|
|
Use the session command to open a session with the ATM module or the RSM, allowing you to use the ATM or RSM CLI.
session mod_num
mod_num | Number of the ATM or RSM module. |
This command has no default setting.
Switch command.
Privileged.
After you enter this command, the system responds with the Enter Password: prompt, if one is configured on the module.
To end the session with the ATM module or RSM, enter the quit command.
Use the session command to toggle between router and switch sessions.
This command is not supported by the three-port Gigabit Ethernet switching module (WS-X5403).
This example shows how to open a session with an ATM module (module 4):
Console> session 4
Trying ATM-4... Connected to ATM-4. Escape character is `^]'. ATM>
Use the set command to display all of the ROM monitor variable names with their values.
setThis command has no arguments or keywords.
This command has no default setting.
ROM monitor command.
Normal.
This example shows how to use the set command to display all of the monitor variable names with their values:
rommon 2 > set
PS1=rommon ! > BOOT= ?=0
Use the set alias command to define aliases (shorthand versions) of commands.
set alias name command [parameter] [parameter]
name | Alias being created. |
command | Command for which the alias is being created. |
parameter | (Optional) Parameters that apply to the command for which an alias is being created. See the specific command for information about parameters that apply. |
No aliases configured.
Switch command.
Privileged.
The name all cannot be defined as an alias. Reserved words cannot be defined as aliases.
This example shows how to set arpdel as the alias for the clear arp command:
Console> (enable) set alias arpdel clear arp
Command alias added. Console> (enable)
Use the set arp command to add mapping entries to the ARP table and to set the ARP aging time for the table.
set arp ip_addr hw_addr [route_descr]
ip_addr | IP address or IP alias to map to the specified MAC address. |
hw_addr | MAC address to map to the specified IP address or IP alias. |
route_descr | (Optional) Route descriptor. The maximum number of route descriptors allowed in the route_descr parameter is 14. |
Keyword to set the period of time after which an ARP entry is removed from the ARP table. | |
agingtime | Number of seconds (from 1 to 1,000,000) that entries will remain in the ARP table before being deleted. Setting this value to 0 disables aging. |
No ARP table entries exist; ARP aging is set to 1200 seconds.
Switch command.
Privileged.
This example shows how to map IP address 198.133.219.232 to MAC address 00-00-0c-40-0f-bc:
Console> (enable) set arp 198.133.219.232 00-00-0c-40-0f-bc
ARP entry added.
Console> (enable)
This example shows how to set the aging time for the ARP table to 1800 seconds:
Console> (enable) set arp agingtime 1800
ARP aging time set to 1800 seconds. Console> (enable)
Use the set authentication enable command to enable authentication using the TACACS+ server to determine if a user has privileged access permission.
set authentication enable {tacacs | local} {enable | disable}
tacacs | Keyword to specify the use of the TACACS+ server to determine if the user has privileged access permission. |
local | Keyword to specify the use of the local password to determine if the user has privileged access permission. |
enable | Keyword to enable TACACS+ authentication for login. |
disable | Keyword to disable TACACS+ authentication for login. |
The default setting of this command is local authentication enabled and TACACS+ authentication disabled.
Switch command.
Privileged.
This example shows how to use the TACACS+ server to determine if a user has privileged access permission:
Console> (enable) set authentication enable tacacs enable
Tacacs Enable authentication set to enable. Console> (enable)
This example shows how to use the local password to determine if the user has privileged access permission:
Console> (enable) set authentication enable local enable
Local Enable authentication set to enable. Console> (enable)
set authentication login
show tacacs
Use the set authentication login command to enable TACACS+ authentication for login.
set authentication login {tacacs | local} {enable | disable}
tacacs | Keyword to specify the use of the TACACS+ server password to determine if the user has access permission to the switch. |
local | Keyword to specify the use of the local password to determine if the user has access permission to the switch. |
enable | Keyword to enable TACACS+ authentication for login. |
disable | Keyword to disable TACACS+ authentication for login. |
The default setting of this command is local authentication enabled and TACACS+ authentication disabled.
Switch command.
Privileged.
This example shows how to use the TACACS+ server to authenticate access permission to the switch:
Console> (enable) set authentication login tacacs enable
Tacacs Login authentication set to enable. Console> (enable)
This example shows how to use the local password to authenticate access permission to the switch:
Console> (enable) set authentication login local enable
Local Login authentication set to enable. Console> (enable)
set authentication enable
show tacacs
Use the set banner motd command to program an MOTD banner to appear before session login.
set banner motd c [text] c
c | Delimiting character used to begin and end the message. |
text | (Optional) Message of the day. |
This command has no default setting.
Switch command.
Privileged.
This example shows how to set the message of the day using the pound sign (#) as the delimiting character:
Console> (enable) set banner motd #
** System upgrade at 6:00am Tuesday.
** Please log out before leaving on Monday. #
MOTD banner set. Console> (enable>
This example shows how to clear the message of the day:
Console> (enable) set banner motd ##
MOTD banner cleared. Console> (enable>
Use the set boot config-register command to set the boot configuration register value.
set boot config-register [0xvalue] [mod_num]
0xvalue | (Optional) Keyword to set the 16-bit configuration register value. |
mod_num | (Optional) Module number of the Supervisor Engine III containing the Flash device. |
baud | (Optional) Keyword to set the console baud rate. |
1200 | 2400 | 4800 | 9600 | (Optional) Keywords to specify baud rate. |
ignore-config | (Optional) Keywords to set the ignore-config feature. When enabled, causes system software to ignore the configuration information stored in NVRAM the next time the switch is restarted. |
enable | (Optional) Keyword to enable the ignore-config feature. |
disable | (Optional) Keyword to disable the ignore-config feature. |
boot | Keyword to specify the boot image to use on the next restart. |
rommon | (Optional) Keyword to specify booting from the ROM monitor. |
bootflash | (Optional) Keyword to specify booting from the bootflash. |
system | (Optional) Keyword to specify booting from the system. |
The ROM monitor defaults are as follows:
Switch command.
Privileged.
We recommend that you use only the rommon and system options to the set boot config-register boot command.
Each time you enter one of the set boot config-register commands, the system displays all current configuration-register information (the equivalent of entering the show boot command).
The baud rate specified in the configuration register is used by the ROM monitor only and is different from the baud rate specified by the set system baud command.
 | Caution Enabling the ignore-config parameter is the same as entering the clear config all command; that is, it clears the entire configuration stored in NVRAM the next time the switch is restarted. |
This example shows how to specify booting from the ROM monitor:
Console> (enable) set boot config-register rommon
Configuration register is 0x100 ignore-config: disabled console baud: 9600 boot: the ROM monitor Console> (enable)
This example shows how to specify the default 16-bit configuration register value:
Console> (enable) set boot config-register 0x10f
Configuration register is 0x10f break: disabled ignore-config: disabled console baud: 9600 boot: image specified by the boot system commands Console> (enable)
This example shows how to change the ROM monitor baud rate to 4800:
Console> (enable) set boot config-register baud 4800
Configuration register is 0x90f ignore-config: disabled console baud: 4800 boot: image specified by the boot system commands Console> (enable)
This example shows how to enable the ignore-config option:
Console> (enable) set boot config-register ignore-config enable
Configuration register is 0x94f ignore-config: enabled console baud: 4800 boot: image specified by the boot system commands Console> (enable)
This example shows how to specify rommon as the boot image to use on the next restart:
Console> (enable) set boot config-register boot rommon
Configuration register is 0x100 ignore-config: disabled console baud: 9600 boot: the ROM monitor Console> (enable)
Use the set boot system flash command to set the BOOT environment variable which specifies a list of images that the switch loads at startup.
set boot system flash device:[filename] [prepend] [mod_num]
device: | Device where the Flash resides. |
filename | (Optional) Name of the configuration file. |
prepend | (Optional) Keyword to place the device first in the list of boot devices. |
mod_num | (Optional) Module number of the Supervisor Engine III containing the Flash device. |
This command has no default setting.
Switch command.
Privileged.
A colon (:) is required after the specified device.
You can enter several boot system commands to provide a fail-safe method for booting the switch. The system stores and executes the boot system commands in the order in which you enter them. Remember to clear the old entry when building a new image with a different filename in order to use the new image.
If the file does not exist (for example, if you entered the wrong filename), then the filename is appended to the bootstring, and a message displays, "Warning: File not found but still added in the bootstring."
If the file does exist, but is not a Supervisor Engine III image, the file is not added to the bootstring, and a message displays, "Warning: file found but it is not a valid boot image."
This example shows how to append the filename cat5k_r47_2.cbi on device slot0 to the BOOT environment variable:
Console> (enable) set boot system flash slot0:cat5k_r47_2.cbi
BOOT variable = slot0:cat5k_r47_1.cbi;slot0:cat5k_r47_2.cbi;
Console> (enable)
This example shows how to prepend bootflash:c to the beginning of the boot string:
Console> (enable) set boot system flash bootflash:c prepend
Console> (enable)
Use the set bridge apart command to enable or disable APaRT on FDDI.
set bridge apart {enable | disable}
enable | Keyword to activate APaRT on FDDI. |
disable | Keyword to deactivate APaRT on FDDI. |
The default configuration has APaRT enabled.
Switch command.
Privileged.
This example shows how to disable APaRT:
Console> (enable) set bridge apart disable
APaRT disabled Console> (enable)
Use the set bridge fddicheck command to enable or disable the relearning of MAC addresses (as FDDI MAC addresses) that were already learned from an Ethernet interface (as Ethernet MAC addresses).
set bridge fddicheck {enable | disable}
enable | Keyword to permit FDDI to relearn MAC addresses learned from an Ethernet interface. |
disable | Keyword to prevent FDDI from relearning MAC addresses learned from an Ethernet interface. |
The default configuration has fddicheck disabled.
Switch command.
Privileged.
When fddicheck is enabled, a MAC address seen on the FDDI ring is not learned (stored in FDDI CAM) as an FDDI MAC address if the MAC address was previously learned from an Ethernet interface (as an Ethernet MAC address).
Thus, with fddicheck enabled, MAC addresses previously learned from an Ethernet interface will not be relearned on the FDDI interface until the CAM is cleared.
This command requires information from the FDDI CAM. Therefore, disabling APaRT also automatically disables fddicheck. To enable fddicheck, first enable APaRT.
This example shows how to enable fddicheck on the switch:
Console> (enable) set bridge fddicheck enable
FDDICHECK enabled Console> (enable)
Use the set bridge ipx 8022toether command to set the default method for translating IPX packets from FDDI 802.2 to Ethernet. The default translation method specified is used only until the real protocol types are learned.
set bridge ipx 8022toether {8023 | snap | eii | 8023raw}
8023 | Keyword to specify Ethernet 802.3 as the default translation method. |
snap | Keyword to specify Ethernet SNAP as the default translation method. |
eii | Keyword to specify Ethernet II as the default translation method. |
8023raw | Keyword to specify Ethernet 802.3 RAW as the default translation method. |
The default translation method for FDDI 802.2 to Ethernet networks is 8023 (Ethernet 802.3).
Switch command.
Privileged.
This example shows how to set the default protocol to SNAP for translating IPX packets between FDDI 802.2 and Ethernet networks:
Console> (enable) set bridge ipx 8022toether snap
8022 to ETHER translation set. Console> (enable)
Use the set bridge ipx 8023rawtofddi command to set the default method for translating IPX packets from Ethernet 802.3 to FDDI. The default translation method specified is used only until the real protocol types are learned.
set bridge ipx 8023rawtofddi {8022 | snap | fddiraw}
8022 | Keyword to specify FDDI 802.2 as the default translation method. |
snap | Keyword to specify FDDI SNAP as the default translation method. |
fddiraw | Keyword to specify FDDI RAW as the default translation method. |
The default translation method for Ethernet 802.3 to FDDI networks is SNAP (FDDI SNAP).
Switch command.
Privileged.
This example shows how to set the default translation method to FDDI SNAP for translating IPX packets between Ethernet 802.3 and FDDI networks:
Console> (enable) set bridge ipx 8023rawtofddi snap
8023RAW to FDDI translation set. Console> (enable)
Use the set bridge ipx snaptoether command to set the default method for translating IPX FDDI SNAP frames to Ethernet frames. The default translation specified is used for all broadcast IPX SNAP frames and for any unlearned Ethernet MAC addresses.
set bridge ipx snaptoether {8023 | snap | eii | 8023raw}
8023 | Keyword to specify Ethernet 802.3 as the default frame type. |
snap | Keyword to specify Ethernet SNAP as the default frame type. |
eii | Keyword to specify Ethernet II as the default frame type. |
8023raw | Keyword to specify Ethernet 802.3 RAW as the default frame type. |
The default translation method for translating IPX FDDI SNAP frames to Ethernet frames is 8023raw (Ethernet 802.3 RAW).
Switch command.
Privileged.
This example shows how to set the default method for translating IPX FDDI SNAP frames to Ethernet frames to SNAP:
Console> (enable) set bridge ipx snaptoether snap
Bridge snaptoether default IPX translation set. Console> (enable)
Use the set cam command to add entries into the CAM table and to set the aging time for the CAM table.
set cam {dynamic | static | permanent} {unicast_mac | multicast_mac | route_descr} mod_num/port_nums [vlan]
dynamic | Keyword to specify that entries are subject to aging. |
static | Keyword to specify that entries are not subject to aging. Static (nonpermanent) entries will remain in the table until the system is reset. |
permanent | Keyword to specify that permanent entries are stored in NVRAM until they are removed by the clear cam or clear config command. |
unicast_mac | MAC address of the destination host used for a unicast. |
multicast_mac | MAC address of the destination host used for a multicast. |
route_descr | Route descriptor of the "next hop" relative to this switch. This variable is entered as two hexadecimal bytes in the following format: 004F. |
mod_num | Number of the module. |
port_nums | Number of a specific port. |
vlan | (Optional) Number of the VLAN. This number is optional unless you are setting CAM entries to dynamic, static, or permanent for a trunk port, or if you are using the agingtime keyword. |
agingtime | Keyword to set the period of time after which an entry is removed from the table. |
agingtime | Number of seconds (0 to 1,000,000) that dynamic entries remain in the table before being deleted. Setting aging time to 0 disables aging. |
The default configuration has a local MAC address, spanning-tree address (01-80-c2-00-00-00), and CDP multicast address for destination port 1/3 (the NMP). The default aging time for all configured VLANs is 300 seconds.
Switch command.
Privileged.
If the given MAC address is a multicast address (the least significant bit of the most significant byte is set to 1) or broadcast address (ff-ff-ff-ff-ff-ff) and multiple ports are specified, the ports must all be in the same VLAN. If the given address is a unicast address and multiple ports are specified, the ports must be in different VLANs.
The set cam command does not support the RSM.
If you enter a route descriptor with no VLAN parameter specified, the default is the VLAN already associated with the port. If you enter a route descriptor, you may only use a single port number (of the associated port).
This example shows how to set the CAM table aging time to 300 seconds:
Console> (enable) set cam agingtime 1 300
Vlan 1 CAM aging time set to 300 seconds. Console> (enable)
This example shows how to add a unicast entry to the table for module 2, port 9:
Console> (enable) set cam static 00-00-0c-a0-03-fa 2/9
Static unicast entry added to CAM table. Console> (enable)
This example shows how to add a permanent multicast entry to the table for module 1, port 1, and module 2, ports 1, 3, and 8 through 12:
Console> (enable) set cam permanent 01-40-0b-a0-03-fa 1/1,2/1,2/3,2/8-12
Permanent multicast entry added to CAM table. Console> (enable)
Use the set cdp command to enable or disable the CDP information display on specified ports.
set cdp {enable | disable} {mod_num/port_num | all}
enable | Keyword to enable the CDP information display. |
disable | Keyword to disable the CDP information display. |
mod_num | Number of the module. |
port_num | Number of the port. |
all | Keyword to specify all ports. |
The default system configuration has CDP enabled.
Switch command.
Privileged.
The ATM module does not support CDP.
This example shows how to enable the CDP message display for port 1 on module 2:
Console> (enable) set cdp enable 2/1
CDP enabled on port 2/1. Console> (enable)
This example shows how to disable the CDP message display for port 1 on module 2:
Console> (enable) set cdp disable 2/1
CDP disabled on port 2/1. Console> (enable)
Use the set cdp interval command to set the message interval for CDP.
set cdp interval {mod_num/port_num | all} interval
mod_num | Number of the module. |
port_num | Number of the port. |
all | Keyword to specify all ports. |
interval | Number of seconds (5 to 900) the system waits before sending a message. |
The default has the message interval set to 60 seconds for every port.
Switch command.
Privileged.
This example shows how to configure CDP on all ports and set the message interval to 100 seconds:
Console> (enable) set cdp enable all
CDP enabled for all ports. Console> (enable) set cdp interval all 100
CDP message interval set to 100 seconds for all ports. Console> (enable) show cdp port
Port CDP Status Message-Interval -------- ---------- ---------------- 1/1 enabled 100 1/2 enabled 100 5/1 enabled 100 Console> (enable) show cdp neighbors
Capability Codes: R - Router, T - Trans Bridge, B - Source Route Bridge
S - Switch, H - Host, I - IGMP, r - Repeater
Port Device-ID Port-ID Platform Capability
-------- ----------------------- ----------------- ------------------ ----------
1/1 002267633 3/3 WS-C5000 T S
Use the set cgmp command to enable or disable CGMP on a device.
set cgmp {enable | disable}
enable | Keyword to enable CGMP on a device. |
disable | Keyword to disable CGMP on a device. |
By default, CGMP is disabled.
Switch command.
Privileged.
CGMP filtering requires a network connection from the Catalyst 5000 series switch to an external router running CGMP.
This example shows how to enable CGMP on a device:
Console> (enable) set cgmp enable
CMGP support for IP multicast enabled.
Console> (enable)
This example shows how to disable CGMP on a device:
Console> (enable) set cgmp disable
CMGP support for IP multicast disabled.
Console> (enable)
This example shows what happens if you try to enable CGMP if IGMP is already enabled:
Console> (enable) set cgmp enable
Disable IGMP Snooping feature to enable CGMP. Console> (enable)
clear multicast router
set multicast router
show multicast group
show multicast group count
Use the set cgmp leave command to enable or disable CGMP leave processing.
set cgmp leave {enable | disable}
enable | Keyword to enable CGMP leave processing. |
disable | Keyword to disable CGMP leave processing. |
By default, CGMP leave processing is disabled.
Switch command.
Privileged.
This example shows how to enable CGMP leave processing:
Console> (enable) set cgmp leave enable
CMGP support for leave processing enabled.
Console> (enable)
This example shows how to disable CGMP leave processing:
Console> (enable) set cgmp leave disable
CMGP support for leave processing disabled.
Console> (enable)
clear multicast router
set multicast router
show multicast group
show multicast group count
show cgmp leave
Use the set enablepass command to change the password for the privileged level of the CLI.
set enablepassThis command has no arguments or keywords.
The default configuration has no enable password configured.
Switch command.
Privileged.
The command prompts you for the old password. If the password you enter is valid, you are prompted to enter a new password and to verify the new password. A zero-length password is allowed.
This example shows how to establish a new password:
Console> (enable) set enablepass
Enter old password: <old_password>
Enter new password: <new_password>
Retype new password: <new_password>
Password changed. Console> (enable)
|
|