OmniSwitch查看日志的命令是:

格式:show log swlog [timestamp start_time [end_time]]

show log swlog timestamp 05/21/2015 11:30 05/21/2015 12:30

发现私自添加路由器导致DHCP分发

确认路由器IP,查到MAC,交换机搜寻到MAC对应的端口,关闭此端口

搜寻此路由器位置,掌握其管理员账户和密码,关闭DHCP功能。

show configuration snapshot

show vlan rules

添加网管交换机,MAC地址绑定0网段,ARP绑定

aaa authentication default local #开启所有服务,默认是关需要console进去设置

aaa authentication http local #开启http服务,默认是关需要console进去设置

aaa authentication telnet local #开启telnet服务,默认是关需要console进去设置

aaa authentication ftp local #开启ftp服务,默认是关需要console进去设置

ip interface "vlan 1" address 10.6.0.143 mask 255.255.255.0 vlan 1 ifindex 1

vlan port mobile 2/38 bpdu ignore enable

MAC地址绑定

arp 10.6.0.136 00:e0:b1:d8:16:19

vlan no port mobile 1/21

vlan 100 port default 1/21

mac-address-table permanent 00:1b:82:ff:03:e5 1/21 100

no mac-address-table permanent 00:1b:82:ff:03:e5 1/21 100

policy condition c1 source vlan 1000 destination ip 10.6.0.0 mask 255.255.0.0

policy condition c2 source vlan 101 destination ip 10.6.0.100

policy condition c3 source vlan 1010 destination ip 10.6.0.0 mask 255.255.0.0

policy condition c4 source vlan 20 destination ip 10.6.100.0 mask 255.255.255.0

policy condition c5 source vlan 1020 destination ip 10.6.0.0 mask 255.255.0.0

policy condition c6 source vlan 30 destination ip 10.6.100.0 mask 255.255.255.0

policy action a1 disposition drop

policy action a2 maximum bandwidth 128K

policy action a3 disposition deny

policy action flowshape maximum bandwidth 128K

policy rule r1 condition c1 action a1

policy rule r2 condition c3 action a1

policy rule r3 condition c4 action a3

policy rule r4 condition c2 action a3

policy rule r5 condition c5 action a1

policy rule r6 condition c6 action a3

qos apply

policy condition source1 source ip 10.6.1.253 mask 255.255.255.255

policy condition dest1 destination ip 10.6.1.253 mask 255.255.255.255

policy action No disposition deny

policy action Yes disposition accept

policy rule permitRule precedence 300 condition source1 action Yes reflexive

policy rule denyRule condition dest1 action No

qos apply

只允许pc访问指定的pc

qos enable

policy condition iptest source ip 10.6.4.226

policy condition iptest2 source ip 10.6.4.226 destination ip 10.6.4.51 mask 255.255.255.255

policy action NO disposition deny

policy action YES disposition accept

policy rule r1 precedence 100 condition iptest action NO

-> policy rule r2 precedence 200 condition iptest2 action YES

-> qos apply

-> no policy rule r1

-> no policy rule r2

-> no policy condition iptest

-> no policy condition iptest2

policy condition host42 source ip 10.6.100.42

-> no policy condition host42

-> policy condition host42 source ip 10.6.100.42 destination ip 10.6.100.0 mask 255.255.254.0

-> policy rule tmpno42 precedence 200 condition host42 action a1

-> qos apply

policy condition host10 source ip 10.6.100.42 destination ip 10.6.1.0 mask 255.255.255.0

-> policy rule no10 precedence 200 condition host10 action a1

-> qos apply

-> no policy rule no10

-> no policy rule tmpno42

-> qos apply

policy condition ip1010 source ip 192.168.11.0 mask 255.255.255.0 destination ip 10.6.0.98 mask 255.255.255.255

policy action a4 disposition accept

policy rule r2 condition ip1010 action a4

policy condition c3 source vlan 1010 destination ip 10.6.0.0 mask 255.255.0.0

policy rule r11 condition c3 action a1

no policy rule r2

no policy rule r11

no policy action a4

no policy action YES

qos apply

DHCP延迟最终解决

ip helper forward delay 0

查看直连设备的MAC地址

arp -a

snmp

-> user public password public read-write all no auth

-> snmp station 10.6.0.71 162 "public" v1 enable

snmpwalk -c public -v 2c 10.6.0.133

snmp community map "public" user "admin" on

snmp community map mode off

snmp security no security

aaa authentication snmp "local"

snmp station 10.6.0.71 162 "public" v1 enable

snmp authentication trap enable

user password-size min 5

snmp trap absorption enable

snmp trap to webview enable

ip helper no address 10.6.0.84 vlan 40

ip helper no address 10.6.0.84 vlan 1020

ip helper no address 10.6.0.73 vlan 10

ip helper no address 10.6.0.73 vlan 20

ip helper no address 10.6.0.73 vlan 30

ip helper no address 10.6.0.73 vlan 101

ip helper no address 10.6.0.73 vlan 1000

ip helper no address 10.6.0.73 vlan 1010

ip helper no address 10.6.0.73 vlan 1020

设置时区、时制、时间、日期、主机名、标书等:***************************************************

system timezone pst

system timezone zp8 (中国)

system daylight savings time enable

system time 18:35:00

system date 06/27/2002

system contact "JSmith X477 js@company.com"

system name "Engineering Switch 3"

system location "NMS Lab--NE Corner Rack"

*********************************************************

重新启动:

***********************************************************

reload working no rollback-timeout(立即重新启动)

reload primary in 3:03(定时重新启动主模块)

reload primary at 20:00 june 30(定时重新启动主模块)

reload primary cancel (取消重新启动主模块)

reload secondary (重新启动备管理模块)

reload cancel(取消重新启动)

************************************************************

保存配置:

************************************************************

copy running-config working or write memory(保存到主模块内存)

copy working certified(保存到备配置文件)

copy certified working(恢复配置文件)

copy flash-synchro(把配置文件同步到备管理模块)

*************************************************************

VLAN配置:

*************************************************************

vlan port mobile 2/38 bpdu ignore enable

vlan 10 创建vlan 10

vlan 10 name bangonglou 给为vlan 10取名

vlan 10 router ip 172.16.32.1 mask 255.255.255.0 给vlan配Router ip

vlan 10 prot default 1/1 1/1端口分配到vlan 10

vlan 10 port default 2/32

vlan 2 802.1q 8/1 8/1端口打上vlan 2的802.1q tag

vlan 2 no port default 3/1-5 从vlan 2 删除3/1-5的

ip interface "vlan-1" address 192.168.0.254 mask 255.255.255.0 vlan 1 给vlan1配置route ip

*************************************************************

常用维护命令:

*************************************************************

show micrcode  查看软件信息

show running-directory 查看交换机运行模式

show configuration snapshot all 查看所有配置

show history parameters 查看history参数

show history 查看历史信息

show vlan 查看vlan信息

show chassis 查看交换机机箱信息 MAC

show module 查看模块信息

show ni 查看ni信息

show cmm  查看管理模块信息

show system 查看系统信息

show seesion config

show dns

show ntp server status

show ntp client server-list

show ntp client

show reload

show reload status

show user

show hardware info

***********************************************************

文件操作命令:

**********************************************************

rm *.img

install *.img

cd

pwd

ls

cp

mkdir

rm

vi

move

chmod

delete

freespace

fsck

newfs

*****************************************************************

ACL配置:

****************************************************************

只允许192.168.10.0/24网段可以访问任意,而192.168.10.0/24不让任意网络访问:

-> policy condition source1 source ip 192.168.10.0 mask 255.255.255.0

-> policy condition dest1 destination ip 192.168.10.0 mask 255.255.255.0

-> policy action No disposition deny

-> policy action Yes disposition accept

-> policy rule permitRule precedence 300 condition source1 action Yes reflexive

-> policy rule denyRule condition dest1 action No

-> qos apply

******************************************************************

Avlan配置:

****************************************************************

system name os6600

vlan 1 router ip 192.168.1.1

vlan 2 router ip 192.168.2.1

vlan 2 enable

vlan 2 authentication enable

vlan port mobile 8/3

vlan port 8/3 authentication enable

aaa radius-server “rad1” host 192.168.1.254 key switch auth-port 1812 acct-port 1813

aaa authentication vlan single-mode “rad1”

aaa accounting vlan rad1

ip helpr address 192.168.1.254

aaa avlan default dhcp 192.168.1.1

ip helper avlan only

avlan auth-ip 3 10.10.2.80

no aaa radius-server rad1

aaa vlan no

no aaa authentication vlan

no aaa accounting

********************************************************

SLB配置:

*******************************************************

ip slb admin enable

ip slb cluster zbslb vip 192.168.0.234

ip slb server ip 192.168.0.236 cluster zbslb

ip slb server ip 192.168.0.237 cluster zbslb

ip slb probe zbslb_probe1 ping

ip slb cluster zbslb probe zbslb_probe1

ip slb server ip 192.168.0.236 cluster zbslb probe zbslb_probe1

ip slb server ip 192.168.0.237 cluster zbslb probe zbslb_probe1

**********************************************************

dhcp relay配置

**********************************************************

ip udp relay

ip helper address 192.168.1.1

ip helper no address 192.168.1.1 (deletes one address)

ip helper no address (delete all address)

ip helper address 192.168.3.1 vlan 3

ip helper address 192.168.4.1 192.168.4.2 vlan 4

ip helper forward delay 15 (set forward delay timer for the bootip/dhcp relay)1-65535

ip helper maximum hops 3 (set the maximum hop count value)1-16

show ip helper

ip helper boot-up enable dhcp

ip helper boot-up enable bootp

show ip helper stats

show ip udp relay service

show ip udp relay statistics

show ip udp relay destination

**********************************************************

-> interfaces 1/1 duplex ?

^

HALF FULL AUTO

(Interface Command Set)

-> interfaces 1/23 speed 100

-> interfaces 1/23 speed auto

-> interfaces 1/23 speed 100

阿尔卡特交换机配置_阿尔卡特交换机常用命令相关推荐

  1. 阿尔卡特交换机配置_阿尔卡特交换机上常用命令

    阿尔卡特交换机上常用命令 -> show vlan 显示VLAN配置信息. -> show vlan port 显示VLAN端口信息. -> show vlan port 1/2 显 ...

  2. 华为交换机端口配置删除_华为交换机配置_华为交换机怎么清除端口下所有配置?...

    可以按照如下方式进行操作: 1.首先使用system-view命令,进入[]模式,如下图中所表示. 华为交换机常用命令: 1.display current-configuration 显示当前配置 ...

  3. 华为交换机查看端口相关信息常用命令

    华为交换机查看端口相关信息常用命令 1.显示接口的运行状态和相关信息 display interface Ethernet brief (dis int br) 2.查看接口的描述信息 display ...

  4. 精心整理!锐捷交换机配置信息查看十大命令,会用不迷路

    关于锐捷交换机的使用,一直都有不少朋友问起,本期阿城就给大家整理下常用的10大锐捷交换机的配置查看命令,希望可以帮助到各位老铁,记得点赞+在看呀. 1.Ruijie#show version 这个命令 ...

  5. access h3c交换机光口_华为交换机如何配置?access、trunk、hybird端口详解

    原标题:华为交换机如何配置?access.trunk.hybird端口详解 很多人朋友多次问到华为交换机的配置,确实用的比较多,上次我们有单独提到h3c交换机的配置,今天我们来了解下华为交换机的配置, ...

  6. 华为交换机记录日志_华为交换机日志导出 华为交换机日志导出命令

    怎么查看华为交换机的系统日志? 如果需要, 您可以手动将事件添加到您要设置的每个事件中,并将其添加到您要踩踏的电话中. 华为手机自有日历: 无一次性设置, 无共享日历链接, 只从其他日历导入华为日历, ...

  7. 华为交换机导入配置_华为交换机配置的导出和导入方法

    在配置好华为交换机后,为防止交换机因意外停电或者人为操作疏忽,而导致设备无法正常运行,此时我们可以先前做好备份配置,以备发生故障时可以快速恢复配置.今天我们就来分享一下华为交换机配置的导出和导入. 导 ...

  8. 华为s5720默认用户名和密码_华为S5720常用命令

    1. 华为5720的配置命令 1.1 配置IP地址 1 system-view  //系统视图 2 3 vlan  4 //创建交换机管理vlan 4 4 5 management-vlan //管理 ...

  9. Huawei交换机配置两台交换机堆叠示例

    ****配置两台交换机堆叠示例(先配置后连线方式,推荐) 组网图形 图1 配置两台交换机堆叠组网图 组网需求 在一个新建的企业网络中,要求接入设备具有充足的端口数目,并且希望网络结构简单,易于配置和管 ...

最新文章

  1. 污水处理厂数字监控系统解决方案
  2. 2025年公有云或将服务中国过半数字经济
  3. 【C/C++9】天气APP:Oracle的虚表/日期/序列,索引/视图/链路/同义词,数据库高可用性
  4. 【转】8 个用于业余项目的优秀 Python 库
  5. robot 用AP连PC
  6. Spring4.x()---SpringAOP注解的HelloWorld
  7. flow.php 漏洞,Ecshop 3.0的flow.php文件SQL注射漏洞修复
  8. leetcode sql
  9. 连表查询 mysql实例_mysql中各种常见join连表查询实例总结
  10. FatMouse believes that the fatter a mouse is, the faster it runs.
  11. docker 配置远程deamon
  12. 学习嵌入式怎么入门和提高?嵌入式开发教程pdf
  13. win11系统用户名称为中文导致文件夹出现繁体字文件夹、系统路径配置错误修改教程(博主亲测,基于win11,系统文件保留)
  14. SDL2音视频渲染入门
  15. JS 小写数字格式转大写格式
  16. iVX低代码平台系列详解 -- 概述篇(一)
  17. 布尔类型(boolean)常量与变量
  18. eclipse版本说明及下载地址
  19. 如何用普通电脑去看3D电影
  20. Java编程之学生类

热门文章

  1. (2021,StyleGAN3)无失真(Alias-Free)生成对抗网络
  2. SavedLegacySettings注册表键值说明
  3. 影视推荐的相关处理方法的思维导图
  4. 各地美女排行榜之幕后真相----东北美女更胜一筹!
  5. 云主机快速搭建开发环境
  6. 电商项目数据库设计 | 第一篇:规范篇
  7. 【爬虫】Requests
  8. 美国标准信息交换标准码(ASCII)
  9. PyCharm中的错误:following errors occurred on attempt to save files和Unable to save settings: Failed 的解决方案
  10. java车间调度算法_混合算法(GA+TS)求解作业车间调度问题代码解读+完整JAVA代码...