HP 6125G HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration
HP 6125G Manual
View all HP 6125G manuals
Add to My Manuals
Save this manual to your list of manuals |
HP 6125G manual content summary:
- HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 1
HP 6125 Blade Switch Series Fundamentals Configuration Guide Part number: 5998-3153 Software version: Release 2103 Document version: 6W100-20120907 - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 2
, or use of this material. The only warranties for HP products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. HP shall not be liable for technical or editorial errors or - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 3
output 10 Filtering the output from a display command 10 Configuring user privilege and command levels 13 Configuring a user privilege level 13 Switching the user privilege level 17 Changing the level of a command 19 Saving the running configuration 19 Displaying and maintaining CLI 20 Login - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 4
72 Managing directories on the FTP server 73 Working with the files on the FTP server 73 Switching to another user account 74 Maintaining and troubleshooting the FTP connection 74 Terminating the FTP connection 74 FTP client configuration example 75 Using the device as an FTP server 76 ii - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 5
92 Saving configuration in different approaches 92 Configuring configuration rollback 93 Configuration task list 93 Configuring configuration archive parameters 94 Enabling automatic configuration archiving 95 Manually archiving running configuration 96 Performing configuration rollback 96 - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 6
DHCP to obtain an IP address and other configuration information 121 Obtaining the configuration file from the TFTP server 122 Executing the configuration file 124 Support and other resources 125 Contacting HP 125 Subscription service 125 Related information 125 Documents 125 Websites 125 - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 7
Using the CLI At the command-line interface (CLI), you can enter text commands to configure, manage, and monitor your "Logging in to the CLI." Command conventions Command conventions help you understand the syntax of commands. Commands in product manuals comply with the conventions listed in - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 8
of VLAN 100 and can configure attributes for the VLAN. You are placed in user view immediately after you are logged in to the CLI. The user view prompt is , where the Device-name argument defaults to Sysname and can be changed by using the sysname command. In user view, you can perform - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 9
view to configure login user attributes, or create a local user and enter local user view to configure attributes for the local user. To display all commands available in a view, enter a question mark (?) at the view prompt. Figure 3 CLI view hierarchy Entering system view from user view Task - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 10
a question mark at a view prompt to display the first keywords of all commands available in the view. For example: ? User view commands: archive Specify archive settings backup Backup next startup-configuration file to TFTP server boot-loader Set boot loader bootrom Update/read - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 11
, see the relevant command reference. system-view [Sysname] domain ? STRING Domain name Abbreviating commands You can enter a command line quickly by entering incomplete keywords that can uniquely identify the complete command. In user view, for example, commands starting with an - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 12
2. Enable the command keyword alias function. 3. Configure a command keyword alias. Command system-view command-alias enable command-alias mapping cmdkey alias Remarks N/A By default, the command keyword alias function is disabled. By default, no command keyword alias is configured. You must enter - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 13
{ begin | exclude | include } regular-expression ] Remarks By default: • Ctrl+G is assigned the display current-configuration command. • Ctrl+L is assigned the display ip routing-table command. • Ctrl+O is assigned the undo debugging all command. No command is assigned to Ctrl+T or Ctrl+U. Optional - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 14
entered after the output. To enable redisplaying entered-but-not-submitted commands: Step 1. Enter system view. Command system-view 2. Enable redisplaying entered-but-not-submitted commands. info-center synchronous Remarks N/A By default, the feature is disabled. For more information about this - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 15
, display cu and display current-configuration are buffered as two entries but successive repetitions of display cu create only one entry in the buffer. By default, the command history buffer can save up to 10 commands for each user. To set the capacity of the command history buffer for the current - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 16
length disable Remarks The default for a session depends on the setting of the screen-length command in user interface view. The default of the screen-length command is pausing between screens is a case-sensitive string of 1 to 256 characters that supports the special characters in Table 6. 10 - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 17
Table 6 Special characters supported in a regular expression Character ^string string [ ] ( ) \index Meaning Remarks Starting sign. Matches a line that starts with string. For example, regular expression "^user" matches a line beginning with "user", not "Auser". Ending sign. Matches a line - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 18
is character1 and "l" is character2) and "service" ( "i" is character2). Equals \b. For example configuration | begin user-interface user-interface aux 0 user-interface vty 0 7 authentication-mode none user privilege level 3 # return # Use | exclude Direct in the display ip routing-table command - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 19
and commands for configuring services at different network levels. 2 System By default, commands at this level include all configuration commands except for those at manage level. Includes commands that influence the basic operation of the system and commands for configuring system support - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 20
-mode scheme By default, the authentication mode for VTY users is password, and no authentication is needed for AUX users. quit N/A For more information, see Security Configuration Guide. • To use local authentication: a. Use the local-user command to create a local user and enter local - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 21
only for SSH users who Configuration Guide. use public-key authentication. system-view user-interface { first-num1 [ last-num1 ] | vty first-num2 [ last-num2 ] } authentication-mode scheme user privilege level level N/A N/A By default, the authentication mode for VTY users is password, and no - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 22
tftp Open TFTP connection tracert Trace route function undo Cancel current setting # Configure the device to perform password authentication for Telnet users, and to authorize authenticated Telnet users to use the commands of privilege levels 0, 1, and 2. system-view [Sysname - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 23
the password for privilege level switching by using the super password command. The device sends the username and password for privilege level switching to the HWTACACS or RADIUS server for remote authentication. To use this mode, you must perform the following configuration tasks: • Configure the - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 24
mode for user privilege level switching. Command system-view super authentication-mode { local | scheme } * 3. Configure the password for a super password [ level user-level ] user privilege level. { cipher | simple } password Remarks N/A Optional. By default, local-only authentication - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 25
logging in as the privilege level switching username. N/A Password configured on the device with the super password command for the privilege level. Changing the level of a command Every command in a view has a default command level. The default command level scheme is sufficient for the security - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 26
Displaying and maintaining CLI Task Display the command keyword alias configuration. Display data in the clipboard. Command display command-alias [ | { begin | exclude | include } regular-expression ] display clipboard [ | { begin | exclude | include } regular-expression ] Remarks Available in - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 27
authentication for VTY login users. • Configure the user privilege level of VTY login users (0 by default). By default, modem dial-in is enabled, no username or password is required, and the user privilege level is 3. By default, Web login is disabled. To use Web service, complete the following - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 28
and in the sequence of AUX and VTY user interfaces. You can use the display user-interface command without any parameters to view supported user interfaces and their absolute numbers. A relative number uniquely identifies a user interface among all user interfaces that are the same type. The number - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 29
support hot swapping. If the switch has been powered on, switch. Figure 4 Connecting a terminal to the console port RS-232 Console Host Switch 3. If the PC is off, turn on the PC. 4. Launch the terminal emulation program and configure and then follow the user guide or online help to log in - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 30
Figure 5 Connection description Figure 6 Specifying the serial port used to establish the connection 24 - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 31
on the device and press Enter at the prompt. Figure 8 CLI 6. At the default user view prompt , enter commands to configure the device or view the running status of the device. To get help, enter ?. Configuring console login control settings The following authentication modes are available for - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 32
scheme on the device. 4. Configure the username and password on the AAA server. 5. Configure the device to use the scheme for user authentication. "Configuring scheme authentication for console login" Configuring none authentication for console login Step Command Remarks 1. Enter system view - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 33
authentication Configuring password authentication for console login Step 1. Enter system view. Command system-view Remarks N/A 2. Enter AUX user interface view. user-interface aux first-number [ last-number ] N/A 3. Enable password authentication. authentication-mode password By default - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 34
user interface view. Command system-view user-interface aux first-number [ last-number ] 3. Enable scheme authentication. authentication-mode scheme Remarks N/A N/A Whether local, RADIUS, or HWTACACS authentication is adopted depends on the configured AAA scheme. By default, console log users - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 35
RADIUS or HWTACACS authentication, configure the RADIUS or HWTACACS scheme on the device and configure authentication settings (including the username and password) on the server. For more information about AAA configuration, see Security Configuration Guide. By default, no local user exists. 29 - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 36
(optional)." Remarks By default, no password is set. Optional. By default, the command level is 0. By default, no service type is specified. Optional. The next time you attempt to log in through the console port, you must provide the configured login username and password, as shown in Figure - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 37
Configure the user privilege level for login users. user privilege level level By default, the terminal display type is ANSI. The device supports two terminal display types: ANSI and VT100. HP at a wrong place. By default, the default command level is 3 for AUX user interfaces. 13. Set the - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 38
server. To control Telnet access to the device working as a Telnet server, configure authentication and user privilege for Telnet users. By default, password authentication applies to Telnet login, but no login password is configured. To allow Telnet access to the device after you enable the Telnet - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 39
common settings for the VTY user interfaces. See "Configuring common settings for VTY user interfaces (optional)." Remarks N/A By default, the Telnet server is disabled. N/A By default, authentication mode for VTY user interfaces is password. By default, the default command level is 0 for VTY - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 40
privilege level for login users. user privilege level level 7. Configure common settings See "Configuring common settings for for VTY user interfaces. VTY user interfaces (optional)." Remarks N/A By default, the Telnet service is disabled. N/A By default, password authentication is enabled for - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 41
VTY user user-interface vty first-number interface views. [ last-number ] 4. Enable scheme authentication. authentication-mode scheme Remarks N/A By default, the Telnet service is disabled. N/A Whether local, RADIUS, or HWTACACS authentication is adopted depends on the configured AAA scheme - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 42
: quit Optional. By default, local authentication is used. For local authentication, configure local user accounts. For RADIUS or HWTACACS authentication, configure the RADIUS or HWTACACS scheme on the device and configure authentication settings (including the username and password) on the server - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 43
)." Remarks By default, no local user exists. By default, no password is set. Optional. By default, the command level is 0. By default, no service type is specified. N/A Optional. The next time you attempt to Telnet to the CLI, you must provide the configured login username and password, as shown - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 44
4. Enable the terminal service. shell Optional. By default, terminal service is enabled. 5. Enable the user interfaces to support Telnet, SSH, or both of them. protocol inbound { all | ssh | telnet } Optional. By default, both Telnet and SSH are supported. The configuration takes effect the - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 45
be automatically executed when a auto-execute command user logs in to the user interfaces. command Remarks Optional. By default, no automatically executed command is specified. The command auto-execute function is typically used for redirecting a Telnet user to a specific host. After executing the - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 46
Set the DSCP value for IP to use for outgoing Telnet packets. Command system-view • On a Telnet client running IPv4: telnet client dscp configure authentication and user privilege level for SSH users. By default, password authentication is adopted for SSH login, but no login password is configured - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 47
scheme By default, password authentication is enabled on VTY user interfaces. protocol inbound { all | ssh | telnet } Optional. By default, both Telnet and SSH are supported. command authorization Optional. By default, command authorization is disabled. The commands available for a user only - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 48
the username and password) on the server. For more information about AAA configuration, see Security Configuration Guide. By default, no local user exists. 12. Set a password for the local user. password { cipher | simple } password By default, no password is set. 13. Specify the command level - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 49
Step 16. Create an SSH user, and specify the authentication mode for the SSH user. 17. Configure common settings for VTY user interfaces. Command Remarks ssh user username service-type stelnet authentication-type { password | { any | password-publickey | publickey } assign publickey keyname } - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 50
settings. To configure local authentication: 1. Configure a local user and specify the password. 2. Configure the device to use local authentication. To configure remote authentication: 3. Configure the RADIUS or HWTACACS scheme on the device. 4. Configure the username and password on the AAA - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 51
NOTE: The configuration commands and output vary by modem. For more information, see the modem user guide. 5. To avoid data loss, verify that the speed of the console port is lower than the transmission rate of the modem, and the default parity check, stop bits, and data bits settings are used. 6. - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 52
the user guide or online help of that program to log in to the device. 7. Dial the telephone number to establish a connection to the device. Figure 22 Dialing the number 8. Press Enter as prompted. Figure 23 Configuration page 9. At the default user view prompt , enter commands to configure the - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 53
authentication-mode none By default, modem users can dial in to the device without authentication. See "Configuring common settings for modem dial-in (optional)." Optional. The next time you attempt to dial in to the device, you do not need to provide any username or password, as shown in Figure - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 54
the AUX user interfaces. Command system-view user-interface aux first-number [ last-number ] authentication-mode password set authentication password { cipher | simple } password For more information, see "Configuring common settings for modem dial-in (optional)." Remarks N/A N/A By default, no - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 55
configured AAA scheme. By default, no authentication is performed for modem dial-in users. Optional. By default, command authorization is disabled. The commands available for a user only depend on the user privilege level. If command authorization is enabled, a command is available only if the user - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 56
settings (including the username and password) on the server. For more information about AAA configuration, see Security Configuration Guide. By default, no local user exists. By default, no password is set. Optional. By default, the command level is 0. By default, no service type is specified - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 57
display. Command system-view copyright-info enable 3. Enter one or more AUX user user-interface aux first-number interface views. [ last-number ] 4. Configure the baud rate. speed speed-value 5. Configure the parity check mode. parity { even | none | odd } Remarks N/A By default, copyright - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 58
display type. terminal type { ansi | vt100 } 12. Configure the user privilege level for login users. user privilege level level By default, the terminal display type is ANSI. The device supports two terminal display types: ANSI and VT100. HP recommends setting the display type to VT100 for - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 59
to simultaneously configure the device. You can execute the command to release the connections established on the specified user interfaces. You cannot use this command to release the connection you are using. Lock the current user interface. lock Available in user view. By default, the system - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 60
HTTP login Step 1. Enter system view. 2. Enable the HTTP service. Command system-view ip http enable 3. Configure the HTTP service port number. ip http port port-number 54 Remarks N/A By default, HTTP service is enabled. Optional. The default HTTP service port is 80. If you execute the - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 61
by the ACL to access the device. By default, no local user is configured. By default, no password is configured for the local user. No command level is configured for the local user. By default, no service type is configured for the local user. N/A Optional. The default is as follows: • 16 for IPv4 - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 62
service cannot be started normally. In that case, execute the ip https enable command multiple times to start the HTTPS service. Optional. By default, the HTTPS service is attribute-based access control policies, see Security Configuration Guide. Optional. The default HTTPS service port is 443. - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 63
-user user-name By default, no local user is configured. password { cipher | simple } password By default, no password is configured for the local user. authorization-attribute level level By default, no command level is configured for the local user. service-type web By default, no service - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 64
Specify the Web service type for the local user, and set the command level to 3 for this user. [Sysname] local-user admin [Sysname-luser-admin] service-type web [Sysname-luser-admin] authorization-attribute level 3 [Sysname-luser-admin] password simple admin 2. Verify the configuration: # On the PC - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 65
Figure 28 Web login page # Enter the user name, password, verify code, select English, and click Login. The homepage appears. After login, you can configure device settings through the Web interface. HTTPS login configuration example Network requirements As shown in Figure 29, to prevent - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 66
myssl] quit # Create a certificate attribute group mygroup1, and configure a certificate attribute rule, specifying that the distinguished name in the Associate the HTTPS service with SSL server policy myssl. [Device] ip https ssl-server-policy myssl # Associate the HTTPS service with certificate - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 67
Web service type, and specify the user privilege level 3. A level-3 user can perform all operations supported by the device. [Device] local-user usera [Device-luser-usera] password simple 123 [Device-luser-usera] service-type web [Device-luser-usera] authorization-attribute level 3 2. Configure the - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 68
to manage and monitor the device. The device supports SNMPv1, SNMPv2c, and SNMPv3, and can work with various network management software products, including IMC. For more information about SNMP, see Network Management and Monitoring Configuration Guide. By default, SNMP access is disabled. To enable - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 69
[ privacy-mode { 3des | aes128 | des56 } priv-password ] ] [ acl acl-number | acl ipv6 ipv6-acl-number ] * Remarks By default, no SNMP group is configured. N/A Configuring SNMPv1 or SNMPv2c settings Step 1. Enter system view. Command system-view Remarks N/A 2. Enable the SNMP agent. snmp - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 70
an SNMP group. [Sysname] snmp-agent group v3 managev3group # Add a user to the SNMP group. [Sysname] snmp-agent usm-user v3 managev3user managev3group 2. Configure the NMS. Details are not shown. For more information, see the NMS manual. Make sure the NMS has the same SNMP settings. Otherwise, the - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 71
to the user interface. Configuring source IP-based Telnet login control Step 1. Enter system view. 2. Create a basic ACL and enter its view, or enter the view of an existing basic ACL. Command system-view acl [ ipv6 ] number acl-number [ match-order { config | auto } ] Remarks N/A By default, no - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 72
its view. 3. Configure an ACL rule. 4. Exit Ethernet frame header ACL view. 5. Enter user interface view. 6. Use the ACL to control user logins by source MAC address. Command system-view Remarks N/A acl number acl-number [ match-order { config | auto } ] By default, no Ethernet frame header ACL - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 73
procedure To configure source IP-based SNMP login control: Step 1. Enter system view. 2. Create a basic ACL and enter its view, or enter the view of an existing basic ACL. Command system-view Remarks N/A acl [ ipv6 ] number acl-number [ name name ] By default, no basic ACL [ match-order - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 74
usm-user v3 user-name group-name [ [ cipher ] authentication-mode { md5 | sha } auth-password [ privacy-mode { 3des | aes128 | des56 } priv-password ] ] [ acl acl-number | acl ipv6 ipv6-acl-number ] * Remarks For more information about SNMP, see Network Management and Monitoring Configuration Guide - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 75
acl-number service with the ACL. • ip https acl acl-number HTTP and HTTPS are independent of each other. Configure one or both of the commands as required. Logging off online Web users Task Log off online Web users. Command Remarks free web-users { all | user-id user-id | user-name user-name - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 76
# Create ACL 2000, and configure rule 1 to permit packets sourced from Host B. system-view [Sysname] acl number 2030 match-order config [Sysname-acl-basic-2030] rule 1 permit source 10.110.100.52 0 # Associate the ACL with the HTTP service so only Web users from Host B are allowed to - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 77
) on the FTP server. If the FTP server supports anonymous FTP, you can directly access the FTP server without a username and password. Establishing an FTP connection To access an FTP server, use the ftp command in user view or use the open command in FTP client view to establish a connection to - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 78
user view. 4. Log in to the FTP server. Command Remarks system-view N/A ftp client source { interface interface-type interface-number | ip source-ip-address } Optional. By default in to the FTP server from user view. Command ftp ipv6 [ server-address [ service-port ] [ source ipv6 source-ipv6 - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 79
Command 1. Enter system view. system-view • For IPv4: 2. Set the DSCP value for ftp client dscp dscp-value IP to use for outgoing FTP packets. • For IPv6: ftp client ipv6 dscp dscp-value Remarks N/A The default image files. 4. Use the lcd command to display the local working directory of - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 80
the new username and password. A wrong username or password can cause the FTP connection to disconnect. To switch to another user account: Task Change the username after FTP login. Command user username [ password ] Maintaining and troubleshooting the FTP connection Task Command Display the - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 81
url command to delete unused files. (Details not shown.) # Log in to the server at 10.1.1.1 through FTP. ftp 10.1.1.1 Trying 10.1.1.1 ... Connected to 10.1.1.1. 220 WFTPD 2.0 service (by Texas Imperial Software) ready for new user User(10.1.1.1:(none)):abc 331 Give me your password, please - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 82
main This command will set the Configure a user account (including the username, password, and authorization) on the device or a remote authentication server for an FTP user. This task is required because the device does not support anonymous FTP for security reasons. By default, authenticated users - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 83
the fast mode. To configure basic parameters for the FTP server: Step Command 1. Enter system view. By default, normal update is used. N/A Optional. Configuring username and password to a remote authentication server for authentication. If this approach is used, the user account is configured - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 84
default configuration by using this command. For more information about the local-user, password, service-type ftp, and authorization-attribute commands, see Security Command Reference. FTP server configuration example Network requirements Create a local user account with username abc and password - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 85
in to the FTP server at 1.1.1.1 by using the username abc and password abc. c:\> ftp 1.1.1.1 Connected to 1.1.1.1. 220 FTP service ready. User(1.1.1.1:(none)):abc 331 Password required for abc. Password: 230 User logged in. # Download the configuration file config.cfg from the FTP server to the PC - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 86
FTP Task Command Remarks Display the source IP address configuration of the FTP client. display ftp client configuration [ | configuration. display ftp-server [ | { begin | exclude | include } regular-expression ] Available in any view Display online FTP user information. display ftp-user - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 87
exchanges, and is easier to deploy. TFTP supports the following transfer modes: • Binary mode-Used file host and set a TFTP working directory. Configure IP addresses and routes to make sure the Flash. You can use the tftp client source command to specify a source IP address or source interface - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 88
dscp dscp-value 5. Return to user view. quit Remarks N/A Optional. By default, no ACL is used for access control. Optional. By default, the primary IP address of TFTP client Task Command Display the source IP address configuration of the TFTP client. display tftp client configuration [ | { - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 89
a TFTP working directory. (Details not shown.) 2. Configure the IRF fabric (TFTP client): # Examine the storage medium of the device for insufficiency or impairment. If no sufficient free space is available, use the delete/unreserved file-url command to delete unused files. (Details not shown - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 90
ID of the subordinate device, for example, slot2#flash. To view the correspondence between a device and its member ID, use the display irf command. 1 to 135 characters Example a.cfg indicates a file named a.cfg in the current working directory. This working directory might be on the master device - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 91
Remarks Only text files can be displayed. Renaming a file Perform this task in user view. Task Rename a file. Command rename fileurl-source fileurl-dest Copying a file Perform this task in user view. Task Copy a file. Command copy fileurl-source fileurl-dest Moving a file Perform this task in - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 92
/unreserved file-url Emptying the recycle bin Step 1. Enter the original working directory of the file to be deleted in user view. 2. Empty the recycle bin. Command cd { directory | .. | / } reset recycle-bin [ /force ] Remarks Skip this step if the original directory of the file to be deleted - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 93
on the storage medium, formatting the storage medium results in loss of the startup configuration file. To manage the space of a storage medium, perform the following tasks in user view: Task Repair a storage medium. Format a storage medium. Command fixdisk device format device Remarks N/A 87 - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 94
in any view NAND Flash memory. regular-expression ] 2. Repair bad blocks. fixdisk device Available in user view Viewing files After files are written to the NAND Flash memory, use the following commands together to view the content of these files. To view files, perform one of the following - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 95
The file systems support the following operation modes: • alert-The system warns you about operations that might cause problems such as file corruption file system operation mode. Command system-view file prompt { alert | quiet } Remarks N/A Optional. The default is alert. File system management - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 96
vary with device models and might differ from the default settings of commands. To view the factory defaults, use the display default-configuration command. Startup configuration The device uses startup configuration to configure software features during startup. After the device starts up, you - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 97
file exists, the device starts up with the backup startup configuration file. 3. If neither the main nor the backup startup configuration file exists, the device starts up with the factory defaults. Saving the running configuration To make configuration changes take effect at the next startup of the - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 98
master saves the configuration. To ensure configuration consistency, HP recommends enabling the function. To enable configuration auto-update: Step 1. Enter system view. 2. Enable configuration file auto-update. Command system-view slave auto-update config Remarks N/A By default, this function is - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 99
, you may choose to re-specify a next-startup configuration file as instructed by the system. If configuration auto-update is enabled, the save file-url all command and the save [ safely ] [ backup | main ] [ force ] command save the configuration to the master device and all member devices. If - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 100
after a master/subordinate switchover, create the directory on all IRF members. Configuration procedure To configure configuration archive parameters: Step 1. Create the configuration archive directory. 2. Enter system view. Command See "Managing the file system" system-view Remarks In an IRF - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 101
: The undo form of this command disables both manual and automatic configuration archiving, restores the default settings for the archive configuration interval and archive configuration max commands, and deletes all saved configuration archives. Optional. The default number is 10. Change the - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 102
path and file name prefix before performing this task. Perform the following task in user view: Task Manually archive the running configuration. Command archive configuration Performing configuration rollback To avoid rollback failure, follow these guidelines: • Do not reboot member devices while - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 103
file to a TFTP server: Step 1. Verify that a next-startup configuration file has been specified in user view. 2. Back up the next-startup configuration file to a TFTP server in user view. Command display startup backup startup-configuration to dest-addr [dest-filename ] Remarks Optional. If no - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 104
the file is deleted, the device uses factory defaults at the next startup. Perform the following task in user view: Task Delete the next-startup configuration file. Command reset saved-configuration [ backup | main ] Restoring the next-startup configuration file from a TFTP server To download - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 105
Task Command Remarks Display the running configuration. display current-configuration [ [ configuration [ configuration ] | interface factory defaults. display default-configuration [ | { begin | exclude | include } regular-expression ] Available in any view. Display the running configuration - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 106
includes upgrading the BootWare (called "bootrom" in CLI) and system software. Each time the switch is powered on, it runs the BootWare image to initialize hardware and display hardware information, must reboot the entire device to complete the upgrade. This approach causes service interruption. 100 - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 107
one by one and has a larger impact on services than the CLI approach. Upgrading BootWare Step Command 1. Use FTP or TFTP to transfer the BootWare image to the root See "Configuring FTP" or directory of a member "Configuring TFTP." switch's storage media. 2. Copy the image to the root - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 108
Command 1. Use FTP or TFTP to transfer the system software image to the See "Configuring FTP" or root directory of the master "Configuring TFTP." device's storage media. 2. Copy the system software image to the root directory of each subordinate switch for each member switch in user view. boot- - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 109
. Display information about the patch package. Display patch information. Command Remarks display boot-loader [ slot slot-number ] [ | is soft-version1. The latest system software image soft-version2.bin and the latest configuration file new-config.cfg are both saved on a TFTP server. The TFTP - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 110
soft-version2.bin from the TFTP server to both member switches. tftp 2.2.2.2 get soft-version2.bin ... configuration file successfully # Specify soft-version2.bin as the startup system software image for all IRF members. boot-loader file soft-version2.bin slot all main This command - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 111
.bin to the working directory of TFTP server. (Details not shown.) 2. Configure the IRF fabric: # Use the save command to save the current system configuration. (Details not shown.) # Examine the space of the Flash on each switch. If the free space is not sufficient for the patches, delete unused - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 112
For example, if the device name is Sysname, the user view prompt is . To configure the device name: Step 1. Enter system view. 2. Configure the device name. Command system-view sysname sysname Remarks N/A The default device name is HP. Changing the system time You must synchronize your - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 113
Command 2, 1 3 1, 3 3, 1 (date-time outside the daylight saving time range) Effective system time Configuration example System time date-time The original system time outside the daylight saving time range: The system time does not change until it falls into - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 114
Command 3, 1 (date-time in the daylight saving time range) Effective system time Configuration example System time date-time - add 1 clock summer-time ss one-off 1:00 2005/1/1 1:00 2005/8/8 2 System clock configured: 04:00:00 ss Sat 01/01/2005. clock datetime 1:00 2007/1/1 clock timezone zone- - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 115
2008. Configuration procedure To change the system time: Step Command Remarks 1. Set the system time and date. clock datetime time date Optional. Available in user view add-time Optional. UTC time zone by default. Optional. Use either command. By default, daylight saving time is disabled, and - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 116
Command system-view copyright-info enable Remarks N/A Enabled by default. Configuring banners Banners are messages that the system displays during user login. The system supports delimiter. For example, you can configure the banner "Have a nice day. Please input the password." as follows: - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 117
can configure the banner "Have a nice day. Please input the password." manually reboot the device. To configure the exception handling method: Step 1. Enter system view. 2. Configure the exception handling method. Command Remarks system-view N/A system-failure { maintain | reboot } By default - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 118
slot-number argument, all IRF member switches reboot. Scheduling a device reboot The switch supports only one device reboot schedule. If you configure the schedule reboot delay command multiple times, the last configuration takes effect. The schedule reboot at command and the schedule reboot delay - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 119
to configure commands to be executed at different time points. Supported views User view and system view. In the schedule job command, shell represents user view, and system represents system view. All views. In the time command, monitor represents user view. Supported commands Commands in user - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 120
for user view, system for system view, GigabitEthernet x/x/x, and Ten-GigabitEthernet x/x/x for Ethernet interface view, and Vlan-interfacex for VLAN interface view. { The time ID (time-id) must be unique in a job. If two time and command bindings have the same time ID, the one configured last - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 121
Configure the port status detection timer. Command system-view shutdown-interval time Remarks N/A The detection timer is 30 seconds by default. user view: Task Clear unused 16-bit interface indexes. Command reset unused porttag Remarks In an IRF fabric, the command applies to all member switches - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 122
modules Support for the profile of the transceiver module and contains the permanent configuration including the serial number, manufacturing date, and vendor maintaining device management For diagnosis or troubleshooting, you can use separate display commands to collect running status data module - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 123
setting. display schedule reboot [ | { begin | exclude | include } regular-expression ] Available in any view Display the configuration of jobs configured by using the job command. display job [ job-name ] [ | { begin | exclude | include } regular-expression ] Available in any view Display the - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 124
Task Clear the system software version update history of the device. Command reset version-update-record Remarks Available in system view 118 - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 125
that saves mappings between host IP addresses and host names, and the configuration file. • DNS server-Resolves between IP addresses and host names. In through the DNS server, and then uses the host name to request the configuration file with the same name (hostname.cfg) from the TFTP server. If - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 126
the device sends a TFTP request to obtain the configuration file from the specified TFTP server and executes the configuration file. If the client cannot get such parameters, it uses the factory defaults. To implement automatic configuration, you must configure the DHCP server, DNS server, and TFTP - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 127
Configuration Guide. For more information about the ip host command, see Layer 3-IP Services Command Reference. Principles for selecting an address pool on the DHCP server The DHCP server selects IP addresses and other network configuration parameters from an address pool for clients. DHCP supports - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 128
. To obtain a device's client ID, use the display dhcp server ip-in-use command to display address binding information on the DHCP server after the device obtains its IP address through DHCP. Obtaining the configuration file from the TFTP server A device can obtain the following files from the TFTP - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 129
file with the same name from the TFTP server. • If all the above operations fail, the device requests the default configuration file from the TFTP server. TFTP request sending mode The device chooses whether to unicast or broadcast a TFTP request as follows: • If a legitimate TFTP server - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 130
up with the factory defaults. NOTE: If the configuration file contains any IRF configuration, the device does not execute the IRF configuration when executing the configuration file. The configuration file is deleted after executed. Save the configuration by using the save command. Otherwise, the - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 131
HP A-Series Acronyms. Websites • HP.com http://www.hp.com • HP Networking http://www.hp.com/go/networking • HP manuals http://www.hp.com/support/manuals • HP download drivers and software http://www.hp.com/support/downloads • HP software depot http://www.software.hp.com • HP Education http://www.hp - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 132
Command conventions Convention Boldface Italic [ ] { x | y | ... } [ x | y | ... ] { x | y | ... } * [ x | y | ... ] * & # Description Bold text represents commands and menu items are in bold text. For example, the New User window appears; click OK. Multi-level menus are separated by angle - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 133
, or firewall. Represents a routing-capable device, such as a router or Layer 3 switch. Represents a generic switch, such as a Layer 2 or Layer 3 switch, or a router that supports Layer 2 forwarding and other Layer 2 features. Port numbering in examples The port numbers in this document are for - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 134
IP-based SNMP login control,67 Configuring the device name,106 Configuring the exception handling method,111 Configuring the port status detection timer,115 Configuring user privilege and command levels,13 Configuring Web login control,69 Contacting HP,125 Controlling Telnet logins,65 Controlling - HP 6125G | HP 6125G & 6125G/XG Blade Switches Fundamentals Configuration - Page 135
,97 Storage medium naming rules,84 T TFTP client configuration example,82 Typical application scenario,119 U Understanding command-line error messages,8 Upgrading BootWare,101 Upgrading the entire system software,101 User interfaces,22 Using the command history function,9 Using the device as a TFTP
HP 6125 Blade Switch Series
Fundamentals
Configuration Guide
Part number: 5998-3153
Software version: Release 2103
Document version: 6W100-20120907