, 1, 2, 30: 9600bps1:38400bps2:57600bps3:115200bps

X NONE

R NONE CLI

W NONE ID

5.2login CLI

admin

Boot ROM Command

logout

- 81

5.3 CLI CLI commands CLI

..

/

5.3.1 System commands[System Name]

RFC-1213 MIB

CLI command sys name <system name description>

[System Contact]

RFC-1213 MIB

CLI command sys contact <system contact description>

82 -

GigaX

[System Location]

RFC-1213 MIB

CLI sys location <system location description>

67

- 83

[VLAN ID]

VLAN ID ID VLAN

CLI I3 interface vlan sw0 <VLAN ID>

[IP Address]

IP IP http SNMP FTP Telnet

IP

CLI net interface ip sw0 <ip adress> <netmask>

[DHCP Client]

DHCP IP DHCP IP DHCP IP

IP

CLI net interface ip sw0 <enabled/disabled/renew/release/show>

[Network Mask]

IP


[Default Gateway]

IP


[Password Protection is] [Enabled/Disabled]

CLI sys weblogin set <enabled/disabled>

CLI sys reboot

84 -

GigaX

[New Password]

[Verify Password]

admin

CLI sys users modify<user name, admin by default>

user name (old user name admin by default):<new user name>

password (old password, asus by default): <new password>

[Reboot]

[Upload]

CLI Boot ROM

5.3.2 Physical interface commands[Admin] [Enabled/Disabled]

CLI 12 port admin <port number> <enabled/disabled>

[Mode] [Auto/10M-Half/10M-Full/100M-Half/100M-Full/1G-Full]

auto-negotiation

CLI : l2 port autoneg <port number> <enable/disable>

CLI : l2 port speed <port number> <10/100/1000>

CLI : l2 port duplex <port number> <full/half>

[Flow Control] [Enabled/Disabled]

IEEE802.3x

CLI : l2 port flow <port number> <enable/disable>

[Retrieve]

CLI : sys l2 port retrieve

- 85

5.3.3 Bridge commands[Spanning Tree is] [Enabled/Disabled]

STP

CLI 12 stp: <start/stop>

[Hello Time]

[Forward Delay]

[Max Age]

[Bridge Priority]

STP

CLI l2 stp bridge set

Hello Time (1..10 seconds):[old Hello Time] <new Hello Time>

Max Age (6..40 seconds):[ old Max Age] <new Max Age>

Forward Delay (4..30 seconds):[ old Forward Delay] <new Forward Delay>

Bridge Priority (0..61440):[ old Bridge Priority] <new Bridge Priority>

[Priority]

[Path Cost]

[Edge Port]

[Point-to-point]

STP/

CLI l2 stp port set

Port Settings (all, :[all] <select a port number, or just type all to iterativelyconfig>

Port <port number> Priority (0..240):[old port Priority] <new port Priority>

Port <port number> Path Cost (1..200000000):[old port Path Cost] <new port PathCost>

Port <port number> Edge Port (Yes/No):[old port Edge Port] <new port Edge Port>

Port <port number> Point-to-poin (Yes/No/Auto):[old port Point-to-Point] <newport Point-to-Point>

86 -

GigaX

[Retrieve]

CLI : l2 stp retrieve

CLI : l2 stp bridge retrieve

CLI : l2 stp port retrieve

[Show Trunk]

ID

CLI command : l2 trunk show <trunk id>

[Create Trunk]

ID rtag rtag

Rtag

1. MAC

2. MAC

3. MAC

4. IP

5. IP

6. IP

CLI : l2 trunk create <trunk id> <rtag (1-6)> <trunk name> <port list>

[Add/Remove Trunk]

CLI : l2 trunk add <trunk id> <port list>

CLI : l2 trunk remove <trunk id> <port list>

[LACP Action]

LACP

CLI : l2 trunk lacp action <trunk id> <enable/disable>

[LACP System Priority]

LACP

CLI : l2 trunk lacp syspri <priority (1-65535)>

- 87

[LACP Port Priority]

LACP

CLI : l2 port lacppri <priority> <port list / * for all ports> [Reload]

CLI : l2 trunk retrieve

GigaX 2048

[Mirror] [ Mirror 1/Mirror 2]

[Mirror Mode] [ Enable/Disable]

[Monitor Port] [port number]

CLI : l2 mirror create <monitor port no> <enable/disable>

CLI : l2 mirror ingress <port list>

CLI : l2 mirror egress <port list>

CLI : l2 mirror remove <ingress/egress> <port list>

GigaX 2024

[Mirror Mode] [ Enable/Disable]

[Monitor Port] [port number]

CLI : l2 mirror create <monitor port no> <enable/disable>

CLI : l2 mirror ingress <port list>

CLI : l2 mirror egress <port list>

CLI : l2 mirror remove <ingress/egress> <port list>

[Retrieve]

CLI l2 mirror retrieve

[Show Multicast Group]

CLI l2 mcast show

88 -

GigaX

[Set Multicast Group]

MAC VLAN ID VLAN

MAC VLAN ID

CLI l2 mcast set

mac address format xx:xx:xx:xx:xx:xx <multicast macaddress>

vlan id 1 by default <vlan id>

cos 0-7, 0 by default <class of service>

port list format 1 2 3 4-50/ for all ports <vlan port list>

untagged port list format 1 2 3 4-50/ for all ports <untagged portlist>

[Remove Multicast Group]

MAC VLAN ID

CLI l2 mcast delete mac address [format: xx:xx:xx:xx:xx:xx]: <multicast mac address> vlan id: <vlan id>

[Retrieve]

CLI : l2 mcast retrieve

[IGMP is] [Enabled/Disabled]

Layer 2 IGMP snooping can be started or terminated by user if necessary.

CLI : l2 igmp <start/stop>

[Retrieve]

CLI : l2 igmp retrieve

[Broadcast] [Enabled/Disabled]

[Multicast] [Enabled/Disabled]

- 89

[Destination Lookup Failure] [Enabled/Disabled]

CLI : l2 rate set <1: bcast/2: mcast/3: dlf> <enable/disable>

[Limit]

CLI : l2 rate limit <limit rate>

[Retrieve]

CLI : l2 rate retrieve

[Aging Time]

ARL(Address ResolutionLogic)

CLI : l2 arl age [aging time value]

[Query by Port]

ARL ARL

CLI : l2 arl port <port number>

[Query by VLAN ID]

ARL ARL VLAN ID

CLI : l2 arl vlan <vlan id>

[Query by MAC Address]

ARL ARL MAC address

CLI : l2 arl mac <mac address> [vlan id]

90 -

GigaX

[MAC Address]

[VLAN ID]

[Port Selection]

[Discard] [none/source/destination/source & destination]

MAC address VLAN IDID ARL

CLI : l2 arl static <mac> <vlan id> <port no> <trunk id> <discard: 0-3>

[Remove]

ARL MAC address VLAN ID ARL

CLI : l2 arl delete <mac address> <vlan id>

[Retrieve]

CLI : l2 arl retrieve

[Show VLAN]

VLAN

CLI : l2 vlan show <vlan id>

[Name]

[VLAN ID]

VLAN VLANID VLAN VLAN

CLI CLI

VLAN VLAN

CLI : l2 vlan create <vlan id> <vlan name> <port list>

CLI : l2 vlan add <vlan id> <port list>

CLI : l2 vlan remove <vlan id> <port list>

CLI : l2 vlan utportadd <vlan id> <untagged port list>

- 91

[DHCP Snoop]

VLAN DHCP

CLI : l2 dhcpsnoop enable <vlan id list>

CLI : l2 dhcpsnoop disable <vlan id list>

[Remove VLAN]

VLAN

CLI : l2 vlan delete <vlan id>

[Retrieve]

CLI : l2 vlan retrieve

[PVID]

VLAN ID VLAN

CLI command : l2 port vlan <vlan id, 4000 to disable the port-based vlan> <port list> [CoS Value]

( 0-7)

CLI command : l2 port priority <CoS> <port list>

CLI : l2 port vlan <vlan id, 4000 to disable the port-based vlan> <port list> [CoS Value]

Sets the Class of Service for a port by assigning it a priority (with range of 0-7)criteria value.

CLI : l2 port priority <CoS> <port list>

[Retrieve]

Restores the previous saved settings from configuration file.

CLI : l2 port retrieve

[Priority] [CoS Queue]

Allows user to map the CoS priority (with range of 0-7) for a buffer queue (totalof 4, with queue ID of 1-4).

CLI : l2 cos map <queue id (1-4)> <cos (0-7)>

92 -

GigaX

[Retrieve]

CLI : l2 cos retrieve

[DHCP Snooping is]

VLAN DHCP

CLI : l2 dhcpsnoop enable <vlan id list>

CLI : l2 dhcpsnoop disable <vlan id list>

[Add/Remove Trusted Port]

DHCP

CLI : l2 dhcpsnoop add <port list>

CLI : l2 dhcpsnoop remove <port list>

[Retrieve]

CLI : l2 dhcpsnoop retrieve

- 93

5.3.4 SNMP[Community Name] [Set]

CLI : snmp community add

New community string: <new community string>

Get privileges: [y, always turn on by default]

Set privileges? (y/n):[n] <set privilege, y for yes ; n for no >

CLI : snmp community set

Community entry (table index): <entry id to config>

Community string (old community string): <new community string>

old community newcommunity

Are you sure? (y/n):[y] <y for yes n for no >

Get privileges: [y, always turn on by default]

Set privileges? (y/n):[n] <set privilege, y for yes n for no >

CLI : snmp community delete

Community entry (table index): <entry id to delete>

delete community

Are you sure? (y/n):[y] <y for yes n for no >

[Retrieve]

CLI : snmp community retrieve

[Host IP Address] [Community]

IP

CLI : snmp host add

94 -

GigaX

Host IP/Subnet: <IP address>Netmask: <netmask>Community: <community string>

CLI : snmp host set

IP

Host table entry (table index): <entry id to config>

Host IP/Subnet (old IP address): <new IP address>

Netmask (old netmask): <new netmask>

Community (old community string): <new community string>

CLI : snmp host delete

Entry id (table index): <entry id to delete>

[Retrieve]

CLI : snmp host retrieve

[Trap Version] [v1/v2c]

[Destination]

[Community for Trap]

Trap SNMP V1 V2c IP

CLI : snmp trap add

SNMP version? (1/2c):[1, by default] <snmp version>

Destination IP: <IP address>

Community: <community string>

CLI : snmp trap set

SNMP IP Trap

Trap table entry (table index): <entry id to config>

SNMP version? (1/2c):[old snmp version] <new snmp version>

Destination IP (old IP address): <new IP address>

- 95

CLI : snmp trap delete

Trap

Trap table entry (table index): <entry id to delete>

[Retrieve]

CLI : snmp trap retrieve

[Group Name]

[Read View Name]

[Write View Name]

[Notify View Name]

[Security Model]

[Security level]

VACM(View-based Access Control Model)

CLI : snmp snmpv3 access add

Gruop Name: <group name string>

Security Model [0/1/2/3](any/v1/v2c/usm): <security model>

Security Level [1/2/3](noauth/authnopriv/authpriv): <security level>

Context Match [0/1](inexact/exact): <context match>

Read View Name: <read view name string>

Write View Name: <write view name string>

Notify View Name: <notify view name string>

CLI : snmp snmpv3 access set

96 -

GigaX

Gruop Name: (old group name string) <new group name string>

Security Model [0/1/2/3](any/v1/v2c/usm): (old security model) <new securitymodel>

Security Level [1/2/3](noauth/authnopriv/authpriv): (old security level) <newsecurity level>

Context Match [0/1](inexact/exact): (old context match) <new context match>

Read View Name: (old read view name string) <new read view name string>

Write View Name: (old write view name string) <new write view name string>

Notify View Name: (old notify view name string) <new notify view namestring>

CLI : snmp snmpv3 access delete

VACM VACM

Access entry: <entry id to delete>

[Retrieve]

CLI : snmp snmpv3 access retrieve

[View Name]

[View Type]

[View Subtree]

[View Mask]

VACM(View-based Access Control Model) VACM SNMPV3 VACM

CLI : snmp snmpv3 view add

View Name: <view name string>

View Subtree [oid]: <view subtree>

View Mask: <view mask>

View Type[1/2](included/excluded): <view type>

CLI : snmp snmpv3 view set

- 97

USM(User-based Security Model) SNMPV3 USM Id

CLI : snmp snmpv3 usmuser add

EngineId: <engine id string >

Name: <user name string >

AuthProtocol [oid]: <auth protocol oid string >

AuthPassword: <auth password string>

Priv Protocol [oid]: <priv protocol oid string >

Priv Password: <priv password string >

CLI : snmp snmpv3 usmuser set

I d USM

EngineId: (old engine id string ) <new engine id string >

Name: (old user name string ) < new user name string >

AuthProtocol [oid]: (old auth protocol oid string) < new auth protocol oid string>

AuthPassword: (old auth password string) < new auth password string>

Priv Protocol [oid]: (old priv protocol oid string) < new priv protocol oid string>

Priv Password: (old priv password string) < new priv password string >

CLI : snmp snmpv3 view delete

USM

USM user entry: <entry id to delete>

[Retrieve]

CLI : snmp snmpv3 usmuser retrieve

98 -

GigaX

5.3.5 Filter commands[New]

ACL Access Control List ID

CLI : filter set new <acl id> <acl name>

[Remove]

ACL ID

CLI : filter set delete <acl id>

[Edit]

[Rule Mode] [MAC Rule]

[Action] [Permit/Deny]

[Source MAC]

[Destination MAC]

[Add]

MAC ICMP TCP UDP

CLI dstmac srcmac MAC


[Retrieve]

CLI : filter rule new <set id> <rule id> <protocol: ICMP/TCP/UDP/any><action: permit/deny>

CLI : filter rule dstmac <set id> <rule id> <type: (any/[mac address])>

- 99

[Rule Mode] [IP Rule]


[Source IP] [Type/IP, Mask]

[Destination IP] [Type/IP, Mask]

[Source Port] [Type/Port]

[Destination Port] [Type/Port]

[Protocol] [ICMP/TCP/UDP/ANY]

[Add]

IP ICMP, TCP UDP

CLI dstip/srcip and dstport/srcport IP

CLI : filter rule new <set id> <rule id> <protocol: ICMP/TCP/UDP/any> <action: permit/deny>

CLI : filter rule dstip <set id> <rule id> <type: (any/[ip][subnet])>

CLI : filter rule srcip <set id> <rule id> <type: (any/[ip][subnet])>

CLI : filter rule dstport <set id> <rule id> <type: (any/[port])>

CLI : filter rule srcport <set id> <rule id> <type: (any/[port])>



[Source MAC]

[Destination MAC]

[Modify]

MAC

CLI : filter rule modify <set id> <rule id> <protocol: ICMP/TCP/UDP/any> <action: permit/deny>

CLI : filter rule dstmac <set id> <rule id> <type: (any/[macaddress])>

CLI : filter rule srcmac <set id> <rule id> <type: (any/[macaddress])>

100 -

GigaX








[Modify]

IP

CLI : filter rule modify <set id> <rule id> <protocol: ICMP/TCP/UDP/any> <action: permit/deny>

CLI : filter rule dstip <set id> <rule id> <type: (any/[ip][subnet])>

CLI : filter rule srcip <set id> <rule id> <type: (any/[ip][subnet])>

CLI : filter rule dstport <set id> <rule id> <type: (any/[port])>

CLI : filter rule srcport <set id> <rule id> <type: (any/[port])>



[Source MAC]

[Destination MAC]

[Delete]

MAC

CLI command: filter rule delete <set id> <rule id>






- 101



[Delete]

MAC

CLI : filter rule delete <set id> <rule id>

[Rule List]

CLI : filter rule show <set id> <rule id>

Attach

/

[Filter ID]

CLI : filter show

[Ingress Port]

CLI : filter apply ingress <filter set id> <any/none/[port number]>

[Egress Port]

CLI : filter apply egress <filter set id> <any/none/[port number]>

[Retrieve]

CLI : filter retrieve

102 -

GigaX

5.3.6 Security Commands[Reauthentication]

CLI : security dot1x bridge reauth <enable / disable>

[Reauthentication Time]

CLI : security dot1x bridge reauthtime <reauthentication time(1-4294967295 sec)>

[Authentication Method]

(RADIUS ).

CLI : security dot1x bridge authmeth <type (1:local 2: radius)>

[Quiet Period]

CLI : security dot1x bridge quietperiod <quiet period (1- 65535 sec)>

[Retransmission Time]

CLI : security dot1x bridge retxtime <retransmission time (1- 65535 sec)>

[Max Reauthentication Attempts]

CLI : security dot1x bridge reauthmax <max reauthentication attemps (1-10)>

[Multi-host]

CLI : security dot1x port multihost <enable/disable><port list/*>

[Authentication Control]

CLI : security dot1x port authctrl <type (1: force_authorized 2:force_unauthorized 3: auto)><port list/*>

- 103

[Guest VLAN]

VLAN ID

CLI : security dot1x bridge port guestvlan <vlan id (0:no guest vlan)> <port list/*>

[Reload]

CLI : security dot1x retrieve

[User Name]

[Password]

[Confirm Password]

[Dynamic VLAN]

802.1x VLAN

CLI : security dialinuser create

User Name: <user name string>

Password: <password string>

Confirm Password: <confirm password string>

Dynamic VLAN: <dynamic VLAN>

CLI : security dialinuser remove <user name/*>

CLI : security dialinuser modify <user name/*>

VLAN

User Name: <new user name string>

Password: <new password string>

Confirm Password: <new confirm password string>

Dynamic VLAN: <new dynamic VLAN>

[Reload]

CLI : security dialinuser retrieve

104 -

GigaX

[Authentication Server IP]

[Authentication Server Port]

[Authentication Server Key]

[Confirm Authentication Key]

RADIUS IP

CLI : security radius set

authentication server ip <ip/none>: (old server ip)<new server ip >

authentication server port <port/default>: (old server port)<new server port>

authentication server key <key/none>: <server key>

confirm authentication key <key/none>: <confirm server key>

[Reload]

CLI : security radius retrieve

[Generate SSH key]

SSH SSH (Secure SHell) shell telnet

telnet

SSH protocol version 2 SSH

RSA DSA /

CLI : security sshkey start

[Reset SSH key]

SSH

CLI : security radius default

[Show Generating Status]

SSH success SSH keysgenerated fail system is generating keys ...

CLI : security sshkey show

- 105

[Admin] [Enable/Disable]

/

CLI : security portsecu admin <enable/disable> <port list/*>

[Violation Mode] [Protect/Restrict/Shutdown]

CLI : security portsecu violation violation <mode (1:protect 2:restrict 3:shutdown)> <port list/*>

[Max MAC Addresses]

MAC

CLI : security portsecu maxaddr <max number of addresses> <port no>

[Aging Time]

CLI : security portsecu age <age time> <port list/*>

[Aging Type] [Absolute/Inactivity]

CLI : security portsecu agetype <type (1:absolute 2:inactivity)><port list/*>

[Restart]

'shutdown'

CLI : security portsecu restart <port list/*>

[Port Selection]

[Query]

MAC

CLI : security portsecu mac display <port list/*>

106 -

GigaX

[MAC Address]

[Port Selection]

[Add]

MAC

CLI : security portsecu mac add <mac address> <portno>

[Remove]

MAC VID MAC MAC

CLI : security portsecu mac delete <mac address > <vid><port no>

CLI : security portsecu mac clear <port list/*>

[Retrieve]

CLI : security portsecu retrieve

- 107

5.3.7 QoS QoS Command[State] [No/CoS/DSCP]

CLI : qos trust state <no/cos/dscp> <port list/*>

[CoSOverride] [Disable/Enable]

CoS CoS No

CLI : qos trust override <enable/disable> <port list/*>

[CoS to DSCP]

CoS DSCP

CLI : qos map cosdscp <dscp1> <dscp2> <dscp3> <dscp4><dscp5> <dscp6> <dscp7> <dscp8>

[DSP to CoS]

DSCP CoS

CLI : qos map dscpcos <dscp list> to <cos priority>

[Class Name]

[Match][None/Filter/DSCP]

[Filter Set ID]

[DSCP][0/8/10/16/18/24/26/32/34/40/46/48/56]

[Add]

Filter IDDSCP DSCP

<dscp list>, <acl id> <acl id> 0

CLI : qos class new <class name>

CLI : qos class match <class id(1-56)>

dscp (0/8/10/16/18/24/26/32/34/40/46/48/56):<dscp value>acl id:<aclid>

108 -

GigaX

[Modify]

<new dscplist> <new acl id> <new acl id> 0

CLI : qos class modify <class id(1-56)>

dscp (old DSCP): <new dscp list>

acl id (old ACL ID):<new Acl ID>

[Remove]

ID *

CLI : qos class delete <class id(1-56): * for all classes>

[Policy Name]

[Add]

CLI : qos policy new <policy name>

[Remove]

ID *

CLI : qos class remove <policy id(1-56): * for all policies>

[Edit]

[Class ID]

[DSCP]

[Traffic Rate]

[Traffic Burst Size]

[Exceed Action][None/Drop/DSCP]

[Exceed DSCP]

[Traffic Rate]

[Traffic Burst Size]

[Exceed Action][None/Drop/DSCP]

[Exceed DSCP]

- 109

[Add]

ID ID 6

none drop

CLI : qos policy add <policy id(1-56)> <class id(1-56)>

dscp (0/8/10/16/18/24/26/32/34/40/46/48/56):<dscp value>

traffic rate(1-125):<traffic rate>

traffic burst size:<traffic rate size>

exceed act(none/drop/dscp):<exceed action>

exceed dscp(0/8/10/16/18/24/26/32/34/40/46/48/56):<dscp value>

[Modify]

ID ID

CLI : qos policy add <policy id(1-56)> <class id(1-56)>

dscp (old dscp value):<new dscp value>

traffic rate(old traffic rate):<new traffic rate>

traffic burst size(old traffic rate size):<new traffic rate size>

exceed act(old exceed action):<new exceed action>

exceed dscp(old dscp value):<new dscp value>

[Remove]

ID ID ID *

CLI : qos policy remove <policy id(1-56)> <class id: * for allclasses>

[Policy ID]

[Attach/Detach]

CLI command: qos policy attach <policy id(1-56)> <port list/*>

CLI : qos policy detach <policy id(1-56)> <port list/*>

110 -

GigaX

[Retrieve]

CLI : qos retrieve

[Scheduling Algorithm]

[CoS Queue ][Weight]

1-255

CLI : l2 cos sched <mode (1:strict 2:weighted round robin 3:bounded delay)> <Q1-Q4: weight delay>

[Priority] [CoS Queue]

CoS 0-7 4 ID 1-4


- 111

5.4 Miscellaneous commandssys uptime:

sys date:

sys settime:

sys files config backup:

sys files config default:

sys baud:

net ping: ping

net route show:

6 IP IP Adress,

network mask,& subnet

6.1 IP IP Adress IPv4 IP Version 4 of Internet

Protocol IPv6

binary number bits bytes

IP IP

0 255 20.56.0.211

1. 2. 3. 4

IP IP 20.56.0.211

6.1.1 IP Structure of IP AdressIP

IP

ID Network ID

112 -

GigaX

IP ID ID ID

8 IP

8 IP

1 2 3 4

Class A ID ID

Class B ID ID

Class C ID ID

IP

Class A 10.36.6.125 = 10 = 30.6.125

Class B 129.88.16.49 = 129.88 = 16.49

Class C 192.60.201.11 = 192.60.201 = 11

6.1.2 Network classes A B C

Class C

Class A 1 6

126 2 WAN

ISP

Class A Class B 6 5000

16,384 Class B Class B

Class C254 2

2,097,152

IP

ID Host ID

- 113

IP

field 1 = 1 - 125 Class A

field 1 = 128 - 191 Class B

field 1 = 192 - 223 Class C

( 1 )

ID 0 255

6.2 Subnet masks

IP IP ID ID

1 ID 0 ID

ID ID

ID

Class C 192.168.1

255.255.255.128

11111111. 11111111. 11111111. 10000000

Class C 1 3 ID

ID 0 1 4

ID 0 127 Class C 0 255

Class C

255.255.255.192 11111111.11111111.11111111.11000000

4 00, 01, 10, 11 0 63 6

ID

114 -

GigaX

ID

Class A 255.0.0.0

Class B 255.255.0.0

Class C 255.255.255.0

- 115

7 Troubleshooting IP

7.1 IP

7.1.1 Ping PC

Ping

IP

ping

ping 192.168.1.1 IP IP

IP IP

52

68

116 -

GigaX

Request timed out

IP 192.168.1.1

IP www.yahoo.com 216.115.108.243

IP nslookup command

IP

7.1.2 nslookup

IP DNS ISP

ISP DNS

IP

nslookup nslookup

>

www.absnews.com

53 IP

69

- 117

IP

exit <Enter>

118 -

GigaX

7.2

1.

70

2.

71

- 119

3.4.

72

5.

6.FAN 1

7.

8.

40 x 40 x 20 mm

12VDC 0.13A

8200 RPM

120 -

GigaX

7.3

LED

SYSTEM

RPS 1. RPS RPS

2.

FAN 7.2

Gigabit 1.

GigaX

2. 1000 Mbps 1000Base Tx Cat 5

Cat 6

1.

2. STP

1. IP 192.168.1.1

2. IP

- 121

3. ping 2

4. RS-232 USB

MAC WEB

1. admin

2. RS-232 USB sysuser show

3. BootROM wg Enter

1. Internet Explorer 5.5 Netscape

Javascrip Java

2. ping IP

1. 9600 8 1

2. USB USB

3.

122 -

GigaX

8 Glossary10BASE-T 10 Mbps

Category 3 CAT 3Ethernet

100BASE-T 100 Mbps Category 5 CAT 5

Ethernet

1000BASE-T 1000 Mbps

binary0 1 1

1 2 10 3 11 4 100I P

IP 209.191.4.240 11010001.10111111.00000100.11110000 bit, IP

address, network mask

bit binary digit bit 0 1 binary

bps

CoS 802.1Q 1 7

broadcast

download

Ethernet10 Mbps 100 Mbps

10BASE-T, 100BASE-T, twisted pair

filtering

filtering rule

FTP File Transfer Protocol

Web Web

host

- 123

HTTP Hyper-Text Transfer Protocol HTTPWeb Web

web browser, web site

ICMP Internet Control Message ProtocolI P

Ping ICMP

IGMP Internet Group Management Protocol

IGMP

IGMP Snooping

Internet

intranet

IP TCP/IP

IP address Internet Protocol address0

255 209.191.4.240 IPnetwork ID

host ID network ID host ID IP

domain name, network mask

ISP Internet Service Provider

LAN Local Area Network

LED Light Emitting Diode

LED

124 -

GigaX

MAC address Media Access Control addressMAC

mask network mask

Multicast

Mbps Megabits per secondMbps

Monitor

network

LAN Internet

network mask host ID IP bit Bit 1

bit 0 255.255.255.0 IP 100.10.50.1 network

ID 100.10.50 host ID 1 binary, IP address,subnet

NIC Network Interface Card

NIC RJ-45 Ethernet, RJ-45

packet

ping Packet Internet (or Inter-Network) GroperI P

IP

port

protocol

remote

- 125

RJ-45 8-pin

RMON - SNMP

routing

SNMP Simple Network Management ProtocolTCP/IP

STP -

subnet mask network mask TCPTCP/IP

TCP TCP/IP

TCP/IP Transmission Control Protocol/Internet Protocol/ TCP

I P T C P IP HTTP, FTP, Telnet

TCP/IP

TelnetHTTP

FTP Telnet

TFTP Trivial File Transfer Protocol FTP

FTP

Trunk

TTL Time To Live IPT T L

126 -

GigaX

twisted pair

LAN Category 3 (CAT 3) 10BASE-T Category 5

(CAT 5) 100BASE-T 10BASE-T, 100BASE-T, Ethernet

upstream

VLAN

WAN Wide Area Network

WAN

Web browser HTTP

Internet Explorer MosaicNetscape Navigator HTTP, web site, WWW

Web page

h o m epage hyperlink, web site

Web site

hyperlink, web page

WWW World Wide Web

128 -

GigaX

130 -

GigaX

+1GigaX-2024/2048 TC 01-32dlcdnet.asus.com/pub/ASUS/Networking/Switch/GigaX2048/...- 5 4.5.4 IGMP...

Documents

Transcript of +1GigaX-2024/2048 TC 01-32dlcdnet.asus.com/pub/ASUS/Networking/Switch/GigaX2048/...- 5 4.5.4 IGMP...