!Logs console
enable log display
!Logs telnet/ssh session
enable log target session
! Status of Management Protocols (ssh and https)
sh management
! display system name, MAC, boot image
sh switch
!sh runnint OS ver, serial, BootRom, installed OS
sh ver
! Executed command history
history
!Display runn config
show configuration
!Display difference between two configuration files
show configuration differences
!Resets the switch to factory default
unconfigure switch
!Resets the switch to factory defaılts including management IP, failsafe account and stacking configuration
unconfigure switch all
!Reboots the switch
reboot
!Real time display of port configuration port state speed duplex etc.
sh ports config
!Displays VLAN configuration VID, IP address etc.
sh vlan
!Enable or dısable port
enable/disable port
!enable of disable vlan interface
enable/disable vlan
!Dowload sofrware from a tftp, http, ftp
download image
download url
!downloads multiple files using a file list.
download url http:///files.lst
!saves the current running configuration
save configuration
!select configuration file to be the startup config
use configuration
!Periodically saves the running config to default startup file
save configuration automatic
!List copy rename delete files on the flash
ls|cp|mv|rm
!Basic MSTP configuration
configure stpd s0 delete vlan Default ports all
disable s0 auto-bind Default
conf mstp region
conf mstp revision 3
conf s0 mode mstp cist
conf s0 add vlan Default ports all
enable s0 auto-bind Default
enable s0
create stpd s1
conf s1 priority 4096
conf s1 mode mstp msti 1
conf s1 add vlan ports all
enable s1 auto-bind
enable s1
show stpd s1
show stpd s1 ports
!Delete xmod files
unistall image summitX-ezspantree-2.1.0.3.xmod secondary
!Control switch images
sh ver image
!Create untagged Vlan
create vlan
!Createtagged VLAN using a single or range of VLAN IDS
create vlan
!Delete vlan
delete vlan
or
delete vlan
!configure a VLAN’s 802/1q Tag ID
configure vlan tag
!add ports to a vlan. Deletee ports with the corresponding delete key words.
configure vlan add ports
!enable or disable vlans
disable vlan
enable vlan
!Displays the Forwarding Database – MAC address table
show fdb
!By default untagged ports have to be removed from their current VLAN assignment before being addred to a different VLAN.
!Auto-Move allows untagged ports to be added to a different VLAN without being deleted from their current VLAN.
configure vlan untagged-ports auto-move on
!To disable the flooding of unknown unicast packets
disable flooding unicast ports [all | ]
!To disable the flooding of broadcast packets
disable flooding broadcast ports [all | ]
!To verify flooding control
show ports information detail
!To reset flooding control back to defaults
enable flooding all_cast ports [all | ]
!Limit Learning Fix initial MAC address
!enable
configure port vlan limit-learning
!disable
configure port vlan unlimit-learning
show fdb
show vlan security
!To enable the limiting of dynamic learned MAC address with no blackhole entries
configure port vlan limit-learning action stop-learning
!To enable the “locking” of dynamically learned MAC address
!Lock learning convert dynamic learned mac address to static. And saved at configuration.
configure port vlan lock-learning
!verify
show configuration fdb
sh fdp
!Extreme Loop Discovery Protocol
!one shot configuration control system and log once
enable elrp-client
configure elrp-client one-shot ports all interval 1 retry 5
output:
!! NO LOOP DETECTED
!! LOOP DETECTED
show elrp
show elrp disabled-ports
!LAG
enable sharing
enable sharing 6 grouping 6,8 algorithm address-based L3_L4 lacp
enable port 8
show sharing
!Static ACL
!Deny Telnet
edit policy denyTelnet
i ==> press i to insert
entry deny-telnet/ssh
{
if {
destination-address 10.2.2.1/32;
source-address 10.1.1.1/32;
protocol tcp;
destination-port 23;
}
then {
deny;
}
}
check policy denyTelnet
configure access-list denyTelnet.pol vlan
!Dyanmic ACL
create access-list deny-telnet “source-address 10.1.1.1/32” “deny”
ESC key
:wq
save end quit
!Viewing ACL Resource
show access-list usage acl-slice port
show access-list usage acl-rules port
!Stacking
!console connection to master switch
enable stacking
!This command will execute configure stacking easy-setup
!To set-up priority. To garanty master priority must be 100
configure stacking node-address priority
!for individual management configure alternate IP
configure stacking alternate-ip-address automatic
!To change slot number
configure stacking node-address slot-number
! hostname
configure snmp sysname
show stacking configuration
Notes to Myself 