Beruflich Dokumente
Kultur Dokumente
2008 Extreme Networks, Inc. All rights reserved. ExtremeXOS Operation and Configuration, Version 12.1. Part number DOC-00919.
Student Objectives
Upon completion of this module, you will be able to: Login to the switch. Interpret the system prompt. Assign a name to the switch. Use the syntax help function. Create a new user account. Describe the SNMP, SNTP, and logging management features.
Slide 2
Switch
Slide 3
CLI Access
Telnet Connection
Dedicated Ethernet management port or Ethernet data port: - Up to 8 Sessions - IP must be configured - Nested Telnet - SSH (requires additional s/w module)
Slide 4
CLI Organization
# PROMPT
clear
configure
create
delete
disable
download
enable
exit
history
logout
First-tier Commands
nslookup ping quit reboot restart rtlookup show traceroute upload use
accounts
configuration
rip
vlan
protocol
log
stpd
switch
qosfile
ipstats
Second-tier Commands
fdb iparp memory management iparp iproute ports version session
Third-tier Commands
configuration
stats
collisions
errors
packet
utilization
port number
Slide 5
Syntax Helper
VLAB-R1-X450-24x.2 # show access-list access-list info accounts show accounts bandwidth Bandwidth resource banner Netlogin Banner bgp Display BGP global configuration information bootprelay Show the bootp relay information cfm Configure IEEE 802.1ag specific settings checkpoint-data Checkpoint Data clear-flow CLEAR-Flow configuration System configuration cpu-monitoring CPU Utilization Statistics debug debug command
Using the tab key displays the next set of command options. Using the question mark (?) at the end of the command displays the next set of command options.
VLAB-R1-X450-24x.2 # show ports ? anomaly anomaly statistics collisions Displays collision statistics configuration Display the port configuration information Displays port information packet histogram of packet statistics qosmonitor QOS redundant Display all software redundant ports on the system rxerrors receive error statistics sharing sharing stack-ports Stacking Ports statistics Port statistics txerrors Displays transmit error statistics
Slide 6
Abbreviated Syntax
VLAB-R1-X450-24x.2 # Use Redirects IpOption LSRR IpOption SSRR IpOption RR IpOption TS IpOption RA Route Sharing Originated Packets IP Fwding into LSP Unicast Reverse Path Max Shared Gateways sh ipc : Disabled : Enabled : Enabled : Enabled : Enabled : Enabled : Disabled : Don't require ipforwarding : Disabled : Disabled : Current: 4 Configured: 4
Abbreviation of a command, parameter, or value: # show ipconfig # sh ipc Entering port values Separated by
commas, (1,2,4)
IRDP: Advertisement Address: 255.255.255.255 Interval: 600 Minimum Interval: 450 Lifetime: 1800 VLAN Default IP Address 10.1.0.1
Maximum Preference: 0 nSIA 0
Flags: (A) Address Mask Reply Enabled (B) BOOTP Enabled (b) Broadcast Forwarding Enabled, (E) Interface Enabled (f) Forwarding Enabled (g) Ignore IP Broadcast Enabled (h) Directed Broadcast Forwarding by Hardware Enabled Press <SPACE> to continue or <Q> to quit:
Slide 7
# history
Use <Up> and <Down> arrow keys to scroll within the command history buffer
VLAB-R1-X450-24x.7 1 show 2 sh ipc 3 history 4 create vlan 5 create vlan 6 save 7 history VLAB-R1-X450-24x.8 # history
ipV6 Finance
Slide 8
Blue
Green
Finance
Marketing
Slide 9
Switch Login
(pending-AAA) login: Authentication Service (AAA) on the master node is now available for login. login: admin password:
ExtremeXOS Copyright (C) 2000-2007 Extreme Networks. All rights reserved. Protected by US Patent Nos: 6,678,248; 6,104,700; 6,766,482; 6,618,388; 6,034,957; 6,859,438; 6,912,592; 6,954,436; 6,977,891; 6,980,550; 6,981,174; 7,003,705; 7,017,082; 7,046,665; 7,126,923; 7,142,509; 7,149,217; 7,152,124; 7,154,861; 7,245,619; 7,245,629; 7,269,135. ================================================================== Press the <tab> or '?' key at any time for completions. Remember to save your configuration changes.
VLAB-R1-X450-24x.1 #
Up to 16 accounts Passwords: Blank 4 to 12 characters Case sensitive You can create two admin accounts, and they are identical in their capabilities. Fail Safe account Used for recovery If password is lost,
return switch to Extreme Networks
Slide 10
* X450a-24t.6 #
New change to switch configuration not saved Switch SNMP Sysname Number of next command to be executed Privilege Level
Switch name Number of commands executed during this session Privilege level
Slide 11
Management Accounts
1 to 32 characters case-sensitive
The default admin account cannot be deleted. You may create password policies.
# configure failsafe-account
Failsafe Login
The account of last resort to access the ExtremeXOS switch when the admin password has been lost. Never displayed but always present. To access the switch using the failsafe account, you must be connected using a permitted method: all control serial ssh telnet Changes to failsafe account and password are immediately stored in NVRAM, not in the configuration file.
Note: The information that you use to configure the failsafe account cannot be recovered by Extreme Networks Technical support. Protect this information carefully.
Slide 14
View the accounts that are currently locked out with the following command: show account Admin-level user must clear lockout condition: clear account [all | <name>] lockout
Slide 15
Slide 16
IP Network
Management Station
Slide 17
Copy policy and configuration files to the switch using the Secure Copy
Protocol 2 (SCP2).
Note: Installing the SSH module also provides secure web (HTTPS / SSL) functionality.
Slide 18
Using SNMP
The switch must have an IP address. The SNMP agent can then be accessed from a Network Management Station (NMS).
10.1.4.1
10.1.6.1
IP Network/ Intranet
10.1.5.1 NMS Any SNMP based network manager can manage a switch. Switch MIB must be installed correctly on the mgmt workstation.
Slide 19
System name
configure snmp sysname <string>
System location
configure snmp syslocation <string>
System contact
configure snmp syscontact <string>
10.1.6.1
IP Network/ Intranet
10.1.5.1
NMS
Slide 20
10.1.6.1
IP Network/ Intranet
Slide 21
Allows authentication for Telnet, Vista, or console switch access TACACS+ Terminal Access Controller Access Control System Plus Similar to the RADIUS Client Used to authenticate prospective users attempting to administer the switch Used to communicate between the switch and an authentication database NOTE: You cannot configure RADIUS and TACACS+ at the same time.
Slide 22
Logging Features
Timestamp Fault Level Subsystem Message
Local logging
IP Network/ Intranet
Logging Features
configure syslog {add} [<ipaddress> | <ipPort>] {vr <vr_name>} [local0 ...local7] {<severity>} enable syslog
IP Network/ Intranet
Local logging
Remote logging enabled UNIX syslog host facility accepts and logs messages
Slide 24
IP Network/ Intranet
Using SNTP
Simple Network Time Protocol (SNTP) Version 3. Used to update/synchronize the internal switch clock from a Network Time Protocol (NTP) server. When enabled, the switch sends out a periodic query to the NTP server or the switch listens to broadcast NTP updates.
Console
NTP Server
Switch
# configure sntp-client [pri | sec] server [<ip address> | <host name>] {vr <vr_name>} # enable sntp-client
Slide 26
# show management
To display the network management configuration, statistics, and SNMP settings: show management The display includes: Enable/disable states
for Telnet, and SNMP
Authorized SNMP station list SNMP trap receiver list RMON polling configuration SNMP statistics
Slide 27
Summary
You should now be able to: Login to the switch. Interpret the system prompt. Assign a name to the switch. Use the syntax help function. Create a new user account. Describe the SNMP, SNTP, and logging management features.
Slide 28
Lab
Turn to the Initial Switch Configuration Lab in the ExtremeXOS Operations and Configuration - Lab Guide Rev. 12.1 and complete the hands-on portion of this module.
Slide 29
Review Questions
2008 Extreme Networks, Inc. All rights reserved. ExtremeXOS Operation and Configuration, Version 12.1. Part number DOC-00919.
This presentation contains forward-looking statements that involve risks and uncertainties, including statements regarding our expectations as to products, trends and our performance. There can be no assurances that any forward-looking statements will be achieved, and actual results could differ materially from forecasts and estimates. For factors that may affect our business and financial results please refer to our filings with the Securities and Exchange Commission, including, without limitation, under the captions: Managements Discussion and Analysis of Financial Condition and Results of Operations, and Risk Factors, which is on file with the Securities and Exchange Commission (http://www.sec.gov). We undertake no obligation to update the forward-looking information in this release.
2008 Extreme Networks, Inc. All rights reserved. ExtremeXOS Operation and Configuration, Version 12.1. Part number DOC-00919.
2008 2008 Extreme Extreme Networks, Networks, Inc. Inc. All All rights rights reserved. reserved. ExtremeXOS ExtremeXOS Operation Operation and and Configuration, Configuration, Version Version 12.1. 12.1. Part Part number number DOC-00919. DOC-00919.