6. 6
Switch 4210
âĒ Switch 4210 9-Port (3CR17331-91)
â 8 10/100 port plus 1 dual-personality (1000Base-T or SFP)Gigabit ports
âĒ Switch 4210 18-Port (3CR17332-91)
â 16 10/100 port plus 2 dual-personality (1000Base-T or SFP) Gigabit ports
âĒ Switch 4210 26-Port (3CR17333-91)
â 24 10/100 port plus 2 dual-personality (1000Base-T or SFP) Gigabit ports
âĒ Switch 4210 PWR 9-Port (3CR17341-91)
â 8 10/100 port PWR plus 1 dual-personality (1000Base-T or SFP) Gigabit ports
âĒ Switch 4210 PWR 18-Port (3CR17342-91)
â 16 10/100 port PWR plus 2 dual-personality (1000Base-T or SFP) Gigabit ports
âĒ Switch 4210 PWR 26-Port (3CR17343-91)
â 24 10/100 port PWR plus 2 dual-personality (1000Base-T or SFP) Gigabit ports
7. 7
Switch 4210
âĒ Layer 2 switching
âĒ Clustered stacking of up to 32 devices for simplified wiring
closet administration
âĒ Centrally manage via SNMP, CLI or web
âĒ For enterprise branch and small workgroup deployments
âĒ Power over Ethernet for voice and wireless-ready networking
âĒ 3Comâs lifetime warranty including PSU and fans
âĒ Advanced Hardware Replacement with next business day
shipment in most regions
-Rack-mount
26-port
-Small form factor units
9-port and 18 ports
in both PoE and non-PoE variants
**Can mixed clusters of Switch 4210, 4200G, 4500G, 5500 and 5500G devices
8. 8
Family-Level Comparison Chart
The 3Com Switch 4210 is a next-generation Switch 4200. Here are key comparisons:
New Switch 4210 Switch 4200 A-SKUs
Port Configuration PoE Versions :
9-Port -- 8 10/100 + 1 combo 10/100/1000 or SFP)
18-Port -- 16 10/100 + 2 combo 10/100/1000 or SFP)
26-Port -- 24 10/100 + 2 combo 10/100/1000 or SFP)
Non-PoE Versions :
9-Port -- 8 10/100 + 1 combo 10/100/1000 or SFP)
18-Port -- 16 10/100 + 2 combo 10/100/1000 or SFP)
26-Port -- 24 10/100 + 2 combo 10/100/1000 or SFP)
26-Port -- 24 10/100 + 2 fixed 10/100/1000)
28-Port -- 24 10/100 + 2 fixed 10/100/1000 + 2 SFP)
50-Port â 48 10/100 + 2 fixed 10/100/1000)
These do not support PoE.
Performance 9-Port : 3.6Gbps / 2.7Mbps
18-Port : 5.2Gbps / 3.9Mbps
26-Port : 8.8Gbps / 6.6Mbps
26-Port: 8.8Gbps / 6.6Mbps
28-Port: 12.8Gbps / 9.5Mbps
50-Port: 13.6Gbps / 10.1Mbps
Stacking / Clustering Clustering up to 32 high Stacking up to 4-high
LACP Yes Yes
STP / RSTP / MSTP Yes STP, Yes RSTP, Yes MSTP Yes STP, Yes RSTP, No MSTP
IGMP Snooping Yes Yes
DUD Yes Yes
Priority Queues 4 2
NTP Yes No
IPv6 Yes No
GVRP No No
SSHv2 / SSL Yes / No No / No
10. 10
Switch 4200G Products Overview
âĒ Switch 4200G 12-Port (3CR17660-91)
â 12 10/100/1000 port, 4dual-personality (1000Base-T or SFP) Gigabit ports and
1 10-Gigabit slot
âĒ Switch 4200G 24-port (3CR17661-91)
â 24 10/100/1000 port , 4dual-personality (1000Base-T or SFP) Gigabit ports
and 2 10-Gigabit slot
âĒ Switch 4200G 48-Port (3CR17662-91)
â 48 10/100/1000 port, 4dual-personality (1000Base-T or SFP) Gigabit ports and
2 10-Gigabit slot
User-configurable SFP Gigabit Ports
Provide Media Flexibility
Choice of 10/100/1000 (RJ45) or SFP Interface
SFP Interfaces Enable Multimode or Single mode
Fiber Connectivity Same SFP Transceivers as for
Other Products Supporting SFPâs
11. 11
âĒ Cost-Effective, Feature-Rich
â Managed 10/100/1000 switches
â 12-, 24- and 48-port models
â User configurable combo Gigabit ports
â Extensive layer 2 switching
â Static layer 3 routing
â Clustered stacking of up to 16 devices
New Switch 4200G Gigabit Ethernet Family
Affordable Gigabit to the Desktop for the Workgroup Edge
âĒ Standards-Based Design for Interoperability
âĒ Proven, Reliable 3Com Operating System Software
âĒ Enterprise Class Lifetime Warranty with Next Business
Day Response
âĒ No PoE Supported Model, Not Support Redundant
Power Supply
12. 12
Switch 4200G
Clustered Stacking
âĒManage up to 16 devices with single
IP management
âĒMix and match with other Switch
4200G, with Switch 5500 / 5500G, and
with future Switch 4500G, for simplified
3Com device management
Kindergarten School Core
Switch 5500G-EI
Classroom 1
Switch 4200G-48
Classroom 2
Switch 4200G-12
Classroom 2
Switch 4200G-48
Classroom 2
Switch 4200G-12
Single IP Mgmt
Common CLI
Common Web
Common Look & Feel
10G Uplink
13. 13
3Com Switch 4200G - 10-Gigabit Uplinks
âĒ All models support 10-Gigabit uplinks
â Switch 4200G 12-Port has one 10-Gigabit slot
â Switch 4200 24- and 48-Port have two 10-Gigabit slots
âĒ Direct plug-in of 10-Gigabit XENPAK transceiver
â No other hardware is required
âĒ Via a module, also 10-Gigabit XFP transceivers
Plug module
(3C17666) here
XENPAK Transceivers:
âĒ3CXENPAK91 10GBASE-
LX4
âĒ3CXENPAK92 10GBASE-LR
âĒ3CXENPAK94 10GBASE-SR
âĒ3CXENPAK95 10GBASE-
CX4
âĒ3CXENPAK96 10GBASE-ER
XFP Transceivers:
âĒ3CXFP96 10GBASE-ER
âĒ3CXFP92 10GBASE-LR
âĒ3CXFP94 10GBASE-SR
Plug XFP here
Plug XENPAK here
14. 14
Comparison Chart
This table compares the 24-Port model across various 3Com families
New 4210
26-Port
Baseline 2226
Plus
4200 26 / 28 4200G 24
SKU 3CR17343-91 3C16470 3C17300A
3C17304A
3CR17661-91
Total ports 24x 10/100
2x Combo Gig
24x 10/100
2x Combo Gig
26-Port Model
24x 10/100
2x 10/100/1000
28-Port Model
24x 10/100
2x 10/100/1000
2x SFP Gig ports
20x 10/100/1000
4x Combo Gig
Up to 2x 10-Gig
Technology L2 L2 L2 L2 with static L3
Performance 8.8Gbps /
6.6Mbps
8.8Gbps / 6.6Mbps 8.8Gbps / 6.6Mbps
12.8Gbps / 9.5Mbps
88Gbps / 65Mbps
MAC addresses 8K 4K 8K 8K
VLANs 256 64 255 4,094
Stacking Clustering Standalone Stacking Clustering
Priority Queues 4 4 2 8
16. 16
Switch 4500 Family
Introduction
âĒ Four Fixed-Configuration Models:
â Switch 4500 26-Port (3CR17561-91)
24 x 10/100 Ports + 2 x Combo Gig Ports
â Switch 4500 50-Port (3CR17562-91)
48 x 10/100 Ports + 2 x Combo Gig Ports
â Switch 4500 PWR 26-Port (3CR17571-91)
24 x 10/100 Ports (PoE) + 2 x Combo Gig Ports
â Switch 4500 PWR 50-Port (3CR17572-91)
48 x 10/100 Ports (PoE) + 2 x Combo Gig Ports
âĒ User-configurable Gigabit Ports
â Provide Media Flexibility
â Choice of 10/100/1000 (RJ45) or SFP Interfaces
âĒ SFP Interfaces Enable Multimode or Singlemode Fiber Connectivity
âĒ Same SFP Transceivers as for Other Products Supporting SFPâs
âĒ Compact Enclosure (1 RU High)
âĒ -48V DC Supplemental Power Option (PoE Models)
â Supplemental PoE Power and/or Power Redundancy
17. 17
Switch 4500 Family Software Basics
âĒ Support 56/168 bit encryption
â Ships with 56 bit encryption image
â Download 168 bit encryption in regions allows by regulations
âĒ 8K MAC Addresses
âĒ 256 802.1Q VLANs
âĒ Link Aggregation using LACP (802.3ad)
â Not across stacked units
âĒ Spanning Tree enable/disable per port
âĒ RSTP
âĒ Fast Start mode on 10/100 ports
âĒ Broadcast Storm Control per VLAN
âĒ IGMPv1 & v2
âĒ Filtering for 128 Multicast groups
18. 18
Switch 4500 ( 10/100 ) New release ( version 3.03)
Support Link Aggregation Across
stack
Support Clustering 32 device
New Software Feature
Improvement of web, CLI and SNMP performance
Clustering management up to 32 devices.
Distributed Link Aggregation for Switch 4500 stack
IPv6 Management -- network discovery over IPv6,
Telnet6, DNS6, TFTP6, TraceRoute6, IGMP6
Many to 1 port mirroring
Jumbo Frame support to 9K packets
Loopback Detection
Device Link Detection Protocol (DLDP) to testing links
IEEE 802.1s Multiple Spanning Tree -- 16 instances
Q-in-Q
Increase in ARP table size from 10 to 16
Increase in static routes from 12 to 16
Legacy Mode to deal with Cisco voice installations.
QoS marking / remarking of 802.1p
Guest VLAN assignment via 802.1X
Mix modes 802.1X and MAC-based authentication
Mac lock-down / sticky mode
IGMP Snooping v3
IGMP Non Flooding
19. 19
3Com Switch 4500/4500G
Clustered Stacking
âĒ Manage up to 32 devices with single IP
management
âĒ Mix and match with other Switch 4500G, with
Switch 5500 / 5500G, and with Switch 4200G, for
simplified 3Com device management
School Administration Core
Switch 5500G-EI
Classroom 1
Switch 4500G-48
Classroom 2
Switch 4500G-PWR-48
Classroom 3
Switch 4200G-48
Classroom 4
Switch 4200G-12
Single IP Mgmt
Common CLI
Common Web
Common Look & Feel
10G Uplink
21. 21
Switch 4500 26-Port
3CR17561-91
Port 13
Port 12
10/100 Base-T
Port 1
Ports 25 & 26 Combo Ports
SFP ports
OR 10/100/1000Base-T
Port 25 & 26
LED
Serial port
100-230V
Power Input
Stacking
LED
Color is 3Com stackable blue
22. 22
Switch 4500 50-Port
3CR17562-91
Port 25
Port 24
10/100 Base-T
Port 1
Ports 49 & 50 Combo Ports
SFP with any transceiver
OR
SFP with 1000Base-T transceiver
Serial port
100-230V
Power Input
Stacking
LED
Color is 3Com stackable blue
23. 23
Switch 4500 PWR 26-Port
3CR17571-91
Port 13
Port 12
10/100 Base-T
Port 1
Ports 25 & 26 Combo Ports
SFP with any transceiver
OR
SFP with 1000Base-T transceiver
Port 25 & 26
LED
Serial port
100-230V
Power Input
Stacking
LED
Color is 3Com stackable blue
RPS Connector
24. 24
Switch 4500 PWR 50-Port
3CR17572-91
Port 25
Port 24
10/100 Base-T
Port 1
Ports 49 & 50 Combo Ports
SFP with any transceiver
OR
SFP with 1000Base-T transceiver
Serial port
100-230V
Power Input
Stacking
LED
Color is 3Com stackable blue
RPS Connector
25. 25
Comparison Chart
This table compares the 24-Port model across various 3Com families
New 4210
26-Port
Baseline 2226
Plus
4200 26 / 28 4200G 24 4500 24
SKU 3CR17343-91 3C16470 3C17300A
3C17304A
3CR17661-91 3CR17561-91
Total ports 24x 10/100
2x Combo Gig
24x 10/100
2x Combo Gig
26-Port Model
24x 10/100
2x 10/100/1000
28-Port Model
24x 10/100
2x 10/100/1000
2x SFP Gig ports
20x 10/100/1000
4x Combo Gig
Up to 2x 10-Gig
24x 10/100
2x Combo Gig
Technology L2 L2 L2 L2 with static L3 L2 with dynamic L3
Performance 8.8Gbps /
6.6Mbps
8.8Gbps /
6.6Mbps
8.8Gbps / 6.6Mbps
12.8Gbps /
9.5Mbps
88Gbps / 65Mbps 8.8Gbps / 6.6Mbps
MAC addresses 8K 4K 8K 8K 8K
VLANs 256 64 255 4,094 256
Stacking Clustering Standalone Stacking Clustering Stacking and
clustering
Priority Queues 4 4 2 8 8
27. 2727
Switch 4800G Details
âš Four âstandardâ 10/100/1000 units
â 24-Port
â 48-Port
â PWR 24-Port
â PWR 48-Port
â These include four 100/1000 combo ports; all have dual 2x10G expansion slots
âš One SFP unit
â 24-Port SFP: with 24-SFP (100/1000) including 8 combo ports with 10/100/1000
â Supports dual PSUs. Ships with one, order a second for 1+1 PSU redundancy
âš Modules shared with 3Com Switch 4500G and H3C S5500
â 1x 10-Gigabit XFP
â 2x 10-Gigabit XFP
â 2x 10-Gigabit CX4
28. 2828
4800G Software Intro
âš Switch runs Comware V5, our latest generation OS
â Comware V5: 4500G, 4800G, S7900E, some 8800, some 7750
â Comware V3: 4210, 4200G, 4500, 5500, 5500G, some 8800,
some 7750
âš Switch is a superset of Switch 4500G functionality
â In all major ways, it will act like a 4500G
â Yes more features and some evolution of the code
29. 2929
ïŽ CLI
ïŽ Web management
ïŽ SNMPv1/v2/v3
ïŽ sFlow
ïŽ VCT, DLDP
ïŽ LDT
ïŽ 4K L2-L4 hardware based ACL
ïŽ Ingress and EGRESS ACL
ïŽ VLAN and port based ACL
ïŽ uRPF
ïŽ ARP detection
ïŽ RRPP (Rapid Ring Network Protect Protocol)
ïŽ SMARTLINK
ïŽ VRRP
ïŽ Redundant power supply
ïŽ Up to 4 10GE uplinks
ïŽ 128G/176G switching capacity
ïŽ Full wire speed L2/L3 switching and forwarding
ïŽ 32K MAC, 12K routing table
ïŽ IPv4/IPv6 dual stack
ïŽ RIP, OSPF, BGP, RIPng, OSPFv3, BGP4+
ïŽ IGMP, PIM SM/DM, MLD, PIM6 SM/DM
ïŽ IPv4/IPv6 Policy Based Routing
ïŽ IPv6 Ready phase-II certification
3Com Switch 4800G
Performance
IPv6
Securit
y
Reliability
Management
& Maintenance
Highlights
30. 3030
More Features
âš L2:
â MSTP, LACP, QinQ, Selective QinQ, GVRP, DHCP, VCT, Guest VLAN,
Port Isolate , Voice VLAN, Mac based VLAN, Protocol based VLAN, IP
subnet based VLAN, RRPP, DLDP
âš L3:
â RIP, RIPng, OSPF, OSPFv3, BGP4, BGP4+, ISIS, ISISv6, ARP Proxy,
DHCP relay, DHCP server, VRRP, policy-routing, ECMP
âš Multicast:
â IGMP Snooping, MLD Snooping, IGMP v1/v2/v3, MLD v1/v2, MVR+,
IGMP querier, IGMP group-policy, IGMP group-restriction, source
address-checking, unknown packet discarding
âš Multicast route:
â PIM-DM, PIM-SM, PIM-SSM for, MSDP
âš Security:
â Port Security, 802.1x, MAC authentication, learning No. of MAC, Radius,
TACACS+, SSHv2, Https, IP source guard, sFlow, CPU defensing DOS
31. 3131
High Performance Capabilities:
Layer 2 Forwarding / Layer 3 Routing
âš High capability of L2/L3 for IPv4/IPv6
âš IPv4 Routing:
â 256 for static
â RIPv1/v2, maximum 2K
â OSPF/BGP4/IS-IS,maximum 12K
âš IPv6 Routing:
â 256 for static
â RIPng, maximum 2k
â OSPFv3/BGP4+/IS-ISv6, maximum 6K
âš MAC Address Table
â 1024 for static
â Supporting 32K MAC for one unit
32. 3232
High Performance 10-Gigabit Uplinks
âš Two expansion slots available
âš Flexible expansion, three interface cards supported:
â 1-port XFP 10GE
â 2-port XFP 10GE
â 2-port CX4 10GE â this for short-distance low-cost 10GE
interconnect
âš Modules shared with 4500G
33. 3333
Switch 4800G Clustering
âš Supports clustering just like the 4500G
â Single IP management shared with 4210, 4200G, 4500, 4500G, 5500, 5500G
â No resilient loopback
â No Distributed Link Aggregation or advanced XRN stacking features
âš Components needed:
â Two-Port Local Connection (CX4) Module (soon repriced to $495 list)
â Switch to switch local connection cables
â The other slot is available for 10G uplinks back to the core
âš XRN is on the roadmap by end 2008
34. 3434
Switch 4800G Stacking
âš Initial releases support clustering
âš Late 2008 release will support full XRN stacking (shown above)
â Distributed Device Management with single agent management and single IP
â Distributed Link Aggregation
â Distributed Resilient Routing
âš Components needed:
â Two-Port Local Connection (CX4) Module
â Switch to switch local connection cables with resilient loopback
â The other slot is available for 10G uplinks back to the core
36. 36
Switch 4500G Family
âĒ Switch 4500G 24-Port (3CR17761-91)
â 24 10/100/1000 port, 4dual-personality (1000Base-T or SFP) Gigabit ports and
âĒ Switch 4500G 48-Port (3CR17762-91)
â 48 10/100/1000 port, 4dual-personality (1000Base-T or SFP) Gigabit ports and
âĒ Switch 4500G PWR 24-Port (3CR1771-91)
â 24 10/100/1000 port PWR, 4dual-personality (1000Base-T or SFP) Gigabit ports and
âĒ Switch 4500G PWR 48-Port (3CR1772-91)
â 48 10/100/1000 port PWR, 4dual-personality (1000Base-T or SFP) Gigabit ports and
37. 37
Switch 4500G
Hardware / Software new feature
âĒ New mid-range managed quad-speed enterprise switch
â 10/100/1000 and 10-Gigabit (Up to 4 ports for All Models)
âĒ Suitable at the network edge and for small-to-medium core
âĒ Layer 2 switching and Layer 3 dynamic (RIP) routing
âĒ Power over Ethernet for voice and wireless-ready networking
âĒ 3Comâs lifetime warranty including PSU and fans
âĒ Support Redundant Power Supply for PWR Model
âĒ Centrally manage via SNMP, CLI or web; cluster up to 32 devices
for simplified wiring closet administration
38. 383Com Confidential
3Com Switch 4500G - 10-Gigabit Uplinks
âĒ All models support up to four10-Gigabit uplinks
âĒ Choose local connection and / or XFP-based
â Local Connection module supports CX4 4X
InfiniBand cabling up to 3 meters long; ideal for
local stacking
â XFP module supports the standard flexible XFP
interface, supporting various medium-long distance
fiber technologies
Plug the
XFP Module
(3C17766) here
XFP Transceivers:
âĒ3CXFP96 10GBASE-ER
âĒ3CXFP92 10GBASE-LR
âĒ3CXFP94 10GBASE-SR
CX4 Cables:
âĒ3C17775 50 cm
âĒ3C17776 100 cm
âĒ3C17777 300 cm
Plug XFP here
Plug the
Local Connect Module
(3C17767) here
Plug CX4 Cable here
Consider this:
The 3Com Switch
4500G compares in
price to switches that
donât support 10-
Gigabit!
Your network is more
future-proof with the
3Com solution!
39. 39
39
> Positioned for
â Businesses deploying new service such as
VoIP
â Scaling to meet a growing business
> Key Features
â Enterprise-Class L2 & L3 IP Feature set
â Basic Layer 3 IP Routing (Static, RIP,
RIP2)
â Copper and Power over Ethernet versions
â 8 Hardware Queues Per Port, Traffic
Shaping per port
â L2, 3, 4 Access Control List
â Lifetime Warranty with advanced
hardware replacement
â Stacking / Clustering Support
â Designed for Voice Ready Networks
> Business Benefits
â Able to power an vendors phone system,
prioritize and segment into a VLAN
â Pay as you Grow â add more ports as
needed and manage as one entity
â Future proofed design with a full service &
support offering
Switch 4500 /4500G Ethernet Family
Access Connectivity for Small Enterprises
Switch 4500G Switch 4500
NEW
âĒSwitch 4500G 24-Port
24 x 10/100/1000 Ports
4 Gig SFP (Combo)
2 Dual 10G Slots
âĒSwitch 4500G 48-Port
48 x 10/100/1000 Ports
4 Gig SFP (Combo)
2 Dual 10G Slots
âĒSwitch 4500G 24-Port PWR
Same as 4500G 24-Port
with PWR
âĒSwitch 4500G 48-Port PWR
Same as 4500G 48-Port
with PWR
âĒSwitch 4500 26-Port
24 x 10/100 Ports
2 Gig SFP/ 2 Gig Copper
(Combo)
âĒSwitch 4500 50-Port
24 x 10/100 PoE Ports
2 Gig SFP/ 2 Gig Copper
(Combo)
âĒSwitch 4500 26-Port PWR
Same as 4500 24-Port with
PWR
âĒSwitch 4500 50-Port PWR
Same as 4500 48-Port with
PWR
IEEE 802.3af ( Power Over Ethernet )
40. 40
Comparison Chart
This table compares the 24-Port Gigabit model across various 3Com families
4200G 24 3870 24 4500G 24
Total ports 20 x
10/100/1000
4 x
Dual
Personality
Up to 2x 10-Gig
20 x 10/100/1000
4 x
Dual Personality
Up to 1x 10-Gig
20 x 10/100/1000
4 x
Dual Personality
Up to 4x 10-Gig
Technology L2+ L2 / L3 L2 / L3
Performance 88-Gbps
65.5-Mpps
108-Gbps
80.0-Mpps
128.0-Gbps
95.2-Mpps
MAC addresses 8,000 16,000 8,000
VLANs 256 255 256
Stacking Clustering Stacking Clustering
Priority Queues 8 8 8
42. 42
Introducing 3Com Switch 5500
Premium Switching Solution
âĒ Premium Enterprise stackable switches
â For wiring closets, aggregation points, branch offices and data centers
âĒ 3Com OS: Same as 7700, 8800, Routers
âĒ XRNÂŪ technology 8-High
âĒ Seven 10/100 Fast Ethernet models
â Standard Image / Enhanced Image
âĒ 5500-SI 28 / 52-Port; 5500-EI 28 / 52 Port
â PoE Variants of EI
âĒ 5500-EI 28-Port PWR; 5500-EI 52-Port PWR
â 100BASE-FX Variant
âĒ 5500-EI 28-Port FX
âĒ Five 10/100/1000 Gigabit models
â Enhanced image, without and with PoE
âĒ 5500G-EI 24- / 48-Port; 5500G-EI 24- / 48-Port PWR
â SFP Variant
âĒ 5500G-EI 24-Port SFP
3Com Switch 5500
Portfolio
43. 43
Target use: Advanced
Enterprise wiring closet
access switch; small
aggregation
Availability: Routing functions
are totally distributed across
all switches in the stack
massively increasing
performance and uptime
Scalability: Extend
connectivity with a mixture
of PoE and fibre switches
Connectivity: Jumbo Frames
are supported on all gigabit
uplinks for interoperability
with equipment downstream
Application-Aware: Advanced
Time-Based ACLs are
supported that can be
automatically executed on a
per user or machine basis
Port Configurations:
24 x 10/100 Ports + 4 SFP
48 x 10/100 Ports + 4 SFP
24 x 10/100 PoE + 4 SFP
48 x 10/100 PoE + 4 SFP
24 100BASE FX SFP + 2
10/100/1000 + 2 SFP
Includes Enhanced Image (EI) software
âĒ Includes ALL SI software plus:
XRN
âĒ Distributed Device Management
Mix and match any 5500-EI product in a stack,
including PWR and FX SKUs
âĒ Distributed Link Aggregation
Allows up to 32 groups to be spread across any
ports in the stack (8 FE / 4 GE per group)
âĒ Distributed Resilient Routing
All switches in the stack are actively routing and
sharing LSDB and ARP tables
256 static routes with 2K RIP entries
4K ARP Table
6K LSDB size for OSPF
Multicast Routing PIM Sparse Mode / Dense Mode
âĒ 4096 Port-Based VLANs
âĒ Time-based Access Control Lists
âĒ DHCP Tracker
âĒ Traffic Redirection
âĒ Traffic Mirroring
âĒ Syslog
Switch 5500-EI 28-Port
Key Points
Switch 5500-EI 52-Port
Switch 5500-EI 28-Port PWR
Switch 5500-EI 52-Port PWR
Switch 5500-EI 28-Port FX
Switch 5500-EI Overview
44. 44
Target use: Advanced
Enterprise wiring closet
access switch; Building
aggregation and server
farm
Availability: Pluggable Power
Supply for reducing time to
repair
Scalability: Instantly enable
Power over Ethernet via a
plug-in PoE Power Supply
Connectivity: Add up to 448
Gigabit ports 16 x 10G links
per stack for ultimate
performance
Application-Aware: Advanced
bespoke classification
masks can be programmed
for any QoS or ACL rule
Port Configurations:
24 x 10/100/1000 Ports + 4 SFP
+ 1 Application Module Slot
(PoE Ready)
48 x 10/100/1000 Ports + 4 SFP
+ 1 Application Module Slot
(PoE Ready)
âĒ24 x SFP Ports + 10/100/1000
+ 1 Application Module Slot
Includes Enhanced Image (EI) software
âĒ Includes ALL SI software plus:
âĒ Hot-swappable Application Module Slot for
expansion cards :
8-Port SFP, 1-Port 10G, 2-Port 10G
âĒ Removable PSU
XRN
âĒ Distributed Device Management
Mix and match any 5500G-EI product in a stack
48 Gigabit Bi-directional stacking link with
redundant loop
âĒ Distributed Link Aggregation
Allows up to 32 groups to be spread across any
ports in the stack (8 GE / 4 10GE per group)
âĒ Distributed Resilient Routing
All switches in the stack are actively routing and
sharing LSDB and ARP tables
100 static routes with 2K RIP entries
8K ARP Table
12K LSDB size for OSPF
Multicast Routing PIM Sparse Mode / Dense Mode
Switch 5500G-EI 24-Port
Key Points
Switch 5500G-EI 48-Port
Switch 5500G-EI 24-Port SFP
Switch 5500G-EI Overview
45. 45
Switch 5500
Premium Switching Services
âĒ Security:
SNMP v3, Extended 802.1X Network Login with RADA (RADIUS Authentication
Device Access), Time of Day ACLs, Secure Shell (SSH), Layer 3 and Layer 4 Auto
VLANs, four different administrator levels, Denial of Service attack prevention, MAC
port binding (formally DUD), MAC address limitation
âĒ Application-Aware:
Auto-Qos, Auto-VLAN, Ingress/Egress Rate limiting, IPv4 and IPv6, Advanced QoS
L2-4 with DSCP and fully configurable Time-of-Day QoS, WRR, SPQ, WFQ,
advanced traffic mirroring
âĒ Availability:
Distributed Resilient Routing (RIP, OSFP and PIM SM/DM)
Distributed Link Aggregation (802.3ad), 802.1w with STP route guard, IGMP
snooping, AC or DC power input, hot-swappable media modules*, hot-swappable
power supplies and fans*, Dual software agents, Denial of Service device protection,
resilient XRN stacking architecture, Thermal control and monitoring
* Where applicable
46. 46
Switch 5500 8-High XRNÂŪ Stacking
Key Benefits of Evolved Technology
âĒ Unified management of stack
â Single IP Address; single CLI; single web interface; automatic consistency
âĒ Full self-healing resiliency with all units sharing critical routing information
â No master / slave set-up or limitations
â Local L2/L3 switching improves performance
â Full âpay as you growâ expansion without âhot standbyâ insurance
âĒ Distributed resilient connections
â Easy dual homing, spanning of units, yet single trunk
â 10/100 units can be geographically remote
1992 200519951994
Industry
1st Stackable Hub
3Com FMS
Resilient Cascade
Stacking system
3Com Hub
10/40/50
2000
Self-healing
stacking
SuperStack 3
Switch 4400
SuperStack
SuperStack 2
Switch
1100/3300
2002
XRN
48Gbps
L2/3/4 Stacking
DLA
DDM
DRR
XRN
8Gbps
L2/3/4 Stacking
DLA
DDM
DRR
Hot-Swap Cascade
2Gbps
L2/4 Stacking
DLA
Matrix Stacking
1Gbps
L2 stacking
Stacking
10Mbps
Single Stack
Management
Revolutionary
XRN â L2 &3
Stacking
Switch 4900
XRN Evolution
Multi-Layer Routing
Switch 5500
47. 47
SuperStack 4 Switch 5500G-EI
SuperStack 4 Switch
5500-EI
SuperStack 3 Switch
4400
Switch 5500 & XRNÂŪ Technology
4 Gbps Load
Balanced LAG
Multiple links fail without affecting
connectivity back to the aggregation point
Fully compatible with
existing 4400 Family
48. 48
âĒ XRN : Distributed Device Management
(DDM)
â Intelligent management ensures all
switches act as a single logical device
â Resilient architecture provides access
to management in the event of any
switch failing
â Rapid stack-wide feature configuration
â Automatic and Manual stack
configuration
â Stack up to 8 units
192.168.1.254
âĒ Stack-Wide Management
â Single entity for SNMP, WEB and CLI
Management
â Display ALL configurations in one
screen with Device View
â Reduces configuration time
â Improved monitoring responsiveness
r222# telnet
192.168.0.33
r222# configure
terminal
r222(config)#
interface ethernet
0/0
r222(config-if)# ip
address 7.7.7.7
255.255.255.0
r222(config)#
interface pos 4/0/0
XRN â Distributed Device Management
49. 49
âĒ Distributed Link Aggregation (DLA)
â Create incredibly resilient network designs that are highly flexible
â XRN technology binds all the switches into a single entity allowing
connections from ANY port across the fabric to be connected together using
IEEE 802.3ad LACP
â LACP will then automatically configure the links as aggregated links
Switch 5500G-EISwitch 5500-EI
Switch 4400
3870
LACP 802.3ad
5500-EI provides
geographical
separation
5500G-EI provides
closet separation;
up to 12ft / 5M
Interoperable with
other 3Com DLA
switches
XRN â Distributed Link Aggregation
50. 50
âĒ Distributed Resilient Routing (DRR)
â Provides chassis like resilience for routed (L3) networks
â Local layer 3 routing using Rip
â XRN synchronizes OSFP FIB table to all hosts in the fabric
â All ACL information is distributed to all host units
1
2
ROUTER TABLE
VLAN 1
0.0.0.0
255.255.0.1
Router Interface information is
synchronised across all switches
L3 traffic can be handled locally by the
switch and intelligently passed up or down
the XRN stack
Student VLAN
Admin VLAN
XRN â Distributed Resilient Routing
51. 51
âĒ XRN Stacking
â Each switch uses the last two Gigabit
SFP ports to provide a 2Gbps FD link
â No extra hardware required
â Stack up to 8 units of any variety
â Automatic or manual stack
configuration
â A return link provides rapid fail-over in
the event of a normal link or unit
failing
â XRN Stack units together over 70km
apart!
Normal Stacking Link:
1 Gbps UP / 1 Gbps DOWN
Standby Stacking loop connection:
1 Gbps UP / 1 Gbps DOWN
Switch 5500-EI/SI
Use ANY Gigabit SFP to link
the units together
Stacking â Powered by XRN
52. 52
Stacking â Powered by XRN
âĒ 96Gbps XRN Stacking
â Each switch has two bi-directional cascade
links providing a massive 96Gb/s
bandwidth â Industry Leading!
â Stack up to 8 units of any variety
â Automatic or manual stack configuration
â A return link is ACTIVE! Providing fastest
path around the XRN fabric
â Stacking bandwidth is not shared with any
other resource
â 65cm, 150cm & 5M cables are available
Normal Stacking Link:
24 Gbps UP / 24 Gbps DOWN
Standby Stacking loop connection:
24 Gbps UP / 24 Gbps DOWN
Switch 5500G-EI
Ultra high-speed robust
Infiniband 12X
connectors and cables
53. 53
Stacking Numbering - XRN
âĒ Each switch has a unique unit ID in the fabric
âĒ By default, the unit ID of a switch is set to 1
â The Unit ID can be manually set
âĒ Every switch has a unit name (sysname)
â All units in the stack must have the same sysname
âĒ By default XRN will automatically number the switches to constitute a
fabric
â Unit 1 will be the unit with the lowest MAC address
â Units will subsequently number from unit 1
up upupdown down down
Unit 1 Unit 2 Unit 3 Unit 4
54. 55
3Com Switch 5500
Portfolio
âFirstsâ of the 3Com Switch 5500
âĒ Industry leading performance - up to 384Gbps backplane
bandwidth
âĒ Highest stackable density - 448G ports
in 8 ârack unitsâ
âĒ Fastest totally resilient stacking at 48Gbps
(96Gbps full duplex)
âĒ First with upgradeable PoE for
10/100/1000 Gigabit model
âĒ Only switch to ship with flexible AC or DC power input for n+1
power redundancy
âĒ Convergence-optimized - Auto-detects IP phones, prioritizes
voice traffic, filters onto VLAN or mirror voice calls for recording
âĒ First Layer 3 XRN 8-high Stackable
55. 56
Comparison Chart
This table compares the 24-Port Gigabit model across various 3Com families
4200G 24 3870 24 4500G 24 5500G-EI
Total ports 20 x
10/100/1000
4 x
Dual
Personality
Up to 2x 10-
Gig
20 x
10/100/1000
4 x
Dual
Personality
Up to 1x 10-Gig
20 x 10/100/1000
4 x
Dual
Personality
Up to 4x 10-Gig
20 x 10/100/1000
4 x
Dual
Personality
Up to 2x 10-Gig
2x stacking
Technology L2+ L2 / L3 L2 / L3 L2 / L3
Performance 88-Gbps
65.5-Mpps
108-Gbps
80.0-Mpps
128.0-Gbps
95.2-Mpps
184-Gbps
136.9-Mpps
MAC
addresses
8,000 16,000 8,000 16,000
VLANs 256 255 256 4,094
Stacking Clustering Stacking Clustering Stacking and
clustering
Priority
Queues
8 8 8 8
58. 59
The command line provides the following views:
â User view
â System view
â Ethernet Port view
â VLAN view
â VLAN interface view
â Local-user view
â User interface view
â FTP client view
â PIM view
â RIP view
â OSPF view
â OSPF area view
â Route policy view
â Basic ACL view
â Advanced ACL view
â Layer-2 ACL view
â RADIUS server group view
â ISP domain view
â BGP view
â ISIS view
Command Line View
59. 60
āļāļēāļĢ Configuration āļāđāļēāļ Console Port
Run terminal emulator (such as Terminal on
Windows 3X or the Hyper Terminal on Windows XP)
on the PC. Set the terminal communication
parameters as follows:
Baud rate = 19200
Databit = 8
Parity check = none
Stopbit = 1
Flow control = none
Terminal type = VT100
61. 62
āļāļēāļĢāđāļāđāļāļĢāļ°āļāļąāļāļŠāļīāļāļāļīāļāļēāļĢāđāļāđāļāļēāļāļāļāļāļŠāļ§āļīāļāļāđ
ATTRIBUTE 3Com-User-Access-Level Access_mode Integer
VALUE 3Com-User-Access-Level Visit 0
VALUE 3Com-User-Access-Level Monitor 1
VALUE 3Com-User-Access-Level Manager 2
VALUE 3Com-User-Access-Level Administrator 3
Visit level: āđāļāđāļāļĢāļ°āļāļąāļāļāļĩāđāļŠāļēāļĄāļēāļĢāļāļāļē network diagnosis (āđāļāđāļāļāļēāļĢ ping āđāļĨāļ° tracert), āđāļāļĨāļĩāđāļĒāļāļ āļēāļĐāļēāļāļ user
interface (language-mode) āđāļāđ āđāļĨāļ°āđāļāđāļāļēāļŠāļąāđāļāđāļāļāļēāļĢ telnet āļŠāđāļ§āļāļāļēāļĢ save configuration file āđāļĄāđāļŠāļēāļĄāļēāļĢāļāđāļāđāļāļēāļŠāļąāđāļāđāļāđ
āđāļāļĢāļ°āļāļąāļāļāļĩāđ
Monitoring level: āđāļāđāļāļĢāļ°āļāļąāļāļāļĩāđāļŠāļēāļĄāļēāļĢāļāļāļēāļāļēāļŠāļąāđāļāđāļāļāļēāļĢ display āđāļāđāđāļĨāļ°āļāļēāļĢāļāļēāļāļēāļŠāļąāđāļ debugging āđāļāđ āđāļāļ·āđāļāđāļāđāļŠāļēāļŦāļĢāļąāļāļāļēāļĢāļāļē
system maintenance, service fault diagnosis āļŠāđāļ§āļāļāļēāļĢ save configuration file āđāļĄāđāļŠāļēāļĄāļēāļĢāļāđāļāđāļāļēāļŠāļąāđāļāđāļāđāđāļāļĢāļ°āļāļąāļāļāļĩāđ
System level: āđāļāđāļāļĢāļ°āļāļąāļāļāļĩāđāļŠāļēāļĄāļēāļĢāļāļāļēāļāļēāļŠāļąāđāļāđāļāļāļēāļĢ service configuration, āļĢāļ§āļĄāļāļķāļāļāļēāļĢāđāļāđāļāļēāļŠāļąāđāļāđāļāļāļēāļĢāļāļē routing
āđāļĨāļ°āļāļēāļŠāļąāđāļāļŠāļēāļŦāļĢāļąāļāđāļāđāļĨāļ° network layer āđāļĨāļ°āļŠāļēāļĄāļēāļĢāļāļāļēāļŦāļāļ network service āđāļŦāđāļāļąāļuser āđāļāđ
Management level: āđāļāđāļāļĢāļ°āļāļąāļāļāļĩāđāļŠāļēāļĄāļēāļĢāļāļāļēāļāļēāļŠāļąāđāļāđāļāļāļēāļĢāļāļąāļāļāļēāļĢāļāļāļ system āđāļĨāļ°āļāļēāļĢāļĢāļāļāļĢāļąāļ module āļāļķāđāļāļāļēāļŠāļąāđāļāđāļāļĢāļ°āļāļąāļāļāļĩāđāļāļ°āđāļāđāļāļāļēāļĢ
āļāļąāļāļāļēāļĢ file system, āļāļēāļĢāļāļąāļāļāļēāļĢāļāđāļēāļ FTP, āļāļēāļĢāļāļąāļāļāļēāļĢāļāđāļēāļ TFTP, XModem downloading, āļāļēāļĢāļāļąāļāļāļēāļĢ user āđāļĨāļ°āļāļēāļŦāļāļāļĢāļ°āļāļąāļ
āđāļāļāļēāļĢāđāļāđāļāļēāļāļŠāļ§āļīāļāļāđ
62. 63
āļāļļāļāļāļēāļŠāļąāđāļāđāļāļāļēāļĢāļāļēāļŦāļāļ User Interface
Operation Command
Enter a single User Interface View or multi User Interface Views user-interface [ type ] first-number [ last-number ]
Configure the user interface-supported protocol protocol inbound { all | ssh | telnet }
Configure the authentication method
Configure no authentication
authentication-mode { password | scheme }
authentication-mode none
Configure the local authentication password set authentication password { cipher | simple
}password
Set command level used after a user logs in service-type { ftp [ ftp-directory directory | lan-
access | { ssh | telnet | terminal }* [ level level ] }
Set command level used after a user logs in from a user
interface
user privilege level level
Display the user application information of the user interface display users [ all ]
63. 64
âĒ<Sysname> system-view
âĒ[Sysname]user-interface vty 0
âĒ[Sysname-ui-vty0] set authentication password simple xxxx (xxxx is the preset
login password of the Telnet user)
āļāļąāļ§āļāļĒāđāļēāļāļāļēāļĢāļāļēāļŦāļāļāļŠāļīāļāļāļī User āļāđāļēāļ Telnet
1. āļāļēāļĢāļāļēāļŦāļāļāļŠāļīāļāļāļīāđāļāļāļēāļĢTelnet āļāļāļ user āļāđāļēāļ console port āļāđāļāļāļāļĩāđ userāļāļ° log in āļāđāļēāļ Telnet.
âĒ āđāļāļĒāļāđāļē default āļāļ°āļāđāļāļāļĄāļĩāļāļēāļĢāļāļēāļŦāļāļ password āđāļāļ·āđāļāļāļĩāđāļāļ°āđāļŦāđāļŠāļīāļāļāļī user āđāļāļāļēāļĢ log in āļāđāļēāļ Telnet āđāļāļĒāļąāļ Switch
āļāđāļēāļĄāļĩ user logs in āļāđāļēāļ Telnet āđāļāļĒāđāļĄāđāļĄāļĩ password, āļāļ°āđāļŦāđāļāļāđāļāļāļ§āļēāļĄāđāļŠāļāļ Login password has not been
set!.
67. 68
Operation Command
Enter Ethernet Port View interface { interface_type interface_num |
interface_name }
Set IP address IP address ip-address ip-mask
Set IP second address IP address ip-address ip-mask sub
Disable an Ethernet port Shutdown
Enable an Ethernet port Undo shutdown
Set duplex attribute for Ethernet port
Restore the default duplex attribute of Ethernet port.
duplex { auto | full | half }
undo duplex
Set the Ethernet port speed
Restore the default speed for the Ethernet port
speed { 10 | 100 | 1000 | auto
undo speed
Set the type of the cable connected to an Ethernet port. mdi { across | auto | normal }
Permit jumbo frame to pass through the Ethernet port jumboframe enable
Enable Ethernet port flow control flow-control
āļāļļāļāļāļēāļŠāļąāđāļāđāļāļāļēāļĢāļāļēāļŦāļāļāļāļēāļĢāļāļēāļāļēāļāļāļāļāļāļāļĢāđāļ
70. 71
PoE āļāļ·āļāļāļ°āđāļĢ
Power over Ethernet (PoE) āđāļāđāļāļāļēāļĢāļāļēāļŦāļāļāđāļŦāđāļāļļāļāļāļĢāļāđ devices āļŠāļēāļĄāļēāļĢāļāļŠāđāļāļāļĢāļ°āđāļŠāđāļāļāđāļēāļāđāļēāļāļŠāļēāļĒ
twisted pairs āđāļŦāđāļāļąāļāļāļļāļāļāļĢāļāđāļāļĩāđāļĢāļāļāļĢāļąāļāļāļēāļĢāļāđāļēāļĒāđāļāļāļēāļāļ§āļ powered devices (PD) āđāļ network āđāļāļĒ
āļŠāļēāļĄāļēāļĢāļāļŠāđāļāļāđāļāļĄāļđāļĨāļāđāļēāļāđāđāļāļāļĢāđāļāļĄāļāļąāļāļāđāļ§āļĒ
āļāļĢāļ°āđāļĒāļāļāđāļāļāļ PoE
â Reliability: āđāļāđāļāđāļŦāļĨāđāļāļāđāļēāļĒ power āļāļĩāđāļŠāļēāļĄāļēāļĢāļāļŦāļēāđāļāđāļāđāļēāļĒ āđāļāļĒāļŠāļēāļĄāļēāļĢāļāļĢāļ§āļĄāļāļēāļĢāļāļąāļāļāļēāļĢāđāļāļŠāđāļ§āļāļāļāļ power āđāļ§āđāļāļĩāđāđāļāļĩāļĒāļ§
āđāļĨāļ°āļĒāļąāļāļĄāļĩāļāļ§āļēāļĄāļāļĨāļāļāļ āļąāļĒāļŠāļđāļāļāļĩāļāļāđāļ§āļĒ
â Easy connection: āđāļāļĩāļĒāļāđāļāđāđāļāđāļāļāļļāļāļāļĢāļāđNetwork āļāļĩāđāļĢāļāļāļĢāļąāļ āđāļĨāļ°āļĄāļĩāļāļēāļĢāđāļāļ·āđāļāļĄāļāđāļāļāđāļēāļ Ethernet cable āđāļāļĒāđāļĄāđ
āļāđāļāļāļĄāļĩ power supply āļāđāļēāļāļāļāļ
â Standard: PoE āļāđāļēāļāļāļīāļāļāļēāļĄāļĄāļēāļāļĢāļāļēāļ IEEE 802.3af āđāļĨāļ°āļŠāļēāļĄāļēāļĢāļāļāđāļēāļĒ power āđāļŦāđāļāļąāļāļāļļāļāļāļĢāļāđāļāļĩāđāļĢāļāļāļĢāļąāļāļĄāļēāļāļĢāļāļēāļ
āđāļāđāļŦāļĨāļēāļāļŦāļĨāļēāļĒāļāļāļīāļ
â Bright application prospect: PoE āļŠāļēāļĄāļēāļĢāļāļāđāļēāļĒ power āđāļŦāđāļāļąāļāļāļļāļāļāļĢāļāđāļāļēāļāļ§āļ IP phones, wireless
access points (APs), chargers for portable devices, card readers, network cameras,
āđāļĨāļ° data collection system.
71. 72
āļŠāđāļ§āļāļāļĢāļ°āļāļāļāļāļāļ PoE
PoE āļāļĢāļ°āļāļāļāļāđāļ§āļĒ 3 āļŠāđāļ§āļ: power sourcing equipment (PSE), PD, āđāļĨāļ° power
interface (PI).
â PSE: PSE āđāļāđāļāļŠāđāļ§āļāļāļĩāđāļāļĢāļ°āļāļāļāļāđāļ§āļĒāļŠāđāļ§āļāļāļāļ power āđāļĨāļ°module āļāļķāđāļāļāļ°āđāļāđāđāļāđāļāđāļāļĢāļ·āđāļāļāļĄāļ·āļāđāļāļāļēāļĢāļāđāļāļŦāļē
PD, āļāđāļāļĄāļđāļĨāļāļēāļ power āļāļāļ PD, PoE,āļāļĢāļ§āļāļŠāļāļāļāļēāļĢāļāļēāļāļēāļāļāļāļ power supply āđāļĨāļ°āļāļēāļāļēāļĢ
power-off āļāļļāļāļāļĢāļāđ
â PD: PD āļāļ°āļāļāļĒāļĢāļąāļ powerāļāļēāļ PSE āļāļķāđāļāļĄāļĩāļāļąāđāļ PDs āļāļĩāđāđāļāđāļ standard PDs āđāļĨāļ°
nonstandard PDsāđāļāļĒ Standard PDs āļāļ°āļāđāļēāļāļāļīāļāļĄāļēāļāļĢāļāļēāļ 802.3af āļāļķāđāļāļāļ°āļĄāļĩāļāļļāļāļāļĢāļāđāļŦāļĨāļēāļĒāļāļāļīāļ
āđāļāđāļ IP phones, Wireless APs, network cameras āđāļĨāļ°āļāļļāļāļāļĢāļāđāļāļ·āđāļāđ
â PI: PIs āļāđāļāļ·āļāļŠāļēāļĒ RJ45 āļāļĩāđāđāļāđāđāļāļ·āđāļāļĄāļāđāļāļĢāļ°āļŦāļ§āđāļēāļ PSE/PDs āļāļnetwork
72. 73
āļāļļāļāļāļēāļŠāļąāđāļ PoE
Operation Command
Enable the PoE feature on a port poe enable
Set the maximum output power on the port poe max-power max-power
Set the PoE management mode for the
switch
poe power-management {auto |
manual }
Set the PoE priority of a port poe priority { critical | high | low }
Set the PoE mode on the port to signal. poe mode signal
Enable the PD compatibility detection
function.
poe legacy enable
Configure a PD disconnection detection
mode.
poe disconnect { ac | dc }
Enable PoE over-temperature protection on
the switch.
Poe temperature-protection enable
73. 74
āļāļļāļāļāļēāļŠāļąāđāļ PoE
Operation Command
Upgrade the PSE processing software
online.
poe update { refresh | full } filename
Upgrade the PSE processing software of the
fabric switch online.
update fabric { file-url | device-name
file-url }
Display the current PD disconnection
detection mode of the switch
display poe disconnect
Display the PoE status of a specific port or
all ports of the switch
display poe interface [interface-type
interface-number ]
Display the PoE power information of a
specific port or all ports of the switch
display poe interface power
[ interface-type interface-number ]
Display the PSE parameters display poe powersupply
Display the status (enabled/disabled) of the
PoE over-temperature protection feature on
the switch
display poe temperature-
protection
74. 75
GigabitEthernet1/0/1 and GigabitEthernet1/0/2 are connected to IP telephones.
GigabitEthernet1/0/5 and GigabitEthernet1/0/6 are connected to access point (AP) devices.
The power priority of GigabitEthernet1/0/2 is critical.
The power of the AP device connected to GigabitEthernet1/0/5 does not exceed 9,000 milliwatts
āļāļąāļ§āļāļĒāđāļēāļāļāļļāļāļāļēāļŠāļąāđāļāđāļāļāļēāļĢāļāļē PoE
75. 76
Configuration procedure
1.Enable PoE on GigabitEthernet1/0/1, GigabitEthernet1/0/2, GigabitEthernet1/0/5, and
GigabitEthernet1/0/6.
<Sysname> system-view
[Sysname] interface gigabitethernet 1/0/1
[Sysname-GigabitEthernet1/0/1] poe enable
[Sysname-GigabitEthernet1/0/1]quit
[Sysname] interface gigabitethernet 1/0/2
[Sysname-GigabitEthernet1/0/2] poe enable
[Sysname-GigabitEthernet1/0/2]quit
[Sysname] interface gigabitethernet 1/0/5
[Sysname-GigabitEthernet1/0/5] poe enable
[Sysname-GigabitEthernet1/0/5]quit
[Sysname] interface gigabitethernet 1/0/6
[Sysname-GigabitEthernet1/0/6] poe enable
2.Set the power priority level of GigabitEthernet1/0/2 to critical.
<Sysname> system view
[Sysname] interface gigabitethernet 1/0/2
[Sysname-GigabitEthernet1/0/2] poe priority critical
3.Set the maximum power of GigabitEthernet1/0/5 to 9,000 milliwatts.
[Sysname] interface gigabitethernet 1/0/5
[Sysname-GigabitEthernet1/0/5] poe max-power 9000
āļāļąāļ§āļāļĒāđāļēāļāļāļļāļāļāļēāļŠāļąāđāļāđāļāļāļēāļĢāļāļē PoE
79. 80
āļāļļāļāļāļēāļŠāļąāđāļāđāļāļāļēāļĢāļāļēāļŦāļāļ VLANs
Operation Command
Create a VLAN and enter the VLAN View
Delete the specified VLAN
vlan vlan_id
undo vlan { vlan_id [ to vlan_id ] | all }
Add Ethernet ports to a VLAN
Remove Ethernet ports from a VLAN
port interface_list
undo port interface_list
Display information about the VLAN interface display interface vlan-interface [ vlan_id ]
Display information about the VLAN display vlan [ vlan_id | all | static | dynamic ]
âĒNote that the default VLAN, namely VLAN 1, cannot be deleted.
Specifying/Removing the VLAN Interface
Use the following command to specify/remove the VLAN interface. To implement the network layer
function on a VLAN interface, the VLAN interface must be configured with an IP address and a subnet
mask.
Create a new VLAN interface and enter VLAN Interface
View
interface vlan-interface vlan_id
Assign IP address and Subnet mask to a interface VLAN IP address [ip_address] [subnet_mask]
80. 81
Configuration Procedure
1. Create VLAN 2 and enter its view.
[Sysname]vlan 2
2. Add Ethernet1/0/1 and Ethernet1/0/2 to VLAN2.
[Sysname-vlan2]port ethernet1/0/1 to ethernet1/0/2
3. Create VLAN 3 and enter its view.
[Sysname-vlan2]vlan 3
4. Add Ethernet1/0/3 and Ethernet1/0/4 to VLAN3.
[Sysname-vlan3]port ethernet1/0/3 to ethernet1/0/4
āļāļąāļ§āļāļĒāđāļēāļāļāļļāļāļāļēāļŠāļąāđāļāđāļāļāļēāļĢāļāļēāļŦāļāļ VLAN
88. 89
Operation Command
Enable MSTP on a device. stp enable
Disable MSTP on a device. stp disable
Enable MSTP on a port. stp interface interface-list enable | disable
Setup MSTP mode configuration STP mode [MSTP | STP ]
Show the configuration information
about the current port and the switch.
display stp instance instance-id [
interface interface-list ] [ brief ]
Clear the MSTP statistics information. reset stp [ interface interface-list ]
Enable/Disable MSTP (packet
receiving/transmitting, event, error)
debugging on the port.
[ undo ] debugging stp [ interface
interface-list ] { packet | event }
āļāļēāļĢāđāļāđāļāļļāļāļāļēāļŠāļąāđāļāđāļāļāļēāļĢāļāļēāļŦāļāļ STP
89. 90
1.Configuration on Switch A
a.Configure an MST region.
<3Com> system-view
[3Com] stp region-configuration
[3Com-mst-region] region-name example
[3Com-mst-region] instance 1 vlan 10
[3Com-mst-region] instance 3 vlan 30
[3Com-mst-region] instance 4 vlan 40
[3Com-mst-region] revision-level 0
āļāļąāļ§āļāļĒāđāļēāļāļāļļāļāļāļēāļŠāļąāđāļāļāļēāļĢāļāļēāļŦāļāļ MSTP
90. 91
b.Activate MST region configuration manually.
[3Com-mst-region] active region-configuration
c.Define Switch A as the root bridge of MST instance 1.
[3Com] stp instance 1 root primary
d.View the MST region configuration information that
has taken effect.
[3Com] display stp region-configuration
Oper configuration
Format selector :0
Region name :example
Revision level :0
Instance Vlans Mapped
0 1 to 9, 11 to 29, 31 to 39, 41 to 4094
1 10
3 30
4 40
āļāļąāļ§āļāļĒāđāļēāļāļāļļāļāļāļēāļŠāļąāđāļāļāļēāļĢāļāļēāļŦāļāļ MSTP
91. 92
2.Configuration on Switch B
a.Configure an MST region.
<3Com> system-view
[3Com] stp region-configuration
[3Com-mst-region] region-name example
[3Com-mst-region] instance 1 vlan 10
[3Com-mst-region] instance 3 vlan 30
[3Com-mst-region] instance 4 vlan 40
[3Com-mst-region] revision-level 0
b.Activate MST region configuration manually.
[3Com-mst-region] active region-configuration
c.Define Switch B as the root bridge of MST instance 3.
[3Com] stp instance 3 root primary
āļāļąāļ§āļāļĒāđāļēāļāļāļļāļāļāļēāļŠāļąāđāļāļāļēāļĢāļāļēāļŦāļāļ MSTP
92. 93
d.View the MST region configuration information that
has taken effect.
[3Com] display stp region-configuration
Oper configuration
Format selector :0
Region name :example
Revision level :0
Instance Vlans Mapped
0 1 to 9, 11 to 29, 31 to 39, 41 to 4094
1 10
3 30
4 40
āļāļąāļ§āļāļĒāđāļēāļāļāļļāļāļāļēāļŠāļąāđāļāļāļēāļĢāļāļēāļŦāļāļ MSTP
93. 94
3.Configuration on Switch C
a.Configure an MST region.
<3Com> system-view
[3Com] stp region-configuration
[3Com-mst-region] region-name example
[3Com-mst-region] instance 1 vlan 10
[3Com-mst-region] instance 3 vlan 30
[3Com-mst-region] instance 4 vlan 40
[3Com-mst-region] revision-level 0
b.Activate MST region configuration manually.
[3Com-mst-region] active region-configuration
c.Define Switch C as the root bridge of MST instance 4.
[3Com] stp instance 4 root primary
āļāļąāļ§āļāļĒāđāļēāļāļāļļāļāļāļēāļŠāļąāđāļāļāļēāļĢāļāļēāļŦāļāļ MSTP
94. 95
d.View the MST region configuration information that
has taken effect.
[3Com] display stp region-configuration
Oper configuration
Format selector :0
Region name :example
Revision level :0
Instance Vlans Mapped
0 1 to 9, 11 to 29, 31 to 39, 41 to 4094
1 10
3 30
4 40
āļāļąāļ§āļāļĒāđāļēāļāļāļļāļāļāļēāļŠāļąāđāļāļāļēāļĢāļāļēāļŦāļāļ MSTP
95. 96
4.Configuration on Switch D
a.Configure an MST region.
<3Com> system-view
[3Com] stp region-configuration
[3Com-mst-region] region-name example
[3Com-mst-region] instance 1 vlan 10
[3Com-mst-region] instance 3 vlan 30
[3Com-mst-region] instance 4 vlan 40
[3Com-mst-region] revision-level 0
b.Activate MST region configuration manually.
[3Com-mst-region] active region-configuration
āļāļąāļ§āļāļĒāđāļēāļāļāļļāļāļāļēāļŠāļąāđāļāļāļēāļĢāļāļēāļŦāļāļ MSTP
96. 97
c.View the MST region configuration information that
has taken effect.
[3Com] display stp region-configuration
Oper configuration
Format selector :0
Region name :example
Revision level :0
Instance Vlans Mapped
0 1 to 9, 11 to 29, 31 to 39, 41 to 4094
1 10
3 30
4 40
āļāļąāļ§āļāļĒāđāļēāļāļāļļāļāļāļēāļŠāļąāđāļāļāļēāļĢāļāļēāļŦāļāļ MSTP
100. 101
āļāļļāļāļāļēāļŠāļąāđāļāđāļāļāļēāļĢāļāļēāļŦāļāļ VLANs āđāļāļ·āđāļāđāļāļ·āđāļāļĄāļāđāļāļŠāļ§āļīāļŠāļāđāļāļąāļ§āļāļ·āđāļ
Operation Command
Configure the port as an access port port link-type access
Configure the port as a hybrid port port link-type hybrid
Configure the port as a trunk port port link-type trunk
Restore the default link type, that is, access port undo port link-type
Add the current trunk port to specified VLANs
Remove the current trunk port from specified VLANs
port trunk permit vlan { vlan_id_list | all }
undo port trunk permit vlan { vlan_id_list | all }
Add the current hybrid port to specified VLANs port hybrid vlan vlan_id_list { tagged | untagged }
āļāļēāļĢāļāļēāļŦāļāļ Link Type āļŠāļēāļŦāļĢāļąāļ Ethernet Port
āļāļēāļĢāļāļēāļāļēāļāļāļāļ Ethernet port āļŠāļēāļĄāļēāļĢāļāđāļāđāļāđāļāđāđāļāđāļ 4 āđāļāļ link types āļāļĩāđāđāļāļāļāđāļēāļāļāļąāļāļāļ·āļ access, hybrid, trunk āđāļĨāļ°
stack āđāļāļĒ access port āļāļ°āļŠāđāļāļāđāļēāļāļāđāļāļĄāļđāļĨāļāļāļ VLAN āđāļāļĩāļĒāļ VLAN āđāļāļĩāļĒāļ§āđāļāđāļēāļāļąāđāļāđāļāđāļŠāļēāļŦāļĢāļąāļāđāļāļ·āđāļāļĄāļāđāļāļāļąāļāļāļāļĄāļāļīāļ§āđāļāļāļĢāđāđāļāđāļēāļāļąāđāļ āļŠāđāļ§āļ
trunk port āļāļ°āļŠāđāļāļāđāļēāļāļāđāļāļĄāļđāļĨāđāļāđāļĄāļēāļāļāļ§āđāļēāļŦāļāļķāđāļ VLAN āđāļĨāļ°āļĢāļąāļāļŠāđāļ packetsāđāļāđāļŦāļĨāļēāļĒāđ VLANs āļāļĢāđāļāļĄāļāļąāļ āđāļāđāļŠāļēāļŦāļĢāļąāļāđāļāļ·āđāļāļĄāļāđāļāļāļąāļ
āļĢāļ°āļŦāļ§āđāļēāļāļŠāļ§āļīāļāļāđ āļŠāđāļ§āļ hybrid port āļāļ°āļŠāđāļāļāđāļēāļāļāđāļāļĄāļđāļĨāđāļāđāļĄāļēāļāļāļ§āđāļēāļŦāļāļķāđāļ VLAN āđāļĨāļ°āļĢāļąāļāļŠāđāļ packetsāđāļāđāļŦāļĨāļēāļĒāđ VLANs āļāļĢāđāļāļĄāļāļąāļ
āđāļāđāļŠāļēāļŦāļĢāļąāļāđāļāļ·āđāļāļĄāļāđāļāļāļąāļāļĢāļ°āļŦāļ§āđāļēāļāļŠāļ§āļīāļāļāđ āđāļĨāļ°āļŠāļēāļŦāļĢāļąāļāđāļāļ·āđāļāļĄāļāđāļāļāļąāļāļāļāļĄāļāļīāļ§āđāļāļāļĢāđāļāđāļ§āļĒ āļāđāļāđāļāļāļāđāļēāļāļĢāļ°āļŦāļ§āđāļēāļ hybrid port āđāļĨāļ° trunk port
āļāļ·āļ hybrid port āļŠāļēāļĄāļēāļĢāļāļĒāļāļĄāđāļŦāđāļŠāđāļāļāđāļēāļ packets āļāļēāļāļŦāļĨāļēāļĒāđ VLANs āđāļāļĒāļŠāđāļāđāļāļāđāļĄāđāđāļāđ tags āđāļāļāđāļ§āļĒāļāļĢāđāļāļĄāđāļāļąāļāđāļāđ trunk
port āļĒāļāļĄāđāļŦāđāļŠāđāļāļāđāļēāļ packets āļāļēāļ default VLAN āđāļāļĒāļŠāđāļāđāļāļāđāļĄāđāđāļāđ tags āđāļāđāļēāļāļąāđāļ
102. 103
Configuration Procedure
Switch A:
1. Enter the GigabitEthernet interface view:
[Sysname] interface Gigabit3/1/23
2. Configure the port as a trunk port
[Sysname] port link-type trunk
3. Add the current trunk port to specified VLANs
[Sysname] port trunk permit vlan all
Switch B:
1. Enter the GigabitEthernet interface view:
[Sysname] interface Gigabit3/1/23
2. Configure the port as a trunk port
[Sysname] port link-type trunk
3. Add the current trunk port to specified VLANs
[Sysname] port trunk permit vlan all
āļāļąāļ§āļāļĒāđāļēāļāļāļļāļāļāļēāļŠāļąāđāļāļāļēāļĢāļāļēāļŦāļāļ VLANs āđāļāļ·āđāļāđāļāļ·āđāļāļĄāļāđāļāļŠāļ§āļīāļŠāļāđāļāļąāļ§āļāļ·āđāļ
103. 104
Hybrid-Port-Based VLAN
â āļāļēāļĢāļāļēāļŦāļāļ Trunk port āđāļŦāđāđāļāđāļāđāļHybrid port (āļŦāļĢāļ·āļāđāļāļāļēāļāļāļĨāļąāļāļāļąāļ) āļāļ°āļāđāļāļāļāļēāļŠāļąāđāļ Access
port āđāļāđāļāļāļēāļŠāļąāđāļāđāļāļāļēāļĢāļāļēāļŦāļāļ āļāļąāļ§āļāļĒāđāļēāļāđāļāđāļ Trunk port āļāļ°āļāđāļāļāļāļēāļŦāļāļāđāļāđāļāđāļ Access port āļāđāļāļ
āđāļĨāđāļ§āļāđāļāļĒāļāļēāļŦāļāļāđāļāđāļ Hybrid port
â āļāļąāļāļāļąāđāļāļāļ°āļāđāļāļāđāļāđāđāļāļ§āđāļēāļĄāļĩāļāļēāļĢāļāļēāļŦāļāļ VLANs āļāļĒāļđāđāļāđāļāļāđāļĨāđāļ§ āļāļķāļāļāļ°āļāļēāļāļēāļĢāļāļēāļŦāļāļāđāļāđāļ Hybrid port.
â āđāļāļĒ default VLAN IDs āļāļāļHybrid ports āļāļ°āļāļĒāļđāđāļāļ local āđāļĨāļ°āļāļ°āļāđāļāļāļāļĒāļđāđāļāļāļāļļāļāļāļĢāļāđāļāļąāļ§
āđāļāļĩāļĒāļ§āļāļąāļāđāļāđāļēāļāļąāđāļ āđāļĄāđāđāļāđāļāļāļąāđāļāļāļ°āđāļĄāđāļŠāļēāļĄāļēāļĢāļāļŠāđāļāļāđāļēāļ packets āđāļāđ
104. 105
āļāļļāļāļāļēāļŠāļąāđāļāļāļēāļĢāļāļēāļŦāļāļ VLANs āđāļāļ Hybrid
âĒ Hybrid port āļāļ°āđāļāđāļāļŠāđāļ§āļāļŦāļāļķāđāļāļāļāļāļŦāļĨāļēāļĒāđ VLANs āđāļĨāļ°āļŠāļēāļĄāļēāļĢāļāļāļēāļŦāļāļāđāļāđāđāļ Ethernet port
view āđāļāđāļēāļāļąāđāļ
Operation Command
Configure the port link type as Hybrid. port link-type hybrid
Allow the specified VLANs to pass through
the current Hybrid port.
port hybrid vlan vlan-id-list {
tagged | untagged }
Configure the default VLAN of the Hybrid port. port hybrid pvid vlan vlan-id
Display the hybrid or trunk Ports. display port { hybrid | trunk }
107. 108
âĒ āļŠāļĢāļļāļāļāļēāļĢāļāļēāļāļēāļāļāļāļ LACP
IEEE802.3ad-based Link Aggregation control protocol (LACP) āļāļ°āđāļāđāļāļēāļĢāđāļĨāļāđāļāļĨāļĩāđāļĒāļ
āļāđāļāļĄāļđāļĨāļāđāļēāļ LACP data unit (LACPADU)āđāļāļ·āđāļāļāļĢāļ§āļāļŠāļāļāļ§āđāļēāđāļŠāđāļāļāļēāļāđāļāđāļāđāļ link aggregation āļāļķāđāļāđāļĄāļ·āđāļāļĄāļĩāļāļēāļĢ
enable LACP āļŠāļ§āļīāļŠāļāđāļāļ°āļĄāļĩāļāļēāļĢāđāļāđāļāđāļāļāļĩāđ port āđāļāļĒāļāļēāļĢāļŠāđāļ LACPDU āđāļāļāļĢāļ§āļāļŠāļāļāļāđāļēāļāļāļ system priority,
system MAC, port priority, port number āđāļĨāļ° operation key āđāļĨāđāļ§āļāļēāļĄāļēāđāļāļĢāļĩāļĒāļāđāļāļĩāļĒāļāļāļąāļ āđāļāļ·āđāļāļāļēāļāļ§āļāļ§āđāļē
ports āđāļŦāļāđāļāđāļ aggregated āļāđāļēāļ āđāļĨāđāļ§āļāļķāļāļāļ°āđāļāļĢāļ°āļāļļāļ§āđāļēāđāļāđāļ dynamic aggregation group āđāļŦāļāļāļēāļĄāļĨāļēāļāļąāļ
âĒ āļāļēāļĢāļāļē Link aggregation āļŦāļĄāļēāļĒāļāļķāļāļāļēāļĢāļĢāļ§āļĄāļāļēāļĢāļāļēāļāļēāļāļāļāļ ports āđāļāđāļēāļāđāļ§āļĒāļāļąāļāļāļēāļĄāļāļēāļāļ§āļāļāļāļ ports āļāļĩāđāļĄāļĩāļāļēāļĢāļĢāļąāļ/āļŠāđāļ
āļāđāļāļĄāļđāļĨāļāļąāļāđāļāļ·āđāļāļĢāļāļāļĢāļąāļāļāļēāļĢāđāļāļ·āđāļāļĄāļāđāļāļāļĢāđāļāļĄāļāļąāļāđāļĨāļ°āđāļāđāļāļāļēāļĢāđāļāļīāđāļĄāļāļ§āļēāļĄāļāđāļēāđāļāļ·āđāļāļāļ·āļāđāļāļāļēāļĢāđāļāļ·āđāļāļĄāļāđāļāļāļąāļ āļāļķāđāļāļāļēāļĢāļāļē Link aggregation
āļāļĢāļ°āļāļāļāļāđāļ§āļĒāļāļēāļĢāļāļēāđāļāļ manual aggregation, dynamic LACP aggregation, āđāļĨāļ° static LACP
aggregation āđāļāļĢāļđāļāđāļāļāļāļāļ load sharing āļāļēāļĢāļāļē link aggregation āļāļēāļāļāļĢāļąāđāļāļāļ°āđāļāđāļāđāļāļ load sharing
aggregation āđāļĨāļ° non-load sharing aggregation
āļ āļēāļāļĢāļ§āļĄ
LACP āļāļ·āļāļāļ°āđāļĢ
108. 109
āļāļļāļāļāļēāļŠāļąāđāļāđāļāļāļēāļĢāļāļē Link Aggregation
Operation Command
Enable LACP at the port
Disable LACP at the port
lacp enable
Undo lacp enable
Create an aggregation group
Disable an aggregation group
link-aggregation group agg-id mode
{ manual | static }
Undo link-aggregation group agg-id
Configure port priority
Restore the default port priority
lacp port-priority port_priority_value
undo lacp port-priority
Disable an Ethernet port Shutdown
You cannot enable LACP at a
âĒ stack port
âĒ mirrored port
âĒ port with a static MAC address configured
âĒ port with static ARP configured
âĒ port with 802.1x enabled
âĒ port in a manual aggregation group
109. 110
āļāļąāļ§āļāļĒāđāļēāļāļāļļāļāļāļēāļŠāļąāđāļāđāļāļāļēāļĢāļāļē Link Aggregation
1. Manual link aggregation
a. Create manual aggregation group 1.
[Sysname] link-aggregation group 1 mode manual
b. Add Ethernet ports Ethernet1/0/1 to Ethernet1/0/3 into aggregation group
1.
[Sysname] interface ethernet1/0/1
[Sysname-Ethernet1/0/1] port link-aggregation group 1
[Sysname-Ethernet1/0/1] interface ethernet1/0/2
[Sysname-Ethernet1/0/2] port link-aggregation group 1
[Sysname-Ethernet1/0/2] interface ethernet1/0/3
[Sysname-Ethernet1/0/3] port link-aggregation group 1
110. 111
āļāļąāļ§āļāļĒāđāļēāļāļāļļāļāļāļēāļŠāļąāđāļāđāļāļāļēāļĢāļāļē Link Aggregation
2. Static LACP aggregation
a. Create static LACP aggregation group 1.
[Sysname]link-aggregation group 1 mode static
b. Add Ethernet ports Ethernet1/0/1 to Ethernet1/0/3 into aggregation
group 1.
[Sysname]interface ethernet1/0/1
[Sysname-Ethernet1/0/1]port link-aggregation group 1
[Sysname-Ethernet1/0/1]interface ethernet1/0/2
[Sysname-Ethernet1/0/2]port link-aggregation group 1
[Sysname-Ethernet1/0/2]interface ethernet1/0/3
[Sysname-Ethernet1/0/3]port link-aggregation group 1
3. Dynamic LACP aggregation
a.Enable LACP at Ethernet ports Ethernet1/0/1 to Ethernet1/0/3.
[Sysname]interface ethernet1/0/1
[Sysname-Ethernet1/0/1]lacp enable
[Sysname-Ethernet1/0/1]interface ethernet1/0/2
[Sysname-Ethernet1/0/2]lacp enable
[Sysname-Ethernet1/0/2]interface ethernet1/0/3
[Sysname-Ethernet1/0/3]lacp enable
116. 117
Configuration Procedure
1. If the VLAN does not currently exist, then create it. This example
uses VLAN ID 3.
[Sysname]vlan 3
[Sysname-vlan3]quit
2. Enter the VLAN interface view:
[Sysname]interface vlan-interface 3
3. Provide the IP address and subnet mask:
[Sysname-Vlan-interface3]ip address 192.168.1.5 255.255.255.0
[Sysname-Vlan-interface3]quit
āļāļēāļĢāļāļēāļŦāļāļ IP Address āļāļ VLAN interface
āđāļāļ·āđāļ route āļāđāļēāļĄ VLAN
117. 118
Operation Command
Add a static route ip route-static ip_address { mask | mask_length } { interface_type
interface_number | gateway_address } [ preference value ] [ reject |
blackhole ]
Delete a static route undo ip route-static ip_address { mask | mask_length } [
interface_type interface_number | gateway_address ] [ preference
value ] [ reject | blackhole ]
Delete all static routes delete static-routes all
āļāļļāļāļāļēāļŠāļąāđāļāđāļāļāļēāļĢāļāļēāļŦāļāļ Static Route
āļāļļāļāļāļēāļŠāļąāđāļāđāļāļāļēāļĢāļāļēāļŦāļāļ Default Route
Operation Command
Configure a default route ip route-static 0.0.0.0 { 0.0.0.0 | 0 } { interface_type interface_number
| gateway_address } [ preference value ] [ reject | blackhole ]
Delete a default route undo ip route-static 0.0.0.0 { 0.0.0.0 | 0 } [ interface_type
interface_number | gateway_address ] [ preference value ] [ reject |
blackhole ]
119. 120
Configuration procedure
1. Configure the static route for Ethernet Switch A
[Switch A]ip route-static 1.1.3.0 255.255.255.0 1.1.2.2
[Switch A]ip route-static 1.1.4.0 255.255.255.0 1.1.2.2
[Switch A]ip route-static 1.1.5.0 255.255.255.0 1.1.2.2
2. Configure the static route for Ethernet Switch B
[Switch B]ip route-static 1.1.2.0 255.255.255.0 1.1.3.1
[Switch B]ip route-static 1.1.5.0 255.255.255.0 1.1.3.1
[Switch B]ip route-static 1.1.1.0 255.255.255.0 1.1.3.1
3. Configure the static route for Ethernet Switch C
[Switch C]ip route-static 1.1.1.0 255.255.255.0 1.1.2.1
[Switch C]ip route-static 1.1.4.0 255.255.255.0 1.1.3.2
4. Configure the default gateway of the Host A to be 1.1.5.2
5. Configure the default gateway of the Host B to be 1.1.4.1
6. Configure the default gateway of the Host C to be 1.1.1.2
āļāļąāļ§āļāļĒāđāļēāļāđāļāļāļēāļĢāļāļē Typical Static Route
120. 121
Enabling RIP and Entering the RIP View
Operation Command
Enable RIP and enter RIP view
Disable RIP
RIP
undo rip
Enable RIP on the specified network
Disable RIP on the specified network
network network_address
undo network network_address
Configure unicast RIP message
Cancel unicast RIP message
peer ip_address
undo peer ip_address
Specify the interface version as RIP-1 or 2
Restore the default RIP version running on
the interface
rip version 1|2
undo rip ver
Enable the interface to run RIP rip work
Enable the interface to receive RIP update
packets
rip input
Enable the interface to send RIP update
packets
rip output
âĒNote that peer should be restricted using the following commands: rip work,
rip output, rip input and network. And rip2 default multicast address 224.0.0.9
126. 127
âĒ UDP Helper is required to support the forwarding of BootP/DHCP/DNS
requests across a routed network
VLAN1
10.x.x.x
L3
VLAN2
20.x.x.x
VLAN3
30.x.x.x
DHCP Server
(IP address=20.1.1.1)
(Multiple DHCP scopes)
BootP / DHCP / DNS Clients
(IP address=? )
IP UDP BootP request
IP Bcast: 255.255.255.255
1
Layer 3 Switch
UDP Helper: 20.1.1.1
2
3
4
DHCP/UDP Helper
127. 128
Operation Command
Configure IP address for DHCP server
Delete all DHCP server IP addresses
dhcp-server groupNo ip ipaddress1
[ ipaddress2 ]
undo dhcp-server groupNo
Configure DHCP server group corresponding to VLAN
interfaces
Delete DHCP server group
dhcp-server groupNo
undo dhcp-server
Configure user address entry for DHCP server group
Delete the user address entry in the DHCP server group
dhcp-security static ip_address
mac_address
undo dhcp-security { ip_address | all |
dynamic | static }
Enable DHCP security feature on VLAN interface
Disable DHCP security feature on VLAN interface
address-check enable
address-check disable
Display configuration information of DHCP server group display dhcp-server groupNo
Display configuration information about the DHCP Server
group corresponding to the VLAN interface
display dhcp-server interface vlan-
interface vlan_id
āļāļļāļāļāļēāļŠāļąāđāļāđāļāļāļēāļĢāļāļēāļŦāļāļ DHCP & DHCP Relay
129. 130
āļāļąāļ§āļāļĒāđāļēāļāļāļļāļāļāļēāļŠāļąāđāļāđāļāļāļēāļĢāļāļēāļŦāļāļ DHCP Relay
Configuration Procedure
1.Create a DHCP server group that will use two DHCP servers (a master and an optional backup)
and assign it the IP addresses of the two DHCP servers (the first IP address is the master).
[Sysname]dhcp-server 0 ip 192.168.1.1 192.168.2.12
Configure the Switch so all clients use DHCP server group '0'.
[Sysname]interface vlan-interface 1
[Sysname-Vlan-interface1] dhcp-server 0
[Sysname-Vlan-interface1] quit
[Sysname] interface vlan-interface 10
[Sysname-Vlan-interface10] dhcp-server 0
[Sysname-Vlan-interface10] quit
131. 132
ACL Overview
The Access Control List (ACL) āđāļāđāļāļāļēāļĢāđāļĒāļāļāļĢāļ°āđāļ āļāļāļāļ data packets āđāļāļĒāļĢāļ°āļāļļāđāļŦāđāļāļĢāļāļāļąāļ rules āļāļĩāđāļĄāļĩāļāļēāļĢ
āļāļēāļŦāļāļ source address, destination address āđāļĨāļ° port number āļāļąāļ§āļŠāļ§āļīāļāļāđāļāļ°āļāļĢāļ§āļāļŠāļāļ data packets
āļ§āđāļēāļāļĢāļāļāļąāļ rules āđāļ ACLāļŦāļĢāļ·āļāđāļĄāđ āđāļĨāļ°āļāļķāļāļĄāļēāđāļĨāļ·āļāļāļāļēāļĢāļŠāđāļ āļāļēāļĢāļāļēāļŦāļāļāļāļ§āļēāļĄāļŠāļēāļāļąāļāļŦāļĢāļ·āļāļāļēāļĢāđāļĄāđāļŠāđāļ packet āđāļāļāļēāļĢāļĢāļ°āļāļļāđāļŦāđāļāļĢāļāļāļąāļ
rules āļāļāļ network devices āļāļĩāđāļāļ°āļāļĢāļ§āļāļŠāļāļ packets āļāļąāđāļāļŦāļĨāļąāļāļāļēāļāļāļĢāļ§āļāļŠāļāļāđāļĨāđāļ§āļŠāļ§āļīāļāļāđāļāļ°āļŠāļēāļĄāļēāļĢāļāļĒāļāļĄāļĢāļąāļāļŦāļĢāļ·āļāđāļĄāđ
āļĒāļāļĄāļĢāļąāļāđāļŦāđāļĄāļĩāļŠāđāļāļāđāļēāļāļāļąāđāļāļāļ°āļāļĢāļ§āļāļŠāļāļāļāđāļēāļāļĢāļđāļāđāļāļāļāļāļ policy āļāļēāļĢāļāļēāļāļēāļāļāļāļ ACL āļāļ°āđāļāđāđāļāļĢāļ·āđāļāļāļĄāļ·āļāđāļāļāļēāļĢāļāļĢāļ§āļāļŠāļāļāļāļēāļĄāļĢāļđāļāđāļāļ
āļāļĩāđ āļāļĩāđāļ data packet āļāļĩāđāļāļĢāļāļāļąāļ rulesāļāļķāļāļāļ°āđāļāļāļĢāļ§āļāļŠāļāļāļāļąāļ ACLāđāļāđ āļŠāđāļ§āļāļāđāļēāļĄāļĩāļāļēāļĢāđāļāđāđāļāļĢāļđāļāđāļāļāļāļ·āđāļāļāļ°āđāļāđāļāđāļāļŠāđāļ§āļ traffic
classification āđāļāđāļāļāļēāļĢāļāļē traffic classification āļāļāļ QoS.
132. 133
âĒ āļŠāļēāļŦāļĢāļąāļ basic ACL statementsāļāļ°āļāļīāļāļēāļĢāļāļēāļāļēāļ source address wildcards āļĄāļēāđāļāļĢāļĩāļĒāļāđāļāļĩāļĒāļāļāļąāļ
āļāđāļē wildcards āļāļĢāļāļāļąāļ āļāļķāļāļāļ°āļāļēāļāļēāļĢāļāļēāļŦāļāļāļāļēāļĢāđāļāđāļāļēāļāđāļāļĨāļēāļāļąāļāļāđāļāđāļ
âĒ āļŠāļēāļŦāļĢāļąāļ ACL based āđāļāļāļēāļĢāļāļē interface filter āļāļ°āļāļēāđāļāļŠāđāļ§āļāļāļāļ rule āļāļĩāđāļāļ°āļāļēāļŦāļāļāđāļāļŠāđāļ§āļāļāđāļēāļĒāļāļāļāļĢāļēāļĒāļāļēāļĢ āļāļāļ°āļāļĩāđ
āđāļāļŠāđāļ§āļāļāļ·āđāļāļāđāļāļ°āļāļīāļāļēāļĢāļāļēāļāļēāļĄāļĨāļēāļāļąāļ
âĒ āļŠāļēāļŦāļĢāļąāļ advanced ACL āļāļ°āļāļīāļāļēāļĢāļāļēāļāļēāļ source address wildcards āļĄāļēāđāļāļĢāļĩāļĒāļāđāļāļĩāļĒāļāđāļāđāļāļāļąāļāļāļąāļāđāļĢāļ āļāļķāđāļāļāđāļē
āļāļĢāļāļāļąāļāļāļ°āđāļāļāļīāļāļēāļĢāļāļēāđāļāļŠāđāļ§āļāļāļāļ destination address wildcards āļĄāļēāđāļāļĢāļĩāļĒāļāđāļāļĩāļĒāļāļāļĩāļāļāļĢāļąāđāļ āļŠāļēāļŦāļĢāļąāļ destination
address wildcards āļāļĩāđāļāļĢāļāļāļąāļāļāđāļāļ°āļāļīāļāļēāļĢāļāļēāđāļāļŠāđāļ§āļāļāļāļ ranges of port numbers āļĄāļēāđāļāļĢāļĩāļĒāļāđāļāļĩāļĒāļāļāļąāļāđāļāļĢāļēāļĒāļāļēāļĢāļāļķāđāļ
āļāđāļē port numbers āļāļĢāļāļāļąāļāđāļ range āļāđāļāļ°āļĄāļĩāļāļēāļĢāļāļīāļāļēāļĢāļāļēāļāļĢāļ§āļāļŠāļāļāļāđāļāđāļ
The specific 3Com ACL
133. 134
With L2 ACL configuration, during the time range from 8:00 to 18:00 everyday the switch
filters the packets with source MAC 00e0-fc01-0101 and destination
MAC 00e0-fc01-0303
(configuring at the port GigabitEthernet2/1/1 to the switch.)
MAC 00e0-fc01-0303
MAC 00e0-fc01-0101
āļāļąāļ§āļāļĒāđāļēāļāļāļēāļĢāļāļēāļŦāļāļ L2 ACL
134. 135
1. Define the time range from 8:00 to 18:00.
[Sysname]time-range 3com 8:00 to 18:00 daily
2. Define the traffic with source MAC 00e0-fc01-0101 and destination
MAC 00e0-fc01-0303.Create a name-based L2 ACL â4000" and enter it.
[Sysname]acl number 4000
Define ACL rule for the traffic with source MAC 00e0-fc01-0101 and destination MAC
00e0-fc01-0303.
[Sysname-acl-link-traffic-of-link]rule 1 deny source 00e0-fc01-0101 0-0-0
destination 00e0-fc01-0303 0-0-0 time-range 3com
3. Activate the ACL "traffic-of-host".
[Sysname-GigabitEthernet2/1/1]packet-filter inbound link-group 4000
āļāļąāļ§āļāļĒāđāļēāļāļāļēāļĢāļāļēāļŦāļāļ L2 ACL
135. 136
1. Define the time range from 8:00 to 18:00.
[Sysname]time-range 3com 8:00 to 18:00 working-day
2. Define inbound traffic to the wage server.
Create a name-based advanced ACL "traffic-of-payserver"
and enter it.
[Sysname]acl number 3000
Define ACL rule for other departments.
[Sysname-acl-adv-traffic-of-payserver]rule 1 deny ip
source any destination 129.110.1.2 0.0.0.0 time-range
3com
Define an ACL rule for CEO's office.
[Sysname-acl-adv-traffic-of-payserver]rule 2 permit ip
source 129.111.1.2 0.0.0.0 destination 129.110.1.2
0.0.0.0
3. Activate the ACL "traffic-of-payserver".
[Sysname-GigabitEthernet2/1/1]packet-filter inbound ip-
group 3000
āļāļąāļ§āļāļĒāđāļēāļāļāļēāļĢāļāļēāļŦāļāļ advanced ACL
136. 137
āļŠāļ§āļīāļāļāđāļĢāļāļāļĢāļąāļāļĢāļđāļāđāļāļāđāļāļāļēāļĢāļāļēāļŦāļāļāļāđāļē āđāļāđ 3 āļĢāļđāļāđāļāļāļāļ·āļ SNMP (Simple Network Management
Protocol) access, Telnet access āđāļĨāļ° HTTP (Hypertext Transfer Protocol) access
āļŠāđāļ§āļāļāļēāļĢāļāļ§āļāļāļļāļĄāļāļ§āļēāļĄāļāļĨāļāļāļ āļąāļĒāļāļ°āđāļāđāļāđāļāđāļ 2 levels: Connection request control āļāļ°āđāļāđāļlevelāđāļĢāļ
āđāļāļāļēāļĢāļāļ§āļĄāļāļļāļĄāđāļĨāļ°āļāļēāļĢāļāļēāļŦāļāļ ACL configuration āđāļāļ·āđāļāđāļŦāđāđāļāđāđāļāļ§āđāļē users āļāļĩāđāļŠāļēāļĄāļēāļĢāļāđāļāđāļēāļĄāļēāļāļēāļŦāļāļāļŠāļ§āļīāļāļāđāđāļāđ
āļŠāđāļ§āļāļāļēāļĢāļāļē Password authentication āļāļ°āđāļāđāļlevel āļāļĩāđ 2 āđāļĨāļ°āđāļāđāđāļāļāļēāļ°āđāļāļāļēāļĢāđāļāļ·āđāļāļĄāļāđāļāđāļāđāļēāļāļąāđāļ āļāļķāđāļāļāđāļēāđāļāđāļ
passwordsāļāļĩāđāļāļđāļāļāđāļāļāļāđāļāļ°āļŠāļēāļĄāļēāļĢāļ log on āđāļāđāļēāđāļāļāļēāļŦāļāļāļŠāļ§āļīāļāļāđāđāļāđ
ACL Control switch support
137. 138
āļāļēāļĢāļāļēāļŦāļāļ ACL āļŠāļēāļŦāļĢāļąāļ Telnet Users
Operation Command
Enter basic ACL (System View) acl number acl_number match-order { config | auto }
Define a sub-rule (Basic ACL View)
Delete a sub-rule (Basic ACL View)
rule [ rule-id ] { permit | deny } [ source { source_addr
wildcard | any } | fragment | logging | time-range name
]*
undo rule rule_id [ source | fragment | logging | time-
range ]*
Delete an ACL or all ACLs (System View) undo acl { number acl_number | all }
Enter user interface view (System View) user-interface [ type ] first_number [ last_number ]
Import the ACL (User Interface View) acl acl_number { inbound | outbound }
Currently only number-based ACLs can be imported, with the number ranging from 2000 to 3999.
138. 139
Only the Telnet users from 10.110.100.52 and 10.110.100.46 can access the Switch.
Configuration Procedure
1. Define a basic ACL.
[Sysname]acl number 2000 match-order config
[Sysname-acl-basic-2000]rule 1 permit source 10.110.100.52 0
[Sysname-acl-basic-2000]rule 2 permit source 10.110.100.46 0
[Sysname-acl-basic-2000]quit
2. Import the ACL.
[Sysname]user-interface vty 0 4
[Sysname-ui-vty0-4]acl 2000 inbound
āļāļąāļ§āļāļĒāđāļēāļāļŠāļēāļŦāļĢāļąāļāļāļēāļĢāļāļēāļŦāļāļ ACL āļŠāļēāļŦāļĢāļąāļāļāļēāļĢ Telnet
139. 140
āļāļēāļĢāļāļēāļŦāļāļ ACL āļŠāļēāļŦāļĢāļąāļ SNMP Users
Operation Command
Import the defined ACL into the
commands with SNMP community
configured
snmp-agent community { read | write } community_name
[ [ mib-view view_name ] | [ acl acl_number ] ]*
Import the defined ACL into the
commands with SNMP group name
configured
snmp-agent group { v1 | v2c } group_name [ read-view
read_view ] [ write-view write_view ] [ notify-view
notify_view ] [ acl acl-number ]
snmp-agent group v3 group_name [ authentication |
privacy ] [ read-view read_view ] [ write-view write_view ]
[ notify-view notify_view ] [ acl acl_number ]
Import the defined ACL into the
commands with SNMP username
configured
snmp-agent usm-user { v1 | v2c } user_name group_name
[ acl acl_number ]
snmp-agent usm-user v3 user_name group_name [
authentication-mode { md5 | sha } auth_password ] [
privacy-mode des56 priv_password ] [ acl acl_number ]
âĒ SNMP community is one of the features of SNMP v1 and SNMP v2, so you import the ACL
into the commands with SNMP community configured, for the SNMP V1 and SNMP V2.
âĒ SNMP username or group name is one of the features of SNMP V2 and above, therefore you import
the ACL into the commands with SNMP username or group name configured, for the SNMP V2 and
above. If you import the ACL into both features, the Switch will filter both features for the users.
140. 141
āļāļąāļ§āļāļĒāđāļēāļāļāļēāļĢāļāļēāļŦāļāļ ACL āļŠāļēāļŦāļĢāļąāļ SNMP Users
Only SNMP server from 10.110.100.52 can access the Switch.
Configuration Procedure
1. Define a basic ACL.
[Sysname]acl number 2000 match-order config
[Sysname-acl-baisc-2000]rule 1 permit source 10.110.100.52 0
[Sysname-acl-baisc-2000]quit
2. Import the ACL.
[Sysname]snmp-agent community read 3Com acl 2000
[Sysname]snmp-agent group v2c 3Comgroup acl 2000
[Sysname]snmp-agent usm-user v2c 3Comuser 3Comgroup acl 2000
snmp_server 10.110.100.52
141. 142
āļāļēāļĢāļāļēāļŦāļāļ ACL Control āļāļāļ HTTP Users
âĒāļŠāļ§āļīāļāļāđāļāļ°āļĢāļāļāļĢāļąāļāļāļēāļĢāļāļē remote management āļāđāļēāļ Web interface āđāļāļĒ users āļŠāļēāļĄāļēāļĢāļāđāļāđāļēāļāļķāļāļŠāļ§āļīāļāļāđ
āļāđāļēāļ HTTP āļāļķāđāļāļŠāļēāļĄāļēāļĢāļāļāļēāļŦāļāļ ACL āļĄāļēāļāđāļ§āļĒāđāļāļāļēāļĢāļāļĢāļāļ users āđāļĨāļ°āļāđāļāļāļāļąāļāļāļēāļĢāđāļāđāļēāļāļķāļāļŠāļ§āļīāļāļāđ āļŦāļĨāļąāļāļāļēāļ
āļāļēāļŦāļāļāļāļēāļĢāļāļ§āļāļāļļāļĄ users āļāđāļēāļ ACL āļŠāļ§āļīāļāļāđāļāļ°āļāļēāļŦāļāļāđāļŦāđāļĄāļĩāļāļēāļĢāđāļāđ Web user āđāļāđāļāļĢāļąāđāļāđāļāļĩāļĒāļ§āđāļāļāļēāļĢāđāļāđāļēāļāļķāļāļŠāļ§āļīāļāļāđ
Operation Command
Call an ACL to control the WEB NM users. ip http acl acl_number
Cancel the ACL control function. undo ip http acl
142. 143
Only permit Web NM user from 10.110.100.46 access Switch.
Configuration Procedure
1. Define the basic ACL.
[Sysname]acl number 2030 match-order config
[Sysname-acl-basic-2030]rule 1 permit source 10.110.100.46 0
[Sysname-acl-basic-2030]quit
2. Call the basic ACL.
[Sysname]ip http acl 2030
10.110.100.46
āļāļąāļ§āļāļĒāđāļēāļāļāļēāļĢāļāļēāļŦāļāļ ACL Control āļāļāļ HTTP Users
145. 146
Stacking and clustering are industry terms that are often used
interchangeably but which technically are distinct. Here is how
3Com defines these terms:
Stacking is a technology allowing multiple discrete units to be
grouped together with the broad benefits of simplified
administration, scalable and economical growth, and high
resiliency for the collection of units in the stack.
Clustering is a simplified variation of stacking which focuses on
the benefit of simplified administration. As with stacking, there is
grouping of discrete units, but as compared with true stacking,
there are fewer capabilities that extend across units. As a result,
there are limited scalability and resiliency benefits.
About Stacking and Clustering
146. 147
Clustering and Stacking with 3Com Products
3Com Clustering 3Com Traditional Stacking 3Com XRN Stacking
Devices 4210, 4200G, 4500,.4500G, 5500,5500G 4400, 5500-SI, 4500, 3870 5500-EI, 5500G-EI
Dedicated bandwidth No Yes Yes
Layer 2 Yes Yes Yes
Layer 3 No No Yes
Stack/Cluster
Resiliency
No Yes Yes
Mix of families Yes No No
One mgmt point of
contact
Yes Yes Yes
Single IP Yes Yes Yes
Link Aggregation
across units
No Yes Yes
147. 148
Configuration Procedure
1. Configure the management device.
Enable the cluster function.
[3Com] cluster enable
Enter cluster view.
[3Com] cluster
[3Com-cluster]
Configure an IP address pool for the cluster. The IP address pool contains
six IP addresses, starting from 172.16.0.1.
[3Com-cluster] ip-pool 172.16.0.1 255.255.255.248
āļāļąāļ§āļāļĒāđāļēāļāļŠāļēāļŦāļĢāļąāļāļāļēāļĢāļāļēāļŦāļāļ Cluster management
148. 149
Specify a name for the cluster and create the cluster.
[3Com-cluster] build aaa
[aaa_0.3Com-cluster]
Configure the holdtime of the member device information to be 100 seconds.
[aaa_0.3Com-cluster] holdtime 100
Configure the interval to send handshake packets to be 10 seconds.
[aaa_0.3Com-cluster] timer 10
2. Configure the member devices
Enable the cluster function.
[3Com] cluster enable
Upon the completion of the above configurations, you c
cluster switch-to { member-num | mac-address H-H-H } command
on the management device to switch to member device view to
maintain and manage a member device. You can then execute the
cluster switch-to administrator command to resume the
management device view.
āļāļąāļ§āļāļĒāđāļēāļāļŠāļēāļŦāļĢāļąāļāļāļēāļĢāļāļēāļŦāļāļ Cluster management
150. 151
Operation Command
Display the information about directoriesor files dir [ / all ] [ file-url ]
Copy a file copy fileurl-source fileurl-dest
Delete a file from the recycle bin permanently reset recycle-bin file-url
Delete a file
Undelete a file
delete [ /unreserved ] file-url
undelete file-url
Format the storage device format filesystem
Display the saved-configuration information of the
Switch
display saved-configuration
Display the current-configuration information of the
Switch
display current-configuration [ controller |
interface interface-type [ interface-number ] |
configuration [ configuration ] ] [ | { begin |
exclude | include } regular-expression ]
Save the current-configuration save [ file-name | safely ]
Erase configuration files from Flash Memory reset saved-configuration
Move a file move fileurl-source fileurl-dest
āļāļļāļāļāļēāļŠāļąāđāļ File Operation
151. 152
FTP Overview
FTP āđāļāđāļāļ§āļīāļāļĩāđāļāļāļēāļĢāļĢāļąāļāļŠāđāļāđāļāļĨāđāļāļ Internet āđāļĨāļ° IP network āļāļķāđāļāļāđāļāļāļāļĩāđāļāļ°āļĄāļĩāļāļēāļĢāđāļāđāļāļēāļ
World Wide Web (WWW) āļāļēāļĢāļĢāļąāļāļŠāđāļāđāļāļĨāđāļāļ°āļŠāļēāļĄāļēāļĢāļāļāļēāđāļāđāđāļ command line mode āđāļĨāļ°
FTP āļāđāđāļāđāļāļ§āļīāļāļĩāļāļēāļĢāļāļĩāđāļāļīāļĒāļĄāđāļāļāļēāļĢāļĢāļąāļāļŠāđāļāđāļāļĨāđāđāļāļāļāļ°āļāļąāđāļ āļāļāļāļĢāļ°āļāļąāđāļāļāļąāļāļāļļāļāļąāļāļāļ°āđāļāļĨāļĩāļĒāļāđāļāđāļāļāļēāļĢāļĢāļąāļāļŠāđāļāđāļāļĨāđāļāđāļēāļ email
āđāļĨāļ° Web āđāļāļ
āļŠāļ§āļīāļāļāđāļŠāļēāļĄāļēāļĢāļāļāļēāļŦāļāļāļāļēāļĢāļāļē FTP services āđāļāđ:
- FTP server: āļŠāļēāļĄāļēāļĢāļāļĢāļąāļāđāļāļĢāđāļāļĢāļĄ FTP client āđāļāļāļēāļĢlog in āđāļāļāļĩāđ server āđāļĨāļ°āļŠāļēāļĄāļēāļĢāļāļĢāļąāļāļŠāđāļāđāļāļĨāđ
āđāļāđ
- FTP client: āļŦāļĨāļąāļāļāļēāļāđāļāļ·āđāļāļĄāļāđāļāļāļąāļ serverāļāđāļēāļāļāļēāļĢāļĢāļąāļāđāļāļĢāđāļāļĢāļĄ terminal emulator āļŦāļĢāļ·āļ Telnet
āļāļ°āļŠāļēāļĄāļēāļĢāļāļĢāļąāļāļŠāđāļāđāļāļĨāđāđāļāļĒāđāļāđ FTP command.
ftp protocol
152. 153
Operation Command
Enable the FTP server
Disable the FTP server
ftp server enable
undo ftp server
Create new local user and enter local
User View (System View)
local-user username
Delete local user (System View) undo local-user [ username | all [ service-type ftp ] ]
Configure password for local user (Local
User View)
password [ cipher | simple ] password
Configure service type for local user
(Local User View)
service-type ftp ftp-directory directory
Configure FTP server connection timeouts ftp timeout minute
By default, the FTP server connection timeout is 30
minutes.
Display FTP server
Display the connected FTP users.
display ftp-server
display ftp-user
āļāļļāļāļāļēāļŠāļąāđāļāđāļāļāļēāļĢāļāļēāļŦāļāļāļŠāļ§āļīāļŠāļāđāđāļāđāļ FTP Server
153. 154
āļāļēāļĢāļāļēāļŦāļāļāļŠāļ§āļīāļŠāļāđāđāļāđāļ FTP Server
FTP Server Configuration Example
âĒThe Switch serves as FTP server and the remote PC as FTP client. The configuration
on FTP server: Configure a FTP user named as Switch, with password hello and with
read and write authority over the flash root directory on the PC. The IP address of a
VLAN interface on the Switch is 1.1.1.1, and that of the PC is 1.1.1.2. The Switch and
PC are reachable.
âĒThe Switch application switch.app is stored on the PC. Using FTP, the PC can upload
the switch.app from the remote FTP server and download the config.cfg from the FTP
server for backup purpose.
ftp client 1.1.1.2
ftp server 1.1.1.1
154. 155
1. Configure the Switch
Log into the Switch (locally through the Console port or remotely using Telnet).
<Sysname>
2. Start FTP function and set username, password and file directory.
[Sysname]ftp server enable
[Sysname]local-user switch
[Sysname-luser-switch]service-type ftp ftp-directory flash:
[Sysname-luser-switch]password simple hello
3. Run FTP client on the PC and establish FTP connection. Upload the switch.app
to the Switch under the Flash directory and download the config.cfg from the
Switch. FTP client is not shipped with the Switch, so you need to buy it separately.
4. When the uploading is completed, initiate the file upgrade on the Switch.
<Sysname>
Use the boot boot-loader command to specify the downloaded program as the
application at the next login and reboot the Switch.
<Sysname> boot boot-loader switch.app
<Sysname> reboot
āļāļąāļ§āļāļĒāđāļēāļāļāļļāļāļāļēāļŠāļąāđāļāđāļāļāļēāļĢāļāļēāļŦāļāļāļŠāļ§āļīāļŠāļāđāđāļāđāļ FTP Server
155. 156
āļāļąāļ§āļāļĒāđāļēāļāļāļļāļāļāļēāļŠāļąāđāļāđāļāļāļēāļĢāļāļēāļŦāļāļāļŠāļ§āļīāļŠāļāđāđāļāđāļ FTP Client
âĒ on the PC. The IP address of a VLAN interface on the Switch is 1.1.1.1, and that of the
PC is 1.1.1.2. The Switch and PC are reachable.
âĒ The Switch application switch.app is stored on the PC. Using FTP, the Switch can
downloadthe switch.app from the remote FTP server and upload the config.cfg to the
FTP server under the Switch directory for backup purpose.
Configuration Procedure
1. Configure the FTP server parameters on the PC: a user named as Switch, password
hello, read and write authority over the Switch directory on the PC.
2. Configure the Switch Log into the Switch (locally through the Console port or
remotely using Telnet).
<Sysname>
<Sysname> ftp 2.2.2.2
Trying ... Press CTRL+K to abort
Connected.
220 WFTPD 2.0 service (by Texas Imperial Software) ready for new user
User(none):switch
331 Give me your password, please
Password:*****
230 Logged in successfully
[ftp]
156. 157
3. Type in the authorized directory of the FTP server.
[ftp]cd switch
4. Use the put command to upload the config.cfg to the FTP server.
[ftp]put config.cfg
5. Use the get command to download the switch.app from the FTP server to the flash
directory on the FTP server.
[ftp]get switch.app
6. Use the quit command to release FTP connection and return to User View.
[ftp]quit
<Sysname>
7. Use the boot boot-loader command to specify the downloaded program as the
application at the next login and reboot the Switch.
<Sysname> boot boot-loader switch.app
<Sysname> reboot
āļāļąāļ§āļāļĒāđāļēāļāļāļļāļāļāļēāļŠāļąāđāļāđāļāļāļēāļĢāļāļēāļŦāļāļāļŠāļ§āļīāļŠāļāđāđāļāđāļ FTP Client
157. 158
TFTP Client Configuration Example
âĒThe Switch serves as TFTP client and the remote PC as TFTP server. Authorized
TFTP directory is set on the TFTP server. The IP address of a VLAN interface on
the Switch is 1.1.1.1, and that of the PC is 2.2.2.2. The interface on the Switch
connecting the PC belong to the same VLAN.
Run TFTP server
IP 1.1.1.2
âĒThe Switch application switch.app is stored on the PC. Using TFTP, the Switch can
download the switch.app from the remote TFTP server and upload the config.cfg to
the TFTP server under the Switch directory for backup purpose.
IP 1.1.1.1
āļāļēāļĢ Download Files āđāļāļĒāđāļāđ TFTP