Scribd
Upload
18 views50 pages

8800 SR

Uploaded by

Ovi Pecador Escobar Jimarez
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
18 views50 pages

8800 SR

Uploaded by

Ovi Pecador Escobar Jimarez
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 50

AT-8800 Series Switch

AlliedWare™ Operating System


Software Reference for Version 2.9.1

AT-8824
AT-8848
AlliedWare OS Software Reference for Software Version 2.9.1
Document Number C613-03129-00 REV A.

© 2006 Allied Telesis, Inc. All rights reserved. No part of this publication may be
reproduced without prior written permission from Allied Telesis, Inc.

Allied Telesis, Inc. reserves the right to make changes in specifications and other
information in this document without prior written notice. The information provided
herein is subject to change without notice. In no event shall Allied Telesis, Inc. be liable
for any incidental, special, indirect, or consequential damages whatsoever, including
but not limited to lost profits, arising out of or related to this manual or the information
contained herein, even if Allied Telesis, Inc. has been advised of, known, or should have
known, the possibility of such damages.

All company names, logos, and product designs that are trademarks or registered
trademarks are the property of their respective owners.
Contents

About this Software Reference


Introduction ...................................................................................................... li
Structure of this Software Reference ................................................................. li
Intended Audience .......................................................................................... lv
Conventions .................................................................................................... lv
Command Descriptions ............................................................................. lvi
Where To Find More Information ................................................................... lviii
Obtaining Copies of Internet Protocols and Standards ............................. lviii
Publicly Accessible Documents ................................................................... lix
Allied Telesis Offices and Locations ............................................................ lix
Reader’s Comments ......................................................................................... lxi

Command Summary

CHAPTER 1 Getting Started


Establishing a Management Session with the Switch ...................................... 1-2
Assigning an IP Address ................................................................................. 1-2
About Setting Routes ..................................................................................... 1-2
Checking Connections with PING .................................................................. 1-3
Changing a Password .................................................................................... 1-3
Using Command Line Help ............................................................................ 1-4
Using GUI Help .............................................................................................. 1-4
Special Feature Licences ................................................................................. 1-5
Setting System Parameters ............................................................................. 1-5
Saving Configurations Entered with the CLI ................................................... 1-6
Saving Configurations Entered with the GUI .................................................. 1-6
Troubleshooting Traffic Flow .......................................................................... 1-7
Software Upgrades ........................................................................................ 1-7
SNMP and MIBs ............................................................................................. 1-8
To Avoid Problems ......................................................................................... 1-8
For More Information ................................................................................... 1-10

CHAPTER 2 Using the Command Line Interface (CLI)


Introduction ................................................................................................... 2-2
Parts of a Command ...................................................................................... 2-3
Entering a Command ..................................................................................... 2-4
Shortcuts ................................................................................................. 2-4
Command Sets .............................................................................................. 2-6
What is Valid Syntax? ..................................................................................... 2-6
What Commands does a Feature Support? .................................................... 2-9
iv AlliedWare OS Software Reference

Editing Commands ...................................................................................... 2-10


Recalling Commands ................................................................................... 2-10
Command Reference ................................................................................... 2-11
add alias ................................................................................................ 2-11
delete alias ............................................................................................ 2-12
help ...................................................................................................... 2-13
set command assignmentoperator ......................................................... 2-13
set help ................................................................................................. 2-14
show alias ............................................................................................. 2-14
show command history ......................................................................... 2-15

CHAPTER 3 Using the Graphical User Interface (GUI)


Introduction ................................................................................................... 3-2
What is the GUI? ........................................................................................... 3-2
Accessing the Switch via the GUI ................................................................... 3-3
Browser and PC Setup ............................................................................. 3-3
Establishing a Connection to the Switch .................................................. 3-5
Secure Access ........................................................................................ 3-10
System Status ........................................................................................ 3-11
Using the GUI: Navigation and Features ....................................................... 3-12
The Configuration Menu ....................................................................... 3-12
Using Configuration Pages .................................................................... 3-13
The Management Menu ........................................................................ 3-16
The Monitoring Menu ........................................................................... 3-16
The Diagnostics Menu ........................................................................... 3-17
Combining GUI and CLI Configuration .................................................. 3-17
Troubleshooting ........................................................................................... 3-17
Enabling and Disabling the GUI ............................................................. 3-18
Deleting Temporary Files ........................................................................ 3-18
Accessing the Switch via the GUI ........................................................... 3-18
Command Reference ................................................................................... 3-20
disable gui ............................................................................................. 3-20
enable gui ............................................................................................. 3-20
reset gui ................................................................................................ 3-21
show gui ............................................................................................... 3-22

CHAPTER 4 Configuring and Monitoring the System


Introduction ................................................................................................... 4-3
System Identification ...................................................................................... 4-3
Time and Date ............................................................................................... 4-4
Timezone and UTC Offset ....................................................................... 4-5
Monitoring Switch Operations ....................................................................... 4-6
Monitoring the Power Supply ...................................................................... 4-10
Emailing Alerts from the Switch ................................................................... 4-10
Configuration Examples ........................................................................ 4-11
Command Reference ................................................................................... 4-13
activate cpu extended ........................................................................... 4-13
activate findme ..................................................................................... 4-14
clear summertime .................................................................................. 4-15
clear timezone ....................................................................................... 4-16
deactivate findme .................................................................................. 4-16
delete mail ............................................................................................ 4-17
disable cpu extended ............................................................................. 4-17
disable debug active .............................................................................. 4-18
disable mail debug ................................................................................ 4-18
disable summertime .............................................................................. 4-19
dump .................................................................................................... 4-20
enable cpu extended ............................................................................. 4-21

Software Version 2.9.1


C613-03129-00 REV A
Contents v

enable summertime ............................................................................... 4-22


enable mail debug ................................................................................. 4-22
mail ....................................................................................................... 4-23
modify .................................................................................................. 4-25
reset cpu utilisation ............................................................................... 4-26
reset mail .............................................................................................. 4-26
set mail ................................................................................................. 4-27
set summertime .................................................................................... 4-28
set system contact ................................................................................. 4-30
set system location ................................................................................ 4-31
set system name .................................................................................... 4-32
set system rpsmonitor ........................................................................... 4-33
set time ................................................................................................. 4-33
set timezone ......................................................................................... 4-34
show buffer .......................................................................................... 4-35
show cpu .............................................................................................. 4-39
show debug .......................................................................................... 4-41
show debug active ................................................................................ 4-43
show exception ..................................................................................... 4-48
show mail ............................................................................................. 4-49
show startup ......................................................................................... 4-50
show summertime ................................................................................. 4-51
show system ......................................................................................... 4-52
show system environmental .................................................................. 4-55
show system serialnumber ..................................................................... 4-56
show system startup .............................................................................. 4-57
show time ............................................................................................. 4-57
show timezone ...................................................................................... 4-59

CHAPTER 5 Managing Configuration Files and Software Versions


Managing Configuration Files ........................................................................ 5-3
Loading Files onto the Switch ........................................................................ 5-4
Loading from a Trivial File Transfer Protocol (TFTP) Server .......................... 5-4
Loading from a Web Server ..................................................................... 5-5
Loading from a Lightweight Directory Access Protocol (LDAP) Server ....... 5-6
Loading from a Remote Device using Secure Copy ................................... 5-7
Additional Loader Commands ................................................................. 5-8
Uploading Files from the Switch ..................................................................... 5-9
Using HTTP .............................................................................................. 5-9
Using TFTP and ZMODEM ...................................................................... 5-11
Using Secure Copy ................................................................................ 5-11
Software Upgrades ...................................................................................... 5-13
Upgrade Overview ................................................................................. 5-13
Install Process ........................................................................................ 5-14
Filenames .............................................................................................. 5-15
Licencing ............................................................................................... 5-15
Patches ................................................................................................. 5-17
Example: Upgrading to new software .................................................... 5-17
Example: Upgrading to a new patch file ................................................ 5-19
Upgrading the GUI ................................................................................ 5-19
Command Reference ................................................................................... 5-22
create config ......................................................................................... 5-22
delete install .......................................................................................... 5-23
disable feature ...................................................................................... 5-24
disable http debug ................................................................................ 5-25
disable http server ................................................................................. 5-25
disable ldap debug ................................................................................ 5-26
disable release ....................................................................................... 5-26

Software Version 2.9.1


C613-03129-00 REV A
vi AlliedWare OS Software Reference

enable feature ....................................................................................... 5-27


enable http debug ................................................................................. 5-28
enable http server ................................................................................. 5-28
enable ldap debug ................................................................................ 5-29
enable release ....................................................................................... 5-30
load ...................................................................................................... 5-31
purge ldap ............................................................................................ 5-37
reset http server .................................................................................... 5-37
reset loader ........................................................................................... 5-37
restart ................................................................................................... 5-38
set config .............................................................................................. 5-39
set http server ....................................................................................... 5-40
set install ............................................................................................... 5-41
set loader .............................................................................................. 5-43
show config .......................................................................................... 5-47
show feature ......................................................................................... 5-49
show http client .................................................................................... 5-51
show http debug ................................................................................... 5-52
show http server ................................................................................... 5-53
show http server session ........................................................................ 5-54
show install ........................................................................................... 5-55
show ldap ............................................................................................. 5-57
show ldap request ................................................................................. 5-58
show loader .......................................................................................... 5-60
show patch ........................................................................................... 5-62
show release ......................................................................................... 5-63
upload .................................................................................................. 5-64

CHAPTER 6 Managing the File System


Introduction ................................................................................................... 6-2
File Naming Conventions ............................................................................... 6-2
Long Filenames in Releases ...................................................................... 6-3
Working with Files ......................................................................................... 6-4
Built-In Editor .......................................................................................... 6-5
Using Wildcards ...................................................................................... 6-5
Sending Output to a Text File ................................................................... 6-5
Flash Memory ................................................................................................ 6-6
The Flash File System (FFS) ....................................................................... 6-7
If You Clear Flash Memory Completely .................................................... 6-8
Non-Volatile Storage (NVS) ............................................................................ 6-9
Command Reference ................................................................................... 6-10
activate flash compaction ...................................................................... 6-10
add file .................................................................................................. 6-11
clear flash totally ................................................................................... 6-12
clear nvs totally ..................................................................................... 6-12
copy ...................................................................................................... 6-13
create file .............................................................................................. 6-14
delete file .............................................................................................. 6-15
delete nvs .............................................................................................. 6-16
dump nvs .............................................................................................. 6-17
edit ....................................................................................................... 6-19
modify nvs ............................................................................................ 6-22
purge file translationtable ...................................................................... 6-23
rename ................................................................................................. 6-24
reset file permanentredirect ................................................................... 6-25
show ffile .............................................................................................. 6-26
show file ............................................................................................... 6-28
show file permanentredirect .................................................................. 6-31

Software Version 2.9.1


C613-03129-00 REV A
Contents vii

show flash ............................................................................................. 6-32


show flash physical ................................................................................ 6-34
show nvs ............................................................................................... 6-35
show nvs free ........................................................................................ 6-36

CHAPTER 7 Overview of Layer 2 Switching


Introduction ................................................................................................... 7-2
Switch Ports ................................................................................................... 7-2
Enabling and Disabling Switch Ports ........................................................ 7-2
Autonegotiation of Port Speed and Duplex Mode .................................... 7-3
Port Trunking .......................................................................................... 7-3
Packet Storm Protection .......................................................................... 7-3
Port Mirroring ......................................................................................... 7-3
Port Security ............................................................................................ 7-3
Virtual Local Area Networks (VLANs) .............................................................. 7-4
Creating VLANs ....................................................................................... 7-4
Summary of VLAN tagging rules .............................................................. 7-6
VLAN Interaction with STPs and Trunk Groups ......................................... 7-6
Generic VLAN Registration Protocol (GVRP) .................................................... 7-6
Quality of Service ........................................................................................... 7-6
Spanning Tree Protocol (STP) .......................................................................... 7-8
Spanning Tree and Rapid Spanning Tree Port States ................................. 7-8
Multiple Spanning Tree Protocol (MSTP) ................................................... 7-8
IGMP Snooping ............................................................................................. 7-9
Triggers .......................................................................................................... 7-9

CHAPTER 8 Switching
Introduction ................................................................................................... 8-4
Switch Ports ................................................................................................... 8-5
Enabling and Disabling Switch Ports ........................................................ 8-5
Speed and Duplex Mode ......................................................................... 8-7
Switch Instances on 48-Port Switches ...................................................... 8-9
Port Trunking ........................................................................................ 8-10
Link Aggregation Control Protocol (LACP) ............................................. 8-11
Packet Storm Protection ........................................................................ 8-12
Port Mirroring ....................................................................................... 8-12
Port Security .......................................................................................... 8-13
Virtual Local Area Networks (VLANs) ............................................................ 8-14
Dynamic VLAN Assignment ................................................................... 8-14
802.1x Guest VLAN ............................................................................... 8-16
VLAN Tagging ....................................................................................... 8-16
VLAN Membership of Untagged Packets ............................................... 8-19
Creating VLANs ..................................................................................... 8-20
Summary of VLAN Tagging Rules ........................................................... 8-22
VLAN Interaction with Trunk Groups ...................................................... 8-22
Static and Dynamic VLANs ..................................................................... 8-22
Protected VLANs ................................................................................... 8-23
Private VLANs ........................................................................................ 8-23
VLAN Relaying ............................................................................................. 8-25
Configuring VLAN Relaying ................................................................... 8-27
The Layer 2 Switching Process ...................................................................... 8-28
The Ingress Rules ................................................................................... 8-28
The Learning Process ............................................................................. 8-29
The Forwarding Process ......................................................................... 8-30
The Egress Rules .................................................................................... 8-30
Quality of Service .................................................................................. 8-31

Software Version 2.9.1


C613-03129-00 REV A
viii AlliedWare OS Software Reference

Layer 2 Filtering ........................................................................................... 8-31


Securing a Single VLAN through Switch Filters ....................................... 8-32
Hardware Packet Filters ................................................................................ 8-33
Classifier-Based Packet Filters ....................................................................... 8-34
Ordering Filter Entries ............................................................................ 8-35
Configuring Filters ................................................................................. 8-36
Filter Modes in 48-Port Switches ............................................................ 8-36
Layer 3 Based Packet Filters .......................................................................... 8-38
Layer 3 Filter Matches ............................................................................ 8-38
Layer 3 Filter Entries .............................................................................. 8-39
Access Control Lists (ACLs) ........................................................................... 8-39
Triggers ........................................................................................................ 8-40
Configuration Examples ............................................................................... 8-41
One Switch to Extend a Local LAN ......................................................... 8-41
VLAN with Untagged Ports .................................................................... 8-42
VLAN with Tagged Ports ........................................................................ 8-43
Meshed Network with VLAN Tagged Ports ............................................. 8-45
Command Reference ................................................................................... 8-49
activate switch port ............................................................................... 8-49
add lacp port ......................................................................................... 8-50
add switch filter .................................................................................... 8-52
add switch hwfilter classifier .................................................................. 8-54
add switch l3filter entry ......................................................................... 8-56
add switch l3filter match ....................................................................... 8-59
add switch trunk ................................................................................... 8-62
add vlan port ......................................................................................... 8-63
add vlanrelay ......................................................................................... 8-65
create switch trunk ................................................................................ 8-66
create vlan ............................................................................................ 8-68
create vlanrelay ..................................................................................... 8-69
delete lacp port ..................................................................................... 8-70
delete switch filter ................................................................................. 8-70
delete switch hwfilter classifier .............................................................. 8-71
delete switch l3filter .............................................................................. 8-71
delete switch l3filter entry ..................................................................... 8-72
delete switch trunk ................................................................................ 8-72
delete vlan port ..................................................................................... 8-73
delete vlanrelay ..................................................................................... 8-74
destroy switch trunk .............................................................................. 8-75
destroy vlan ........................................................................................... 8-75
destroy vlanrelay ................................................................................... 8-76
disable lacp ........................................................................................... 8-76
disable lacp debug ................................................................................ 8-77
disable switch ageingtimer .................................................................... 8-77
disable switch debug ............................................................................. 8-78
disable switch filter vlansecure ............................................................... 8-79
disable switch hwfilter ........................................................................... 8-79
disable switch l3filter ............................................................................. 8-80
disable switch learning .......................................................................... 8-80
disable switch mirror ............................................................................. 8-81
disable switch port ................................................................................ 8-81
disable vlan debug ................................................................................ 8-82
disable vlanrelay .................................................................................... 8-83
disable vlanrelay debug ......................................................................... 8-83
enable lacp ............................................................................................ 8-84
enable lacp debug ................................................................................. 8-84
enable switch ageingtimer ..................................................................... 8-85
enable switch bist .................................................................................. 8-86
enable switch debug ............................................................................. 8-87

Software Version 2.9.1


C613-03129-00 REV A
Contents ix

enable switch filter vlansecure ............................................................... 8-88


enable switch hwfilter ........................................................................... 8-88
enable switch l3filter ............................................................................. 8-89
enable switch learning .......................................................................... 8-89
enable switch mirror .............................................................................. 8-89
enable switch port ................................................................................. 8-90
enable vlan debug ................................................................................. 8-91
enable vlanrelay .................................................................................... 8-92
enable vlanrelay debug .......................................................................... 8-92
purge lacp ............................................................................................. 8-93
reset lacp port counter .......................................................................... 8-93
reset switch ........................................................................................... 8-93
reset switch port ................................................................................... 8-94
set lacp port .......................................................................................... 8-95
set lacp priority ...................................................................................... 8-96
set switch ageingtimer .......................................................................... 8-96
set switch hwfilter classifier ................................................................... 8-97
set switch hwfilter mode ....................................................................... 8-99
set switch l3ageingtimer ...................................................................... 8-100
set switch l3filter entry ........................................................................ 8-101
set switch l3filter match ...................................................................... 8-104
set switch mirror ................................................................................. 8-106
set switch port .................................................................................... 8-107
set switch qos ..................................................................................... 8-112
set switch trunk ................................................................................... 8-113
set vlan port ........................................................................................ 8-114
show lacp ............................................................................................ 8-115
show lacp port .................................................................................... 8-116
show lacp port counter ....................................................................... 8-118
show lacp trunk .................................................................................. 8-119
show switch ........................................................................................ 8-120
show switch counter ........................................................................... 8-122
show switch debug ............................................................................. 8-124
show switch fdb .................................................................................. 8-125
show switch filter ................................................................................ 8-127
show switch hwfilter ........................................................................... 8-129
show switch l3filter ............................................................................. 8-131
show switch port ................................................................................. 8-133
show switch port counter .................................................................... 8-136
show switch port intrusion .................................................................. 8-140
show switch qos .................................................................................. 8-141
show switch trunk ............................................................................... 8-142
show vlan ............................................................................................ 8-143
show vlan debug ................................................................................. 8-145
show vlanrelay .................................................................................... 8-146

CHAPTER 9 Spanning Trees


Introduction ................................................................................................... 9-3
Spanning Tree Protocol (STP) .......................................................................... 9-3
Multiple Spanning Trees and STP Interaction with VLANs ......................... 9-3
Spanning Tree Operation ......................................................................... 9-4
The Forwarding Process ........................................................................... 9-5
Electing a Root Bridge and Designated Bridge ......................................... 9-6
Spanning Tree Modes .............................................................................. 9-6
Rapid Mode Spanning Tree Types ............................................................. 9-7
Spanning Tree and Rapid Spanning Tree Port States ................................. 9-7
Configuring STP ...................................................................................... 9-8
Simple Meshed Network Example .......................................................... 9-12

Software Version 2.9.1


C613-03129-00 REV A
x AlliedWare OS Software Reference

Multiple Spanning Tree Protocol (MSTP) ....................................................... 9-13


Multiple Spanning Tree Regions ............................................................. 9-13
Bridge Protocol Data Units (BPDUs) ........................................................ 9-14
Compatibility with Previous Spanning Tree Protocols .............................. 9-16
Configuring MSTP ................................................................................. 9-17
Common and Internal Spanning Tree (CIST) ........................................... 9-23
The Relationship between Spanning Trees and Trunks ............................ 9-27
Command Reference ................................................................................... 9-28
activate mstp migrationcheck port ......................................................... 9-28
add mstp msti vlan ................................................................................ 9-29
add stp vlan .......................................................................................... 9-30
create mstp msti .................................................................................... 9-31
create stp .............................................................................................. 9-33
delete mstp msti vlan ............................................................................ 9-34
delete stp vlan ....................................................................................... 9-35
destroy mstp msti .................................................................................. 9-36
destroy stp ............................................................................................ 9-36
disable mstp .......................................................................................... 9-37
disable mstp cist port ............................................................................ 9-37
disable mstp debug ............................................................................... 9-38
disable mstp msti port ........................................................................... 9-39
disable mstp port .................................................................................. 9-40
disable stp ............................................................................................. 9-41
disable stp debug .................................................................................. 9-42
disable stp port ..................................................................................... 9-44
disable switch stpforward ...................................................................... 9-45
enable mstp .......................................................................................... 9-45
enable mstp cist port ............................................................................. 9-46
enable mstp debug ............................................................................... 9-47
enable mstp msti port ........................................................................... 9-49
enable mstp port ................................................................................... 9-50
enable stp ............................................................................................. 9-51
enable stp debug .................................................................................. 9-52
enable stp port ...................................................................................... 9-54
enable switch stpforward ...................................................................... 9-55
purge mstp ........................................................................................... 9-55
purge stp .............................................................................................. 9-56
reset mstp counter port ......................................................................... 9-56
reset stp ................................................................................................ 9-57
set mstp ................................................................................................ 9-58
set mstp cist .......................................................................................... 9-60
set mstp cist port ................................................................................... 9-61
set mstp msti ......................................................................................... 9-63
set mstp msti port ................................................................................. 9-64
set stp ................................................................................................... 9-66
set stp port ............................................................................................ 9-69
show mstp ............................................................................................ 9-73
show mstp cist ...................................................................................... 9-76
show mstp cist port ............................................................................... 9-78
show mstp counter port ........................................................................ 9-80
show mstp debug ................................................................................. 9-81
show mstp msti ..................................................................................... 9-82
show mstp msti port ............................................................................. 9-84
show stp ............................................................................................... 9-86
show stp counter .................................................................................. 9-90
show stp debug .................................................................................... 9-92
show stp port ........................................................................................ 9-93

Software Version 2.9.1


C613-03129-00 REV A
Contents xi

CHAPTER 10 Generic Attribute Registration Protocol (GARP)


Introduction ................................................................................................. 10-2
GARP Operations ......................................................................................... 10-2
Overview of Generic VLAN Registration Protocol (GVRP) .............................. 10-5
Configuring GARP ....................................................................................... 10-6
Command Reference ................................................................................... 10-8
disable garp .......................................................................................... 10-8
disable garp debug .............................................................................. 10-10
disable garp gip ................................................................................... 10-11
enable garp ......................................................................................... 10-12
enable garp debug .............................................................................. 10-13
enable garp gip ................................................................................... 10-15
reset garp ............................................................................................ 10-16
set garp port ....................................................................................... 10-17
set garp timer ...................................................................................... 10-19
show garp ........................................................................................... 10-21
show garp counter .............................................................................. 10-23
show garp db ...................................................................................... 10-26
show garp debug ................................................................................ 10-27
show garp gip ..................................................................................... 10-28
show garp machine ............................................................................. 10-29

CHAPTER 11 Interfaces
Introduction ................................................................................................. 11-2
Naming Interfaces ........................................................................................ 11-3
Simple Interface Names ......................................................................... 11-3
Ethernet ...................................................................................................... 11-4
Encapsulations ...................................................................................... 11-4
Asynchronous Interfaces .............................................................................. 11-6
Encapsulations ...................................................................................... 11-7
Configuration ........................................................................................ 11-8
Session Timeout .................................................................................. 11-10
Connecting a Modem to the Asynchronous Port ................................. 11-11
MIB Counters ...................................................................................... 11-11
Autobauding ....................................................................................... 11-12
Making Asynchronous Ports Respond More Quickly ............................. 11-13
Testing Serial Data Circuits ......................................................................... 11-13
Displaying Interfaces .................................................................................. 11-14
Interface Link Traps .................................................................................... 11-14
Managing Interfaces with SNMP ................................................................ 11-15
Command Reference ................................................................................. 11-16
connect asyn ....................................................................................... 11-16
disable asyn ......................................................................................... 11-17
disable interface linktrap ..................................................................... 11-18
enable asyn ......................................................................................... 11-19
enable interface linktrap ...................................................................... 11-20
purge asyn .......................................................................................... 11-21
reset asyn ............................................................................................ 11-21
reset asyn counter ............................................................................... 11-22
reset asyn history ................................................................................. 11-23
reset interface counters ....................................................................... 11-23
set asyn ............................................................................................... 11-24
set interface mtu ................................................................................. 11-29
set interface traplimit .......................................................................... 11-30
show asyn ........................................................................................... 11-31
show interface .................................................................................... 11-39

Software Version 2.9.1


C613-03129-00 REV A
xii AlliedWare OS Software Reference

CHAPTER 12 Point-to-Point Protocol (PPP)


Introduction ................................................................................................. 12-3
The Point-to-Point Protocol .......................................................................... 12-3
Encapsulation ........................................................................................ 12-3
Control Protocols .................................................................................. 12-5
LCP Options .......................................................................................... 12-6
Configuring PPP ........................................................................................... 12-6
Link Quality Management ............................................................................ 12-8
Multilink PPP ................................................................................................ 12-8
Bandwidth Allocation Protocol ..................................................................... 12-9
Dial-On-Demand ........................................................................................ 12-10
Link Backup ............................................................................................... 12-10
Bandwidth on Demand .............................................................................. 12-11
PPP Over Ethernet ...................................................................................... 12-12
PPP over Ethernet Client Mode ............................................................ 12-13
PPP over Ethernet Access Concentrator Mode ..................................... 12-13
Templates .................................................................................................. 12-14
PPP Callback .............................................................................................. 12-15
Magic Number ........................................................................................... 12-16
MSS Clamping ........................................................................................... 12-17
Overview ............................................................................................. 12-17
Example .............................................................................................. 12-18
Authentication Protocols ............................................................................ 12-19
Password Authentication Protocol (PAP) ............................................... 12-19
Challenge-Handshake Authentication Protocol (CHAP) ........................ 12-20
Switch configuration ........................................................................... 12-21
Assigning IP Addresses ............................................................................... 12-24
PPP Link Management ............................................................................... 12-25
Configuring PPP Control Protocols ............................................................. 12-26
Debugging PPP Links ................................................................................. 12-27
Configuration Examples ............................................................................. 12-30
Dial-on-Demand Links ......................................................................... 12-30
Link Quality Monitoring ....................................................................... 12-30
Command Reference ................................................................................. 12-31
activate ppp ........................................................................................ 12-31
add ppp .............................................................................................. 12-32
add ppp acservice ................................................................................ 12-35
create ppp ........................................................................................... 12-37
create ppp template ............................................................................ 12-43
delete ppp ........................................................................................... 12-49
delete ppp acservice ............................................................................ 12-50
destroy ppp ......................................................................................... 12-51
destroy ppp template .......................................................................... 12-51
disable ppp ......................................................................................... 12-52
disable ppp accessconcentrator ........................................................... 12-52
disable ppp debug ............................................................................... 12-53
disable ppp template debug ................................................................ 12-54
enable ppp .......................................................................................... 12-55
enable ppp accessconcentrator ............................................................ 12-56
enable ppp debug ............................................................................... 12-57
enable ppp template debug ................................................................ 12-59
purge ppp ........................................................................................... 12-60
reset ppp ............................................................................................. 12-61
set ppp ................................................................................................ 12-62
set ppp acservice ................................................................................. 12-68
set ppp template ................................................................................. 12-70
show ppp ............................................................................................ 12-76
show ppp config ................................................................................. 12-77
show ppp count .................................................................................. 12-83

Software Version 2.9.1


C613-03129-00 REV A
Contents xiii

show ppp debug ................................................................................. 12-95


show ppp idletimer ............................................................................. 12-96
show ppp limits ................................................................................... 12-97
show ppp multilink .............................................................................. 12-98
show ppp nameserver ....................................................................... 12-100
show ppp pppoe ............................................................................... 12-101
show ppp template ........................................................................... 12-103
show ppp txstatus ............................................................................. 12-107
show ppp utilisation .......................................................................... 12-109

CHAPTER 13 Asynchronous Call Control


Introduction ................................................................................................. 13-2
Call Definitions ............................................................................................ 13-2
Authenticating Incoming Calls ............................................................... 13-5
RADIUS Authentication ......................................................................... 13-5
RADIUS Accounting ............................................................................... 13-6
Using Modem Scripts ............................................................................ 13-7
Bidirectional Calls .................................................................................. 13-9
Interface with Higher Layers ......................................................................... 13-9
Using a Domain Name Server ..................................................................... 13-10
Configuration Examples ............................................................................. 13-11
Defining an ACC Call .......................................................................... 13-11
Assigning IP Addresses ........................................................................ 13-12
Dial-in IPX ........................................................................................... 13-13
Switch-to-Switch PPP ........................................................................... 13-13
Command Reference ................................................................................. 13-16
activate acc call ................................................................................... 13-16
add acc call ......................................................................................... 13-17
add acc domainname .......................................................................... 13-20
add acc script ...................................................................................... 13-21
deactivate acc call ............................................................................... 13-22
delete acc call ...................................................................................... 13-23
delete acc domainname ...................................................................... 13-23
delete acc script .................................................................................. 13-24
disable acc call .................................................................................... 13-24
disable acc call debug .......................................................................... 13-25
enable acc call ..................................................................................... 13-25
enable acc call debug .......................................................................... 13-26
purge acc ............................................................................................ 13-26
purge acc script ................................................................................... 13-27
set acc call ........................................................................................... 13-28
set acc call asyn ................................................................................... 13-31
set acc script ....................................................................................... 13-32
show acc ............................................................................................. 13-34
show acc call ....................................................................................... 13-35
show acc domainname ........................................................................ 13-38
show acc script .................................................................................... 13-39

CHAPTER 14 Layer Two Tunnelling Protocol (L2TP)


Introduction ................................................................................................. 14-3
Overview of L2TP ......................................................................................... 14-3
Overview of L2TP on the Switch ................................................................... 14-5
Enabling L2TP on the Switch ........................................................................ 14-6
Accepting Incoming Calls as an LAC ............................................................ 14-6
Accepting L2TP Sessions as an LNS .............................................................. 14-7
Creating a Call from an LNS to an LAC ........................................................ 14-8
Monitoring L2TP Connections ...................................................................... 14-9
Debugging L2TP Connections .................................................................... 14-10

Software Version 2.9.1


C613-03129-00 REV A
xiv AlliedWare OS Software Reference

Reflecting TOS onto L2TP-Tunnelled Packets .............................................. 14-11


Configuration Examples ............................................................................. 14-12
Inter-Switch Tunnels ............................................................................ 14-12
Simple Dial-In System .......................................................................... 14-14
Configure L2TP to Tunnel PPPoE Sessions ............................................ 14-15
Command Reference ................................................................................. 14-18
activate l2tp call .................................................................................. 14-18
add l2tp call ........................................................................................ 14-19
add l2tp ip .......................................................................................... 14-22
add l2tp password ............................................................................... 14-24
add l2tp user ....................................................................................... 14-25
deactivate l2tp call .............................................................................. 14-28
delete l2tp call ..................................................................................... 14-28
delete l2tp ip ....................................................................................... 14-29
delete l2tp password ........................................................................... 14-30
delete l2tp user ................................................................................... 14-31
disable l2tp ......................................................................................... 14-32
disable l2tp debug ............................................................................... 14-33
disable l2tp server ............................................................................... 14-34
enable l2tp .......................................................................................... 14-34
enable l2tp debug ............................................................................... 14-35
enable l2tp server ................................................................................ 14-39
reset l2tp counter ................................................................................ 14-39
set l2tp call .......................................................................................... 14-40
set l2tp checksum ............................................................................... 14-43
set l2tp filter ........................................................................................ 14-43
set l2tp password ................................................................................ 14-44
set l2tp user ........................................................................................ 14-45
show l2tp ............................................................................................ 14-48
show l2tp call ...................................................................................... 14-50
show l2tp counter ............................................................................... 14-52
show l2tp ip ........................................................................................ 14-55
show l2tp tunnel ................................................................................. 14-56
show l2tp tunnel call ........................................................................... 14-59
show l2tp tunnel call counter .............................................................. 14-63
show l2tp tunnel counter .................................................................... 14-65
show l2tp user .................................................................................... 14-67

CHAPTER 15 Overview of Layer 3


Introduction ................................................................................................. 15-2
Internet Protocol (IP) .................................................................................... 15-2
OSPF ............................................................................................................ 15-3
Routing Information Protocol (RIP) ............................................................... 15-4
IP Multicasting ............................................................................................. 15-4
Configuring IGMP ................................................................................. 15-5
Configuring Multicast Routing ............................................................... 15-5
Novell IPX .................................................................................................... 15-6
AppleTalk ..................................................................................................... 15-7

CHAPTER 16 Internet Protocol (IP)


Introduction ................................................................................................. 16-5
IP Packets .................................................................................................... 16-5
Addressing .................................................................................................. 16-7
Subnets ....................................................................................................... 16-8
Assigning an IP Address ............................................................................... 16-9
Multihoming .............................................................................................. 16-10
Local Interfaces .......................................................................................... 16-11
Address Resolution Protocol (ARP) .............................................................. 16-12

Software Version 2.9.1


C613-03129-00 REV A
Contents xv

Static ARP Entries ................................................................................ 16-12


Adding Static ARP Entries with Multicast MAC Addresses .................... 16-13
Timing Out ARP Entries ....................................................................... 16-14
Deleting ARP Entries ............................................................................ 16-15
Proxy ARP ............................................................................................ 16-17
MAC Address Logging ........................................................................ 16-17
Waiting for a Response to an ARP Request .......................................... 16-18
DHCP Client .............................................................................................. 16-18
ICMP ......................................................................................................... 16-19
ICMP Router Discovery Advertisements ...................................................... 16-20
Routing ..................................................................................................... 16-22
Types of Routes ................................................................................... 16-22
The Routing Table ................................................................................ 16-23
Configuring Static Routes .................................................................... 16-23
Caching Routes ................................................................................... 16-24
Dynamic Routing Protocols .................................................................. 16-24
Setting Preference of Dynamically-Learned Routes ............................... 16-25
Displaying Route Information .............................................................. 16-25
Routing Information Protocol (RIP) ............................................................. 16-26
Open Shortest Path First (OSPF) .................................................................. 16-26
Border Gateway Protocol (BGP) .................................................................. 16-26
Metrics ...................................................................................................... 16-26
OSPF Auto Cost Calculation ................................................................ 16-26
Policy-Based Routing .................................................................................. 16-27
Priority-Based Routing ................................................................................ 16-28
Route Templates ........................................................................................ 16-29
Domain Name System (DNS) ...................................................................... 16-30
Usage of Domain Name Servers ........................................................... 16-30
Configuring Domain Name Servers ...................................................... 16-31
DNS Caching ....................................................................................... 16-33
Named Hosts ....................................................................................... 16-34
Traffic Filters .............................................................................................. 16-34
SNMP ........................................................................................................ 16-36
Control and Debug Commands ................................................................. 16-37
Ping and Trace Route ................................................................................. 16-38
Ping .................................................................................................... 16-38
Trace Route ......................................................................................... 16-38
Finger ........................................................................................................ 16-39
Security Options ........................................................................................ 16-39
Security Associations .................................................................................. 16-40
Broadcast Forwarding ................................................................................ 16-41
IP Multicasting ........................................................................................... 16-44
Static Multicast Forwarding ................................................................. 16-45
Remote Address Assignment ...................................................................... 16-45
IP Address Pools ......................................................................................... 16-46
Configuration Examples ............................................................................. 16-47
Basic IP Setup over PPP ........................................................................ 16-47
Configuring IP Filters ........................................................................... 16-50
Troubleshooting ......................................................................................... 16-55
No Route Exists to the Remote Switch ................................................. 16-55
Getting an IP Address from DHCP ........................................................ 16-56
Telnet Fails ........................................................................................... 16-57
Command Reference ................................................................................. 16-58
add ip advertise interface .................................................................... 16-58
add ip arp ........................................................................................... 16-60
add ip dns ........................................................................................... 16-62
add ip filter ......................................................................................... 16-64
add ip helper ....................................................................................... 16-71
add ip host .......................................................................................... 16-72

Software Version 2.9.1


C613-03129-00 REV A
xvi AlliedWare OS Software Reference

add ip interface ................................................................................... 16-73


add ip local ......................................................................................... 16-78
add ip route ........................................................................................ 16-79
add ip route template .......................................................................... 16-81
add ip sa ............................................................................................. 16-82
create ip pool ...................................................................................... 16-83
delete ip advertise interface ................................................................. 16-83
delete ip arp ........................................................................................ 16-84
delete ip dns ....................................................................................... 16-84
delete ip filter ...................................................................................... 16-85
delete ip helper ................................................................................... 16-86
delete ip host ...................................................................................... 16-87
delete ip interface ............................................................................... 16-88
delete ip local ...................................................................................... 16-89
delete ip route ..................................................................................... 16-90
delete ip route template ...................................................................... 16-91
delete ip sa .......................................................................................... 16-92
delete tcp ............................................................................................ 16-93
destroy ip pool .................................................................................... 16-93
disable ip ............................................................................................. 16-94
disable ip advertise .............................................................................. 16-94
disable ip arp agepoll .......................................................................... 16-95
disable ip arp log ................................................................................. 16-95
disable ip debug .................................................................................. 16-95
disable ip dnsrelay ............................................................................... 16-96
disable ip echoreply ............................................................................. 16-96
disable ip fofilter ................................................................................. 16-97
disable ip forwarding ........................................................................... 16-98
disable ip helper .................................................................................. 16-98
disable ip icmpreply ............................................................................. 16-99
disable ip interface ............................................................................ 16-100
disable ip macdisparity ...................................................................... 16-101
disable ip remoteassign ..................................................................... 16-101
disable ip route ................................................................................. 16-102
disable ip spoofcheck ........................................................................ 16-102
disable ip srcroute ............................................................................. 16-103
disable tcp debug .............................................................................. 16-104
disable telnet server ........................................................................... 16-104
enable ip ........................................................................................... 16-105
enable ip advertise ............................................................................ 16-105
enable ip arp agepoll ......................................................................... 16-106
enable ip arp log ............................................................................... 16-106
enable ip debug ................................................................................ 16-107
enable ip dnsrelay ............................................................................. 16-108
enable ip echoreply ........................................................................... 16-108
enable ip fofilter ................................................................................ 16-109
enable ip forwarding ......................................................................... 16-110
enable ip helper ................................................................................ 16-110
enable ip icmpreply ........................................................................... 16-111
enable ip interface ............................................................................. 16-111
enable ip macdisparity ....................................................................... 16-112
enable ip remoteassign ...................................................................... 16-113
enable ip route .................................................................................. 16-113
enable ip spoofcheck ......................................................................... 16-114
enable ip srcroute .............................................................................. 16-114
enable tcp debug .............................................................................. 16-115
enable telnet server ........................................................................... 16-115
finger ................................................................................................ 16-116
ping .................................................................................................. 16-117

Software Version 2.9.1


C613-03129-00 REV A
Contents xvii

purge ip ............................................................................................ 16-119


reset ip .............................................................................................. 16-120
reset ip counter ................................................................................. 16-120
reset ip interface ............................................................................... 16-121
set ip advertise interface .................................................................... 16-122
set ip arp ........................................................................................... 16-123
set ip arp refresharp .......................................................................... 16-124
set ip arp timeout .............................................................................. 16-124
set ip arpwaittimeout ........................................................................ 16-125
set ip dns .......................................................................................... 16-126
set ip dns cache ................................................................................. 16-128
set ip dnsrelay ................................................................................... 16-129
set ip filter ......................................................................................... 16-130
set ip host ......................................................................................... 16-134
set ip interface .................................................................................. 16-135
set ip local ......................................................................................... 16-140
set ip nameserver .............................................................................. 16-142
set ip route ........................................................................................ 16-143
set ip route preference ...................................................................... 16-145
set ip route template ......................................................................... 16-147
set ip secondarynameserver ............................................................... 16-148
set ping ............................................................................................. 16-149
set trace ............................................................................................ 16-152
show ip ............................................................................................. 16-154
show ip advertise .............................................................................. 16-158
show ip arp ....................................................................................... 16-159
show ip cache ................................................................................... 16-160
show ip counter ................................................................................ 16-161
show ip debug .................................................................................. 16-169
show ip dns ....................................................................................... 16-170
show ip dns cache ............................................................................. 16-172
show ip filter ..................................................................................... 16-173
show ip helper .................................................................................. 16-175
show ip host ..................................................................................... 16-177
show ip icmpreply ............................................................................. 16-178
show ip interface ............................................................................... 16-179
show ip pool ..................................................................................... 16-183
show ip route .................................................................................... 16-185
show ip route multicast ..................................................................... 16-189
show ip route preference ................................................................... 16-190
show ip route template ..................................................................... 16-191
show ip sa ......................................................................................... 16-193
show ip udp ...................................................................................... 16-194
show ping ......................................................................................... 16-196
show tcp ........................................................................................... 16-198
show trace ........................................................................................ 16-203
stop ping ........................................................................................... 16-204
stop trace .......................................................................................... 16-205
trace ................................................................................................. 16-206

CHAPTER 17 Dynamic Host Configuration Protocol (DHCP)


Introduction ................................................................................................. 17-2
Configuring the DHCP Server ....................................................................... 17-3
BOOTP Relay Agent ..................................................................................... 17-4
DHCP Option 82 Relay ................................................................................. 17-6
Configuring the DHCP Client ....................................................................... 17-6
DHC Files ..................................................................................................... 17-6
Configuration Example ................................................................................ 17-7

Software Version 2.9.1


C613-03129-00 REV A
xviii AlliedWare OS Software Reference

Troubleshooting ........................................................................................... 17-8


Command Reference ................................................................................... 17-9
add bootp relay ..................................................................................... 17-9
add dhcp option .................................................................................. 17-11
add dhcp policy ................................................................................... 17-13
add dhcp range ................................................................................... 17-19
create dhcp policy ............................................................................... 17-20
create dhcp range ............................................................................... 17-21
delete bootp relay ............................................................................... 17-22
delete dhcp option .............................................................................. 17-23
delete dhcp policy ............................................................................... 17-24
delete dhcp range ............................................................................... 17-28
destroy dhcp policy ............................................................................. 17-29
destroy dhcp range ............................................................................. 17-29
disable bootp relay .............................................................................. 17-30
disable bootp relay option82 ............................................................... 17-30
disable dhcp ........................................................................................ 17-31
disable dhcp debug ............................................................................. 17-31
enable bootp relay .............................................................................. 17-32
enable bootp relay option82 ............................................................... 17-32
enable dhcp ........................................................................................ 17-33
enable dhcp debug ............................................................................. 17-33
purge bootp relay ................................................................................ 17-34
set bootp relay maxhops ..................................................................... 17-34
set bootp relay option82 ..................................................................... 17-35
set bootp relay option82 port .............................................................. 17-36
set dhcp .............................................................................................. 17-37
set dhcp option ................................................................................... 17-38
set dhcp policy .................................................................................... 17-40
set dhcp range .................................................................................... 17-46
show bootp relay ................................................................................ 17-47
show bootp relay port ......................................................................... 17-49
show dhcp .......................................................................................... 17-50
show dhcp client ................................................................................. 17-52
show dhcp policy ................................................................................ 17-54
show dhcp range ................................................................................ 17-56

CHAPTER 18 DHCP Snooping


Introduction ................................................................................................. 18-2
The Binding Database ............................................................................ 18-2
DHCP Filtering ....................................................................................... 18-4
DHCP Option 82 ................................................................................... 18-4
DHCP Snooping ARP Security ................................................................ 18-5
Configuration Examples ............................................................................... 18-5
Command Reference ................................................................................... 18-6
add dhcpsnooping binding .................................................................... 18-6
delete dhcpsnooping binding ................................................................ 18-7
disable dhcpsnooping ............................................................................ 18-7
disable dhcpsnooping arpsecurity .......................................................... 18-8
disable dhcpsnooping debug ................................................................. 18-8
disable dhcpsnooping option82 ............................................................. 18-9
disable dhcpsnooping strictunicast ........................................................ 18-9
enable dhcpsnooping .......................................................................... 18-10
enable dhcpsnooping arpsecurity ........................................................ 18-10
enable dhcpsnooping debug ............................................................... 18-11
enable dhcpsnooping option82 ........................................................... 18-12
enable dhcpsnooping strictunicast ....................................................... 18-12
set dhcpsnooping checkinterval ........................................................... 18-13

Software Version 2.9.1


C613-03129-00 REV A
Contents xix

set dhcpsnooping port ........................................................................ 18-14


show dhcpsnooping ............................................................................ 18-16
show dhcpsnooping counter ............................................................... 18-17
show dhcpsnooping database ............................................................. 18-18
show dhcpsnooping filter .................................................................... 18-20
show dhcpsnooping port ..................................................................... 18-21

CHAPTER 19 MAC-Forced Forwarding


Introduction ................................................................................................. 19-2
Overview ..................................................................................................... 19-2
Configuring an Ethernet Access Node .......................................................... 19-3
Monitoring and Troubleshooting .................................................................. 19-6
Debugging ............................................................................................ 19-6
Logging ................................................................................................. 19-7
Configuration Examples ............................................................................... 19-7
Command Reference ................................................................................... 19-8
add macff server ................................................................................... 19-8
delete macff server ................................................................................ 19-9
disable macff interface ........................................................................ 19-10
disable macff interface debug ............................................................. 19-11
enable macff interface ......................................................................... 19-12
enable macff interface debug .............................................................. 19-13
reset macff counter ............................................................................. 19-14
set macff server ................................................................................... 19-14
show macff ......................................................................................... 19-16
show macff database .......................................................................... 19-19
show macff interface ........................................................................... 19-21
show macff interface counter .............................................................. 19-23

CHAPTER 20 IP Multicasting
Introduction ................................................................................................. 20-4
References ................................................................................................... 20-4
IP Multicast Routing ..................................................................................... 20-5
Interoperability between Multicast Routing Protocols ................................... 20-6
Distance Vector Multicast Routing Protocol (DVMRP) .................................... 20-6
Configuring DVMRP .............................................................................. 20-7
Protocol Independent Multicast (PIM) ........................................................... 20-8
PIM Dense Mode ................................................................................... 20-9
PIM Sparse Mode ................................................................................ 20-11
Internet Group Management Protocol (IGMP) ............................................ 20-19
Configuring IGMP ............................................................................... 20-19
Static IGMP ......................................................................................... 20-20
IGMP Proxy ......................................................................................... 20-22
IGMP Snooping ................................................................................... 20-24
IGMP Filtering ..................................................................................... 20-28
IGMP Throttling ................................................................................... 20-30
Multicast Switching ................................................................................... 20-30
Multicast VLAN Registration (MVR) ............................................................ 20-31
Dynamic MVR ..................................................................................... 20-31
Compatible MVR ................................................................................. 20-31
Immediate Leave ................................................................................. 20-31
Configuring MVR ................................................................................ 20-32
Configuration Examples ............................................................................. 20-33
Static IGMP ......................................................................................... 20-33
Multicasting using DVMRP .................................................................. 20-33
Protocol Independent Multicast (PIM) .................................................. 20-37

Software Version 2.9.1


C613-03129-00 REV A
xx AlliedWare OS Software Reference

Command Reference ................................................................................. 20-45


add dvmrp interface ............................................................................ 20-45
add igmp filter .................................................................................... 20-46
add igmpsnooping routeraddress ........................................................ 20-47
add igmpsnooping vlan ....................................................................... 20-48
add ip igmp destination ....................................................................... 20-49
add ip mvr ........................................................................................... 20-50
add pim bsrcandidate .......................................................................... 20-51
add pim interface ................................................................................ 20-52
add pim rpcandidate ........................................................................... 20-54
create igmp filter ................................................................................. 20-55
create ip igmp destination ................................................................... 20-56
create ip mvr ....................................................................................... 20-57
delete dvmrp interface ........................................................................ 20-58
delete igmp filter ................................................................................. 20-59
delete igmpsnooping routeraddress ..................................................... 20-59
delete igmpsnooping vlan ................................................................... 20-60
delete ip igmp destination ................................................................... 20-61
delete ip mvr ....................................................................................... 20-62
delete pim bsrcandidate ...................................................................... 20-62
delete pim interface ............................................................................ 20-63
delete pim rpcandidate ........................................................................ 20-64
destroy igmp filter ............................................................................... 20-65
destroy ip igmp destination ................................................................. 20-65
destroy ip mvr ..................................................................................... 20-66
disable dvmrp ...................................................................................... 20-66
disable dvmrp debug ........................................................................... 20-67
disable igmpsnooping ......................................................................... 20-68
disable ip igmp .................................................................................... 20-68
disable ip igmp allgroup ...................................................................... 20-69
disable ip igmp debug ......................................................................... 20-69
disable ip igmp interface ..................................................................... 20-70
disable ip multicastswitching ............................................................... 20-70
disable ip mvr ...................................................................................... 20-71
disable ip mvr debug ........................................................................... 20-71
disable pim .......................................................................................... 20-71
disable pim bsmsecuritycheck .............................................................. 20-72
disable pim debug ............................................................................... 20-72
enable dvmrp ...................................................................................... 20-73
enable dvmrp debug ........................................................................... 20-74
enable igmpsnooping .......................................................................... 20-75
enable ip igmp .................................................................................... 20-75
enable ip igmp allgroup ....................................................................... 20-76
enable ip igmp debug ......................................................................... 20-76
enable ip igmp interface ...................................................................... 20-77
enable ip multicastswitching ................................................................ 20-77
enable ip mvr ...................................................................................... 20-78
enable ip mvr debug ........................................................................... 20-78
enable pim .......................................................................................... 20-79
enable pim bsmsecuritycheck .............................................................. 20-79
enable pim debug ............................................................................... 20-80
purge dvmrp ....................................................................................... 20-81
purge pim ........................................................................................... 20-81
reset dvmrp interface .......................................................................... 20-82
reset pim interface .............................................................................. 20-83
set dvmrp interface ............................................................................. 20-84
set igmp filter ...................................................................................... 20-85
set igmpsnooping vlan ........................................................................ 20-86
set igmpsnooping routermode ............................................................ 20-87

Software Version 2.9.1


C613-03129-00 REV A
Contents xxi

set ip igmp .......................................................................................... 20-88


set ip igmp interface ............................................................................ 20-89
set ip mvr ............................................................................................ 20-90
set pim ................................................................................................ 20-91
set pim log .......................................................................................... 20-92
set pim bsrcandidate ........................................................................... 20-93
set pim interface ................................................................................. 20-94
set pim rpcandidate ............................................................................. 20-96
show dvmrp ........................................................................................ 20-97
show dvmrp counters .......................................................................... 20-98
show dvmrp debug ............................................................................. 20-99
show dvmrp forwarding .................................................................... 20-100
show dvmrp interface ........................................................................ 20-101
show dvmrp neighbour ..................................................................... 20-102
show dvmrp route ............................................................................. 20-103
show igmp filter ................................................................................ 20-104
show igmpsnooping .......................................................................... 20-106
show igmpsnooping counter ............................................................. 20-108
show igmpsnooping routeraddress .................................................... 20-110
show ip igmp .................................................................................... 20-111
show ip igmp counter ....................................................................... 20-114
show ip igmp debug ......................................................................... 20-117
show ip mvr ...................................................................................... 20-118
show ip mvr counter ......................................................................... 20-119
show pim .......................................................................................... 20-120
show pim bsrcandidate ..................................................................... 20-121
show pim config ............................................................................... 20-122
show pim counters ............................................................................ 20-123
show pim debug ............................................................................... 20-127
show pim interface ............................................................................ 20-128
show pim neighbour ......................................................................... 20-130
show pim route ................................................................................. 20-131
show pim rpcandidate ....................................................................... 20-137
show pim rpset ................................................................................. 20-138
show pim staterefresh ....................................................................... 20-140
show pim timer ................................................................................. 20-141

CHAPTER 21 Routing Information Protocol (RIP)


Introduction ................................................................................................. 21-2
Configuring RIP ........................................................................................... 21-3
Redistributing Routes into RIP ...................................................................... 21-4
Statically-Configured Routes .................................................................. 21-4
BGP Routes ........................................................................................... 21-4
Configuration Example ................................................................................ 21-5
Command Reference ................................................................................... 21-7
add ip rip interface ................................................................................ 21-7
add ip rip redistribute .......................................................................... 21-10
add ip trusted ...................................................................................... 21-11
delete ip rip interface .......................................................................... 21-12
delete ip rip redistribute ...................................................................... 21-13
delete ip trusted .................................................................................. 21-13
set ip rip interface ............................................................................... 21-14
set ip rip redistribute ........................................................................... 21-17
set ip riptimer ...................................................................................... 21-18
show ip rip .......................................................................................... 21-19
show ip rip counter ............................................................................. 21-21
show ip rip redistribute ........................................................................ 21-23
show ip riptimer .................................................................................. 21-24
show ip trusted ................................................................................... 21-25

Software Version 2.9.1


C613-03129-00 REV A
xxii AlliedWare OS Software Reference

CHAPTER 22 Open Shortest Path First (OSPF)


Introduction ................................................................................................. 22-3
OSPF Features .............................................................................................. 22-3
Adjacency and Designated Routers .............................................................. 22-5
Link State Advertisements ............................................................................ 22-5
OSPF Packet Types ....................................................................................... 22-6
OSPF States ................................................................................................. 22-7
Automatic Cost Calculation ................................................................... 22-8
Routing with OSPF ....................................................................................... 22-9
Filtering OSPF Routes ................................................................................... 22-9
Addressless Interfaces ................................................................................ 22-10
Network Types ........................................................................................... 22-10
Passive Interfaces ....................................................................................... 22-12
Authenticating OSPF .................................................................................. 22-13
Password Authentication ..................................................................... 22-13
Cryptographic Authentication ............................................................. 22-13
Exchanging Information Between OSPF and RIP ......................................... 22-14
Importing BGP routes into OSPF ................................................................. 22-15
Redistributing External Routes .................................................................... 22-15
Summarising Routes for Redistribution ....................................................... 22-17
OSPF On-Demand Circuits .......................................................................... 22-18
Configuration Examples ............................................................................. 22-20
Basic OSPF Network ............................................................................ 22-20
OSPF Network with Addressless PPP Links ............................................ 22-21
OSPF Network with Virtual Links .......................................................... 22-23
Command Reference ................................................................................. 22-26
add ospf area ...................................................................................... 22-27
add ospf host ...................................................................................... 22-29
add ospf interface ............................................................................... 22-30
add ospf md5key ................................................................................ 22-34
add ospf neighbour ............................................................................. 22-35
add ospf range .................................................................................... 22-36
add ospf redistribute ........................................................................... 22-37
add ospf stub ...................................................................................... 22-39
add ospf summaryaddress ................................................................... 22-40
delete ospf area .................................................................................. 22-41
delete ospf host .................................................................................. 22-41
delete ospf interface ............................................................................ 22-42
delete ospf md5key ............................................................................. 22-43
delete ospf neighbour ......................................................................... 22-44
delete ospf range ................................................................................ 22-44
delete ospf redistribute ........................................................................ 22-45
delete ospf stub .................................................................................. 22-46
delete ospf summaryaddress ............................................................... 22-47
disable ospf ......................................................................................... 22-47
disable ospf debug .............................................................................. 22-48
disable ospf interface .......................................................................... 22-49
disable ospf log ................................................................................... 22-49
enable ospf ......................................................................................... 22-50
enable ospf debug .............................................................................. 22-50
enable ospf interface ........................................................................... 22-51
enable ospf log ................................................................................... 22-52
purge ospf .......................................................................................... 22-53
reset ospf ............................................................................................ 22-53
reset ospf counter ............................................................................... 22-54
reset ospf interface .............................................................................. 22-55
reset ospf spf ...................................................................................... 22-56
set ospf ............................................................................................... 22-57
set ospf area ....................................................................................... 22-61

Software Version 2.9.1


C613-03129-00 REV A
Contents xxiii

set ospf host ....................................................................................... 22-63


set ospf interface ................................................................................. 22-64
set ospf neighbour .............................................................................. 22-68
set ospf range ..................................................................................... 22-69
set ospf redistribute ............................................................................. 22-70
set ospf stub ....................................................................................... 22-72
set ospf summaryaddress .................................................................... 22-73
show ospf ........................................................................................... 22-74
show ospf area .................................................................................... 22-77
show ospf debug ................................................................................ 22-80
show ospf host .................................................................................... 22-81
show ospf interface ............................................................................. 22-83
show ospf lsa ...................................................................................... 22-88
show ospf md5key .............................................................................. 22-93
show ospf neighbour .......................................................................... 22-94
show ospf range ................................................................................. 22-95
show ospf redistribute ......................................................................... 22-97
show ospf route .................................................................................. 22-98
show ospf stub .................................................................................. 22-100
show ospf summaryaddress ............................................................... 22-101

CHAPTER 23 Border Gateway Protocol version 4 (BGP-4)


Introduction ................................................................................................. 23-3
Overview of BGP-4 ...................................................................................... 23-3
BGP Operation ............................................................................................. 23-5
BGP Attributes ...................................................................................... 23-6
BGP Route Selection .............................................................................. 23-8
Classless Inter-domain Routing (CIDR) and Aggregation ......................... 23-9
BGP Multi-Homing ..................................................................................... 23-10
BGP Route Filtering .................................................................................... 23-13
AS Confederations ..................................................................................... 23-13
Triggers ...................................................................................................... 23-14
Redistributing BGP Routes ......................................................................... 23-15
Configuring BGP Peers ............................................................................... 23-16
How to Create a Basic BGP AS ............................................................ 23-16
How to Create BGP Peers Using Peer Templates ................................... 23-20
How to Modify BGP Peers (Without Templates) .................................... 23-21
How to Use a Template to Modify BGP Peers ....................................... 23-22
How to Modify BGP Peers that Use a Template .................................... 23-23
How to Delete BGP Peers .................................................................... 23-23
Optimising BGP ......................................................................................... 23-24
How to Minimise the Impact of Unstable EBGP Routes ........................ 23-24
How to Withdraw Routes As Soon As they Fail .................................... 23-29
How to Advertise as Few Routes as Possible ........................................ 23-30
How to Improve IBGP Scalability .......................................................... 23-33
How to Handle Spikes in Memory Use ................................................. 23-38
How to Stop BGP from Overloading System Memory ........................... 23-39
How to Avoid Leaking Private AS Numbers into Global BGP Tables ...... 23-40
How to Set the IP Address that Identifies the Switch ............................ 23-41
Configuration Examples ............................................................................. 23-42
Basic BGP Configuration ...................................................................... 23-42
Advanced BGP Configuration .............................................................. 23-44
Command Reference ................................................................................. 23-47
add bgp aggregate .............................................................................. 23-47
add bgp confederationpeer ................................................................. 23-49
add bgp import ................................................................................... 23-50
add bgp network ................................................................................ 23-51
add bgp peer ...................................................................................... 23-52

Software Version 2.9.1


C613-03129-00 REV A
xxiv AlliedWare OS Software Reference

add bgp peertemplate ......................................................................... 23-60


create bgp damping parameterset ....................................................... 23-66
delete bgp aggregate .......................................................................... 23-68
delete bgp confederationpeer ............................................................. 23-69
delete bgp import ............................................................................... 23-69
delete bgp network ............................................................................. 23-70
delete bgp peer ................................................................................... 23-70
delete bgp peertemplate ..................................................................... 23-71
destroy bgp damping parameterset ..................................................... 23-71
disable bgp autosoftupdate ................................................................. 23-72
disable bgp autosummary ................................................................... 23-72
disable bgp backoff ............................................................................. 23-73
disable bgp damping ........................................................................... 23-73
disable bgp debug ............................................................................... 23-74
disable bgp defaultoriginate ................................................................ 23-75
disable bgp peer .................................................................................. 23-75
enable bgp autosoftupdate ................................................................. 23-76
enable bgp autosummary .................................................................... 23-76
enable bgp backoff ............................................................................. 23-77
enable bgp damping ........................................................................... 23-78
enable bgp debug ............................................................................... 23-79
enable bgp defaultoriginate ................................................................ 23-80
enable bgp peer .................................................................................. 23-81
purge bgp damping ............................................................................ 23-81
reset bgp damping .............................................................................. 23-82
reset bgp peer ..................................................................................... 23-82
reset bgp peer soft .............................................................................. 23-83
set bgp ................................................................................................ 23-84
set bgp aggregate ............................................................................... 23-86
set bgp backoff ................................................................................... 23-87
set bgp damping parameterset ............................................................ 23-89
set bgp import .................................................................................... 23-91
set bgp memlimit ................................................................................ 23-92
set bgp peer ........................................................................................ 23-93
set bgp peertemplate ........................................................................ 23-101
set ip autonomous ............................................................................ 23-106
show bgp .......................................................................................... 23-107
show bgp aggregate ......................................................................... 23-109
show bgp confederation ................................................................... 23-110
show bgp backoff ............................................................................. 23-111
show bgp counters ............................................................................ 23-113
show bgp damping ........................................................................... 23-117
show bgp damping routes ................................................................. 23-119
show bgp import ............................................................................... 23-120
show bgp memlimit .......................................................................... 23-121
show bgp memlimit scan ................................................................... 23-122
show bgp network ............................................................................ 23-125
show bgp peer .................................................................................. 23-126
show bgp peertemplate .................................................................... 23-131
show bgp route ................................................................................. 23-133

CHAPTER 24 Filtering IP Routes


Introduction ................................................................................................. 24-3
Types of Filters ............................................................................................. 24-4
About Prefix Lists ................................................................................... 24-4
About AS Path Lists ............................................................................... 24-5
About Route Maps ................................................................................ 24-5
About IP Route Filters ............................................................................ 24-7

Software Version 2.9.1


C613-03129-00 REV A
Contents xxv

About IP Filters ...................................................................................... 24-8


Creating Filters ............................................................................................. 24-9
Creating Prefix Lists ............................................................................... 24-9
Creating AS Path Lists for BGP Routes ................................................... 24-9
Creating Route Maps for BGP Routes .................................................. 24-10
Creating Route Maps for OSPF Routes ................................................. 24-16
Creating Route Maps for Redistributing BGP Routes into RIP ............... 24-19
Creating IP Route Filters ...................................................................... 24-21
Creating IP Filters ................................................................................ 24-21
Applying Filters .......................................................................................... 24-22
Applying Filters When Writing to the RIB ............................................. 24-22
Applying Filters When Redistributing from the RIB ............................... 24-24
Applying Filters Before Advertising Routes ........................................... 24-27
Overview of Filters for each Route Source .................................................. 24-29
Border Gateway Protocol (BGP-4) ........................................................ 24-29
Open Shortest Path First (OSPF) ........................................................... 24-30
Routing Information Protocol (RIP) ....................................................... 24-32
Interface Routes .................................................................................. 24-33
Statically-Configured Routes ................................................................ 24-33
Configuration Examples ............................................................................. 24-34
Filtering When Writing BGP Routes to the RIB: Using an AS Path Filter . 24-34
Filtering When Writing BGP Routes to the RIB: Using a Route Map ...... 24-35
Filtering Before Advertising Routes with BGP: Using an AS Path Filter .. 24-36
Filtering Before Advertising Routes with BGP: Using a Route Map ........ 24-37
Filtering Inbound and Outbound BGP Routes: Using Communities ....... 24-38
Filtering When Importing Routes from BGP to OSPF ............................ 24-39
Command Reference ................................................................................. 24-40
add ip aspathlist .................................................................................. 24-40
add ip communitylist ........................................................................... 24-42
add ip prefixlist .................................................................................... 24-44
add ip route filter ................................................................................ 24-46
add ip routemap ................................................................................. 24-49
delete ip aspathlist .............................................................................. 24-56
delete ip communitylist ....................................................................... 24-57
delete ip prefixlist ................................................................................ 24-57
delete ip route filter ............................................................................. 24-58
delete ip routemap .............................................................................. 24-59
set ip prefixlist ..................................................................................... 24-61
set ip route filter .................................................................................. 24-63
set ip routemap ................................................................................... 24-66
show ip aspathlist ................................................................................ 24-73
show ip communitylist ......................................................................... 24-74
show ip prefixlist ................................................................................. 24-75
show ip route filter .............................................................................. 24-76
show ip routemap ............................................................................... 24-77

CHAPTER 25 Generic Routing Encapsulation (GRE)


Introduction ................................................................................................. 25-2
GRE on the Switch ....................................................................................... 25-3
Configuration Examples ............................................................................... 25-5
Basic Configuration ............................................................................... 25-5
Multi-Point Configuration ...................................................................... 25-6
Command Reference ................................................................................. 25-11
add gre ............................................................................................... 25-11
add gre tunnel .................................................................................... 25-13
delete gre ............................................................................................ 25-14
delete gre tunnel ................................................................................. 25-14
disable gre .......................................................................................... 25-15

Software Version 2.9.1


C613-03129-00 REV A
xxvi AlliedWare OS Software Reference

disable gre debug ................................................................................ 25-15


enable gre ........................................................................................... 25-15
enable gre debug ................................................................................ 25-16
purge gre ............................................................................................ 25-16
reset gre .............................................................................................. 25-17
set gre ................................................................................................. 25-18
set gre tunnel ...................................................................................... 25-20
show gre ............................................................................................. 25-21
show gre general ................................................................................ 25-22
show gre tunnel .................................................................................. 25-23

CHAPTER 26 Internet Protocol version 6 (IPv6)


Introduction ................................................................................................. 26-3
Overview of IPv6 .......................................................................................... 26-3
The 6bone ............................................................................................. 26-4
IPv6 Addresses and Prefixes ................................................................... 26-4
IPv6 Headers ......................................................................................... 26-5
The Internet Control Message Protocol (ICMPv6) ................................... 26-8
IPv6 Routing ........................................................................................ 26-11
IPv6 Filtering ........................................................................................ 26-12
Integration of IPv4 and IPv6 ................................................................. 26-12
IPv6 on the Switch ..................................................................................... 26-12
Enabling IPv6 ....................................................................................... 26-13
IPv6 Interfaces and Addresses .............................................................. 26-13
Extension Header Processing ............................................................... 26-15
Routing Table Processing and RIPv6 ..................................................... 26-15
Neighbour Discovery ........................................................................... 26-16
IPv6 Filtering ........................................................................................ 26-17
IPv6 Fragmentation ............................................................................. 26-18
Telnet v6 ............................................................................................. 26-18
Ping .................................................................................................... 26-19
Secure Shell ......................................................................................... 26-20
Tunnelling IPv6 Packets over IPv4 ............................................................... 26-20
Configuration Examples ............................................................................. 26-23
Basic Routing ...................................................................................... 26-23
Dynamic Routing with RIPv6 ................................................................ 26-24
Dynamic (6-to-4) Tunnelling over an IPv4 Network ............................... 26-28
Static Tunnelling over an IPv4 Network ................................................ 26-31
IPv6 Filters ........................................................................................... 26-33
Command Reference ................................................................................. 26-35
add ipv6 6to4 ...................................................................................... 26-35
add ipv6 filter ...................................................................................... 26-36
add ipv6 host ...................................................................................... 26-41
add ipv6 interface ............................................................................... 26-42
add ipv6 nd ......................................................................................... 26-45
add ipv6 prefix .................................................................................... 26-46
add ipv6 rip ......................................................................................... 26-47
add ipv6 route ..................................................................................... 26-48
add ipv6 tunnel ................................................................................... 26-49
create ipv6 interface ............................................................................ 26-50
delete ipv6 6to4 .................................................................................. 26-51
delete ipv6 filter .................................................................................. 26-51
delete ipv6 host ................................................................................... 26-52
delete ipv6 interface ............................................................................ 26-52
delete ipv6 nd ..................................................................................... 26-53
delete ipv6 prefix ................................................................................. 26-54
delete ipv6 rip ..................................................................................... 26-55
delete ipv6 route ................................................................................. 26-56

Software Version 2.9.1


C613-03129-00 REV A
Contents xxvii

delete ipv6 tunnel ............................................................................... 26-57


destroy ipv6 interface .......................................................................... 26-58
disable ipv6 ......................................................................................... 26-58
disable ipv6 advertise .......................................................................... 26-59
disable ipv6 debug .............................................................................. 26-59
disable ipv6 mtudiscovery .................................................................... 26-60
disable ipv6 rip .................................................................................... 26-60
enable ipv6 ......................................................................................... 26-60
enable ipv6 advertise ........................................................................... 26-61
enable ipv6 debug ............................................................................... 26-61
enable ipv6 mtudiscovery .................................................................... 26-62
enable ipv6 rip .................................................................................... 26-62
reset ipv6 ndcache .............................................................................. 26-63
set ipv6 filter ....................................................................................... 26-64
set ipv6 interface ................................................................................. 26-67
set ipv6 mtu ........................................................................................ 26-68
set ipv6 nd .......................................................................................... 26-69
set ipv6 prefix ...................................................................................... 26-71
set ipv6 route preference ..................................................................... 26-72
show ipv6 ........................................................................................... 26-73
show ipv6 counter ............................................................................... 26-75
show ipv6 filter ................................................................................... 26-79
show ipv6 host .................................................................................... 26-81
show ipv6 interface ............................................................................. 26-82
show ipv6 multicast ............................................................................. 26-84
show ipv6 ndcache .............................................................................. 26-85
show ipv6 ndconfig ............................................................................. 26-86
show ipv6 rip ...................................................................................... 26-88
show ipv6 route .................................................................................. 26-90
show ipv6 route multicast ................................................................... 26-92
show ipv6 route preference ................................................................. 26-93
show ipv6 tunnel ................................................................................. 26-94
show ipv6 udp .................................................................................... 26-95

CHAPTER 27 Dynamic Host Configuration Protocol for IPv6 (DHCP6)


Introduction ................................................................................................. 27-3
DHCP for IPv6 .............................................................................................. 27-3
DHCP6 Messages .................................................................................. 27-3
DHCP Unique Identifier (DUID) .............................................................. 27-4
Identity Associations .............................................................................. 27-4
Configuring DHCP6 Servers ......................................................................... 27-5
Configuring DHCP6 Clients .......................................................................... 27-6
DHCP6 Message Authentication .................................................................. 27-6
Rapid Commit ....................................................................................... 27-7
Configuration Examples ............................................................................... 27-8
Address Assignment .............................................................................. 27-8
Prefix Delegation ................................................................................... 27-9
Command Reference ................................................................................. 27-11
add dhcp6 interface ............................................................................ 27-11
add dhcp6 key .................................................................................... 27-12
add dhcp6 policy ................................................................................. 27-13
add dhcp6 range ................................................................................. 27-15
create dhcp6 policy ............................................................................. 27-16
create dhcp6 range ............................................................................. 27-17
delete dhcp6 interface ......................................................................... 27-18
delete dhcp6 key ................................................................................. 27-18
delete dhcp6 policy ............................................................................. 27-19
delete dhcp6 range ............................................................................. 27-20

Software Version 2.9.1


C613-03129-00 REV A
xxviii AlliedWare OS Software Reference

destroy dhcp6 policy ........................................................................... 27-20


destroy dhcp6 range ........................................................................... 27-21
disable dhcp6 ...................................................................................... 27-21
disable dhcp6 debug ........................................................................... 27-21
disable dhcp6 rapidcommit ................................................................. 27-22
enable dhcp6 ...................................................................................... 27-22
enable dhcp6 debug ........................................................................... 27-22
enable dhcp6 rapidcommit .................................................................. 27-23
set dhcp6 key ...................................................................................... 27-24
set dhcp6 policy .................................................................................. 27-25
show dhcp6 ........................................................................................ 27-27
show dhcp6 client ............................................................................... 27-29
show dhcp6 counter ........................................................................... 27-31
show dhcp6 interface .......................................................................... 27-34
show dhcp6 key .................................................................................. 27-36
show dhcp6 policy .............................................................................. 27-37
show dhcp6 range .............................................................................. 27-38
show dhcp6 server .............................................................................. 27-40

CHAPTER 28 IPv6 Multicasting


Introduction ................................................................................................. 28-3
Overview of IPv6 Multicast Routing .............................................................. 28-3
Interoperability between Multicast Routing Protocols ................................... 28-4
Multicast Listener Discovery (MLD) ............................................................... 28-5
Queries and Reports .............................................................................. 28-5
Configuring MLD .................................................................................. 28-7
MLD Snooping ...................................................................................... 28-7
Protocol Independent Multicast Sparse Mode (PIM-SM) ................................ 28-9
Configuring PIM Sparse Mode ............................................................... 28-9
Protocol Independent Multicast Dense Mode (PIM-DM) .............................. 28-13
Configuring PIM Dense Mode ............................................................. 28-13
Configuration Examples ............................................................................. 28-16
Command Reference ................................................................................. 28-27
add pim6 bsrcandidate ........................................................................ 28-27
add pim6 interface .............................................................................. 28-28
add pim6 rpcandidate ......................................................................... 28-30
delete pim6 bsrcandidate .................................................................... 28-31
delete pim6 interface .......................................................................... 28-31
delete pim6 rpcandidate ...................................................................... 28-32
disable ipv6 mld .................................................................................. 28-32
disable ipv6 mld debug ....................................................................... 28-33
disable ipv6 mld interface .................................................................... 28-33
disable mldsnooping ........................................................................... 28-34
disable mldsnooping debug ................................................................. 28-34
disable pim6 ........................................................................................ 28-34
disable pim6 debug ............................................................................. 28-35
enable ipv6 mld ................................................................................... 28-35
enable ipv6 mld debug ........................................................................ 28-35
enable ipv6 mld interface .................................................................... 28-36
enable mldsnooping ............................................................................ 28-37
enable mldsnooping debug ................................................................. 28-37
enable pim6 ........................................................................................ 28-37
enable pim6 debug ............................................................................. 28-38
purge pim6 ......................................................................................... 28-39
reset pim6 interface ............................................................................ 28-39
set ipv6 mld ........................................................................................ 28-40
set ipv6 mld interface .......................................................................... 28-41
set pim6 .............................................................................................. 28-42

Software Version 2.9.1


C613-03129-00 REV A
Contents xxix

set pim6 bsrcandidate ......................................................................... 28-43


set pim6 interface ............................................................................... 28-44
set pim6 rpcandidate ........................................................................... 28-45
show ipv6 mld ..................................................................................... 28-46
show ipv6 mld config .......................................................................... 28-48
show ipv6 mld counters ...................................................................... 28-49
show ipv6 mld debug .......................................................................... 28-50
show mldsnooping .............................................................................. 28-51
show mldsnooping counter ................................................................. 28-52
show pim6 .......................................................................................... 28-53
show pim6 bsrcandidate ..................................................................... 28-54
show pim6 config ............................................................................... 28-55
show pim6 counters ............................................................................ 28-56
show pim6 debug ............................................................................... 28-59
show pim6 interface ............................................................................ 28-60
show pim6 neighbour ......................................................................... 28-62
show pim6 route ................................................................................. 28-63
show pim6 rpcandidate ....................................................................... 28-68
show pim6 rpset ................................................................................. 28-69
show pim6 staterefresh ....................................................................... 28-71
show pim6 timer ................................................................................. 28-72

CHAPTER 29 AppleTalk
Introduction ................................................................................................. 29-3
AppleTalk Protocol Architecture ................................................................... 29-3
AppleTalk Nodes and Networks .................................................................... 29-4
LocalTalk ............................................................................................... 29-4
EtherTalk and TokenTalk ......................................................................... 29-5
AppleTalk Address Resolution Protocol (AARP) ............................................. 29-6
Address Translation ............................................................................... 29-6
Dynamic Assignment of Protocol Addresses ........................................... 29-6
Datagram Delivery Protocol .......................................................................... 29-7
Routing Table Maintenance Protocol (RTMP) ................................................ 29-8
Name Binding Protocol (NBP) ....................................................................... 29-9
Zone Information Protocol (ZIP) .................................................................. 29-10
AppleTalk on the Switch ............................................................................ 29-10
AppleTalk Filtering ..................................................................................... 29-11
DDP packet filtering ............................................................................ 29-12
RTMP or Routing Update filtering ........................................................ 29-13
Zone Filtering ...................................................................................... 29-14
AppleTalk Dial-On-Demand ........................................................................ 29-15
Extended Ping for AppleTalk ...................................................................... 29-15
Command Reference ................................................................................. 29-17
add apple packetfilter .......................................................................... 29-18
add apple port .................................................................................... 29-20
add apple route ................................................................................... 29-22
add apple routefilter ............................................................................ 29-23
add apple zone ................................................................................... 29-24
add apple zonefilter ............................................................................ 29-25
delete apple packetfilter ...................................................................... 29-26
delete apple port ................................................................................. 29-26
delete apple route ............................................................................... 29-27
delete apple routefilter ........................................................................ 29-27
delete apple zone ................................................................................ 29-28
delete apple zonefilter ......................................................................... 29-29
disable apple ....................................................................................... 29-29
disable apple debug ............................................................................ 29-30
enable apple ....................................................................................... 29-30

Software Version 2.9.1


C613-03129-00 REV A
xxx AlliedWare OS Software Reference

enable apple debug ............................................................................. 29-30


purge apple ......................................................................................... 29-31
reset apple .......................................................................................... 29-31
set apple packetfilter ........................................................................... 29-32
set apple port ...................................................................................... 29-34
set apple routeconvert ......................................................................... 29-36
set apple routefilter ............................................................................. 29-37
set apple zone ..................................................................................... 29-38
set apple zonefilter .............................................................................. 29-39
show apple ......................................................................................... 29-40
show apple aarp .................................................................................. 29-41
show apple counter ............................................................................. 29-42
show apple packetfilter ....................................................................... 29-49
show apple port .................................................................................. 29-51
show apple route ................................................................................ 29-53
show apple routefilter ......................................................................... 29-54
show apple zone ................................................................................. 29-55
show apple zonefilter .......................................................................... 29-56

CHAPTER 30 Novell IPX


Introduction ................................................................................................. 30-3
The IPX Protocol ........................................................................................... 30-3
Addressing in a Novell Network ................................................................... 30-3
Interfaces and Circuits .................................................................................. 30-4
Routing ....................................................................................................... 30-5
Service Advertisement .................................................................................. 30-6
Traffic Filters ................................................................................................ 30-7
RIP and SAP Filters ....................................................................................... 30-8
Wildcard Expressions ............................................................................. 30-8
RIP Filters ............................................................................................... 30-9
SAP Filters ........................................................................................... 30-10
Global Versus Circuit-Specific Filters ..................................................... 30-10
Extended PING for IPX ............................................................................... 30-11
Counters and the MIB ................................................................................ 30-11
Command Reference ................................................................................. 30-12
add ipx circuit ...................................................................................... 30-12
add ipx exclusion ................................................................................. 30-14
add ipx inclusion ................................................................................. 30-15
add ipx rip ........................................................................................... 30-16
add ipx route ....................................................................................... 30-17
add ipx sap .......................................................................................... 30-18
add ipx service ..................................................................................... 30-19
delete ipx circuit .................................................................................. 30-21
delete ipx exclusion ............................................................................. 30-22
delete ipx inclusion .............................................................................. 30-23
delete ipx rip ....................................................................................... 30-24
delete ipx route ................................................................................... 30-24
delete ipx sap ...................................................................................... 30-25
delete ipx service ................................................................................. 30-26
disable ipx ........................................................................................... 30-26
disable ipx circuit ................................................................................. 30-27
enable ipx ........................................................................................... 30-27
enable ipx circuit ................................................................................. 30-28
purge ipx ............................................................................................. 30-28
reset ipx .............................................................................................. 30-29
set ipx circuit ....................................................................................... 30-30
set ipx grip|gsap .................................................................................. 30-32
set ipx rip ............................................................................................ 30-33

Software Version 2.9.1


C613-03129-00 REV A
Contents xxxi

set ipx sap ........................................................................................... 30-34


show ipx ............................................................................................. 30-35
show ipx cache .................................................................................... 30-37
show ipx circuit ................................................................................... 30-38
show ipx counter ................................................................................. 30-40
show ipx exclusion .............................................................................. 30-43
show ipx inclusion ............................................................................... 30-44
show ipx rip ........................................................................................ 30-45
show ipx route .................................................................................... 30-46
show ipx sap ....................................................................................... 30-47
show ipx service .................................................................................. 30-49

CHAPTER 31 Generic Packet Classifier


Introduction ................................................................................................. 31-2
Configuration of Classifiers ................................................................... 31-2
Command Reference ................................................................................... 31-3
create classifier ...................................................................................... 31-4
destroy classifier .................................................................................. 31-10
set classifier ......................................................................................... 31-11
show classifier ..................................................................................... 31-15

CHAPTER 32 Quality of Service (QoS)


Introduction ................................................................................................. 32-3
Quality of Service (QoS) ............................................................................... 32-3
Configuring QoS .......................................................................................... 32-4
Alternative Methods of Configuring QoS Functionality .......................... 32-6
Classifiers .............................................................................................. 32-6
Flow Groups .......................................................................................... 32-7
Traffic Classes ........................................................................................ 32-7
Policies .................................................................................................. 32-8
QoS Policy Configuration Rules .............................................................. 32-8
Packet Processing ......................................................................................... 32-8
Bandwidth Allocation ............................................................................ 32-9
Packet Prioritisation ............................................................................. 32-10
Class of Service (CoS) Queue Scheduling ............................................. 32-11
Replacing Priorities .............................................................................. 32-12
DiffServ Domains ....................................................................................... 32-13
Examples of QoS Applications .................................................................... 32-14
Voice Applications ............................................................................... 32-14
Video Applications .............................................................................. 32-15
Critical Databases ................................................................................ 32-16
Command Reference ................................................................................. 32-17
add qos flowgroup .............................................................................. 32-17
add qos policy ..................................................................................... 32-18
add qos trafficclass .............................................................................. 32-19
create qos flowgroup .......................................................................... 32-20
create qos policy ................................................................................. 32-21
create qos trafficclass .......................................................................... 32-22
delete qos flowgroup .......................................................................... 32-24
delete qos policy ................................................................................. 32-25
delete qos trafficclass .......................................................................... 32-26
destroy qos flowgroup ........................................................................ 32-27
destroy qos policy ................................................................................ 32-28
destroy qos trafficclass ......................................................................... 32-29
disable qos debug ............................................................................... 32-29
enable qos debug ................................................................................ 32-30
purge qos ............................................................................................ 32-30
set qos flowgroup ............................................................................... 32-31

Software Version 2.9.1


C613-03129-00 REV A
xxxii AlliedWare OS Software Reference

set qos hwpriority ................................................................................ 32-32


set qos hwqueue ................................................................................. 32-33
set qos policy ...................................................................................... 32-34
set qos port ......................................................................................... 32-35
set qos trafficclass ............................................................................... 32-36
show qos flowgroup ........................................................................... 32-38
show qos hwpriority ............................................................................ 32-39
show qos hwqueue ............................................................................. 32-40
show qos policy ................................................................................... 32-41
show qos trafficclass ........................................................................... 32-43

CHAPTER 33 Resource Reservation Protocol (RSVP)


Introduction ................................................................................................. 33-2
Resource Reservation Protocol (RSVP) ........................................................... 33-2
RSVP on the Switch ..................................................................................... 33-6
RSVP Proxy Agent ........................................................................................ 33-7
Command Reference ................................................................................... 33-9
create rsvp proxy ................................................................................... 33-9
destroy rsvp proxy ............................................................................... 33-12
disable rsvp ......................................................................................... 33-12
disable rsvp debug .............................................................................. 33-13
disable rsvp interface ........................................................................... 33-14
disable rsvp proxy ................................................................................ 33-15
enable rsvp .......................................................................................... 33-15
enable rsvp debug ............................................................................... 33-16
enable rsvp interface ........................................................................... 33-17
enable rsvp proxy ................................................................................ 33-18
reset rsvp proxy ................................................................................... 33-19
set rsvp interface ................................................................................. 33-20
set rsvp proxy ...................................................................................... 33-21
show rsvp ............................................................................................ 33-23
show rsvp counter ............................................................................... 33-25
show rsvp interface ............................................................................. 33-28
show rsvp path .................................................................................... 33-29
show rsvp proxy .................................................................................. 33-30
show rsvp proxy counter ..................................................................... 33-32
show rsvp resv ..................................................................................... 33-33

CHAPTER 34 User Authentication


Introduction ................................................................................................. 34-3
Privilege Levels ............................................................................................. 34-3
User Level .............................................................................................. 34-3
Manager Level ....................................................................................... 34-4
Security Officer Level ............................................................................. 34-5
Remote Security Officer Level ................................................................ 34-6
Operating Modes ......................................................................................... 34-6
User Authentication Facility .......................................................................... 34-8
User Authentication Database .................................................................... 34-10
Adding Entries to the User Authentication Database ............................ 34-10
Modifying Entries in the User Authentication Database ........................ 34-11
Choosing Passwords ............................................................................ 34-12
Asynchronous Port Security ................................................................. 34-12
Telneting from the Switch .................................................................... 34-13
Counters ............................................................................................. 34-14
Semipermanent Manager Port ............................................................. 34-14
RADIUS ...................................................................................................... 34-15
TACACS .................................................................................................... 34-18
TACACS+ .................................................................................................. 34-18

Software Version 2.9.1


C613-03129-00 REV A
Contents xxxiii

Token Card Authentication ........................................................................ 34-22


Token Card Authentication on the Switch ............................................ 34-22
Using Token Card with TACACS+ ........................................................ 34-23
Using Token Card with RADIUS or TACACS ......................................... 34-24
Debug Support for RADIUS, TACACS and TACACS+ .................................. 34-26
S/Key and OTP One-Time Password Systems .............................................. 34-26
Initialising the S/Key or OTP System on the Authentication Server ........ 34-27
Configuring S/Key and OTP on the Switch ........................................... 34-28
Command Reference ................................................................................. 34-30
add radius server ................................................................................. 34-30
add tacacs server ................................................................................. 34-31
add tacplus server ............................................................................... 34-32
add user .............................................................................................. 34-33
add user rso ........................................................................................ 34-36
delete radius server ............................................................................. 34-37
delete tacacs server ............................................................................. 34-38
delete tacplus server ............................................................................ 34-38
delete user .......................................................................................... 34-39
delete user rso ..................................................................................... 34-40
disable radius debug ........................................................................... 34-41
disable system security_mode .............................................................. 34-41
disable tacacs debug ........................................................................... 34-42
disable tacplus ..................................................................................... 34-42
disable tacplus debug .......................................................................... 34-42
disable user ......................................................................................... 34-43
disable user rso ................................................................................... 34-43
enable ................................................................................................. 34-44
enable radius debug ............................................................................ 34-45
enable system security_mode .............................................................. 34-46
enable tacacs debug ............................................................................ 34-47
enable tacplus ..................................................................................... 34-47
enable tacplus debug .......................................................................... 34-48
enable user ......................................................................................... 34-48
enable user rso .................................................................................... 34-49
login ................................................................................................... 34-50
logoff .................................................................................................. 34-51
purge user ........................................................................................... 34-51
reset user ............................................................................................ 34-52
set manager asyn ................................................................................ 34-53
set password ....................................................................................... 34-54
set radius ............................................................................................ 34-55
set skey ............................................................................................... 34-55
set tacplus key ..................................................................................... 34-56
set tacplus server ................................................................................. 34-56
set tacplus telnet ................................................................................. 34-57
set user ............................................................................................... 34-58
show manager asyn ............................................................................ 34-61
show radius ......................................................................................... 34-62
show radius debug .............................................................................. 34-63
show skey ........................................................................................... 34-64
show tacacs debug .............................................................................. 34-66
show tacacs server .............................................................................. 34-67
show tacplus ....................................................................................... 34-68
show tacplus key ................................................................................. 34-68
show tacplus server ............................................................................. 34-69
show tacplus telnet ............................................................................. 34-70
show tacplus user ................................................................................ 34-71
show user ........................................................................................... 34-72
show user rso ...................................................................................... 34-77

Software Version 2.9.1


C613-03129-00 REV A
xxxiv AlliedWare OS Software Reference

CHAPTER 35 Compression and Encryption Services


Introduction ................................................................................................. 35-2
Data Compression ....................................................................................... 35-2
Data Encryption ........................................................................................... 35-4
Symmetrical Encryption ......................................................................... 35-5
Asymmetrical (Public Key) Encryption ..................................................... 35-6
Network Encryption ............................................................................... 35-6
Authentication ............................................................................................. 35-7
Key Exchange Algorithms ............................................................................ 35-8
Hardware Support ....................................................................................... 35-9
PCI Accelerator Cards (PACs) ................................................................. 35-9
Hardware Control and Monitoring ....................................................... 35-10
ENCO Services ........................................................................................... 35-10
Compression ....................................................................................... 35-11
Encryption ........................................................................................... 35-12
Authentication .................................................................................... 35-12
Diffie-Hellman Key Exchange Algorithm .............................................. 35-12
Key Creation and Storage .................................................................... 35-13
Access Control ........................................................................................... 35-15
User Modules ............................................................................................ 35-15
IP Payload Encryption and Virtual Private Networks .............................. 35-15
Secure Shell ......................................................................................... 35-16
PPP ...................................................................................................... 35-16
Command Reference ................................................................................. 35-17
create enco key ................................................................................... 35-18
destroy enco key ................................................................................. 35-20
disable enco compstatistics .................................................................. 35-21
disable enco debugging ...................................................................... 35-21
enable enco compstatistics .................................................................. 35-21
enable enco debugging ....................................................................... 35-22
reset enco counters ............................................................................. 35-23
set enco dhpadding ............................................................................. 35-24
set enco dhpriority .............................................................................. 35-24
set enco key ........................................................................................ 35-25
set enco sw ......................................................................................... 35-26
show enco .......................................................................................... 35-27
show enco channel ............................................................................. 35-30
show enco counters ............................................................................ 35-36
show enco debug ................................................................................ 35-51
show enco key .................................................................................... 35-52

CHAPTER 36 Port Authentication


Introduction ................................................................................................. 36-2
802.1x Port Based Network Access Control .................................................. 36-2
The 802.1x Implementation ................................................................... 36-2
Port Authentication Control .................................................................. 36-5
The Authentication Server ..................................................................... 36-7
The Authentication Process ................................................................... 36-8
802.1x Guest VLAN ..................................................................................... 36-9
MAC-Based Authentication ....................................................................... 36-10
The MAC-Based Authentication Implementation ................................. 36-10
The MAC-Based Authentication Process .............................................. 36-11
Dynamic VLAN Assignment ........................................................................ 36-12
Port Authentication on the Switch ............................................................. 36-14
Enable Port Authentication on the Switch ............................................ 36-14
Enable Port Authentication on a Port ................................................... 36-14
Reauthenticate Supplicants .................................................................. 36-16
Setting Global 802.1x Username and Password ................................... 36-17

Software Version 2.9.1


C613-03129-00 REV A
Contents xxxv

Debug Port Authentication .................................................................. 36-17


Multi-Supplicant Configuration ........................................................... 36-17
Configuration Examples ............................................................................. 36-19
Port as Authenticator .......................................................................... 36-19
Port as Supplicant ................................................................................ 36-20
Command Reference ................................................................................. 36-22
activate portauth port reauthenticate .................................................. 36-23
disable portauth .................................................................................. 36-24
disable portauth debug ....................................................................... 36-25
disable portauth port ........................................................................... 36-26
enable portauth .................................................................................. 36-27
enable portauth debug ........................................................................ 36-28
enable portauth port ........................................................................... 36-29
purge portauth port ............................................................................ 36-35
reset portauth port .............................................................................. 36-36
reset portauth port multimib ............................................................... 36-37
set portauth port ................................................................................. 36-38
set portauth port supplicantmac .......................................................... 36-44
set portauth username ........................................................................ 36-47
show portauth .................................................................................... 36-49
show portauth counter ........................................................................ 36-51
show portauth port ............................................................................. 36-54
show portauth port multisupplicant ..................................................... 36-62
show portauth timer ........................................................................... 36-67

CHAPTER 37 Secure Shell


Introduction ................................................................................................. 37-2
Secure Shell on the Switch ........................................................................... 37-2
Configuring Secure Shell .............................................................................. 37-4
Configuration Examples ............................................................................... 37-7
Command Reference ................................................................................. 37-11
add ssh user ........................................................................................ 37-11
delete ssh session ................................................................................ 37-13
delete ssh user .................................................................................... 37-13
disable ssh debug ................................................................................ 37-14
disable ssh server ................................................................................. 37-14
disable ssh user ................................................................................... 37-15
enable ssh debug ................................................................................ 37-15
enable ssh server ................................................................................. 37-16
enable ssh user .................................................................................... 37-17
set ssh client ........................................................................................ 37-18
set ssh server ....................................................................................... 37-19
set ssh user ......................................................................................... 37-21
show ssh ............................................................................................. 37-22
show ssh counter ................................................................................ 37-25
show ssh session ................................................................................. 37-33
show ssh user ...................................................................................... 37-36
ssh ...................................................................................................... 37-38

CHAPTER 38 Secure Sockets Layer (SSL)


Introduction ................................................................................................. 38-2
SSL Operations ............................................................................................ 38-2
Phases ................................................................................................... 38-3
SSL on the Switch ........................................................................................ 38-5
SSL and the Graphical User Interface ..................................................... 38-5
SSL and Load Balancer ........................................................................... 38-6
Configuration Example ................................................................................ 38-7

Software Version 2.9.1


C613-03129-00 REV A
xxxvi AlliedWare OS Software Reference

Command Reference ................................................................................... 38-9


disable ssl debug ................................................................................... 38-9
enable ssl debug ................................................................................... 38-9
set ssl .................................................................................................. 38-10
show ssl .............................................................................................. 38-11
show ssl counters ................................................................................ 38-13
show ssl sessions ................................................................................. 38-21

CHAPTER 39 Firewall
Introduction ................................................................................................. 39-4
Firewall Technologies ............................................................................. 39-4
Policies ........................................................................................................ 39-6
Rules ........................................................................................................... 39-8
Using Limit Rules to Limit Sessions ............................................................. 39-12
Access Lists ................................................................................................ 39-13
List Files ............................................................................................... 39-13
RADIUS Servers ................................................................................... 39-15
Dynamic Interfaces .................................................................................... 39-16
Dynamic Interface Templates ............................................................... 39-17
Configuring Dynamic Interfaces ........................................................... 39-18
Disabling the TCP Setup Proxy .................................................................... 39-19
Firewall UDP Session Timeouts ................................................................... 39-19
Multicast Packet Handling .......................................................................... 39-20
Enhanced Packet Fragment Handling ......................................................... 39-20
Enabling the Secure Shell Server ................................................................. 39-21
Network Address Translation (NAT) ............................................................ 39-21
Enhanced NAT ..................................................................................... 39-25
Network Address and Port Translation (NAPT) ...................................... 39-26
Enhanced Network Address and Port Translation (ENAPT) .................... 39-27
Standard NAT ...................................................................................... 39-29
Other Advanced NAT Types ................................................................. 39-30
NAT on Ethernet Interfaces .................................................................. 39-31
FTP Session Handling .................................................................................. 39-31
PPTP Pass Through ..................................................................................... 39-33
SMTP Proxy ................................................................................................ 39-34
Interaction Between the SMTP Proxy and Firewall Rules ....................... 39-34
Protecting the Email System ................................................................ 39-34
Email Relaying ..................................................................................... 39-35
HTTP Proxy ................................................................................................ 39-36
Firewall HTTP Proxies and Firewall Policies ............................................ 39-36
HTTP Filters ......................................................................................... 39-36
Logging ............................................................................................... 39-36
SIP Application Layer Gateway: VoIP Phone Calls ........................................ 39-37
Using Automatic Client Management Mode ........................................ 39-38
Using Manual Client Management Mode ............................................ 39-40
Displaying and Debugging the SIP ALG ................................................ 39-42
Attacks Recognised by the Firewall ............................................................. 39-43
Monitoring Firewall Activity ........................................................................ 39-46
Notifications ........................................................................................ 39-46
Debugging .......................................................................................... 39-47
Event Triggers ...................................................................................... 39-47
Logging ............................................................................................... 39-49
Session Monitoring .............................................................................. 39-51
Accounting ................................................................................................ 39-54
Configuration Examples ............................................................................. 39-55
Minimum Configuration for a Small Office .......................................... 39-55
Firewall with an ISP-Assigned Internet Address .................................... 39-55
Firewall with a Single Global Internet Address ..................................... 39-56

Software Version 2.9.1


C613-03129-00 REV A
Contents xxxvii

Allowing Access to a WWW Server ...................................................... 39-57


Configuring a Firewall to Allow VoIP Phone Calls ................................. 39-57
Troubleshooting ......................................................................................... 39-60
Traffic Flow and Network Address Translation (NAT) ............................. 39-60
Traffic Allowed or Denied by Firewall ................................................... 39-60
Traffic Logging and Firewall Alert Messages ......................................... 39-62
SIP ALG and VoIP Phone Calls .............................................................. 39-63
Command Reference ................................................................................. 39-64
add firewall monitor ............................................................................ 39-64
add firewall policy apprule ................................................................... 39-67
add firewall policy dynamic ................................................................. 39-69
add firewall policy httpfilter ................................................................. 39-70
add firewall policy interface ................................................................. 39-73
add firewall policy limitrule .................................................................. 39-75
add firewall policy list .......................................................................... 39-77
add firewall policy nat ......................................................................... 39-78
add firewall policy proxy ...................................................................... 39-81
add firewall policy rule ........................................................................ 39-83
add firewall policy spamsources ........................................................... 39-97
add firewall policy udpporttimeout ...................................................... 39-98
create firewall policy ............................................................................ 39-99
create firewall policy dynamic ............................................................ 39-100
delete firewall monitor ...................................................................... 39-100
delete firewall policy apprule ............................................................. 39-101
delete firewall policy dynamic ............................................................ 39-102
delete firewall policy httpfilter ........................................................... 39-103
delete firewall policy interface ........................................................... 39-104
delete firewall policy limitrule ............................................................ 39-105
delete firewall policy list .................................................................... 39-106
delete firewall policy nat .................................................................... 39-107
delete firewall policy proxy ................................................................ 39-109
delete firewall policy rule ................................................................... 39-110
delete firewall policy spamsources ..................................................... 39-111
delete firewall policy udpporttimeout ................................................ 39-112
delete firewall session ........................................................................ 39-112
destroy firewall policy ........................................................................ 39-113
destroy firewall policy dynamic .......................................................... 39-113
disable firewall .................................................................................. 39-114
disable firewall monitor ..................................................................... 39-114
disable firewall notify ........................................................................ 39-115
disable firewall policy ........................................................................ 39-116
disable firewall policy debug .............................................................. 39-118
disable firewall policy httpcookies ...................................................... 39-120
disable firewall policy identproxy ....................................................... 39-121
disable firewall policy smtprelay ......................................................... 39-121
disable firewall policy tcpsetupproxy .................................................. 39-122
disable firewall sessionreport ............................................................. 39-123
disable firewall sipalg ........................................................................ 39-123
enable firewall ................................................................................... 39-124
enable firewall monitor ..................................................................... 39-124
enable firewall notify ......................................................................... 39-125
enable firewall policy ......................................................................... 39-126
enable firewall policy debug .............................................................. 39-128
enable firewall policy httpcookies ...................................................... 39-130
enable firewall policy identproxy ........................................................ 39-130
enable firewall policy smtprelay ......................................................... 39-131
enable firewall policy tcpsetupproxy .................................................. 39-132
enable firewall sessionreport .............................................................. 39-133
enable firewall sipalg ......................................................................... 39-133

Software Version 2.9.1


C613-03129-00 REV A
xxxviii AlliedWare OS Software Reference

reset firewall policy maccache ............................................................ 39-133


reset firewall sipalg autoclients .......................................................... 39-135
reset firewall sipalg counter ............................................................... 39-135
set firewall maxfragment ................................................................... 39-136
set firewall monitor ........................................................................... 39-137
set firewall policy ............................................................................... 39-139
set firewall policy attack .................................................................... 39-141
set firewall policy limitrule ................................................................. 39-143
set firewall policy rule ........................................................................ 39-145
set firewall policy smtpdomain .......................................................... 39-150
set firewall policy udpporttimeout ..................................................... 39-151
set firewall sipalg ............................................................................... 39-152
show firewall ..................................................................................... 39-154
show firewall accounting ................................................................... 39-157
show firewall arp ............................................................................... 39-159
show firewall event ........................................................................... 39-161
show firewall monitor ....................................................................... 39-164
show firewall policy ........................................................................... 39-165
show firewall policy attack ................................................................ 39-183
show firewall policy dynamic ............................................................. 39-184
show firewall policy limitrule ............................................................. 39-186
show firewall policy list ...................................................................... 39-188
show firewall policy maccache ........................................................... 39-189
show firewall policy user ................................................................... 39-190
show firewall policy udpporttimeout ................................................. 39-191
show firewall session ......................................................................... 39-192
show firewall sipalg ........................................................................... 39-195
show firewall sipalg autoclients ......................................................... 39-199
show firewall sipalg counter .............................................................. 39-202

CHAPTER 40 IP Security (IPsec)


Introduction ................................................................................................. 40-3
IP Security (IPsec) ......................................................................................... 40-4
Security Protocols and Modes ................................................................ 40-4
Compression Protocol ........................................................................... 40-5
Security Associations (SA) ...................................................................... 40-5
ISAKMP/IKE ................................................................................................. 40-6
ISAKMP ................................................................................................. 40-6
IKE ...................................................................................................... 40-10
IPsec on the Switch .................................................................................... 40-12
Security Policy Database (SPD) ............................................................. 40-13
SA Bundles .......................................................................................... 40-15
Security through Key Management ..................................................... 40-16
Dynamic IP Addresses .......................................................................... 40-17
IPsec Support for IPv6 .......................................................................... 40-18
IPsec over UDP .................................................................................... 40-19
Pre-IPsec Security Associations ............................................................. 40-20
ISAKMP/IKE on the Switch ......................................................................... 40-21
ISAKMP Policies ................................................................................... 40-21
ISAKMP Exchanges .............................................................................. 40-24
ISAKMP Security Associations (SA) ....................................................... 40-24
ISAKMP Heartbeats ............................................................................. 40-25
Responding to IPsec Packets from an Unknown Tunnel ........................ 40-26
IPsec NAT-Traversal ..................................................................................... 40-28
Basic NAT-T Operations ........................................................................ 40-28
NAT-T on the Switch ............................................................................ 40-29
Pre-IPsec Security Associations ................................................................... 40-31
Configuration Examples ............................................................................. 40-32

Software Version 2.9.1


C613-03129-00 REV A
Contents xxxix

Setting Security ................................................................................... 40-33


VPN-only with details about ISAKMP/IKE key management .................. 40-34
VPN with NAT-Traversal ........................................................................ 40-38
Troubleshooting IPsec ................................................................................ 40-45
IPsec .................................................................................................... 40-45
ISAKMP ............................................................................................... 40-46
Command Reference ................................................................................. 40-48
activate ipsec convertoldsa .................................................................. 40-48
add sa member ................................................................................... 40-49
create ipsec bundlespecification .......................................................... 40-50
create ipsec policy ............................................................................... 40-52
create ipsec saspecification .................................................................. 40-60
create isakmp policy ............................................................................ 40-63
create sa ............................................................................................. 40-71
delete sa member ................................................................................ 40-72
destroy ipsec bundlespecification ......................................................... 40-72
destroy ipsec policy ............................................................................. 40-73
destroy ipsec saspecification ................................................................ 40-74
destroy isakmp policy .......................................................................... 40-74
destroy sa ............................................................................................ 40-75
disable ipsec ........................................................................................ 40-75
disable ipsec oldsa ............................................................................... 40-76
disable ipsec policy debug ................................................................... 40-77
disable isakmp ..................................................................................... 40-79
disable isakmp debug .......................................................................... 40-80
disable sa debug ................................................................................. 40-81
enable ipsec ........................................................................................ 40-81
enable ipsec oldsa ............................................................................... 40-82
enable ipsec policy debug .................................................................... 40-83
enable isakmp ..................................................................................... 40-85
enable isakmp debug .......................................................................... 40-87
enable sa debug .................................................................................. 40-88
purge ipsec ......................................................................................... 40-88
reset ipsec counter .............................................................................. 40-89
reset ipsec policy ................................................................................. 40-90
reset ipsec policy counter .................................................................... 40-90
reset ipsec sa counter .......................................................................... 40-91
reset isakmp counters .......................................................................... 40-92
reset isakmp policy .............................................................................. 40-93
set ipsec bundlespecification ............................................................... 40-94
set ipsec policy .................................................................................... 40-95
set ipsec saspecification ..................................................................... 40-103
set ipsec udpport ............................................................................... 40-105
set isakmp policy ............................................................................... 40-106
set sa ................................................................................................ 40-114
show ipsec ........................................................................................ 40-115
show ipsec bundlespecification .......................................................... 40-116
show ipsec counter ........................................................................... 40-119
show ipsec policy .............................................................................. 40-134
show ipsec policy counter .................................................................. 40-138
show ipsec policy sabundle ................................................................ 40-142
show ipsec sa .................................................................................... 40-144
show ipsec sa counter ....................................................................... 40-149
show ipsec saspecification ................................................................. 40-152
show isakmp ..................................................................................... 40-154
show isakmp counters ....................................................................... 40-156
show isakmp exchange ..................................................................... 40-186
show isakmp policy ........................................................................... 40-193
show isakmp sa ................................................................................. 40-197

Software Version 2.9.1


C613-03129-00 REV A
xl AlliedWare OS Software Reference

show sa ............................................................................................. 40-202


show sa counter ................................................................................ 40-205
show sa user ..................................................................................... 40-211

CHAPTER 41 Public Key Infrastructure (PKI)


Introduction ................................................................................................. 41-2
Overview of PKI ........................................................................................... 41-2
Public Keys ............................................................................................ 41-2
Certificates ............................................................................................ 41-3
Elements of a Public Key Infrastructure .................................................. 41-5
Certificate Validation ............................................................................. 41-6
Certificate Revocation Lists (CRLs) .......................................................... 41-6
PKI on the Switch ........................................................................................ 41-7
Certificate Retrieval and Storage ............................................................ 41-7
Certificate Validation ............................................................................. 41-8
Certificate Revocation Lists .................................................................... 41-9
Requesting a Certificate ........................................................................ 41-9
Global PKI Parameters ......................................................................... 41-10
Configuration Examples ............................................................................. 41-12
Manual Enrollment .............................................................................. 41-12
Automatic Enrollment with CMP ......................................................... 41-14
Command Reference ................................................................................. 41-16
add pki certificate ................................................................................ 41-16
add pki crl ........................................................................................... 41-18
add pki ldaprepository ......................................................................... 41-19
create pki certificate ............................................................................ 41-20
create pki enrollmentrequest ............................................................... 41-21
create pki keyupdaterequest ................................................................ 41-22
delete pki certificate ............................................................................ 41-23
delete pki crl ....................................................................................... 41-23
delete pki ldaprepository ..................................................................... 41-24
destroy pki enrollmentrequest ............................................................. 41-24
destroy pki keyupdaterequest .............................................................. 41-25
disable pki debug ................................................................................ 41-25
enable pki debug ................................................................................ 41-26
purge pki ............................................................................................ 41-27
set pki ................................................................................................. 41-28
set pki certificate ................................................................................. 41-29
set pki crl ............................................................................................ 41-30
set pki ldaprepository .......................................................................... 41-31
set system distinguishedname ............................................................. 41-32
show pki ............................................................................................. 41-33
show pki certificate ............................................................................. 41-40
show pki crl ......................................................................................... 41-43
show pki enrollmentrequest ................................................................ 41-46
show pki keyupdaterequest ................................................................. 41-48
show pki ldaprepository ...................................................................... 41-50

CHAPTER 42 Server Load Balancing


Introduction ................................................................................................. 42-3
Overview ..................................................................................................... 42-3
Server Load Balancer on the Switch ............................................................. 42-5
TCP Virtual Balancer .............................................................................. 42-5
Route-Based Virtual Balancer ................................................................. 42-6
HTTP Virtual Balancer ............................................................................ 42-7
SSL Load Balancer ................................................................................. 42-8
Load Balancer and Firewall .................................................................... 42-9
Redundancy ........................................................................................ 42-10

Software Version 2.9.1


C613-03129-00 REV A
Contents xli

Healthchecks ....................................................................................... 42-12


Triggers ...................................................................................................... 42-14
Configuration Example .............................................................................. 42-18
Command Reference ................................................................................. 42-21
add loadbalancer resource ................................................................... 42-21
add loadbalancer respool .................................................................... 42-23
add loadbalancer virtualbalancer ......................................................... 42-24
add loadbalancer virtualbalancer httperrorcode ................................... 42-27
delete loadbalancer resource ............................................................... 42-28
delete loadbalancer respool ................................................................. 42-28
delete loadbalancer virtualbalancer ...................................................... 42-29
delete loadbalancer virtualbalancer httperrorcode ................................ 42-30
disable loadbalancer ............................................................................ 42-30
disable loadbalancer debug ................................................................. 42-31
disable loadbalancer healthpings ......................................................... 42-31
disable loadbalancer redundancy ......................................................... 42-32
disable loadbalancer resource .............................................................. 42-33
disable loadbalancer virtualbalancer .................................................... 42-34
enable loadbalancer ............................................................................ 42-35
enable loadbalancer debug ................................................................. 42-35
enable loadbalancer healthpings ......................................................... 42-36
enable loadbalancer redundancy ......................................................... 42-37
enable loadbalancer resource .............................................................. 42-38
enable loadbalancer virtualbalancer ..................................................... 42-39
reset loadbalancer ............................................................................... 42-40
set loadbalancer .................................................................................. 42-41
set loadbalancer redundancy ............................................................... 42-42
set loadbalancer resource .................................................................... 42-44
set loadbalancer respool ...................................................................... 42-45
set loadbalancer virtualbalancer ........................................................... 42-46
show loadbalancer .............................................................................. 42-48
show loadbalancer affinity ................................................................... 42-50
show loadbalancer connections ........................................................... 42-52
show loadbalancer redundancy ........................................................... 42-53
show loadbalancer resource ................................................................ 42-56
show loadbalancer respool .................................................................. 42-59
show loadbalancer virtualbalancer ....................................................... 42-61

CHAPTER 43 Virtual Router Redundancy Protocol (VRRP)


Introduction ................................................................................................. 43-2
Virtual Router Redundancy Protocol ............................................................. 43-2
Interface Monitoring .................................................................................... 43-3
Port Monitoring ........................................................................................... 43-3
VRRP on the Switch ..................................................................................... 43-4
Adopting the VRRP IP Address ..................................................................... 43-6
Triggers ........................................................................................................ 43-8
Configuration Example ................................................................................ 43-9
Master with Backup Switch ................................................................... 43-9
Authenticated Virtual Router with No Preferred Master ......................... 43-9
Command Reference ................................................................................. 43-11
add vrrp .............................................................................................. 43-11
add vrrp monitoredinterface ................................................................ 43-12
create vrrp ........................................................................................... 43-13
delete vrrp ........................................................................................... 43-16
delete vrrp monitoredinterface ............................................................ 43-17
destroy vrrp ......................................................................................... 43-17
disable vrrp ......................................................................................... 43-18
disable vrrp debug ............................................................................... 43-19

Software Version 2.9.1


C613-03129-00 REV A
xlii AlliedWare OS Software Reference

enable vrrp .......................................................................................... 43-19


enable vrrp debug ............................................................................... 43-20
set vrrp ................................................................................................ 43-21
show vrrp ............................................................................................ 43-24

CHAPTER 44 Ping Polling of Device Reachability


Introduction ................................................................................................. 44-2
Configuring Ping Polling .............................................................................. 44-2
Triggers ........................................................................................................ 44-4
Logging ....................................................................................................... 44-5
Interaction with Other Protocols ................................................................... 44-6
Ping and Traceroute ............................................................................... 44-6
Firewalls ................................................................................................ 44-6
Command Reference ................................................................................... 44-7
add ping poll ......................................................................................... 44-7
delete ping poll ..................................................................................... 44-9
disable ping poll .................................................................................. 44-10
disable ping poll debug ....................................................................... 44-10
enable ping poll .................................................................................. 44-11
enable ping poll debug ........................................................................ 44-11
reset ping poll ..................................................................................... 44-12
set ping poll ........................................................................................ 44-13
show ping poll .................................................................................... 44-15

CHAPTER 45 Simple Network Management Protocol (SNMP)


Introduction ................................................................................................. 45-3
Network Management Framework .............................................................. 45-3
Structure of Management Information ......................................................... 45-5
Names ................................................................................................... 45-6
Instances ............................................................................................... 45-6
Syntax ................................................................................................... 45-7
Access ................................................................................................... 45-7
Status .................................................................................................... 45-8
Description ............................................................................................ 45-8
The SNMP Protocol ...................................................................................... 45-8
SNMP Versions ...................................................................................... 45-9
SNMP Messages .................................................................................... 45-9
Polling versus Event Notification ............................................................ 45-9
Message Format for SNMPv1 and SNMPv2c ........................................ 45-10
SNMP Communities (Version v1 and v2c) ............................................. 45-11
SNMPv3 Entities .................................................................................. 45-11
SNMPv3 Message Protocol Format ...................................................... 45-13
SNMPv1 and SNMPv2c on the Switch ........................................................ 45-14
SNMP MIB Views for SNMPv1 and SNMPv2c ....................................... 45-15
SNMP Communities ............................................................................ 45-15
Configuration Example (SNMPv1 and v2) ................................................... 45-19
SNMPv3 on the Switch .............................................................................. 45-20
SNMP MIB Views for SNMPv3 .............................................................. 45-20
SNMP Defined MIB Names .................................................................. 45-20
SNMP Groups ...................................................................................... 45-21
SNMP Users ......................................................................................... 45-22
SNMP Target Addresses ....................................................................... 45-22
SNMP Target Params ........................................................................... 45-22
Configuration Example (SNMPv3) .............................................................. 45-23
Command Reference ................................................................................. 45-24
add snmp community .......................................................................... 45-24
add snmp group .................................................................................. 45-26
add snmp targetaddr ........................................................................... 45-27

Software Version 2.9.1


C613-03129-00 REV A
Contents xliii

add snmp targetparams ...................................................................... 45-28


add snmp user .................................................................................... 45-29
add snmp view .................................................................................... 45-31
create snmp community ...................................................................... 45-32
delete snmp community ...................................................................... 45-34
delete snmp group .............................................................................. 45-35
delete snmp targetaddr ....................................................................... 45-35
delete snmp targetparams ................................................................... 45-36
delete snmp user ................................................................................. 45-36
delete snmp view ................................................................................ 45-37
destroy snmp community .................................................................... 45-38
disable snmp ....................................................................................... 45-38
disable snmp authenticate_trap ........................................................... 45-38
disable snmp community ..................................................................... 45-39
enable snmp ....................................................................................... 45-39
enable snmp authenticate_trap ........................................................... 45-40
enable snmp community ..................................................................... 45-40
purge snmp ......................................................................................... 45-41
set snmp community ........................................................................... 45-41
set snmp engineid ............................................................................... 45-42
set snmp group ................................................................................... 45-43
set snmp local ..................................................................................... 45-44
set snmp targetaddr ............................................................................ 45-45
set snmp targetparams ........................................................................ 45-46
set snmp user ...................................................................................... 45-47
show snmp ......................................................................................... 45-48
show snmp community ....................................................................... 45-51
show snmp group ............................................................................... 45-52
show snmp targetaddr ........................................................................ 45-53
show snmp targetparams .................................................................... 45-54
show snmp user .................................................................................. 45-55
show snmp view ................................................................................. 45-56

CHAPTER 46 Link Layer Discovery Protocol (LLDP)


Introduction ................................................................................................. 46-3
LLDP Overview ............................................................................................. 46-3
Type Length Values ................................................................................ 46-4
Transmission and Reception ................................................................... 46-5
Storing LLDP Information ....................................................................... 46-7
Configuring LLDP ......................................................................................... 46-9
LLDP Triggers ....................................................................................... 46-10
CDP Overview ............................................................................................ 46-12
CDP Advertisements ............................................................................ 46-12
CDP Neighbours .................................................................................. 46-13
Receiving and Checking Advertisements .............................................. 46-13
Storing CDP Data ................................................................................ 46-13
Configuring CDP ....................................................................................... 46-14
CDP Triggers ....................................................................................... 46-14
Command Reference ................................................................................. 46-16
disable lldp cdp ................................................................................... 46-16
disable lldp cdp debug ........................................................................ 46-17
disable lldp cdp interface ..................................................................... 46-18
disable lldp cdp ppptemplate ............................................................... 46-18
disable lldp managementaddress ......................................................... 46-19
disable lldp notifications ...................................................................... 46-20
disable lldp port .................................................................................. 46-21
disable lldp portdescription .................................................................. 46-22
disable lldp systemcapabilities .............................................................. 46-23

Software Version 2.9.1


C613-03129-00 REV A
xliv AlliedWare OS Software Reference

disable lldp systemdescription .............................................................. 46-24


disable lldp systemname ...................................................................... 46-25
enable lldp cdp .................................................................................... 46-25
enable lldp cdp debug ......................................................................... 46-26
enable lldp cdp interface ..................................................................... 46-27
enable lldp cdp ppptemplate ............................................................... 46-27
enable lldp managementaddress ......................................................... 46-28
enable lldp notifications ...................................................................... 46-29
enable lldp port ................................................................................... 46-30
enable lldp portdescription .................................................................. 46-31
enable lldp systemcapabilities .............................................................. 46-32
enable lldp systemdescription .............................................................. 46-33
enable lldp systemname ...................................................................... 46-34
purge lldp ........................................................................................... 46-35
reset lldp ............................................................................................. 46-35
reset lldp cdp counters ........................................................................ 46-35
reset lldp cdp table .............................................................................. 46-36
set lldp managementaddress ............................................................... 46-36
set lldp notification interval ................................................................. 46-37
set lldp reinitdelay ............................................................................... 46-37
set lldp txdelay .................................................................................... 46-38
set lldp txhold ..................................................................................... 46-38
set lldp txinterval ................................................................................. 46-39
show lldp ............................................................................................ 46-40
show lldp cdp ...................................................................................... 46-46
show lldp cdp counters ....................................................................... 46-48
show lldp cdp entry ............................................................................. 46-49
show lldp cdp interface ....................................................................... 46-51
show lldp cdp neighbour ..................................................................... 46-53
show lldp counters .............................................................................. 46-56
show lldp memory ............................................................................... 46-59
show lldp neighbour ........................................................................... 46-60

CHAPTER 47 Network Time Protocol (NTP)


Introduction ................................................................................................. 47-2
Overview ..................................................................................................... 47-2
NTP on the Switch ....................................................................................... 47-4
Configuration Example ................................................................................ 47-4
Troubleshooting ........................................................................................... 47-7
Command Reference ................................................................................... 47-8
add ntp peer ......................................................................................... 47-8
delete ntp peer ...................................................................................... 47-8
disable ntp ............................................................................................ 47-9
enable ntp ............................................................................................. 47-9
purge ntp .............................................................................................. 47-9
reset ntp ............................................................................................. 47-10
set ntp utcoffset .................................................................................. 47-10
show ntp ............................................................................................. 47-11

CHAPTER 48 Management Stacking


Introduction ................................................................................................. 48-2
What is Stacking? ........................................................................................ 48-2
How Stacking Works .................................................................................... 48-4
Configuring a Stack ..................................................................................... 48-6
Configuration Example .............................................................................. 48-15
Command Reference ................................................................................. 48-17
Host-Directed Commands (HDC) ......................................................... 48-17
add stack interface .............................................................................. 48-18

Software Version 2.9.1


C613-03129-00 REV A
Contents xlv

delete stack interface .......................................................................... 48-18


disable stack ........................................................................................ 48-19
disable stack debug ............................................................................. 48-20
enable stack ........................................................................................ 48-21
enable stack debug ............................................................................. 48-22
set stack authentication ....................................................................... 48-23
set stack stackid .................................................................................. 48-24
set system hostid ................................................................................. 48-25
show stack .......................................................................................... 48-26

CHAPTER 49 Scripting
Introduction ................................................................................................. 49-2
Activating a Script at Login .................................................................... 49-2
Creating Scripts ........................................................................................... 49-2
Using Script Commands ........................................................................ 49-3
Using the Built-In Text Editor .................................................................. 49-3
Loading from a TFTP Server .................................................................... 49-3
Loading from an Asynchronous Port ...................................................... 49-4
Using Scripts ................................................................................................ 49-4
Script Parameters ......................................................................................... 49-4
Script Control Structures .............................................................................. 49-5
Command Reference ................................................................................... 49-6
activate script ........................................................................................ 49-7
add script .............................................................................................. 49-8
deactivate script .................................................................................... 49-9
delete script ........................................................................................ 49-10
if..then..else..endif .............................................................................. 49-11
set script ............................................................................................. 49-12
show script .......................................................................................... 49-14
wait .................................................................................................... 49-15

CHAPTER 50 Trigger Facility


Introduction ................................................................................................. 50-2
Defining Triggers .......................................................................................... 50-3
Command Reference ................................................................................... 50-4
activate trigger ...................................................................................... 50-4
add trigger ............................................................................................ 50-5
create trigger ........................................................................................ 50-6
delete trigger ...................................................................................... 50-13
destroy trigger ..................................................................................... 50-13
disable trigger ..................................................................................... 50-14
enable trigger ...................................................................................... 50-15
purge trigger ....................................................................................... 50-15
set trigger ........................................................................................... 50-16
show trigger ........................................................................................ 50-21

CHAPTER 51 Logging Facility


Introduction ................................................................................................. 51-2
Format of Log Messages .............................................................................. 51-3
Secure Router Log Protocol (SRLP) ................................................................ 51-4
Net Manage Message Protocol ..................................................................... 51-4
Processing Log Messages ............................................................................. 51-4
Output Definitions and Message Filters .................................................. 51-4
Destinations .......................................................................................... 51-6
Configuring Output Definitions ............................................................. 51-8
Configuring Message Filters .................................................................. 51-8

Software Version 2.9.1


C613-03129-00 REV A
xlvi AlliedWare OS Software Reference

Command Reference ................................................................................... 51-9


add log output .................................................................................... 51-10
add log receive .................................................................................... 51-13
create log output ................................................................................ 51-15
delete log output ................................................................................ 51-19
delete log receive ................................................................................ 51-19
destroy log output ............................................................................... 51-20
disable log ........................................................................................... 51-20
disable log generation ......................................................................... 51-20
disable log output ............................................................................... 51-21
disable log reception ........................................................................... 51-21
enable log ........................................................................................... 51-22
enable log generation ......................................................................... 51-22
enable log output ................................................................................ 51-23
enable log reception ............................................................................ 51-23
flush log output .................................................................................. 51-24
purge log ............................................................................................ 51-24
set log output ..................................................................................... 51-25
set log receive ..................................................................................... 51-31
set log utcoffset .................................................................................. 51-32
show log ............................................................................................. 51-33
show log counter ................................................................................ 51-39
show log output .................................................................................. 51-41
show log queue .................................................................................. 51-46
show log receive ................................................................................. 51-48
show log status ................................................................................... 51-50

CHAPTER 52 Terminal Server


Introduction ................................................................................................. 52-2
TTY Devices ................................................................................................. 52-2
Multiple Sessions ......................................................................................... 52-5
Accessing Telnet Hosts and Other Services ................................................... 52-6
Telnet .................................................................................................... 52-6
Remote Management ............................................................................ 52-7
Services ................................................................................................. 52-7
Client Command Limitations ................................................................. 52-8
Configuration Examples ............................................................................... 52-8
Telnet Service ........................................................................................ 52-8
Locally Defined Service .......................................................................... 52-9
Remote Use of Asynchronous Services ................................................. 52-10
Troubleshooting .................................................................................. 52-11
Command Reference ................................................................................. 52-12
connect ............................................................................................... 52-12
create service ...................................................................................... 52-14
destroy service ..................................................................................... 52-15
disable telnet server ............................................................................. 52-15
disconnect ........................................................................................... 52-16
enable telnet server ............................................................................. 52-16
reconnect ............................................................................................ 52-17
set service ........................................................................................... 52-18
set telnet ............................................................................................. 52-19
set tty .................................................................................................. 52-20
show service ........................................................................................ 52-22
show sessions ...................................................................................... 52-23
show telnet ......................................................................................... 52-24
show tty .............................................................................................. 52-25
telnet .................................................................................................. 52-29

Software Version 2.9.1


C613-03129-00 REV A
Contents xlvii

CHAPTER 53 Line Printer Daemon (LPD)


Introduction ................................................................................................. 53-2
Line Printer Daemon (LPD) ........................................................................... 53-2
LPD on the Switch ....................................................................................... 53-2
Configuring LPD .......................................................................................... 53-3
Printer Operation ......................................................................................... 53-5
Troubleshooting ........................................................................................... 53-6
Command Reference ................................................................................... 53-8
create lpd .............................................................................................. 53-9
destroy lpd .......................................................................................... 53-10
disable lpd ........................................................................................... 53-10
enable lpd ........................................................................................... 53-11
reset lpd .............................................................................................. 53-11
set lpd ................................................................................................. 53-12
show lpd ............................................................................................. 53-13

CHAPTER 54 Stream Printing


Introduction ................................................................................................. 54-2
Overview of Stream Printing ......................................................................... 54-2
Configuring Stream Printing ......................................................................... 54-3
Command Reference ................................................................................... 54-5
add stream ............................................................................................ 54-5
delete stream ........................................................................................ 54-6
reset stream .......................................................................................... 54-6
set stream ............................................................................................. 54-7
show stream ......................................................................................... 54-8

CHAPTER 55 Test Facility


Introduction ................................................................................................. 55-2
Ethernet Port Tests ....................................................................................... 55-3
Asynchronous Port Tests ............................................................................... 55-5
PAC Card Tests ............................................................................................. 55-6
Command Reference ................................................................................... 55-7
disable test interface ............................................................................. 55-7
enable test interface .............................................................................. 55-8
reset test interface ................................................................................. 55-9
show test ............................................................................................ 55-10

APPENDIX A Messages
Introduction .................................................................................................. A-3
Message Descriptions ................................................................................... A-4
smmm001–smmm255: Global Messages ................................................ A-4
s003256–s003999: Point-to-Point Protocol ........................................... A-14
s004256–s004999: AppleTalk ............................................................... A-18
s005256–s005999: Internet Protocol (IP) .............................................. A-22
s006256–s006999: Novell IPX .............................................................. A-35
s018256–s018999: TEST Module ......................................................... A-39
s021256–s021999: Stream Printing ...................................................... A-41
s022256–s022999: TCP ....................................................................... A-41
s023256–s023999: Ethernet Driver ...................................................... A-42
s026256–s026999: LPD Server ............................................................. A-42
s027256–s027999: Bridging ................................................................. A-43
s031256–s031999: FLASH Driver .......................................................... A-48
s033256–s033999: TELNET .................................................................. A-49
s034256–s034999: System ................................................................... A-50
s035256–s035999: Command Processor .............................................. A-52
s036256–s036999: TTY ........................................................................ A-53

Software Version 2.9.1


C613-03129-00 REV A
xlviii AlliedWare OS Software Reference

s039256–s039999: BOOTP ................................................................... A-56


s040256–s040999: Network Time Protocol (NTP) ................................. A-56
s043256–s043999: PORT Driver ........................................................... A-58
s045256–s045999: User Authentication Facility .................................... A-61
s046256–s046999: Asynchronous Call Control .................................... A-65
s048256–s048999: LOADER ................................................................. A-69
s049256–s049999: INSTALL ................................................................. A-72
s050256–s050999: Open Shortest Path First (OSPF) .............................. A-75
s051256–s051999: RADIUS .................................................................. A-79
s052256–s052999: Generic Routing Encapsulation (GRE) ..................... A-80
s053256–s053999: Trigger Facility ........................................................ A-81
s054256–s054999: Scripting ................................................................ A-84
s056256–s056999: File Subsystem ....................................................... A-84
s057256–s057999: Logging Facility ...................................................... A-87
s058256–s058999: PING ...................................................................... A-90
s059256–s059999: Simple Network Management Protocol (SNMP) ...... A-92
s062256–s062999: Security Associations .............................................. A-95
s066256–s066999: Internet Protocol version 6 (IPv6) ............................ A-96
s067256–s067999: Layer 2 Tunnelling Protocol (L2TP) ........................ A-100
s070256–s070999: Dynamic Host Configuration Protocol (DHCP) ...... A-101
s073256–s073999: Encryption ........................................................... A-103
s074256–s074999: Star Key Management ......................................... A-105
s075256–s075999: Secure Shell ......................................................... A-106
s076256–s076999: Resource Reservation Protocol (RSVP) ................... A-108
s077256–s077999: Firewall ................................................................ A-108
s081256–s081999: IP Security (IPsec) ................................................. A-114
s082256–s082999: ISAKMP/IKE ......................................................... A-119
s083256–s083999: Finger .................................................................. A-120
s084256–s084999: HTTP .................................................................... A-120
s087256–s087999: Layer 3 Switching ................................................ A-121
s088256–s088999: Virtual Router Redundancy Protocol (VRRP) .......... A-136
s089256–s089999: VLANs ................................................................. A-137
s091256–s091999: GARP ................................................................... A-150
s092256–s092999: Spanning Tree Protocol (STP) ................................ A-152
s093256–s093999: GUI ...................................................................... A-155
s095256–s095999: Public Key Infrastructure (PKI) .............................. A-157
s096256–s096999: Lightweight Directory Access Protocol (LDAP) ....... A-158
s097256–s097999: Protocol Independent Multicast (PIM) ................... A-162
s099256–s099999: Quality of Service (QoS) ....................................... A-166
s100256–s100999: Generic Classifier ................................................. A-169
s103256–s103999: Border Gateway Protocol version 4 (BGP-4) .......... A-170
s104256–s104999: Load Balancer ...................................................... A-176
s112256–s112999: S/Key ................................................................... A-181
s117256–s117999: Dynamic Host Configuration Protocol v6 (DHCP6) A-181
s118256–s118999: Port Authentication ............................................. A-183
s120256–s120999: Management Stacking ......................................... A-185
s124256–s124999: Multiple Spanning Tree Protocol (MSTP) ............... A-186
s132256–s132999: Link Layer Discovery Protocol ............................... A-188
s137256–s137999: DHCP Snooping ................................................... A-189
s141256–s141999: MAC-Forced Forwarding (MACFF) ........................ A-190

APPENDIX B Reference Tables


Module Identifiers and Names ....................................................................... B-2
Flash File System Message Codes ................................................................... B-7
Log Message Types and Subtypes ................................................................... B-9

APPENDIX C SNMP MIBs


Introduction .................................................................................................. C-3

Software Version 2.9.1


C613-03129-00 REV A
Contents xlix

Allied Telesis Enterprise MIB .......................................................................... C-4


Products Subtree .................................................................................... C-5
AT Router Subtree .................................................................................. C-9
Objects Group ........................................................................................ C-9
traps Group .......................................................................................... C-16
sysinfo Group ....................................................................................... C-16
arInterfaces Group ............................................................................... C-17
Modules Group .................................................................................... C-18
MIB-II MIB ................................................................................................... C-27
Implementation .................................................................................... C-28
Interfaces Group MIB .................................................................................. C-29
Implementation .................................................................................... C-30
IP Forwarding Table MIB .............................................................................. C-31
Implementation .................................................................................... C-31
Ethernet-like Interface Types MIB ................................................................ C-32
Implementation .................................................................................... C-32
Medium Attachment Unit (MAU) MIB ......................................................... C-33
Implementation .................................................................................... C-34
Bridge MIB .................................................................................................. C-35
Implementation .................................................................................... C-36
Virtual Bridge (VLAN) MIB ........................................................................... C-37
Implementation .................................................................................... C-37
Link Aggregation MIB ................................................................................. C-39
Implementation .................................................................................... C-40
Port Access Control MIB .............................................................................. C-41
Implementation .................................................................................... C-42
RMON MIB ................................................................................................. C-43
Implementation .................................................................................... C-44
Host Resources MIB .................................................................................... C-45
Implementation .................................................................................... C-46
SNMP v3 MIBs ............................................................................................ C-48
Implementation .................................................................................... C-48
Border Gateway Protocol v4 (BGP-4) MIB .................................................... C-49
Implementation .................................................................................... C-50
Link Layer Discovery Protocol (LLDP) MIB ..................................................... C-51
Implementation .................................................................................... C-51
State and Topology Change Traps ............................................................... C-52

Glossary

Index

Software Version 2.9.1


C613-03129-00 REV A

You might also like