3Com 7750 Config Guide

download 3Com 7750 Config Guide

of 940

Transcript of 3Com 7750 Config Guide

  • 7/27/2019 3Com 7750 Config Guide

    1/938

    3Com Switch 7750 FamilyConfiguration Guide

    Switch 7750Switch 7754Switch 7757Switch 7758

    www.3Com.comPart Number: 10015462 Rev. ADPublished: December 2007

  • 7/27/2019 3Com 7750 Config Guide

    2/938

    3Com Corporation350 Campus DriveMarlborough, MAUSA 01752-3064

    Copyright 2006-2007, 3Com Corporation. All rights reserved. No part of this documentation may be reproduced in anyform or by any means or used to make any derivative work (such as translation, transformation, or adaptation) withoutwritten permission from 3Com Corporation.

    3Com Corporation reserves the right to revise this documentation and to make changes in content from time to timewithout obligation on the part of 3Com Corporation to provide notification of such revision or change.

    3Com Corporation provides this documentation without warranty, term, or condition of any kind, either implied orexpressed, including, but not limited to, the implied warranties, terms or conditions of merchantability, satisfactory quality,and fitness for a particular purpose. 3Com may make improvements or changes in the product(s) and/or the program(s)

    described in this documentation at any time.

    If there is any software on removable media described in this documentation, it is furnished under a license agreementincluded with the product as a separate document, in the hard copy documentation, or on the removable media in adirectory file named LICENSE.TXT or !LICENSE.TXT. If you are unable to locate a copy, please contact 3Com and a copy willbe provided to you.

    UNITED STATES GOVERNMENT LEGEND

    If you are a United States government agency, then this documentation and the software described herein are provided toyou subject to the following:

    All technical data and computer software are commercial in nature and developed solely at private expense. Software isdelivered as Commercial Computer Software as defined in DFARS 252.227-7014 (June 1995) or as a commercial itemas defined in FAR 2.101(a) and as such is provided with only such rights as are provided in 3Coms standard commerciallicense for the Software. Technical data is provided with limited rights only as provided in DFAR 252.227-7015 (Nov 1995) orFAR 52.227-14 (June 1987), whichever is applicable. You agree not to remove or deface any portion of any legend providedon any licensed program or documentation contained in, or delivered to you in conjunction with, this User Guide.

    Unless otherwise indicated, 3Com registered trademarks are registered in the United States and may or may not be registeredin other countries.

    3Com and the 3Com logo are registered trademarks of 3Com Corporation.

    Cisco is a registered trademark of Cisco Systems, Inc.

    Funk RADIUS is a registered trademark of Funk Software, Inc.

    Aegis is a registered trademark of Aegis Group PLC.

    Intel and Pentium are registered trademarks of Intel Corporation. Microsoft, MS-DOS, Windows, and Windows NT areregistered trademarks of Microsoft Corporation. Novell and NetWare are registered trademarks of Novell, Inc. UNIX is aregistered trademark in the United States and other countries, licensed exclusively through X/Open Company, Ltd.

    IEEE and 802 are registered trademarks of the Institute of Electrical and Electronics Engineers, Inc.

    All other company and product names may be trademarks of the respective companies with which they are associated.

    ENVIRONMENTAL STATEMENT

    It is the policy of 3Com Corporation to be environmentally-friendly in all operations. To uphold our policy, we are committedto:

    Establishing environmental performance standards that comply with national legislation and regulations.

    Conserving energy, materials and natural resources in all operations.

    Reducing the waste generated by all operations. Ensuring that all waste conforms to recognized environmental standards.Maximizing the recyclable and reusable content of all products.

    Ensuring that all products can be recycled, reused and disposed of safely.

    Ensuring that all products are labelled according to recognized environmental standards.

    Improving our environmental record on a continual basis.

    End of Life Statement

    3Com processes allow for the recovery, reclamation and safe disposal of all end-of-life electronic components.

    Regulated Materials Statement

    3Com products do not contain any hazardous or ozone-depleting material.

  • 7/27/2019 3Com 7750 Config Guide

    3/938

    CONTENTS

    ABOUT THIS GUIDEConventions 17

    Related Documentation 17

    1 CLI OVERVIEWIntroduction to the CLI 19

    Command Level/Command View 19

    CLI Features 29

    2 LOGGINGINTOAN ETHERNET SWITCHLogging into an Ethernet Switch 33

    Introduction to the User Interface 33

    3 LOGGINGINTHROUGHTHE CONSOLE PORTIntroduction 35

    Logging in through the Console Port 35

    Console Port Login Configuration 37

    Console Port Login Configuration with Authentication Mode Being None 39

    Console Port Login Configuration with Authentication Mode Being Password 42

    Console Port Login Configuration with Authentication Mode Being Scheme 46

    4 LOGGINGINTHROUGH TELNETIntroduction 51

    Telnet Configuration with Authentication Mode Being None 52

    Telnet Configuration with Authentication Mode Being Password 55

    Telnet Configuration with Authentication Mode Being Scheme 58

    Telneting to a Switch 62

    5 LOGGINGIN USING MODEMIntroduction 65

    Configuration on the Administrator Side 65

    Configuration on the Switch Side 65

    Modem Connection Establishment 66

    Modem Attributes Configuration 68

  • 7/27/2019 3Com 7750 Config Guide

    4/938

    4 CONTENTS

    6 LOGGINGINTHROUGHTHE WEB-BASED NETWORK MANAGEMENTSYSTEMIntroduction 71

    Establishing an HTTP Connection 71

    Configuring the Login Banner 72

    Enabling/Disabling the WEB Server 73

    7 LOGGINGINTHROUGH NMSIntroduction 75

    Connection Establishment Using NMS 75

    8 USER CONTROLIntroduction 77

    Controlling Telnet Users 77

    Controlling Network Management Users by Source IP Addresses 79Controlling Web Users by Source IP Address 80

    9 CONFIGURATION FILE MANAGEMENTIntroduction to Configuration File 83

    Configuration File-Related Operations 83

    10 VLAN OVERVIEWVLAN Overview 87

    Port-Based VLAN 89

    Protocol-Based VLAN 91

    11 VLAN CONFIGURATIONVLAN Configuration 95

    Configuring a Port-Based VLAN 97

    Configuring a Protocol-Based VLAN 100

    12 VOICE VLAN CONFIGURATIONVoice VLAN Overview 105

    Voice VLAN Configuration 108

    Displaying and Maintaining Voice VLAN Configuration 110Voice VLAN Configuration Example 110

    13 ISOLATE-USER-VLAN CONFIGURATIONIsolate-User-VLAN Overview 113

    Isolate-User-VLAN Configuration 114

    Displaying Isolate-User-VLAN Configuration 116

    Isolate-User-VLAN Configuration Example 116

  • 7/27/2019 3Com 7750 Config Guide

    5/938

    Contents 5

    14 SUPER VLANSuper VLAN Overview 121

    Super VLAN Configuration 121

    Displaying Super VLAN 123

    Super VLAN Configuration Example 124

    15 IP ADDRESS CONFIGURATIONIP Address Overview 127

    Configuring an IP Address for a VLAN Interface 129

    Displaying IP Address Configuration 130

    IP Address Configuration Example 130

    Troubleshooting 130

    16 IP PERFORMANCE CONFIGURATION

    IP Performance Overview 131IP Performance Configuration 131

    Configuring TCP Attributes 132

    Configuring to Send Special IP Packets to CPU 132

    Enabling Forwarding of Directed Broadcasts to a Directly Connected Network 132

    Disabling ICMP Error Message Sending 133

    Displaying and Debugging IP Performance 133

    Troubleshooting 134

    17 IPX CONFIGURATIONIPX Protocol Overview 137

    IPX Configuration 138

    Displaying and Debugging IPX 145

    IPX Configuration Example 145

    Troubleshooting IPX 147

    18 GVRP CONFIGURATIONIntroduction to GARP and GVRP 153

    GVRP Configuration 156

    Displaying and Maintaining GVRP 157

    GVRP Configuration Example 158

    19 QINQ CONFIGURATIONQinQ Overview 159

    QinQ Configuration 160

    Displaying QinQ 161

    QinQ Configuration Example 161

    20 SELECTIVE QINQ CONFIGURATIONSelective QinQ Overview 165

  • 7/27/2019 3Com 7750 Config Guide

    6/938

    6 CONTENTS

    Selective QinQ Configuration 165

    Configuring Outer Tag Replacement 166

    Selective QinQ Configuration Example 167

    21 SHARED

    VLAN CONFIGURATION

    Shared VLAN Overview 169

    Shared VLAN Configuration 170

    Displaying Shared VLAN 170

    Shared VLAN Configuration Example 171

    22 PORT BASIC CONFIGURATIONEthernet Port Configuration 173

    Ethernet Port Configuration Example 180

    Troubleshooting Ethernet Port Configuration 181

    23 LINK AGGREGATION CONFIGURATIONOverview 183

    Link Aggregation Configuration 189

    Displaying and Maintaining Link Aggregation Configuration 192

    Link Aggregation Configuration Example 193

    24 PORT ISOLATION CONFIGURATIONPort Isolation Overview 195

    Configuring Port Isolation 195

    Displaying Port Isolation Configuration 196

    Port Isolation Configuration Example 196

    25 PORT SECURITY CONFIGURATIONPort Security Overview 199

    Port Security Configuration 202

    Displaying Port Security Configuration 206

    Port Security Configuration Example 206

    26 PORT BINDING CONFIGURATION

    Port Binding Overview 209Displaying Port Binding Configuration 209

    Port Binding Configuration Example 210

    27 DLDP CONFIGURATIONOverview 211

    DLDP Fundamentals 212

    DLDP Configuration 218

    DLDP Network Example 222

  • 7/27/2019 3Com 7750 Config Guide

    7/938

    Contents 7

    28 MAC ADDRESS TABLE MANAGEMENTOverview 225

    Configuring MAC Address Table Management 227

    Displaying and Maintaining MAC Address Configuration 230

    Configuration Example 231

    29 CENTRALIZED MAC ADDRESS AUTHENTICATION CONFIGURATIONCentralized MAC Address Authentication Overview 233

    Centralized MAC Address Authentication Configuration 234

    Displaying and Debugging Centralized MAC Address Authentication 237

    Centralized MAC Address Authentication Configuration Example 237

    30 MSTP CONFIGURATIONMSTP Overview 241

    Root Bridge Configuration 246Leaf Node Configuration 259

    The mCheck Configuration 263

    Protection Function Configuration 264

    Digest Snooping Configuration 268

    Rapid Transition Configuration 269

    BPDU Tunnel Configuration 272

    STP Maintenance Configuration 274

    MSTP Displaying and Debugging 274

    MSTP Implementation Example 275

    BPDU Tunnel Configuration Example 277

    31 IP ROUTING PROTOCOL OVERVIEWIntroduction to IP Route and Routing Table 281

    Routing Management Policy 283

    32 STATIC ROUTE CONFIGURATIONIntroduction to Static Route 285

    Static Route Configuration 286

    Displaying and Maintaining the Routing Table 286

    Static Route Configuration Example 287

    Troubleshooting a Static Route 288

    33 RIP CONFIGURATIONRIP Overview 289

    Introduction to RIP Configuration Tasks 290

    Basic RIP Configuration 291

    RIP Route Control 293

    RIP Network Adjustment and Optimization 296

    Displaying and Maintaining RIP Configuration 298

    RIP Configuration Example 299

  • 7/27/2019 3Com 7750 Config Guide

    8/938

    8 CONTENTS

    Troubleshooting RIP Configuration 300

    34 OSPF CONFIGURATIONOSPF Overview 301

    Introduction to OSPF Configuration Tasks 307Basic OSPF Configuration 309

    OSPF Area Attribute Configuration 311

    OSPF Network Type Configuration 312

    OSPF Route Control 313

    OSPF Network Adjustment and Optimization 316

    Displaying OSPF Configuration 320

    OSPF Configuration Example 321

    Troubleshooting OSPF Configuration 325

    35 IS-IS CONFIGURATIONIS-IS Overview 327

    Introduction to IS-IS Configuration 332

    IS-IS Basic Configuration 333

    Displaying Integrated IS-IS Configuration 345

    Integrated IS-IS Configuration Example 345

    36 BGP CONFIGURATIONBGP Overview 349

    BGP Configuration Tasks 354

    Basic BGP Configuration 355

    Configuring the Way to Advertise/Receive Routing Information 356Configuring BGP Route Attributes 361

    Adjusting and Optimizing a BGP Network 363

    Configuring a Large-Scale BGP Network 365

    Displaying and maintaining BGP 368

    Configuration Example 369

    BGP Error Configuration Example 376

    37 IP ROUTING POLICY CONFIGURATIONIP Routing Policy Overview 377

    IP Routing Policy Configuration 378Displaying IP Routing Policy 383

    IP Routing Policy Configuration Example 383

    Troubleshooting IP Routing Policy 385

    38 ROUTE CAPACITY CONFIGURATIONRoute Capacity Configuration Overview 387

    Route Capacity Configuration 387

    Displaying Route Capacity Configuration 388

  • 7/27/2019 3Com 7750 Config Guide

    9/938

    Contents 9

    39 802.1X CONFIGURATIONIntroduction to 802.1x 389

    802.1x Configuration 399

    Basic 802.1x Configuration 399

    802.1x-Related Parameter Configuration 401

    Advanced 802.1x Configuration 401

    Displaying and Debugging 802.1x 403

    Configuration Example 404

    40 HABP CONFIGURATIONIntroduction to HABP 409

    HABP Server Configuration 409

    HABP Client Configuration 410

    Displaying HABP 410

    HABP Configuration Example 410

    41 MULTICAST OVERVIEWMulticast Overview 413

    Multicast Architecture 416

    Forwarding Mechanism of Multicast Packets 420

    42 GMRP CONFIGURATIONGMRP Overview 423

    Configuring GMRP 423

    Displaying and Maintaining GMRP 424

    GMRP Configuration Example 424

    43 IGMP SNOOPING CONFIGURATIONOverview 427

    IGMP Snooping Configuration 430

    Displaying and Maintaining IGMP Snooping 437

    IGMP Snooping Configuration Example 438

    Troubleshooting IGMP Snooping 440

    44 COMMON MULTICAST CONFIGURATIONOverview 441

    Common Multicast Configuration Tasks 441

    Displaying Common Multicast Configuration 445

    45 STATIC MULTICAST MAC ADDRESS TABLE CONFIGURATIONOverview 447

    Configuring a Multicast MAC Address Entry 447

    Displaying Multicast MAC Address 447

  • 7/27/2019 3Com 7750 Config Guide

    10/938

    10 CONTENTS

    46 IGMP CONFIGURATIONOverview 449

    IGMP Configuration Tasks 454

    Displaying IGMP 460

    47 PIM CONFIGURATIONPIM Overview 461

    Common PIM Configuration 469

    PIM-DM Configuration 472

    PIM-SM Configuration 472

    Displaying and Debugging PIM 475

    PIM Configuration Examples 476

    Troubleshooting PIM 479

    48MSDP CONFIGURATIONMSDP Overview 481

    Configuring MSDP Basic Functions 487

    Configuring Connection between MSDP Peers 488

    Configuring SA Message Transmission 490

    Displaying and Debugging MSDP Configuration 493

    MSDP Configuration Example 494

    Troubleshooting MSDP Configuration 504

    49 AAA & RADIUS & HWTACACS CONFIGURATIONOverview 507

    Configuration Tasks 516

    AAA Configuration 518

    RADIUS Configuration 525

    HWTACACS Configuration 532

    Displaying and Maintaining AAA & RADIUS & HWTACACS Information 536

    AAA & RADIUS & HWTACACS Configuration Example 537

    Troubleshooting AAA & RADIUS & HWTACACS Configuration 541

    50 EAD CONFIGURATIONIntroduction to EAD 543

    Typical Network Application of EAD 543EAD Configuration 544

    EAD Configuration Example 545

    51 TRAFFIC ACCOUNTING CONFIGURATIONIntroduction to Traffic Accounting 547

    Configuring Traffic Accounting 548

    Displaying Traffic Accounting 549

    Traffic Accounting Configuration Example 550

  • 7/27/2019 3Com 7750 Config Guide

    11/938

    Contents 11

    52 VRRP CONFIGURATIONVRRP Overview 553

    VRRP Configuration 557

    Displaying and Maintaining VRRP 559

    VRRP Configuration Example 559

    Troubleshooting VRRP 565

    53 HA CONFIGURATIONHA Overview 567

    HA Configuration 568

    Displaying HA 569

    54 ARP CONFIGURATIONIntroduction to ARP 571

    Configuring ARP 575Displaying and Maintaining ARP Configuration 579

    ARP Configuration Example 580

    55 PROXY ARP CONFIGURATIONProxy ARP Overview 583

    Configuring Proxy ARP 584

    Proxy ARP Configuration Example 584

    56 DHCP OVERVIEW

    Introduction to DHCP 589DHCP IP Address Assignment 589

    DHCP Packet Format 590

    DHCP Packet Processing Modes 592

    Protocols and Standards 592

    57 DHCP SERVER CONFIGURATIONIntroduction to DHCP Server 593

    Global Address Pool-Based DHCP Server Configuration 594

    Interface Address Pool-Based DHCP Server Configuration 600

    DHCP Security Configuration 606

    Displaying and Maintaining a DHCP Server 607

    DHCP Server Configuration Example 607

    Troubleshooting a DHCP Server 609

    58 DHCP RELAY AGENT CONFIGURATIONIntroduction to DHCP Relay Agent 611

    Configuring DHCP Relay Agent 613

    Displaying and Maintaining DHCP Relay Agent 620

    DHCP Relay Agent Configuration Example 620

  • 7/27/2019 3Com 7750 Config Guide

    12/938

    12 CONTENTS

    Troubleshooting DHCP Relay Agent 621

    59 DHCP SNOOPING CONFIGURATIONConfiguring DHCP Snooping 623

    DHCP Snooping Configuration 628Displaying and Maintaining DHCP Snooping 632

    DHCP Snooping Configuration Example 632

    60 ACL CONFIGURATIONACL Overview 637

    Choosing ACL Mode for Traffic Flows 639

    Specifying the Matching Order of ACL Rules Sent to a Port 640

    Configuring Time Ranges 640

    Defining Basic ACLs 641

    Defining Advanced ACLs 642

    Defining Layer 2 ACLs 647

    Defining User-Defined ACLs 649

    Applying ACLs on Ports 650

    Displaying ACL Configuration 652

    ACL Configuration Example 653

    61 QOS CONFIGURATIONOverview 657

    QoS Supported by the Switch 7750 666

    Setting Port Priority 666

    Configuring Priority to Be Used When a Packet Enters an Output Queue 667Configuring Priority Remark 669

    Configuring Rate Limit on Ports 671

    Configuring TP 672

    Configuring Redirect 673

    Configuring Queue-scheduling 674

    Configuring Congestion Avoidance 675

    Configuring Traffic Statistics 676

    Configuring Assured Bandwidth 678

    Configuring Bidirectional CAR 679

    Configuring Traffic-Based Selective QinQ 679

    QoS Configuration Example 681

    62 MIRRORING CONFIGURATIONOverview 685

    Mirroring Supported by the Switch 7750 688

    Mirroring Configuration 688

    63 CLUSTERCluster Overview 703

  • 7/27/2019 3Com 7750 Config Guide

    13/938

    Contents 13

    Management Device Configuration 708

    Member Device Configuration 711

    Intra-Cluster Configuration 713

    Displaying and Maintaining a Cluster 713

    Cluster Configuration Example 714

    64 POE CONFIGURATIONPoE Overview 719

    PoE Configuration 721

    Displaying PoE Configuration 723

    PoE Configuration Example 724

    65 POE PSU SUPERVISION CONFIGURATIONIntroduction to PoE PSU Supervision 727

    AC Input Alarm Thresholds Configuration 727

    DC Output Alarm Threshold Configuration 728

    Displaying PoE Supervision Information 729

    PoE PSU Supervision Configuration Example 729

    66 POE PROFILE CONFIGURATIONIntroduction to PoE Profile 731

    PoE Profile Configuration Tasks 731

    Displaying PoE Profile Configuration 732

    PoE Profile Configuration Example 732

    67 UDP-HELPER CONFIGURATIONIntroduction to UDP-Helper 735

    Configuring UDP-Helper 735

    Displaying and Maintaining UDP-Helper 736

    UDP-Helper Configuration Example 737

    68 SNMP CONFIGURATIONSNMP Overview 739

    Configuring SNMP Basic Functions 741

    Configuring Trap 743

    Displaying SNMP 744SNMP Configuration Example 745

    69 RMON CONFIGURATIONIntroduction to RMON 747

    RMON Configuration 749

    Displaying RMON 750

    RMON Configuration Example 750

  • 7/27/2019 3Com 7750 Config Guide

    14/938

    14 CONTENTS

    70 NTP CONFIGURATIONIntroduction to NTP 753

    NTP Implementation Mode Configuration 757

    Access Control Permission Configuration 759

    NTP Authentication Configuration 759

    Configuration of Optional NTP Parameters 761

    Displaying and Debugging NTP 762

    Configuration Example 762

    71 SSH TERMINAL SERVICESSSH Terminal Services 773

    SFTP Service 784

    72 FILE SYSTEM MANAGEMENT

    File System Configuration 791

    73 BIMS CONFIGURATIONIntroduction to BIMS 797

    BIMS Device Configuration Tasks 798

    Basic Configuration of BIMS Device 798

    Configuring BIMS Access Mode 799

    BIMS Configuration Example 800

    74 FTP AND TFTP CONFIGURATION

    FTP Configuration 803TFTP Configuration 810

    75 INFORMATION CENTERInformation Center Overview 815

    Information Center Configuration 819

    Displaying and Debugging Information Center Configuration 825

    Information Center Configuration Examples 825

    76 DNS CONFIGURATION

    DNS Overview 831Configuring Static DNS Resolution 833

    Configuring Dynamic DNS Resolution 833

    Displaying and Maintaining DNS 834

    Troubleshooting DNS Configuration 835

    77 BOOTROM AND HOST SOFTWARE LOADINGIntroduction to Loading Approaches 837

    Local Software Loading 837

  • 7/27/2019 3Com 7750 Config Guide

    15/938

    Contents 15

    Remote Software Loading 846

    78 BASIC SYSTEM CONFIGURATION & DEBUGGINGBasic System Configuration 853

    Displaying the System Status 855System Debugging 855

    79 NETWORK CONNECTIVITY TESTNetwork Connectivity Test 859

    80 DEVICE MANAGEMENTIntroduction to Device Management 861

    Device Management Configuration 861

    Configuring Pause Frame Protection Mechanism 866

    Configuring Layer 3 Connectivity Detection 867Configuring Queue Traffic Monitoring 868

    Configuring Error Packets Monitoring 868

    Displaying the Device Management Configuration 869

    Remote Switch Update Configuration Example 870

    81 REMOTE-PING CONFIGURATIONRemote-ping Overview 873

    Remote-ping Configuration 876

    Remote-ping Configuration Example 889

    82 RRPP CONFIGURATIONRRPP Overview 903

    Master Node Configuration 909

    Transit Node Configuration 911

    Edge Node Configuration 912

    Assistant Edge Node Configuration 914

    Configuration Example 916

    83 TELNET PROTECTION CONFIGURATION

    Introduction 921Telnet Protection Configuration 921

    84 SMART LINK CONFIGURATIONSmart Link Overview 923

    Configuring Smart Link 925

    Displaying and Debugging Smart Link 928

    Smart Link Configuration Example 928

  • 7/27/2019 3Com 7750 Config Guide

    16/938

    16 CONTENTS

    85 MONITOR LINK CONFIGURATIONIntroduction to Monitor Link 931

    Configuring Monitor Link 932

    Displaying Monitor Link Configuration 934

    Monitor Link Configuration Example 934

    86 CONFIGURING HARDWARE-DEPENDENT SOFTWAREConfiguring Boot ROM Upgrade with App File 937

    Configuring Inter-Card Link State Adjustment 938

    Configuring Internal Channel Monitoring 939

    Configuring Switch Chip Auto-reset 939

    Configuring CPU Usage Threshold 940

  • 7/27/2019 3Com 7750 Config Guide

    17/938

    ABOUT THIS GUIDE

    This guide describes the 3Com Switch 7750 and how to install hardware,configure and boot software, and maintain software and hardware. This guidealso provides troubleshooting and support information for your switch.

    This guide is intended for Qualified Service personnel who are responsible forconfiguring, using, and managing the switches. It assumes a working knowledgeof local area network (LAN) operations and familiarity with communicationprotocols that are used to interconnect LANs.

    nAlways download the Release Notes for your product from the 3Com World WideWeb site and check for the latest updates to software and productdocumentation:

    http://www.3com.com

    Conventions Table 1 lists icon conventions that are used throughout this guide.

    RelatedDocumentation

    The following manuals offer additional information necessary for managing yourSwitch 7750:

    Switch 7750 Command Reference Guide Provides detailed descriptions ofcommand line interface (CLI) commands, that you require to manage yourSwitch 7750.

    Switch 7750 Quick Reference Guide Provides a summary of command lineinterface (CLI) commands that are required for you to manage your Switch7750.

    Switch 7750 Getting Started Guide Provides detailed descriptions of thehardware, explains how to set up and install the hardware and software foryou Switch 7750.

    Table 1 Notice Icons

    Icon Notice Type Description

    n

    Information note Information that describes important features or

    instructions.

    cCaution Information that alerts you to potential loss of data

    or potential damage to an application, system, ordevice.

    wWarning Information that alerts you to potential personal

    injury.

  • 7/27/2019 3Com 7750 Config Guide

    18/938

    18 ABOUT THIS GUIDE

    Switch 7750 Release Notes Contains the latest information about yourproduct. If information in this guide differs from information in the releasenotes, use the information in the Release Notes.

    These documents are available in Adobe Acrobat Reader Portable Document

    Format (PDF) on the CD-ROM that accompanies your router or on the 3ComWorld Wide Web site:

    http://www.3com.com/

  • 7/27/2019 3Com 7750 Config Guide

    19/938

    1CLI OVERVIEW

    Introduction to the CLI A 3Com series Ethernet switch provides a command line interface (CLI) andcommands for you to configure and manage the Ethernet switch. The CLI isfeatured by the following:

    Commands are grouped by levels. This prevents unauthorized users fromoperating the switch with relevant commands.

    Users can gain online help at any time by entering the question mark ?.

    Commonly used diagnosing utilities (such as Tracert and Ping) are available. Debugging information of various kinds is available.

    The command history is available. You can recall and execute a historycommand easily.

    You can execute a command by only entering part of the command in the CLI,as long as the keywords you input uniquely identify the corresponding ones.

    CommandLevel/Command View

    To prevent unauthorized accesses, commands are grouped by command levels.

    Commands fall into four levels: visit, monitor, system, and manage:

    Visit level: Commands at this level are mainly used to diagnose network andchange the language mode of user interface, and cannot be saved inconfiguration files. For example, the ping, tracert, and language-modecommands are at this level.

    Monitor level: Commands at this level are mainly used to maintain the systemand diagnose service problems, and cannot be saved to configuration files. Forexample, the display and debugging commands are at this level.

    System level: Commands at this level are mainly used to configure services.Commands concerning routing and network layers are at this level. You canutilize network services by using these commands.

    Manage level: Commands at this level are associated with the basic operationof the system, and the system supporting modules. These commands providesupports to services. Commands concerning file system, FTP, TFTP, usermanagement, and level setting are at this level.

    Users logging into a switch also fall into four levels, each of which correspondingto one of the above command levels. Users at a specific level can only use thecommands of the same level and those of the lower levels.

  • 7/27/2019 3Com 7750 Config Guide

    20/938

    20 CHAPTER 1: CLI OVERVIEW

    Switching between UserLevels

    A user can switch the user level from one to another by executing a relatedcommand after logging into a switch. The administrator can also set user levelswitching passwords as required.

    Setting a user level switching password

    Table 1 lists the operations to set a user level switching password.

    Switching to another user level

    Table 2 lists operations to switch to another user level.

    n If the user level is not specified when user level switching password are set or

    when user level is switched, the user level is 3 by default.

    For security purpose, the password a user enters when switching to a higheruser level is not displayed. A user will remain at the original user level if the userhas tried three times to enter the correct password but fails to do this.

    Configuring the Level ofa Specific Command in a

    Specific View

    You can configure the level of a specific command in a specific view. Commandsfall into four command levels: visit, monitor, system, and manage, which areidentified as 0, 1, 2, and 3 respectively. The administrator can change thecommand level a command belongs to.

    Table 3 lists the operations to configure the level of a specific command.

    Table 1 Set a user level switching password

    Operation Command Description

    Enter system view system-view -

    Set a password forswitching from alower user level to theuser level identified bythe levelargument

    super password [ levellevel] { simple | cipher }

    password

    Optional

    A password is necessary onlywhen a user switches from a loweruser level to a higher user level.

    Table 2 Switch to another user level

    Operation Command Description

    Switch to the userlevel identified by thelevelargument

    super [ level] Required

    Execute this command in userview.

    If a password for switching to theuser level identified by the levelargument is set and you want toswitch to a lower user level, youwill remain at the lower user levelunless you provide the correct

    password after executing thiscommand.

    Table 3 Configure the level of a specific command in a specific view

    Operation Command Description

    Enter system view system-view -

    http://-/?-http://-/?-http://-/?-http://-/?-http://-/?-http://-/?-
  • 7/27/2019 3Com 7750 Config Guide

    21/938

    Command Level/Command View 21

    CLI Views CLI views are designed for different configuration tasks. They are interrelated. Youwill enter user view once you log into a switch successfully, where you can performoperations such as displaying operation status and statistical information. Inaddition, by executing the system-view command, you can enter system view,where you can enter other views by executing the corresponding commands.

    The following CLI views are provided:

    User view

    System view M-Ethernet interface view

    Ethernet port view

    Null interface view

    Tunnel interface view

    AUX interface view

    VLAN view

    VLAN interface view

    Loopback interface view

    Local user view User interface view

    FTP client view

    SFTP client view

    Cluster view

    DHCP address pool view

    MST region view

    RRPP domain view

    MSDP region view

    Port-isolate-group view

    HWping view

    Public key view

    Public key code view

    PIM view

    RIP view

    OSPF view

    OSPF area view

    Configure the level ofa specific command ina specific view

    command-privilege levellevelviewview command

    Required

    Use this command with caution toprevent inconvenience on

    maintenance and operation.

    Table 3 Configure the level of a specific command in a specific view

    Operation Command Description

  • 7/27/2019 3Com 7750 Config Guide

    22/938

    22 CHAPTER 1: CLI OVERVIEW

    BGP view

    BGP IPv4 family multicast view

    IS-IS view

    ES-IS view

    Routing policy view

    Basic ACL view

    Advanced ACL view

    Layer 2 ACL view

    User-defined ACL view

    Traffic-group view

    QoS view

    QinQ view

    RADIUS scheme view

    HWTACACS scheme view

    ISP domain view

    RprGE view

    PoE-profile view

    Traffic-accounting view

    Netstream autonomous system view

    Netstream protocol - port aggregation view

    Netstream source prefix aggregation view

    Netstream destination prefix aggregation view Netstream source and destination aggregation view

    Smart-link group view

    Table 4 lists information about CLI views (including the operations you canperformed in these views, how to enter these views, and so on).

    Table 4 CLI views

    ViewAvailableoperation

    Promptexample Enter method Quit method

    User view Displayoperationstatus andstatisticalinformation

    Enter user viewonce logging intothe switch.

    Execute the quitcommand in user viewto log out of theswitch.

    System view Configuresystemparameters

    [SW7750] Execute thesystem-viewcommand in userview.

    Execute the quit orreturn command toreturn to user view.

    http://-/?-http://-/?-
  • 7/27/2019 3Com 7750 Config Guide

    23/938

    Command Level/Command View 23

    M-Ethernetinterface

    view

    ConfigureM-Ethernet

    interfaceparameters

    [SW7750-M-Ethernet0/0/0]

    Manage Ethernetport view.

    Execute theinterfacem-ethernet 0/0/0command insystem view.

    Execute the quitcommand to return to

    system view.Execute the returncommand to return touser view.

    Ethernetport view

    ConfigureEthernet portparameters

    [SW7750-Ethernet3/0/1]

    100 M Ethernetport view

    Execute theinterfaceethernet 3/0/1command insystem view.

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    [SW7750-GigabitEthernet4/0/1]

    Gigabit Ethernetport view

    Execute theinterfacegigabitethernet4/0/1 command insystem view.

    Nullinterfaceview

    Configure nullinterfaceparameters

    [SW7750-NULL0]

    Execute theinterface null 0command insystem view.

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    Tunnelinterface

    view

    Configuretunnel

    interfaceparameters

    [SW7750-Tunnel0]

    Execute theinterface tunnel 0

    command insystem view.

    Execute the quitcommand to return to

    system view.Execute the returncommand to return touser view.

    AUXinterfaceview

    Configure AUXinterfaceparameters

    [SW7750-Aux0/0/0]

    Execute theinterface aux0/0/0 command insystem view.

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    VLAN view ConfigureVLANparameters

    [SW7750-vlan1] Execute the vlan 1command insystem view.

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    VLANinterfaceview

    Configure IPinterfaceparameters forVLANs

    [SW7750-Vlan-interface1]

    Execute theinterfacevlan-interface 1command insystem view.

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    Table 4 CLI views

    ViewAvailableoperation

    Promptexample Enter method Quit method

  • 7/27/2019 3Com 7750 Config Guide

    24/938

    24 CHAPTER 1: CLI OVERVIEW

    Loopbackinterface

    view

    ConfigureLoopback

    interfaceparameters

    [SW7750-LoopBack0]

    Execute theinterface

    loopback 0command insystem view

    Execute the quitcommand to return to

    system view.Execute the returncommand to return touser view.

    Local userview

    Configure localuserparameters

    [SW7750-luser-user1]

    Execute thelocal-user user1command insystem view.

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    Userinterfaceview

    Configure userinterfaceparameters

    [SW7750-ui0] Execute theuser-interface 0command insystem view.

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    FTP clientview

    Configure FTPclientparameters

    [ftp] Execute the ftpcommand in userview.

    Execute the quitcommand to return touser view.

    SFTP clientview

    Configure SFTPclientparameters

    Execute the sftp10.1.1.1 commandin system view.

    Execute the quitcommand to return touser view.

    Cluster view Configureclusterparameters

    [SW7750-cluster]

    Execute the clustercommand insystem view.

    Execute the quitcommand to return tosystem view.

    Execute the return

    command to return touser view.

    DHCPaddress poolview

    ConfigureDHCP addresspoolparameters

    [SW7750-dhcp-pool-1]

    Execute the dhcpserver ip-pool 1command insystem view.

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    MST regionview

    Configure MSTregionparameters

    [SW7750-mst-region]

    Execute the stpregion-configuration command insystem view.

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    RRPPdomain view

    Configure RRPPdomainparameters

    [SW7750-rrpp-domain1]

    Execute the rrppdomain 1command insystem view.

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    Table 4 CLI views

    ViewAvailableoperation

    Promptexample Enter method Quit method

  • 7/27/2019 3Com 7750 Config Guide

    25/938

    Command Level/Command View 25

    MSDPdomain view

    ConfigureMSDP domain

    parameters

    [SW7750-msdp] Execute the msdpcommand in

    system view.

    Execute the quitcommand to return to

    system view.Execute the returncommand to return touser view.

    Port-isolate-group view

    Configureport-isolate-group parameters

    [SW7750-port-isolate-group1]

    Execute theport-isolategroup 1 commandin system view.

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    HWpingview

    ConfigureHWping testgroupparameters

    [SW7750-nqa-administrator-test]

    Execute the nqaadministratortest command insystem view

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    Public keyview

    Configure RSApublic keys forsecure shell(SSH) users

    [SW7750-rsa-public-key]

    Execute the rsapeer-public-key3Com003command insystem view.

    Execute thepeer-public-key endcommand to return tosystem view.

    Public keycode view

    Edit RSA publickeys of SSHusers

    [SW7750-rsa-key-code]

    Execute thepublic-key-codebegin command inpublic key view.

    Execute thepublic-key-code endcommand to return topublic key view.

    PIM view Configure PIMparameters

    [SW7750-pim] Execute the pimcommand in

    system view.Use the multicastrouting-enablecommand insystem view toenable multicastrouting if multicastrouting is disabled.

    Execute the quitcommand to return to

    system view.Execute the returncommand to return touser view.

    RIP view Configure RIPparameters

    [SW7750-rip] Execute the ripcommand insystem view

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    OSPF view ConfigureOSPF protocolparameters

    [SW7750-ospf-1]

    Execute the ospfcommand insystem view

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    Table 4 CLI views

    ViewAvailableoperation

    Promptexample Enter method Quit method

  • 7/27/2019 3Com 7750 Config Guide

    26/938

    26 CHAPTER 1: CLI OVERVIEW

    OSPF areaview

    ConfigureOSPF area

    parameters

    [SW7750-ospf-1-area-0.0.0.1]

    Execute the area 1command in OSPF

    view

    Execute the quitcommand to return to

    OSPF view.Execute the returncommand to return touser view.

    BGP view Configureparameters forthe (bordergatewayprotocol) BGPprotocol

    [SW7750-bgp] Execute the bgp100 command insystem view

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    BGP IPv4familymulticastview

    Configureparameters forBGP IPv4 familymulticast

    [SW7750-bgp-af-mul]

    Execute theipv4-familymulticastcommand in BGPview.

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    IS-IS view Configure IS-ISparameters

    [SW7750-isis] Execute the isiscommand insystem view.

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    ES-IS view Configureparameters forthe ES-ISprotocol

    [SW7750-esis] Execute the esiscommand insystem view.

    Execute the quitcommand to return tosystem view.

    Execute the return

    command to return touser view.

    Routingpolicy view

    Configurerouting policies

    [SW7750-route-policy]

    Execute theroute-policypolicy1 permitnode 10 commandin system view

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    Basic ACLview

    Define rules fora basic ACL(ACLs withtheir IDsranging from2000 to 2999

    are basicACLs.)

    [SW7750-acl-basic-2000]

    Execute the aclnumber 2000command insystem view.

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    AdvancedACL view

    Define rules foran advancedACL (ACLs withtheir IDsranging from3000 to 3999are advancedACLs.)

    [SW7750-acl-adv-3000]

    Execute the aclnumber 3000command insystem view.

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    Table 4 CLI views

    ViewAvailableoperation

    Promptexample Enter method Quit method

  • 7/27/2019 3Com 7750 Config Guide

    27/938

    Command Level/Command View 27

    Layer 2 ACLview

    Define thesub-rules of

    Layer 2 ACLs,which isnumberedfrom 4,000 to4,999.

    [SW7750-acl-link-4000]

    Execute the aclnumber 4000

    command insystem view.

    Execute the quitcommand to return to

    system view.Execute the returncommand to return touser view.

    User-defined ACL view

    Define thesub-rules ofuser-definedACLs, whichare in therange of 5000to 5999

    [SW7750-acl-user-5000]

    Execute the aclnumber 5000command insystem view

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    Traffic-group view

    Configuretraffic groupparameters

    [SW7750-traffic-group-1]

    Execute thetraffic-accounting traffic-group 1command insystem view.

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    QoS view Configure QoSparameters

    [SW7750-qoss-GigabitEthernet4/0/1]

    or:

    [SW7750-qosb-GigabitEthernet4/0/1]

    Execute the qoscommand inEthernet port view.

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    QinQ view Create QinQinstances and

    configureparameters forQinQ

    [SW7750-GigabitEthernet4/0/1-v

    id-1000]

    Execute thevlan-vpn vid 1000

    uplink Ethernet1/0/5 untaggedcommand inEthernet port view.

    Execute the quitcommand to return to

    system view.Execute the returncommand to return touser view.

    RADIUSscheme view

    ConfigureRADIUSparameters

    [SW7750-radius-1]

    Execute the radiusscheme 1command insystem view.

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    HWTACACSscheme view

    Configureparameters fortheHWTACACS

    protocol

    [SW7750-hwtacacs-1]

    Execute thehwtacacs scheme1 command insystem view.

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    ISP domainview

    Configureparameters foran ISP domain

    [SW7750-isp-aabbcc.net]

    Execute thedomainaabbcc.netcommand insystem view.

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    Table 4 CLI views

    ViewAvailableoperation

    Promptexample Enter method Quit method

  • 7/27/2019 3Com 7750 Config Guide

    28/938

    28 CHAPTER 1: CLI OVERVIEW

    RprGE view ConfigureRprGE logical

    interfaceattributes

    [SW7750-RprGE1/0/1]

    Execute theinterface RprGE

    1/0/1 command insystem view.

    Execute the quitcommand to return to

    system view.Execute the returncommand to return touser view.

    PoE profileview

    Configure PoEprofileparameters

    [SW7750-poe-profile-test]

    Execute thepoe-profile testcommand insystem view.

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    Trafficaccountingview

    Configuretrafficaccountingparameters

    [SW7750-accounting-slot-0]

    Execute thetraffic-accounting accounting-slot0 command insystem view.

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    Netstreamautonomoussystemaggregationview

    Configurenetstreamautonomoussystemaggregationparameters

    [SW7750-aggregation-as]

    Execute the ipnetstreamaggregation ascommand insystem view.

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    Netstreamprotocol -portaggregationview

    Configurenetstreamprotocol-portaggregationparameters

    [SW7750-aggregation-protport]

    Execute the ipnetstreamaggregationprotocol-portcommand in

    system view.

    Execute the quitcommand to return tosystem view.

    Execute the return

    command to return touser view.

    Netstreamsource prefixaggregationview

    Configurenetstreamsource prefixaggregationparameters

    [SW7750-aggregation-srcpre]

    Execute the ipnetstreamaggregationsource-prefixcommand insystem view.

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    Netstreamdestinationprefixaggregationview

    Configurenetstreamdestinationaggregationparameters

    [SW7750-aggregation-dstpre]

    Execute the ipnetstreamaggregationdestination-prefix command insystem view.

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    Netstreamsource anddestinationaggregationview

    Configurenetstreamsource anddestinationaggregationparameters

    [SW7750-aggregation-prefix]

    Execute the ipnetstreamaggregationprefix commandin system view.

    Execute the quitcommand to return tosystem view.

    Execute the returncommand to return touser view.

    Table 4 CLI views

    ViewAvailableoperation

    Promptexample Enter method Quit method

  • 7/27/2019 3Com 7750 Config Guide

    29/938

    CLI Features 29

    CLI Features

    Online Help CLI provides two types of online help: complete online help and partial onlinehelp. They assist you with your configuration.

    Complete online help

    Enter a ? character in any view on your terminal to display all the commandsavailable in the view and their brief descriptions. The following takes user view asan example.

    ?

    User view commands:

    boot Set boot option

    cd Change current directory

    clock Specify the system clock

    cluster Run cluster command

    copy Copy from one file to another

    debugging Enable system debugging functions

    delete Delete a file

    dir List files on a file system

    display Display current system information

    Enter a command, a space, and a ? character (instead of a keyword available inthis position of the command) on your terminal to display all the availablekeywords and their brief descriptions. The following takes the clock command asan example.

    clock ?

    datetime Specify the time and date

    summer-time Configure summer time

    timezone Configure time zone

    Enter a command, a space, and a ? character (instead of an argument availablein this position of the command) on your terminal to display all the availablearguments and their brief descriptions. The following takes the interface vlancommand as an example.

    [SW7750] interface vlan-interface ?

    VLAN interface number

    [SW7750] interface vlan-interface 1 ?

    Smart-linkgroup view

    Configuresmart-link

    groupparameters

    [SW7750-smlk-group1]

    Execute thesmart-link group

    command insystem view.

    Execute the quitcommand to return to

    system view.Execute the returncommand to return touser view.

    Table 4 CLI views

    ViewAvailableoperation

    Promptexample Enter method Quit method

  • 7/27/2019 3Com 7750 Config Guide

    30/938

    30 CHAPTER 1: CLI OVERVIEW

    The string means no argument is available in the position occupied by the? character. You can execute the command without providing any otherinformation.

    Partial online help

    Enter a string followed directly by a ? character on your terminal to display allthe commands beginning with the string. For example:

    pi?

    ping

    Enter a command, a space, and a string followed by a ? character on yourterminal to display all the keywords that belong to the command and begin withthe string (if available). For example:

    display ver?

    version

    Enter the first several characters of a keyword in a command and then press, the complete keyword will be displayed on the terminal screen if the inputcharacters uniquely identify a keyword. If the input characters match more thanone keywords, press the Tab key repeatedly and all the keyword that match theinput characters will be displayed on the terminal screen.

    You can use the language-mode command to translate the help into Chinese.

    Terminal Display CLI provides the following display feature:

    Display suspending. That is, the displaying of output information can be splitwhen the screen is full and you can then perform the three operations listed inTable 5 as needed.

    Command History CLI can store the latest executed commands as history commands so that userscan recall and execute them again. By default, CLI can store 10 history commandsfor each user. Table 6 lists history command-related operations.

    Table 5 Displaying-related operations

    Operation Function

    Press Suspend displaying and executing.

    Press the space key Scroll the output information up by one page.

    Press Scroll the output information up by one line.

    Table 6 Access history commands

    Operation Operation Description

    Display historycommands

    Execute the displayhistory-command command

    This command displays validhistory commands.

    Recall the previoushistory command

    Press the up-arrow key or

    This operation recalls the previoushistory command (if available).

    Recall the next historycommand

    Pressing the down-arrow key or

    This operation recalls the nexthistory command (if available).

    http://-/?-http://-/?-http://-/?-http://-/?-
  • 7/27/2019 3Com 7750 Config Guide

    31/938

    CLI Features 31

    nAs the Up and Down keys have different meanings in HyperTerminal running onWindows 9x, these two keys can be used to recall history commands only interminals running Windows 3.x or Telnet running in Windows 3.x. You can press or in Windows 9x to achieve the same purpose.

    Error Messages If the command you enter passes the syntax check, it will be successfully executed;otherwise an error message will appear. Table 7 lists the common error messages.

    Command Edit The CLI provides basic command edit functions and supports multi-line editing.The maximum number of characters a command can contain is 254. Table 8 liststhe CLI edit operations.

    Table 7 Common error messages

    Error message Description

    Unrecognized command The command does not exist.

    The keyword does not exist.

    The parameter type is wrong.

    The parameter value is out of range.

    Incomplete command The command entered is incomplete.

    Too many parameters You have entered too many parameters.

    Ambiguous command The parameters entered are ambiguous.

    Wrong parameter The input parameter is wrong

    Table 8 Edit operations

    Press... To...

    A common key Insert the character the key represents at the cursor andmove the cursor one character to the right if the edit

    buffer is not full.The Backspace key Delete the character on the left of the cursor and move

    the cursor one character to the left.

    The left arrow key or Move the cursor one character to the left.

    The right arrow key or Move the cursor one character to the right.

    The up arrow key or

    The down arrow key or

    Access history commands.

    The Tab key Utilize the partial online help. That is, when you enteran incomplete keyword and the Tab key, if the inputkeyword uniquely identifies an existing keyword, thesystem completes the keyword and displays thecommand on the next line. If the input keyword

    matches more than one keyword, press the Tab keyrepeatedly, all the keywords are displayed on theterminal screen, with each keyword on a line. If theinput keyword matches no keyword, the systemdisplays your original input on a new line without anychange.

    http://-/?-http://-/?-http://-/?-http://-/?-
  • 7/27/2019 3Com 7750 Config Guide

    32/938

    32 CHAPTER 1: CLI OVERVIEW

  • 7/27/2019 3Com 7750 Config Guide

    33/938

    2LOGGINGINTOAN ETHERNET SWITCH

    Logging into anEthernet Switch

    You can log into a Switch 7750 Ethernet switch in one of the following ways:

    Logging in locally through the Console port

    Telneting locally or remotely to an Ethernet port

    Telneting to the Console port using a modem

    Logging in through NMS (network management station)

    Introduction to theUser Interface

    Supported UserInterfaces

    Switch 7750 Ethernet switch supports two types of user interfaces: AUX and VTY.

    nThe AUX port and the Console port of a 3Com switch are the same port. You willbe in the AUX user interface if you log in through this port.

    User Interface Number Two kinds of user interface index exist: absolute user interface index and relativeuser interface index.

    1 The absolute user interface indexes are as follows:

    AUX user interface: 0

    VTY user interfaces: Numbered after AUX user interfaces and increases in the

    step of 12 A relative user interface index can be obtained by appending a number to the

    identifier of a user interface type. It is generated by user interface type. Therelative user interface indexes are as follows:

    AUX user interface: AUX 0

    VTY user interfaces: VTY 0, VTY 1, VTY 2, and so on.

    Table 9 Description on user interface

    User interface Applicable user Port used Description

    AUX Users logging inthrough theConsole port

    Console port Each switch can accommodate oneAUX user.

    VTY Telnet users and

    SSH users

    Ethernet port Each switch can accommodate up to

    five VTY users.

  • 7/27/2019 3Com 7750 Config Guide

    34/938

    34 CHAPTER 2: LOGGINGINTOAN ETHERNET SWITCH

    Common User InterfaceConfiguration

    cCAUTION:

    The auto-execute commandcommand may cause you unable to performcommon configuration in the user interface, so use it with caution.

    Before executing the auto-execute commandcommand and save your

    configuration, make sure you can log into the switch in other modes andcancel the configuration.

    Table 10 Common user interface configuration

    Operation Command Description

    Lock the current user interface lock Optional

    Execute this command in user

    view.A user interface is not lockedby default.

    Specify to send messages toall user interfaces/a specifieduser interface

    send { all | number| typenumber}

    Optional

    Execute this command in userview.

    Disconnect a specified userinterface

    free user-interface [ type ]number

    Optional

    Execute this command in userview.

    Enter system view system-view -

    Enable copyright informationdisplaying

    copyright-info enable Optional

    By default, copyrightinformation displaying isdisabled. That is, thecopyright information is notdisplayed after a user logs intoa switch successfully.

    Enter user interface view user-interface [ type ]first-number[ last-number]

    -

    Set the command that isautomatically executed whena user logs into the userinterface

    auto-execute commandtext Optional

    By default, no command isautomatically executed whena user logs into a userinterface.

    Display the information aboutthe current user interface/alluser interfaces

    display users [ all ] Optional

    These two commands can beexecuted in any view.

    Display the physical attributesand configuration of thecurrent/a specified userinterface

    display user-interface [ typenumber| number]

  • 7/27/2019 3Com 7750 Config Guide

    35/938

    3LOGGINGINTHROUGHTHE CONSOLEPORT

    Introduction To log in through the Console port is the most common way to log into a switch.It is also the prerequisite to configure other login methods. Normally, you can loginto a Switch 7750 Ethernet switch through its Console port.

    To log into an Ethernet switch through its Console port, the communicationconfiguration of the user terminal must be in accordance with that of the Consoleport.

    Table 11 lists the default settings of a Console port.

    After logging into a switch, you can perform configuration for AUX users. Refer toConsole Port Login Configuration on page 37 for more.

    Logging in throughthe Console Port

    Following are the procedures to connect to a switch through the Console port.

    1 Connect the serial port of your PC/terminal to the Console port of the switch, asshown in Figure 1.

    Figure 1 Diagram for setting the connection to the Console port

    2 If you use a PC to connect to the Console port, launch a terminal emulation utility(such as Terminal in Windows 3.X or HyperTerminal in Windows 9X) and performthe configuration shown in Figure 2 through Figure 4 for the connection to becreated. Normally, the parameters of a terminal are configured as those listed inTable 11. And the type of the terminal is set to VT100.

    Table 11 The default settings of a Console port

    Setting Default

    Baud rate 9,600 bps

    Flow control None

    Check mode (Parity) None

    Stop bits 1

    Data bits 8

    PC Switch

    RS-232

    Configuration cable

    Console port

    http://-/?-http://-/?-http://-/?-http://-/?-http://-/?-http://-/?-http://-/?-http://-/?-http://-/?-http://-/?-
  • 7/27/2019 3Com 7750 Config Guide

    36/938

    36 CHAPTER 3: LOGGINGINTHROUGHTHE CONSOLE PORT

    Figure 2 Create a connection

    Figure 3 Specify the port used to establish the connection

  • 7/27/2019 3Com 7750 Config Guide

    37/938

    Console Port Login Configuration 37

    Figure 4 Set port parameters

    3 Turn on the switch. You will be prompted to press the Enter key if the switchsuccessfully completes POST (power-on self test). The prompt (such as )appears after you press the Enter key.

    4 You can then configure the switch or check the information about the switch byexecuting the corresponding commands. You can also acquire help by type the ?character. The commands available on a switch are described in the relatedmodule of the command manual.

    Console Port LoginConfiguration

    Common Configuration Table 12 lists the common configuration of Console port login.

    Table 12 Common configuration of Console port login

    Configuration Remarks

    Console portconfiguration

    Baud rate Optional

    The default baud rate is 9,600 bps.

    Check mode Optional

    By default, the check mode of the Console port isset to none, which means no check bit.

    Stop bits Optional

    The default stop bits of a Console port is 1.

    Data bits Optional

    The default data bits of a Console port is 8.

    http://-/?-http://-/?-
  • 7/27/2019 3Com 7750 Config Guide

    38/938

    38 CHAPTER 3: LOGGINGINTHROUGHTHE CONSOLE PORT

    cCAUTION: Changing of Console port configuration terminates the connection tothe Console port. To establish the connection again, you need to modify theconfiguration of the termination emulation utility running on your PC accordingly.Refer to Logging in through the Console Port on page 35for more.

    Console Port LoginConfigurations for

    Different AuthenticationModes

    Table 13 lists Console port login configurations for different authentication modes.

    AUX userinterfaceconfiguration

    Configure the commandlevel available to theusers logging into the

    AUX user interface

    Optional

    By default, commands of level 3 are available tothe users logging into the AUX user interface.

    Terminalconfiguration

    Make terminal servicesavailable

    Optional

    By default, terminal services are available in alluser interfaces

    Set the maximumnumber of lines thescreen can contain

    Optional

    By default, the screen can contain up to 24 lines.

    Set history commandbuffer size

    Optional

    By default, the history command buffer cancontain up to 10 commands.

    Set the timeout time of auser interface

    Optional

    The default timeout time is 10 minutes.

    Table 12 Common configuration of Console port login

    Configuration Remarks

    Table 13 Console port login configurations for different authentication modes

    Authenticationmode Console port login configuration Remarks

    None Performcommonconfiguration

    Perform commonconfiguration forConsole port login

    OptionalRefer to CommonConfiguration on page 37 formore.

    Password Configure thepassword

    Configure thepassword for localauthentication

    Required

    Performcommonconfiguration

    Perform commonconfiguration forConsole port login

    Optional

    Refer to CommonConfiguration on page 37 formore.

    http://-/?-http://-/?-
  • 7/27/2019 3Com 7750 Config Guide

    39/938

    Console Port Login Configuration with Authentication Mode Being None 39

    nChanges of the authentication mode of Console port login will not take effectunless you quit the command-line interface and then enter it again.

    Console Port Login

    Configuration withAuthentication ModeBeing None

    Configuration Procedure

    Scheme Specify toperform local

    authenticationor RADIUSauthentication

    AAA configurationspecifies whether to

    perform localauthentication orRADIUSauthentication

    Optional

    Local authentication is

    performed by default.

    Refer to Configuring RADIUSAuthentication/AuthorizationServers on page 525 for more.

    Configure username andpassword

    Configure usernames andpasswords forlocal/RADIUS users

    Required

    The user name and passwordof a local user are configuredon the switch.

    The user name and passwordof a RADIUS user areconfigured on the RADIUSserver. Refer to user manualof RADIUS server for more.

    Manage AUXusers

    Set service type forAUX users

    Required

    Performcommonconfiguration

    Perform commonconfiguration forConsole port login

    Optional

    Refer to CommonConfiguration on page 37 formore.

    Table 13 Console port login configurations for different authentication modes

    Authenticationmode Console port login configuration Remarks

    Table 14 Console port login configuration with the authentication mode being none

    Operation Command Description

    Enter system view system-view -

    Enter AUX user interface view user-interface aux 0 -

    Configure not to authenticateusers

    authentication-modenone

    Required

    By default, users logging in

    through the Console portare not authenticated.

  • 7/27/2019 3Com 7750 Config Guide

    40/938

    40 CHAPTER 3: LOGGINGINTHROUGHTHE CONSOLE PORT

    Configure theConsole port

    Set the baud rate speed speed-value Optional

    The default baud rate of anAUX port (also the Console

    port) is 9,600 bps.

    Set the checkmode

    parity { even | mark |none | odd | space }

    Optional

    By default, the check modeof a Console port is set tonone, that is, no check bit.

    Set the flowcontrol mode

    flow-control { hardware |none | software }

    Optional

    By default, a Console portdoes not perform flowcontrol.

    Set the stop bits stopbits { 1 | 1.5 | 2 } Optional

    The stop bits of a Consoleport is 1.

    Set the data bits databits { 7 | 8 } Optional

    The default data bits of aConsole port is 8.

    Configure the command levelavailable to users logging into theuser interface

    user privilege levellevel Optional

    By default, commands oflevel 3 are available to userslogging into the AUX userinterface.

    Make terminal services available shell Optional

    By default, terminal servicesare available in all userinterfaces.

    Set the maximum number of linesthe screen can contain

    screen-lengthscreen-length

    Optional

    By default, the screen cancontain up to 24 lines.

    You can use thescreen-length0 commandto disable the function todisplay information inpages.

    Set the history command buffersize

    history-commandmax-sizevalue

    Optional

    The default historycommand buffer size is 10.That is, a history commandbuffer can store up to 10

    commands by default.

    Table 14 Console port login configuration with the authentication mode being none

    Operation Command Description

  • 7/27/2019 3Com 7750 Config Guide

    41/938

    Console Port Login Configuration with Authentication Mode Being None 41

    Note that the command level available to users logging into a switch through theNone authentication mode depends on both the authentication-mode nonecommand and the user privilege levellevelcommand, as listed in the followingtable.

    Configuration Example Network requirements

    Perform the following configuration for users logging in through the Consoleport:

    Do not authenticate users logging in through the Console port.

    Commands of level 2 are available to users logging into the AUX user interface.

    The baud rate of the Console port is 19,200 bps.

    The screen can contain up to 30 lines.

    The history command buffer can contain up to 20 commands.

    The timeout time of the AUX user interface is 6 minutes.

    Set the timeout time for the userinterface

    idle-timeoutminutes[seconds ]

    Optional

    The default timeout time ofa user interface is 10

    minutes.

    With the timeout timebeing 10 minutes, theconnection to a userinterface is terminated if nooperation is performed inthe user interface within 10minutes.

    You can use theidle-timeout 0 commandto disable the timeoutfunction.

    Table 15 Determine the command level (A)

    Scenario

    Command levelAuthenticationmode User type Command

    None(authentication-mode none)

    Users logging inthroughConsole ports

    The user privilege levellevelcommand not executed

    Level 3

    The user privilege levellevel

    command already executed

    Determined by

    the levelargument

    Table 14 Console port login configuration with the authentication mode being none

    Operation Command Description

  • 7/27/2019 3Com 7750 Config Guide

    42/938

    42 CHAPTER 3: LOGGINGINTHROUGHTHE CONSOLE PORT

    Network diagram

    Figure 5 Network diagram for AUX user interface configuration (with the authenticationmode being none)

    Configuration procedure

    # Enter system view.

    system-view

    # Enter AUX user interface view.

    [SW7750] user-interface aux 0

    # Specify not to authenticate users logging in through the Console port.

    [SW7750-ui-aux0] authentication-mode none

    # Specify commands of level 2 are available to users logging into the AUX userinterface.

    [SW7750-ui-aux0] user privilege level 2

    # Set the baud rate of the Console port to 19,200 bps.

    [SW7750-ui-aux0] speed 19200

    # Set the maximum number of lines the screen can contain to 30.

    [SW7750-ui-aux0] screen-length 30

    # Set the maximum number of commands the history command buffer can storeto 20.

    [SW7750-ui-aux0] history-command max-size 20

    # Set the timeout time of the AUX user interface to 6 minutes.

    [SW7750-ui-aux0] idle-timeout 6

    Console Port LoginConfiguration withAuthentication ModeBeing Password

    Configuration Procedure

    PC Switch

    RS-232

    Configuration cable

    Console port

    Table 16 Console port login configuration with the authentication mode being password

    Operation Command Description

    Enter system view system-view -

  • 7/27/2019 3Com 7750 Config Guide

    43/938

    Console Port Login Configuration with Authentication Mode Being Password 43

    Enter AUX user interfaceview

    user-interface aux 0 -

    Configure to

    authenticate users usingthe local password

    authentication-mode

    password

    Required

    By default, users logging into a switchthrough the Console port are notauthenticated; while those logging inthrough Modems or Telnet areauthenticated.

    Set the local password set authenticationpassword { cipher |simple }password

    Required

    ConfiguretheConsoleport

    Set thebaud rate

    speed speed-value Optional

    The default baud rate of an AUX port(also the Console port) is 9,600 bps.

    Set thecheckmode

    parity { even | mark |none | odd | space }

    Optional

    By default, the check mode of aConsole port is set to none, that is, nocheck bit.

    Set theflowcontrolmode

    flow-control { hardware| none | software }

    Optional

    By default, a Console port does notperform flow control.

    Set thestop bits

    stopbits { 1 | 1.5 | 2 } Optional

    The default stop bits of a Console portis 1.

    Set thedata bits

    databits { 7 | 8 } Optional

    The default data bits of a Console portis 8.

    Configure the commandlevel available to userslogging into the userinterface

    user privilege levellevel Optional

    By default, commands of level 3 areavailable to users logging into theAUX user interface.

    Make terminal servicesavailable to the userinterface

    shell Optional

    By default, terminal services areavailable in all user interfaces.

    Set the maximumnumber of lines thescreen can contain

    screen-lengthscreen-length

    Optional

    By default, the screen can contain upto 24 lines.

    You can use the screen-length 0command to disable the function to

    display information in pages.

    Set history commandbuffer size

    history-commandmax-sizevalue

    Optional

    The default history command buffersize is 10. That is, a history commandbuffer can store up to 10 commandsby default.

    Table 16 Console port login configuration with the authentication mode being password

    Operation Command Description

  • 7/27/2019 3Com 7750 Config Guide

    44/938

    44 CHAPTER 3: LOGGINGINTHROUGHTHE CONSOLE PORT

    Note that the command level available to users logging into a switch through thepassword authentication mode depends on both the authentication-modepassword and the user privilege levellevelcommand, as listed in the followingtable.

    Configuration Example Network requirements

    Perform the following configuration for users logging in through the Consoleport:

    Authenticate users logging in through the Console port using the localpassword.

    Set the local password to 123456 (in plain text).

    The commands of level 2 are available to users logging into the AUX userinterface.

    The baud rate of the Console port is 19,200 bps.

    The screen can contain up to 30 lines.

    The history command buffer can store up to 20 commands.

    The timeout time of the AUX user interface is 6 minutes.

    Set the timeout time forthe user interface

    idle-timeoutminutes[seconds ]

    Optional

    The default timeout time of a userinterface is 10 minutes.

    With the timeout time being 10minutes, the connection to a userinterface is terminated if no operationis performed in the user interfacewithin 10 minutes.

    You can use the idle-timeout 0command to disable the timeoutfunction.

    Table 17 Determine the command level (B)

    Scenario

    Command levelAuthentication mode User type

    Command

    Local passwordauthentication(authentication-modepassword)

    Users logging inthrough the AUXuser interface

    The user privilege levellevelcommand is notexecuted

    Level 3

    The user privilege levellevelcommand is alreadyexecuted

    Determined bythe levelargument

    Table 16 Console port login configuration with the authentication mode being password

    Operation Command Description

  • 7/27/2019 3Com 7750 Config Guide

    45/938

    Console Port Login Configuration with Authentication Mode Being Password 45

    Network diagram

    Figure 6 Network diagram for AUX user interface configuration (with the authenticationmode being password)

    Configuration procedure

    # Enter system view.

    system-view

    # Enter AUX user interface view.

    [SW7750] user-interface aux 0

    # Specify to authenticate users logging in through the Console port using the local

    password.

    [SW7750-ui-aux0] authentication-mode password

    # Set the local password to 123456 (in plain text).

    [SW7750-ui-aux0] set authentication password simple 123456

    # Specify commands of level 2 are available to users logging into the AUX userinterface.

    [SW7750-ui-aux0] user privilege level 2

    # Set the baud rate of the Console port to 19,200 bps.

    [SW7750-ui-aux0] speed 19200

    # Set the maximum number of lines the screen can contain to 30.

    [SW7750-ui-aux0] screen-length 30

    # Set the maximum number of commands the history command buffer can storeto 20.

    [SW7750-ui-aux0] history-command max-size 20

    # Set the timeout time of the AUX user interface to 6 minutes.

    [SW7750-ui-aux0] idle-timeout 6

    PC Switch

    RS-232

    Configuration cable

    Console port

  • 7/27/2019 3Com 7750 Config Guide

    46/938

    46 CHAPTER 3: LOGGINGINTHROUGHTHE CONSOLE PORT

    Console Port LoginConfiguration withAuthentication ModeBeing Scheme

    Configuration ProcedureTable 18 Console port login configuration with the authentication mode being scheme

    Operation Command Description

    Enter system view system-view -

    Configure theauthenticationmode

    Enter the default ISP domainview

    domain domain-name Optional

    By default, the localAAA scheme is applied.

    If you specify to applythe local AAA scheme,you need to performthe configurationconcerning local user aswell.

    If you specify to applyan existing scheme byproviding theradius-scheme-nameargument, you need toperform the followingconfiguration as well:

    PerformAAA&RADIUSconfiguration on theswitch. (Refer toAAAConfiguration on

    page 518 andRADIUSConfiguration onpage 525 for more.)

    Configure the username and passwordaccordingly on theAAA server. (Refer tothe user manual ofAAA server.)

    Specify the AAA scheme to beapplied to the domain

    scheme { local | none |radius-schemeradius-scheme-name[ local ] |hwtacacs-schemehwtacacs-scheme-name

    [ local ] }Quit to system view quit

    Create a local user (Enter local userview.)

    local-useruser-name Required

    No local user exists bydefault.

    Set the authentication password forthe local user password { simple |cipher }password Required

    Specify the service type for AUX users service-type terminal[ levellevel]

    Required

    Quit to system view quit -

    Enter AUX user interface view user-interface aux 0 -

  • 7/27/2019 3Com 7750 Config Guide

    47/938

    Console Port Login Configuration with Authentication Mode Being Scheme 47

    Configure to authenticate users locallyor remotely

    authentication-modescheme [ command-authorization ]

    Required

    The specified AAAscheme determines

    whether to authenticateusers locally orremotely.

    Users are authenticatedlocally by default.

    Configure theConsole port

    Set the baud rate speed speed-value Optional

    The default baud rate ofthe AUX port (also theConsole port) is 9,600bps.

    Set the check mode parity { even | mark |none | odd | space }

    Optional

    By default, the checkmode of a Console portis set to none, that is,no check bit.

    Set the flow controlmode

    flow-control { hardware| none | software }

    Optional

    By default, a Consoleport does not performflow control.

    Set the stop bits stopbits { 1 | 1.5 | 2 } Optional

    The default stop bits ofa Console port is 1.

    Set the data bits databits { 7 | 8 } Optional

    The default data bits ofa Console port is 8.

    Configure the command level availableto users logging into the user interface

    user privilege levellevel Optional

    By default, commandsof level 3 are availableto users logging into theAUX user interface.

    Make terminal services available to theuser interface

    shell Optional

    By default, terminalservices are available inall user interfaces.

    Set the maximum number of lines thescreen can contain

    screen-lengthscreen-length

    Optional

    By default, the screencan contain up to 24

    lines.You can use thescreen-length 0command to disable thefunction to displayinformation in pages.

    Table 18 Console port login configuration with the authentication mode being scheme

    Operation Command Description

  • 7/27/2019 3Com 7750 Config Guide

    48/938

    48 CHAPTER 3: LOGGINGINTHROUGHTHE CONSOLE PORT

    Note that the command level available to users logging into a switch through thescheme authentication mode depends on the authentication-mode scheme[ command-authentication ] command and the service-type terminal [ levellevel] command, as listed in Table 19.

    Configuration Example Network requirements

    Perform the following configuration for users logging in through the Consoleport:

    Configure the name of the local user to be guest.

    Set the authentication password of the local user to 1234567890 (in plaintext).

    Set the service type of the local user to Terminal, the available command levelof the user to 2.

    Set history command buffer size history-commandmax-sizevalue

    Optional

    The default historycommand buffer size is

    10. That is, a historycommand buffer canstore up to 10commands by default.

    Set the timeout time for the userinterface

    idle-timeoutminutes[seconds ]

    Optional

    The default timeouttime of a user interfaceis 10 minutes.

    With the timeout timebeing 10 minutes, theconnection to a userinterface is terminated ifno operation isperformed in the userinterface within 10minutes.

    You can use theidle-timeout 0command to disable thetimeout function.

    Table 19 Determine the command level

    Scenario

    Command levelAuthenticationmode User type Command

    authentication-mode scheme[ command-authorization ]

    Users logginginto theConsole portand passAAA&RADIUSor localauthentication

    The service-type terminal[ levellevel] command is notconfigured.

    Level 0

    The defaultcommand levelavailable for localusers is level 0.

    The service-type terminal[ levellevel] command isconfigured.

    Determined by thelevelargument

    Table 18 Console port login configuration with the authentication mode being scheme

    Operation Command Description

    http://-/?-http://-/?-
  • 7/27/2019 3Com 7750 Config Guide

    49/938

    Console Port Login Configuration with Authentication Mode Being Scheme 49

    Configure to authenticate users logging in through the Console port in thescheme mode.

    The baud rate of the Console port is 19,200 bps.

    The screen can contain up to 30 lines.

    The history command buffer can store up to 20 commands. The timeout time of the AUX user interface is 6 minutes.

    Network diagram

    Figure 7 Network diagram for AUX user interface configuration (with the authenticationmode being scheme)

    Configuration procedure

    # Enter system view.

    system-view

    # Create a local user named guest and enter local user view.

    [SW7750] local-user guest

    # Set the authentication password to 1234567890 (in plain text).

    [SW7750-luser-guest] password simple 1234567890

    # Set the service type of the local user to Terminal, with the available command

    level being 2.

    [SW7750-luser-guest] service-type terminal level 2

    [SW7750-luser-guest] quit

    # Enter AUX user interface view.

    [SW7750] user-interface aux 0

    # Configure to authenticate users logging in through the Console port in thescheme mode.

    [SW7750-ui-aux0] authentication-mode scheme

    # Set the baud rate of the Console port to 19,200 bps.

    [SW7750-ui-aux0] speed 19200

    # Set the maximum number of lines the screen can contain to 30.

    [SW7750-ui-aux0] screen-length 30

    # Set the maximum number of commands the history command buffer can storeto 20.

    PC Switch

    RS-232

    Configuration cable

    Console port

  • 7/27/2019 3Com 7750 Config Guide

    50/938

    50 CHAPTER 3: LOGGINGINTHROUGHTHE CONSOLE PORT

    [SW7750-ui-aux0] history-command max-size 20

    # Set the timeout time of the AUX user interface to 6 minutes.

    [SW7750-ui-aux0] idle-timeout 6

  • 7/27/2019 3Com 7750 Config Guide

    51/938

    4LOGGINGINTHROUGH TELNET

    Introduction You can manage and maintain a switch remotely by Telneting to the switch. Toachieve this, you need to configure both the switch and the Telnet terminalaccordingly.

    Common Configuration Table 21 lists the common Telnet configuration.

    Table 20 Requirements for Telnet to a switch

    Item Requirement

    Switch The IP address of the VLAN interface of the switch is configured and

    the route between the switch and the Telnet terminal is available.(Refer to Configuring an IP Address for a VLAN Interface on page129 for more.)

    The authentication mode and other settings are configured. Refer toTable 21 and Table 22.

    Telnet terminal Telnet is running.

    The VLAN IP address of the switch is available.

    Table 21 Common Telnet configuration

    Configuration Description

    VTY userinterfaceconfiguration

    Configure the commandlevel available to userslogging into the VTY userinterface

    Optional

    By default, commands of level 0 are availableto users logging into a VTY user interface.

    Configure the protocols theuser interface supports

    Optional

    By default, Telnet and SSH protocol aresupported.

    VTY terminalconfiguration

    Make terminal servicesavailable

    Optional

    By default, terminal services are available in alluser interfaces

    Set the maximum number oflines the screen can contain

    Optional

    By default, the screen can contain up to 24

    lines.

    Set history command buffersize

    Optional

    By default, the history command buffer cancontain up to 10 commands.

    Set the timeout time of auser interface

    Optional

    The default timeout time is 10 minutes.

    Set whether to display thecopyright statementinformation

    Optional

    By default, the copyright information isdisplayed when a user logs into a switchthrough Telnet.

    http://-/?-http://-/?-http://-/?-http://-/?-http://-/?-http://-/?-
  • 7/27/2019 3Com 7750 Config Guide

    52/938

    52 CHAPTER 4: LOGGINGINTHROUGH TELNET

    Telnet Configurationsfor Different

    Authentication Modes

    Table 22 lists Telnet configurations for different authentication modes.

    Telnet Configurationwith AuthenticationMode Being None

    Configuration Procedure

    Table 22 Telnet configurations for different authentication modes

    Authenticationmode Telnet configuration Description

    None Performcommonconfiguration

    Performcommon Telnetconfiguration

    OptionalRefer to Table 21.

    Password Configure thepassword

    Configure thepassword forlocalauthentication

    Required

    Performcommonconfiguration

    Performcommon Telnetconfiguration

    Optional

    Refer to Table 21.

    Scheme Specify toperform localauthenticationor RADIUS

    authentication

    AAAconfigurationspecifieswhether to

    perform localauthenticationor RADIUSauthentication

    Optional

    Local authentication is performed bydefault.

    Refer to Configuring RADIUSAuthentication/AuthorizationServers on page 525 for more.

    Configure username andpassword

    Configure usernames andpasswords forlocal/RADIUSusers

    Required

    The user name and password of alocal user are configured on theswitch.

    The user name and password of aremote user are configured onthe RADIUS server. Refer to usermanual of RADIUS server formore.

    Manage VTYusers Set service typefor VTY users Required

    Performcommonconfiguration

    Performcommon Telnetconfiguration

    Optional

    Refer to Table 21.

    Table 23 Telnet configuration with the authentication mode being none

    Operation Command Description

    Enter system view system-view -

    Enter one or more VTY userinterface views

    user-interface vtyfirst-number[ last-number]

    -

    Configure not to authenticateusers logging into VTY userinterfaces

    authentication-mode none Required

    By default, VTY users areauthenticated after loggingin.

    http://-/?-http://-/?-http://-/?-http://-/?-http://-/?-http://-/?-http://-/?-http://-/?-
  • 7/27/2019 3Com 7750 Config Guide

    53/938

    Telnet Configuration with Authentication Mode Being None 53

    Note that if you configure not to authenticate the users, the command levelavailable to users logging into a switch depends on both the

    authentication-mode none command and the user privilege levellevelcommand, as listed in Table 24.

    Configure the command levelavailable to users logging intoVTY user interface

    user privilege levellevel Optional

    By default, commands of level0 are available to users

    logging into VTY userinterfaces.

    Configure the protocols to besupported by the VTY userinterface

    protocol inbound { all | ssh |telnet }

    Optional

    By default, both Telnetprotocol and SSH protocol aresupported.

    Make terminal servicesavailable

    shell Optional

    By default, terminal servicesare available in all userinterfaces.

    Set the maximum number oflines the screen can contain

    screen-lengthscreen-length Optional

    By default, the screen can

    contain up to 24 lines.You can use thescreen-length0 command todisable the function to displayinformation in pages.

    Set the history commandbuffer size

    history-command max-sizevalue

    Optional

    The default history commandbuffer size is 10. That is, ahistory command buffer canstore up to 10 commands bydefault.

    Set the timeout time of theVTY user interface

    idle-timeoutminutes[seconds ]

    Optional

    The default timeout time of a

    user interface is 10 minutes.With the timeout time being10 minutes, the connection toa user interface is terminatedif no operation is performedin the user interface within 10minutes.

    You can use the idle-timeout0 command to disable thetimeout function.

    Table 23 Telnet configuration with the authentication mode being none

    Operation Command Description

    http://-/?-http://-/?-
  • 7/27/2019 3Com 7750 Config Guide

    54/938

    54 CHAPTER 4: LOGGINGINTHROUGH TELNET

    Configu