Beruflich Dokumente
Kultur Dokumente
Agenda
Session 1
- Alcatel-Lucent Products Overview
- AOS Basic &
Session 2
- AOS L2 Training &
Session 3
- AOS L3 Training &
Session 4
- AOS Security Training, T.S &
Session 1
Enterprise Business Group
NIBU
Agenda
Session 1
1) Alcatel-Lucent Products Overview
2) AOS Basic
- Switch
- Switch Booting
- Alcatel Operating System
- Hardware
- AOS Upgrade
- Switch
- SNMP
- DHCP
3)
Alcatel-Lucent Products
Overview
Distributed Layer/
Medium Scale
Access Layer/
Small Scale
Router(WAN)
OmniStack 6200
OmniPCX Office
7750/7450
OmniSwitch
7800
OmniSwitch
6600/ 6602
OmniSwitch
6400
OmniSwitch
9800/9700
OmniSwitch
9600
OAW 6000s/SUP-III
OmniAccess 780
OmniSwitch
6855
OmniSwitch
7700
WLAN
VoIP
OAW4x04
OAW 4324/08/04
OmniPCX Enterprise
OmniAccess 740
OmniSwitch
6850/ 6850Lite
OmniAccess 720s
IP Phone
OAW-AP 4x/6x/70/12x/85
OmniVista 2500
Mobile
NAC
Brick Family
Vital Suite/QIP
Safeguard
Cybergatekeeper
Firewall/ VPN
Performance Management
Quarantine Manager
NLG3500
AOS Training
Agenda
Session 1
1) Alcatel-Lucent Products Overview
2) AOS Basic
- Switch
- Switch Booting
- Alcatel Operating System
- Hardware
- AOS Upgrade
- Switch
- SNMP
- DHCP
3)
Part 1 : Switch
Switch
1. password
User = admin
Password = switch
2. Switch system time timezone
->system timezone kst
->system time HH:MM:SS
->system time-and-date synchro
: CMM redundancy
->show system
3. Switch Reboot
->reload
->reload working no rollback-timeout
4. AAA - Web, telnet, ftp, etc.
->aaa authentication default local
5. Save configuration
->write memory
System:
Description: 6.1.1.645.R01 GA, February 02, 2006.,
Object ID: 1.3.6.1.4.1.6486.800.1.1.2.1.8.1.1,
Up Time:
1 Sessions 14 hours 6 minutes and 45 seconds,
Contact:
Alcatel Internetworking, www.alcatel.com/enterp
Name:
,
Location:
Unknown,
Services:
72,
Date & Time: WED MAR 14 2012 13:33:26 (GMT)
Flash Space:
Primary CMM:
Available (bytes): 79794176,
Comments
: None
Secondary CMM:
Available (bytes): 76961792,
Comments
: None
6.
-> copy working certified flash-synchro
Part 1 : Switch
- local
- Default console local
- aaa authentication denied login
id/pw
2. AAA local
-> aaa authentication default local
3. AAA deny
-> no aaa authentication http
Part 1 : Switch
9600
parity
none
stop bits
Console Port
PC Com Port
DB-9(male)
DB-9(female)
Pins
Signals
DB9
RJ45
n/c
n/c
Pins
Signals
not used
not used
TXD
TXD
n/c
RXD
RXD
not used
not used
Ground
Ground
not used
not used
n/c
not used
not used
not used
not used
not used
not used
Direction
DB-9 to RJ-45
Part 1 : Switch
Straightthrough
EMP to a Computer or
Workstation
Crossover
Crossover
Straightthrough
Component LEDs
CMM OK1
On
CMM OK2
CMM TEMP
On
CMM FAN
On
NI OK1
On
NI OK2
Power Supply AC OK
On
Power Supply DC OK
On
Off
Part 1 : Switch
Directory
1. OS9000 128MB flash Memory /flash /working, /certified directory
Image rollback .
(OS8800,OS7000, OS6600 : 32M OS6800 : 64M flash memory)
2. /flash/working /flash/certified , directory
Switch /flash/working
3. Booting /flash/working /flash/certified , /flash/certified
.
4. Switch /flash/working directory , write memory /flash
/working/boot.cfg .
Directory
Directory
Configuration
CMM
Working directory certified directory
-> copy working certified
Primary CMM Secondary CMM
-> copy working certified flash-synchro
CLI help
-
? .
vlan ? .
po? po .
<TAB> .
!! .
.
show history List .
!# (# = command number) .
Directory Structure
- Switch Unix command .
pwd show current directory.
cd change directory.
mkdir create a new directory.
ls list contents of a directory.
mv move a file.
cp copy a file.
rm remove a file.
Configuration Basic
- Omniswitch Configuration 3 version . Working, Certified, Running
version .
- Switch boot parameter working certified directory .
- Directory Configuration Running Configuration .
Running Configuration
- vlan 2 , vlan 3 , vlan 4 vlan Running Configuration .
- . .
- reload working no rollback-timeout reboot show vlan vlan
. Running Configuration flash memory .
Working Directory
- vlan 2 , vlan 3 , vlan 4 configuration snapshot all snap1 Running
Configuration snap1 ascii file .
- write memory Running Configuration Working Directory boot.cfg .
copy running-config working .
- cp snap1 /flash/working/boot.cfg Running Configuration file boot.cfg
.
Configuration Snapshot
- show configuration snapshot all Snapshot Current running configuration
.
- configuration snapshot all snapall snapall file configuration snapall
file view vi .
Part 4 : Hardware
CMM Redundancy
- show cmm
- reload secondary
- reload primary
- Primary CMM failover Packet .
- copy flash-synchro Primary CMM Working, Certified directory Secondary CMM Working,
Certified directory .
Part 4 : Hardware
Ni Power
- no power ni [slot #] : NI module power down.
- power ni [slot #] : NI module power restore.
AOS Upgarde
- Ominswitch zmodem ftp switch Image .
- Ftp EMP port IP NI .
- Version .
-> show microcode loaded
-> show microcode working
-> show microcode certified
- show microcode working .
-> show microcode working
Package
Release
Size
Description
---------+--------------+--------+----------------------------------Jbase.img
6.1.1.534.R01 10927002
Jos.img
6.1.1.534.R01
1843725
Alcatel OS
Jadvrout.img
6.1.1.533.R01
1383444
Jeni.img
6.1.1.534.R01
3625441
Alcatel NI software
Console / zmodem
- Switch Console PC cd Directory .
- Prompt rz PC Terminal Program zmodem file .
- zmodem FTP Image .
AOS upgrade
- FTP upgrade (EMP )
- upgrade
-> show system : version
-> cd working : working directory
-> ls : file
-> rm *.img : image , boot.cfg
PC switch ftp , binary /flash/ working
-> reload working no rollback-timeout : working directory reload
-> install *.img : image install
-> copy working certified : version
-> copy flash-synchro : CMM
Part 6 : Switch
Switch Login
- show user Switch .
- admin, default default
Switch Permission .
Full
Part 6 : Switch
- .
-> user userread password 123456 read-only all : Read User userread
-> user userwrite password 123456 read-write all : Read-write User userwrite
Partition Management
- Partition Management User Access .
-> user userread read-only domain-layer2 : User userread Layer2 Read .
-> user userwrite read-write vlan : User userwrite Vlan Read-write .
-> user userwrite read-write ? : Option ? Option .
Switch file
-> cd network
-> ls
Listing Directory /flash/network:
drw
drw
-rw
-rw
-rw
-rw
-rw
Part 7 : SNMP
SNMP Configuration
-> aaa authentication snmp "local"
: SNMP access
-> snmp security no security
: security level command
BOP all SNMP(v1, v2, v3)
-> snmp community map mode enable
: access local user database enable
-> user "a12345" read-write all password "a1234567" no auth
: SNMP query read-write
-> snmp community map "public" user "a12345" on
: snmp community map
-> snmp station 156.146.93.100 162 "a12345" v3 enable
: account snmp station
-> snmp trap absorption enable
: trap table activity
-> snmp trap to webview enable
: Webview trap
DHCP Relay
- IP helper standard mode : DHCP
-> ip helper address 10.10.10.10
- IP helper per VLAN mode : VLAN DHCP
-> ip helper per-vlan only
-> ip helper address 10.10.20.20 vlan 10
9800#1> show ip helper
Ip helper :
Forward Delay(seconds) = 3,
Max number of hops = 4,
Traffic Suppression
= Disabled,
DHCP Snooping Status
= Switch-Level Enabled,
Option 82 Data Insertion Per Switch = Enabled,
MAC Address Verification Per Switch = Enabled,
DHCP Snooping Binding DB Status = Enabled,
Database Sync Timeout
= 300,
Database Last Sync Time
= ,
Forward option
= per-vlan only
Bootup Option Disable
Forwarding Address :
Vlan Number 11
Forwarding Address :
10.10.10.10
DHCP Snooping
- DHCP Server DHCP Server
IP-Source-filtering
- DHCP Static IP
Configuration Sample
- Per-vlan ip helper
- DHCP snooping vlan
- ip-source-filter port
- DHCP Server port Trust
ip helper per-vlan only
ip helper address 58.227.43.197 vlan 11
ip helper address 58.227.43.197 vlan 12
ip helper dhcp-snooping vlan 11
ip helper dhcp-snooping vlan 12
ip helper dhcp-snooping vlan 58
ip helper dhcp-snooping binding enable
ip helper dhcp-snooping port 2/1 ip-source-filter enable
ip helper dhcp-snooping port 2/2 ip-source-filter enable
ip helper dhcp-snooping port 2/3 ip-source-filter enable
ip helper dhcp-snooping port 2/4 ip-source-filter enable
ip helper dhcp-snooping port 2/24 trust
Agenda
Session 1
1) Alcatel-Lucent Products Overview
2) AOS Basic
- Switch
- Switch Booting
- Alcatel Operating System
- Hardware
- AOS Upgrade
- Switch
- SNMP
- DHCP
3)
LAB - Basic
AOS upgrade
Session 2
Enterprise Business Group
NIBU
Agenda
Session 2
1) AOS L2 Training
- VLAN
- 802.1Q
- STP
- Link Aggregation
- VRRP
2)
Part 1 : VLAN
Vlan Configuration
- Default vlan1 port vlan1
vlan port
on
on
on
type
status
----+-----+----+------1
2/1
default forwarding
2/2
default inactive
2/3
default inactive
:
:
: VLAN 1,
-> vlan 2
IP Router Port
: none,
: none
default inactive
- vlan
Authentication
2/24
Part 1 : VLAN
Vlan IP Configuration
- Multi-netting
- vlan ip interface
- vlan
-> vlan 10
- Ip interface
-> no ip interface [name]
- vlan ip
-> ip interface vlan-10 address 10.10.10.1/24 vlan 10
: vlan10 name ip vlan10
- vlan ip
-> ip interface vlan-11 address 10.10.11.1/24 vlan 10
-> ip interface vlan-12 address 10.10.12.1/24 vlan 10
- vlan ip
-> show ip interface
Total 9 interfaces
Name
IP Address
Subnet Mask Status Forward
-----------+-------------+-------- ---+-----+------+-------EMP
192.168.1.1
255.255.255.0 DOWN NO
Loopback
127.0.0.1
255.0.0.0
UP
NO
vlan-10
10.10.10.1
255.255.255.0 DOWN NO
vlan-11
10.10.11.1
255.255.255.0 DOWN NO
vlan-12
10.10.12.1
255.255.255.0 DOWN NO
Alcatel-Lucent - Enterprise Solutions Division 36
Device
EMP
Loopback
vlan 10
vlan 10
vlan 10
Part 1 : VLAN
Group Mobility
default vlan
Vlan .
-> show vlan port
vlan port
- IP Network
type
status
---+-----+------+-------
.
- Port mobile port
3/1
default forwarding
3/2
default
inactive
9/3
mobile
forwarding
9/3
mobile
forwarding
Mobility
9/5
mobile
forwarding
: on,
- Network Rule
: off,
Ignore BPDUs
: off
type
vlan
rule
---------+------+---------------------ip-net
All Rights Reserved Alcatel-Lucent 2007
192.168.11.0, 255.255.255.0
Part 1 : VLAN
- vlan port mobile 1/1 bpdu ignore enable
: bpdu ignore
Part 2 : 802.1q
- 802.1q Link Multiple broadcast domain(Tag frame) Vlan
.
- Switch Vlan .
802.1q
-> vlan 4 802.1q 3/4 : vlan 4 3/4
-> vlan 50 no 802.1q 3/1 : 802.1q
-> show vlan port : type qtagged
-> Switch .
-> show vlan port : Vlan port type qtagged .
vlan
port
type
status
----+-------+---------+-----50
203
3/1
qtagged
1/21
default
forwarding
inactive
Part 5 : VRRP
VRRP
- Active switch .
-> vrrp 1 200 : Vrrp ID,Van ID
-> vrrp 1 200 ip 200.200.200.1 : Virtual IP
-> vrrp 1 200 priority 200 : Priority VRRP Master .
-> vrrp 1 200 enable : VRRP enable
-> show vrrp 1 : VRRP
-> show vrrp statistics
- Backup switch .
-> vrrp 1 200 : Vrrp ID,Van ID
-> vrrp 1 200 ip 200.200.200.1 : Virtual IP
-> vrrp 1 200 priority 100 : Priority VRRP Backup .
-> vrrp 1 200 enable : VRRP enable
Agenda
Session 2
1) AOS L2 Training
- VLAN
- 802.1Q
- STP
- Link Aggregation
- VRRP
2)
LAB L2
vlan 10
10.10.10.
1/24
Backbone
#1
vlan 20
10.10.20.
2/24
Backbone
#2
vlan 10
10.10.10.
2/24
Linkagg
2 port
vlan 20
10.10.20.
1/24
802.1q
Vlan10,20
VRRP
10.10.10.254
10.10.20.254
LAB
802.1q
Vlan10,20
802.1q
Vlan10,20
vlan 10
10.10.10.
3/24
Workgroup
vlan 20
10.10.20.
3/24
LAB - 1
Alcatel-Lucent - Enterprise Solutions Division 44
Session 3
Enterprise Business Group
NIBU
Agenda
Session 3
1) AOS L3 Training
- Static Routing
- RIP
- OSPF
2)
Static Routing
- Static Routing .
-> ip static-route 192.168.10.0 mask 255.255.255.0 gateway 10.10.10.1
- Default gateway .
-> ip static-route 0.0.0.0 mask 0.0.0.0 gateway 203.229.229.1
- Routing table .
: Protocol NETMGMT static routing .
-> show ip route
+ = Equal cost multipath routes
Total 7 routes
Dest Address
Subnet Mask
Gateway Addr
------------------+--------+-------------+---------+----------0.0.0.0
0.0.0.0
203.229.229.1
10.10.10.0
255.255.255.0 10.10.10.2
127.1.0.0
255.255.0.0
127.1.65.0
192.168.10.0
255.255.255.0 10.10.10.1
Age
Protocol
16:32:51 NETMGMT
4d22h
LOCAL
6d 1h
LOCAL
00:00:02 NETMGMT
Subnet Mask
Gateway Addr
Age
Protocol
-------------+---------------+-----------------+--------+----------0.0.0.0
0.0.0.0
166.104.192.254
00:14:15 NETMGMT
127.0.0.1
255.255.255.255
127.0.0.1
166.104.0.6
255.255.255.255
166.104.192.252
00:14:10
RIP
166.104.192.8
00:12:10
RIP
166.104.184.0
255.255.255.0
00:15:50
LOCAL
Subnet Mask
Gateway Addr
Age
Protocol
-------------+----------- -+-------------+------+----------158.44.3.0
158.44.4.0
255.255.255.0
255.255.255.0
+158.44.4.4
1d23h OSPF
+158.44.9.1
1d23h OSPF
158.44.4.1
1d23h LOCAL
Agenda
Session 3
1) AOS L3 Training
- Static Routing
- RIP
- OSPF
2)
LAB L3
vlan 60
10.10.60.
1/24
Workgroup
vlan 10
10.10.10.
1/24
vlan 10
10.10.10.
2/24
Backbone
#1
Area
0.0.0.0
vlan 30
10.10.30.
1/24
vlan 20
10.10.20.
1
/24
Bandwidth .
vlan 20
10.10.20.
2/24
Linkagg
2 port
LAB
2) OSPF Network .
3) OSPF Area Backbone Area .
vlan 30
10.10.30.
2/24
Backbone
#2
vlan 40
10.10.40.
1/24
vlan 50
10.10.50.
1/24
LAB - 2
Alcatel-Lucent - Enterprise Solutions Division 54
Session 4
Enterprise Business Group
NIBU
Agenda
Session 4
1) AOS Security Training
- Switch Service Port
- Access Control List
- QoS
- Network Security
. AVLAN
. Access Guardian
. Binding Rule
- AQM
2) Operation & Trouble Shooting
Switch IP Service
1. IP Service
Layer2 ACL
policy condition toMAC3 destination mac 00:00:00:00:00:03
policy action deny disposition drop
policy rule r1 condition toMAC3 action deny
qos apply
Layer3 ACL
policy condition fromIP1toIP3 source ip 10.0.0.100 destination ip 192.0.0.0 mask 255.0.0.0
policy action deny disposition deny
policy rule r1 condition fromIP1toIP3 action deny
qos apply
Layer4 ACL
policy service t445 destination tcp port 445
policy service t135 destination tcp port 135
policy service group tcp_group t445 t135
policy condition c1 service group tcp_group
policy action deny disposition deny
policy rule r1 condition c1 action deny
qos apply
9260274
IP header error
Destination IP error
:
:
Fragment failed
Fragments generated
Event
Source
0
Total
Last 1 seconds
---------------------------+-----------------------spoof
1/2
2538258
1223
Part 3 : QoS
QoS Policies
Actions
Drop frames
Change queuing priority
Update TOS/Diffserv and/or 802.1P priority tags
802.1p/TOS/Diffserv marking
802.1p/TOS/Diffserv mapping
Per COS max bandwidth (64K bps)
Statistics (# of packets, # of bytes)
Ingress policing / Egress shaping
Multi-actions support
Part 3 : QoS
QoS Sample
policy condition c_ip source ip 10.0.0.1
policy action a_ip tos 6
policy rule r_ip condition c_ip action a_ip
qos port 5/1 trusted
qos apply
Authentication VLAN
- Authentication Sever Network
.
- Group Mobility
Vlan Network .
- Network
- User Based Network Access Control
- Protocol -Telnet, HTTP, AV Client S/W
- -Windows 98/NT/ME/2000/XP
-
. Authentication Client (Client PC)
. Authentication Agent (Network Device)
. Authentication Server (LDAP/Radius server)
- Switch PC Network
-
.
-> vlan 99 : Vlan
-> vlan 99 router ip 192.168.11.1 : Vlan 99 IP
-> VLAN 99 RADIUS server
-> vlan 2 : authentication VLAN
-> vlan 2 router ip 192.168.12.1 : Vlan 2 IP
-> vlan port mobile slot/port : Avlan port mobile port enable
-> vlan port slot/port authenticate enable : Avlan port Authenticated port
enable
Access Guardian ?
- 802.1x Network
- 802.1x , Mac , Web
- Supplicant Non-supplicant user
Binding Rule
Part 5 : AQM
AQM ?
AQM Flow
Quarantine Engine
!!!
NMS
(OmniVista)
11
A-VLAN(80.1X)
A-VLAN(80.1X)
PC
PC
Virus
Virus
(e.g.
(e.g. port
port scan)
scan)
22
IDP
IDP
Source
Source
(MAC
(MAC
IP)
33
IDP
IDP
Step#2
Step#2
OmniVista
OmniVista
AQE
AQE
44
AQM
AQM
,,
IDP
IDP
Shut
Shut down
down
ACL
ACL
PC
PC
PC
PC
quarantine VLAN
55
Agenda
Session 4
1) AOS Security Training
- Switch
- Access Control List
- QoS
2) Operation & Troubleshooting
- T.S Guide
- T.S Guide
- T.S Guide
- T.S Guide
T.S Guide
T.S Guide
T.S Guide
OS6850 LED
- LED
- OK : H/W
- PRI : PRI-CMM
- PWR : Power Supply
- BPS : Backup Power
T.S Guide
[Miniboot]-> Booting
- Directory Certified Directory Image Miniboot
- cd working Working Directory ls Image file
setNextRunningVersion 2 Working Directory Boot .
[Miniboot]->
[Miniboot]->
[Miniboot]->
[Miniboot]->
[Miniboot]->
[Miniboot]->
[Miniboot]->
cd working
ls
cd ..
cd certified
ls
setNextRunningVersion 2
reboot
T.S Guide
OS9000 Booting U-boot booting Hit any key to stop autoboot: 0 message
- message jumper U-booot mode booting
CMM Detected
Loading boot.params...
Boot command line disabled.
- CMM Flash memory j5011 jumper 1-2
T.S Guide
AOS
- Zmodem AOS
1) Switch Console reload
2) Booting Hit any key to stop autoboot: 0 message Enter U-boot mode
- jumper mode
3) U-boot printenv
4) Zmodem 9600 115200
=> setenv baudrate 115200
## Switch baudrate to 115200 bps and press ENTER ...
- console 115200
5) miniboot mode bootflags 0x1000
=> setenv bootflags 0x1000
6)
=> printenv
T.S Guide
7)
=> saveenv
8) miniboot boot mode
=> run miniboot
9) miniboot mode certified directory
[Miniboot]->
[Miniboot]->cd "certified
10) sysStartZmodem Zmodem
[Miniboot]->sysStartZmodem
Upload directory: /flash/certified
rz ready to receive file, please start upload (or send 5 CTRL-X's to abort).
- Zmodem S/W AOS image
T.S Guide
-
Console
T.S Guide
12) Booting Hit any key to stop autoboot: 0 Enter U-boot mode booting
CMM Detected
Loading boot.params...
Boot Configuration Jumper Set
Hit any key to stop autoboot: 0
13) bootflags baudrate Default
=> setenv bootflags 0x0
=> setenv baudrate 9600
## Switch baudrate to 9600 bps and press ENTER ...
- Baudrate Console
14) Booting show running-directory Running configuration CERTIFIED
15) copy certified working certified image working copy Running configuration
WORKING
16)
-> write memory
-> copy working certified copy working certified flash-synchro
T.S Guide
Read-Write Backup
Password Clear
1) backup
2) cd network network
3) ls userTable
4) rm userTable_name
4) reload working no rollback-timeout
5) (admin/switch )
6) ( )
T.S Guide
Read-Write Backup
Password Clear
1) Switch Console reload
2) Hit any key to stop autoboot: 0 Enter
3) ==> prompt u-boot booting
4) fatls ide :1,0 /flash file
=> fatls ide :1,0
FileSize ATTR
Filename
---------- ---- --------------------------------------0 DIR certified
317 00 boot.params
0 DIR working
11 00 boot.slot.cfg
1985 00 boot.cfg.1.err
64239 00 swlog1.log
0 DIR network
64000 00 swlog2.log
0 DIR switch
T.S Guide
4) fatls ide :1,0 /network /flash/network directory
- usertable file
=> fatls ide :1,0 /network
FileSize ATTR
Filename
---------- ---- --------------------------------------0 DIR .
0 DIR ..
23040 00 usertable4
33 00 policy.cfg
404 00 ssh_host_dsa_key
361 00 ssh_host_dsa_key.pub
12 00 lockoutsetting
5) fatdelete ide :1,0 /network/usertable4 usertable file
- usertable4 usertable file
=> fatdelete ide :1,0 /network/usertable4
Error (no IRQ) dev 0 blk 2097216: status 0x51
Error (no IRQ) dev 0 blk 2097216: status 0x51
Error (no IRQ) dev 0 blk 2097216: status 0x51
Error (no IRQ) dev 0 blk 2097216: status 0x51
Invalid FAT value 0x00000000
Deleted /network/usertable4
T.S Guide
6) fatls ide :1,0 /network usertable file
=> fatls ide :1,0 /network
FileSize ATTR
Filename
---------- ---- --------------------------------------0 DIR .
0 DIR ..
33 00 policy.cfg
404 00 ssh_host_dsa_key
361 00 ssh_host_dsa_key.pub
12 00 lockoutsetting
7) run miniboot reboot
=> run miniboot
## Booting image at ff900000 ...
Image Name: miniboot-6.1.3.601.R01
Image Type: PowerPC VxWorks Kernel Image (gzip compressed)
Data Size: 781716 Bytes = 763.4 kB
Load Address: 00005000
Entry Point: 00005000
Verifying Checksum ... OK
8) Booting admin/switch default login
login : admin
password : switch
T.S Guide
9) show user default
- admin password password
10) snmp community name
- snmp
user password-size min 6
aaa authentication snmp "local"
snmp security no security
snmp community map mode enable
user "cobalt" read-write all password "public" no auth
snmp community map "public" user "cobalt" on
snmp station 221.148.52.11 162 "cobalt" v3 enable
snmp trap absorption enable
snmp trap to webview enable
11)
-> write memory
-> copy working certified
Switch
1) Switch H/W .
- show module, show cmm, show fan, show power
- Switch LED ( LED )
2) Switch S/W .
- show system : switch uptime, code version
- ls /flash dump file (PMD, Error)
- show running-directory CMM Running configuration
working
- show health, show health [slot#], show health all cpu Switch health
.
3) show log swlog log .
4) show configuration snapshot config .
5) Layer Layer .
- show interfaces slot/port port inbound/outbound packet
broadcast, unicast, multicast .
- show interfaces status Interface autonego/duplex .
- show interfaces counters errors Interface error .
6) STP .
- show vlan port/show spantree port blocking port
- show spantree [num] topology change, topology age .
T.S Guide
1. Log
- show log swlog console or Telnet
- /flash swlog1.log & swlog2.log binary ftp PC
- CMM Secon-CMM log .
(Second-CMM file Pri-CMM .
Pri-CMM FTP get )
. 6600,7000,8800
rcp /flash/swlog1.log /flash/swlog1.sec
rcp /flash/swlog2.log /flash/swlog2.sec
. 6850, 9000
rcp "cmm-b:/flash/swlog1.log" "/flash/swlog1.cmmB"
rcp "cmm-b:/flash/swlog2.log" "/flash/swlog2.cmmB"
T.S Guide
- Primary-CMM Secon-CMM swlog
. Console Telnet Switch Primary CMM
. telnet 127.2.66.1 login ID/PW Secon-CMM login
. Show log swlog log exit
2. tech_support log files
- /flash tech-support file binary ftp PC
show tech-support
show tech-support layer2
show tech-support layer3
show tech-support layer3 "RIP, PIMSM, OSPF, MROUTE, IPX, DVMRP or BGP"
- RIP, PIMSM, OSPF, MROUTE, IPX, DVMRP or BGP
show tech-support layer3 protocol
3. Configuration File
-
4. 2. Dump file
-
T.S Guide
5. Console or Telnet Capture
ls -r
show log swlog
show log pmd pmd-file-name ( PMD file )
show configuration status
show microcode loaded
show microcode working
show microcode certified
show system
show hardware info
show running-directory
show configuration snapshot
rls /flash (6600 stack rls 2 /flash)
rls /working
rls /certified
www.alcatel-lucent.com