Enhancements to Release 1.0 of the IBM 8371

Detailed Configuration Commands for a Particular Bridge

The detailed bridge configuration commands allow you to specify network parameters for a specific ASRT bridge and its network interfaces.
Note: The device must be restarted for the new configuration to take effect.

Enter the detailed bridge configuration commands at the ASRT config> prompt.

Table 2 shows the detailed bridge configuration commands.

Table 2. Detailed Configuration Command for a Particular Bridge Summary

Command Function
? (Help) Displays all the commands available for this command level or lists the options for specific commands (if available).
Add Adds a LAN/WAN port.
Delete Deletes a LAN/WAN port.
Disable Disables the following functions:

Bridging
Transparent (spanning tree) bridging function on a given port

Enable Enables the following functions:

Bridging
Transparent (spanning tree) bridging function on a given port

List Displays information about the complete bridge configuration or about selected configuration parameters.
Netbios Displays the NetBIOS configuration prompt. See "NetBIOS".
Set Sets the following parameters:

Aging time for dynamic address entries
Bridge address
Maximum frame size
Spanning tree protocol bridge and port parameters
Filtering database size
IPX Conversion Mode
Ethernet Preference

vlans Allows the user to configure dynamic protocol filtering.
Exit Returns you to the previous command level.

Command	Function
? (Help)	Displays all the commands available for this command level or lists the options for specific commands (if available).
Add	Adds a LAN/WAN port.
Delete	Deletes a LAN/WAN port.
Disable	Disables the following functions: Bridging Transparent (spanning tree) bridging function on a given port
Enable	Enables the following functions: Bridging Transparent (spanning tree) bridging function on a given port
List	Displays information about the complete bridge configuration or about selected configuration parameters.
Netbios	Displays the NetBIOS configuration prompt. See "NetBIOS".
Set	Sets the following parameters: Aging time for dynamic address entries Bridge address Maximum frame size Spanning tree protocol bridge and port parameters Filtering database size IPX Conversion Mode Ethernet Preference
vlans	Allows the user to configure dynamic protocol filtering.
Exit	Returns you to the previous command level.

Add

Use the add command to add the following information to your bridging configuration:

Specific address mapping for a given protocol
LAN/WAN ports

Syntax:

add: port . . .

port interface# port#

Adds a LAN/WAN port to the bridging configuration. This command associates a port number with the interface number and enables that port's participation in transparent bridging.

Port Number Valid Values: 1 to 254

Port Number Default Value: none

Example: add a port

ASRT config> add port
Interface Number [0]?
Port Number [5]?

Delete

Use the delete command to delete the following information from your bridging configuration:

Specific address mapping for a given protocol
LAN/WAN ports

Syntax:

delete: port . . .

port port#: Removes a port from a bridging configuration. Because the enable bridge command by default configures all LAN devices to participate in bridging, this command allows you to customize which devices should or should not participate in the bridging. The port number value normally is one greater than the interface number.
Example: delete port 2

Disable

Use the disable command to disable the following bridge functions:

Bridging
Transparent (spanning tree) bridging function on a given port

Syntax:

disable: bridge
: stp
: transparent . . .
: tree

bridge

Disables bridging function entirely. This command does not remove previously configured bridging values, however.

Example: disable bridge

stp

Disables the Spanning Tree Protocol on the bridge. The default is enabled.

Example: disable stp

transparent port#

Disables transparent bridging function on the given port.

Example: disable transparent 2

tree port#

Disables STP participation for the bridge on a per-port basis.

Example: disable tree 1
Note: Disabling STP on a per-port basis can produce network loops because of the existence of parallel bridges.

Enable

Use the enable command to enable the following bridging functions:

Bridging
Transparent (Spanning Tree) bridging function on a given port

Syntax:

enable: bridge . . .
: stp
: transparent . . .
: tree

bridge

Enables transparent bridging function on all the LAN devices (interfaces) configured in the bridging device. The port numbers are assigned to each interface as the previous interface number plus 1. For example, if interface 0 is a LAN device its port number will be 1.

Example: enable bridge

stp

Enables the spanning tree protocol on the bridge. This is the default.

Example: enable stp

transparent port#

Enables transparent bridging function on the given port. Under normal circumstances, this command is not necessary.

Example: enable transparent

Port Number [1]?

tree port#

Enables STP participation for the bridge on a per-port basis.

Example: enable tree 1

List

Use the list command to display information about the complete bridge configuration or to display information about selected configuration parameters.

Syntax:

list: bridge
: filtering . . .
: port . . .
: prot-filter . . .
: protocol
: range . . .

bridge

Lists all general information regarding the bridge.

filtering datagroup-option

The following general data groups can be displayed under the list filtering command:

All: Displays all filtering database entries.
Ethertype: Displays Ethernet protocol type filter database entries.
SAP: Displays SAP protocol filter database entries.
SNAP: Displays SNAP protocol identifier filter database entries.

The following examples illustrate each of the list filtering display options.

Example 1: list filtering all

     Ethernet type 0800 is routed on ports 1
     IEEE 802.2 destination SAP 42 is routed on ports 1
     IEEE 802 SNAP PID 00-00-00-08-00 is routed on ports 2-3

Descriptors used in explaining how packets are communicated include:

Routed: Describes packets passed to routing forwarder to be forwarded.
Filtered: Describes packets that are administratively filtered setting protocol filters that you set.
Bridged and routed: This describes a protocol identifier for which there is a protocol entity within the system that is not a forwarder. For example a link level echo protocol. Unicast packets from this protocol are bridged or locally processed if being sent to a registered address. Multicast packets are forwarded and locally processed for a registered multicast address.

All of these descriptors also apply to ARP packets with this Ethertype.

Example 2:

list filtering ethertype

Ethernet type (in hexadecimal), 0 for all [0]? 0800
Ethernet type 0800 is routed on ports 1

Example 3:

list filtering sap

SAP (in hexadecimal), 100 for all [100]? 42
IEEE 802.2 destination SAP 42 is routed on ports 1

Example 4:

list filtering snap

SNAP Protocol ID, return for all [00-00-00-00-00]?
IEEE 802 SNAP PID 00-00-00-08-00 is routed on ports 2-3

port port#

Displays port information related to ports that are already configured. Port# selects the port you want to list. Specifying no number selects all ports.

Example: list port

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Port ID (dec)    : 128: 2, (hex): 80-02
Port State       : Enabled
STP Participation: Enabled
Port Supports    : Transparent Bridging Only
Assoc Interface  : 0  VPI  0  VCI:    78
Path Cost        : 0

Port ID: The ID consists of two parts: the port priority and the port number. In the example, 128 is the priority, and 1, 2, and 3 are the port numbers. In hexadecimal format, the low-order byte denotes the port number and the high-order byte denotes the priority.
Port state: Displays current state of the specified port or ports. This can be either ENABLED or DISABLED.
Port supports: Displays bridging method supported by that port (for example, transparent bridging).
Assoc interface: Displays interface number associated with the displayed port. Also displays the VPI/VCI or the destination ATM address if the port exists on an ATM interface.
Path Cost: Cost associated with the port which is used for possible root path cost. The range is 1 to 65535.

prot-filter port#

Reads a current list of the filter protocol types. Filters can be listed selectively by port or all ports can be displayed at once. Port# selects the bridge port that you want to list.

Example: list prot-filter 1

            PORT 1
            Protocol Class   :  DSAP
            Protocol Type    :  01
            Protocol State:  :  Filtered
            Port Map         :  1, 2, 3

Port Number: Port number is displayed for each port if all ports are selected to be displayed.
Protocol Class: Displays protocol class (SNAP, Ether, or DSAP).
Protocol Type: Displays protocol ID in hexadecimal format.
Protocol State: Denotes that protocol is being filtered for selected port.
Port Map: Displays the numbers of the ports where this type of protocol filter is present.

protocol

Displays bridge information related to the spanning tree protocol.

Note:

Each of these bridge-related parameters is also described in detail in the previous chapter.

Bridge Identifier: 8-byte value in ASCII format. If you did not set the bridge address prior to displaying this information, the low order 6 bytes will be displayed as zero, denoting that the default MAC address of a port is being used. When a bridge has been selected as the root bridge, the bridge max age and bridge hello time are transmitted by it to all the bridges in the network via the HELLO BPDUs.
Bridge-Max-Age: Maximum age (period of time) that should be used to time out spanning tree protocol-related information.
Bridge-Hello-Timer: Time interval between HELLO BPDUs.
Bridge-Forward-Delay: Time interval used before changing to another state (should this bridge become the root).

range start-index stop-index

Reads a range of address entries from the permanent database. To specify this, first determine the size of the database by using the list permanent command. From this value you can then determine a "start index" value for your entry range. The start index is in the range from 1 to the size of the database. You can then choose a "stop index" for displaying a limited number of entries. This input is optional. If you do not specify the stop index, the default value is the size of the database.

Address entries contain the following information:

Example: list range

       Start-Index [1]? 1
       Stop-index [17]? 6
       ADDRESS                 ENTRY TYPE      PORT MAP
 
       =======                 ==========      ========
       01-80-C2-00-00-00       REGISTERED      Input Port:  ALL PORTS
                                               Output ports:
 
       01-80-C2-00-00-01       RESERVED        NONE/DAF
       01-80-C2-00-00-02       RESERVED        NONE/DAF
       01-80-C2-00-00-03       RESERVED        NONE/DAF
       01-80-C2-00-00-04       RESERVED        NONE/DAF
       01-80-C2-00-00-05       RESERVED        NONE/DAF

Address

6-byte MAC address of the entry.

Type of Entry

Specifies one of the following types:

Reserved - entries reserved by the IEEE 802.1d committee
Registered - entries consist of unicast addresses belonging to proprietary communications hardware attached to the box or multicast addresses enabled by protocol forwarders
Dynamic - entries "learned" by the bridge "dynamically" that do not survive power on/offs or system resets and that have an "age" associated with the entry
Free - locations in database that are free to be filled by address entries

Port Map

Displays outgoing port map for all incoming ports.

NetBIOS

Enter netbios at the Bridge x config> prompt to display the NetBIOS filtering configuration prompt. For example:

Bridge 2 Config> netbios
NetBIOS Filtering Configuration
NetBIOS Bridge 2 Filter config>

NetBIOS Filtering Configuration Commands

Note:

The NetBIOS filtering configuration commands are not effective immediately. You must restart or reload the device before they become effective.

Table 3. NetBIOS Filtering Configuration Commands

Command Function
? (Help) Displays all the commands available for this command level or lists the options for specific commands (if available).
Create Creates byte filter and host-name filter lists for NetBIOS filtering.
Delete Deletes byte filter and host-name filter lists for NetBIOS filtering.
Disable Disables NetBIOS filtering on the bridging router.
Enable Enables NetBIOS filtering on the bridging router.
Filter-on Assigns a created filter to a specific port. This filter can then be applied to all NetBIOS packets input or output on the specified port.
List Displays all information concerning created filters.
Update Adds information to or deletes information from a host-name or byte filter list.
Exit Returns you to the previous command level.

Command	Function
? (Help)	Displays all the commands available for this command level or lists the options for specific commands (if available).
Create	Creates byte filter and host-name filter lists for NetBIOS filtering.
Delete	Deletes byte filter and host-name filter lists for NetBIOS filtering.
Disable	Disables NetBIOS filtering on the bridging router.
Enable	Enables NetBIOS filtering on the bridging router.
Filter-on	Assigns a created filter to a specific port. This filter can then be applied to all NetBIOS packets input or output on the specified port.
List	Displays all information concerning created filters.
Update	Adds information to or deletes information from a host-name or byte filter list.
Exit	Returns you to the previous command level.

Response to NetBIOS Configuration Commands

The NetBIOS configuration (Talk 6) commands are not effective immediately. They remain pending until you issue the reload command.

Create

Use the create command to create a byte filter-list or host-name filter list.

Syntax:

create: byte-filter-list filter-list
: name-filter-list filter-list

byte-filter-list filter-list

Creates a byte filter-list name for NetBIOS filtering. You can use up to 16 characters to identify the list being built. Filter-list must be a unique name that has not been used previously with the create byte-filter-list or create name-filter-list command.

Example: create byte-filter-list newyork

name-filter-list filter-list

Creates a host-name filter-list name for NetBIOS filtering. You can use up to 16 characters to identify the name filter-list being built. Filter-list must be a unique name that has not been used previously with the create byte-filter-list or create name-filter-list command.

Example: create name-filter-list atlanta

Delete

Use the delete command to delete byte filter lists, host-name filter lists, and filters created using the filter-on input or filter-on output command. The command removes all information associated with byte and host-name filter lists. It also frees the user-defined string as a name for a new filter list.

Syntax:

delete: byte-filter-list filter-list
: name-filter-list filter-list
: filter input port#
: filter output port#

byte-filter-list filter-list

Deletes a byte filter-list created for NetBIOS filtering. Filter-list is the user-defined string being used to identify the byte filter-list being deleted.

Example: delete byte-filter-list newyork

name-filter-list filter-list

Deletes a host-name filter-list created for NetBIOS filtering. Filter-list is the user-defined string that is used to identify the name-filter-list being deleted.

Example: delete name-filter-list atlanta

filter input port#

Deletes a filter that was created using the filter-on input command. The command removes all information associated with the filter and fills any resulting gap in filter numbers.

Example: delete filter input 2

filter output port#

Deletes a filter that was created using the filter-on output command. The command removes all information associated with the filter and fills any resulting gap in filter numbers.

Example: delete filter output 2

Disable

Use the disable command to globally disable NetBIOS name and byte filtering on the router.

Syntax:

disable: netbios-filtering

Example: disable netbios-filtering

Enable

Use the enable command to globally enable NetBIOS name and byte filtering on the router.

Syntax:

enable: netbios-filtering

Example: enable netbios-filtering

Filter-on

This command assigns one or more previously configured filter lists to the input or output of a specific port.

Syntax:

filter-on: input port# filter-list <operator filter-list . . . >
: output port# filter-list <operator filter-list . . . >

input port# filter-list <operator filter-list . . . >

This command assigns one or more filter lists to incoming packets on a specific port. The resulting filter is then applied to all NetBIOS packets input on the specified port.

Port# is a configured bridge port number on the router. The port number identifies this filter. Enter list to see a list of port numbers. Filter-list is a string previously entered using the create command. To add additional filter lists to this port, enter AND or OR in all capital letters followed by the filter list name.
Note: Multiple operators can be used to create a complex filter. If you enter multiple operators, they must all be entered at the same time on the same command line.

The filter created by this command is applied to all incoming NetBIOS packets on the specified port. Each filter list on the command line is evaluated left to right along with any operators that are present. An Inclusive evaluation of a filter list is equivalent to a True condition and an Exclusive evaluation is equivalent to a False condition. If the result of the evaluation of the filter-lists is True, the packet is bridged. Otherwise, the packet is filtered (dropped).

If the packet is not one of the types supported by NetBIOS filtering then all host-name filter lists for this filter are designated "Inclusive" (True). If an input filter already exists for specified port number, an error message is displayed.

Example: filter-on input 2 newyork AND boston

output port# filter-list <operator filter-list . . . >

This command assigns one or more filters to outgoing packets on a port. This filter is then applied to all NetBIOS packets output on that port.

Port# is a configured bridge port number on the router. The port number identifies this filter. Enter list to see a list of port numbers. Filter-list is a string previously entered using the create command. Enter an optional operator as either AND or OR in all capital letters. If an operator is present, it must be followed by a filter-list name. The port number is used to identify this filter.
Note: Multiple operators can be used. This creates a complex filter. If one or more operators are present, they must all be entered at the same time on the same command line.

The filter created by this command is applied to all NetBIOS packets output on the specified port number. Each filter list on the command line is evaluated left to right along with any operators that are present. An Inclusive evaluation of a filter list is equivalent to a True condition and an Exclusive evaluation is equivalent to a False condition. If the result of the evaluation of the filter-lists is True, the packet is bridged. Otherwise, the packet is filtered (dropped).

If the packet is not one of the types supported by NetBIOS filtering then all host-name filter lists for this filter are designated "Inclusive" (True). If an output filter already exists for specified port number, an error message is displayed.

Example: filter-on output 2 newyork OR boston

List

Use the list NetBIOS Filtering command to display all information concerning created filters.

Syntax:

list

Example: list

            NetBIOS Filtering: Disabled
 
            NetBIOS Filter Lists
            --------------------
 
            Handle           Type
 
            nlist            Name
            newyork          Byte
 
            NetBIOS Filters
            ---------------
 
            Port #      Direction      Filter List Handle(s)
 
            3           Output         nlist

NetBIOS Filtering:: Displays whether NetBIOS filtering is enabled or disabled.
NetBIOS Filter Lists: Displays the user-defined name (handle) of the configured filter lists. For type, "Name" indicates a host-name filter list and "Byte" indicates a byte filter list.
NetBIOS Filters: Displays the assigned port number and direction (input or output) of each filter. Filter List Handles displays the names of the filter lists making up the filter.

Update

Use the update command to add or delete information from host-name or byte filter lists. The filter-list is a string previously entered using the create byte (or name) filter-list prompt. This command brings you to the NetBIOS Byte (or Name) filter-list Config> prompt, which lets you perform update tasks to the specified filter list. At this prompt you can add, delete, list, or move filter-items from byte and host-name filter lists. At this prompt you can also set the default value of each filter list to Inclusive or Exclusive.

Using the add subcommand creates a filter item within the filter list. The first filter item created is assigned number 1, the next one is assigned number 2, and so on. After you enter a successful add subcommand, the router displays the number of the filter item just added.
Note: Adding more filter items to filter lists adds to processing time (due to the time it takes to evaluate each filter item in the list) and can affect performance in heavy NetBIOS traffic.

The order in which filter items are specified for a given filter list is important as this determines the way in which the filter items are applied to a packet. The first match that occurs stops the application of filter items, and the filter list is evaluated as either Inclusive or Exclusive (depending on the Inclusive or Exclusive designation of the matched filter item). If none of the filter items of a filter list produces a match, then the default condition (Inclusive or Exclusive) of the filter list is returned.

The delete subcommand specifies the number of a filter item to be deleted from the filter list. When a delete subcommand is given, any hole created in the list is filled in. For example, if filter items 1, 2, 3, and 4 exist and filter item 3 is deleted, then filter item 4 will be renumbered to 3.

The default subcommand lets you change the default setting of the filter list to either Inclusive or Exclusive. If a filter list evaluates as Inclusive, then the packet is bridged. Otherwise, the packet is filtered.

The move subcommand is available to renumber filter items within a filter list. The first argument to the move subcommand is the number of the filter list to be moved. The second argument to the move subcommand is the number of the filter list after which the first filter list should be moved.

Syntax:

update: byte-filter-list . . .
: name-filter-list . . .

byte-filter-list filter-list

Updates information belonging to a byte filter-list. The filter-list parameter is a string previously entered via the create byte-filter-list command. This command brings you to the next NetBIOS BYTE filter-list Config> command level (see example). At this level you can perform update tasks to the specified filter-list.

Example: update byte-filter-list newyork

            NetBIOS Byte newyork Config>

At this prompt level you can execute several commands. Each available command is listed under "Update Byte-Filter Command Options".

name-filter-list filter-list

Updates information belonging to a name-filter list. This command is identical to the byte-filter-list command, except that it specifies a name-filter list rather than a byte-filter list. The filter-list parameter is a string previously entered using the create name-filter-list prompt. This command brings you to the next NetBIOS Name filter-list Config> command level (see example). At this level you can perform update tasks to the specified filter-list.

Example: update name-filter-list accounting

            NetBIOS Name accounting Config>

At this prompt level you can execute several commands. Each available command is listed under "Update Name-Filter (Command Options)".

Update Byte-Filter-List (Command Options)

This section lists the command options available for the update byte-filter-list command:

add inclusive byte-offset hex-pattern <hex mask>

Adds a filter item to the byte filter list. If the byte filter item that is added produces a match with a NetBIOS packet, the filter list it belongs to will evaluate to Inclusive (True).

Byte-offset specifies the number of bytes (in decimal) to offset into the packet being filtered. This starts at the NetBIOS header of the packet.
Hex-pattern is a hexadecimal number used to compare with the bytes starting at the byte-offset of the NetBIOS header. Syntax rules for hex-pattern include no 0x in front, a maximum of 32 numbers, and an even number of hex digits.
Hex-mask, if present, must be the same length as hex-pattern and is logically ANDed with the bytes in the packet starting at byte-offset before the result is compared for equality with hex-pattern. If the hex-mask argument is omitted, it is considered to be all binary 1s.

If the offset and pattern of a byte filter item represent bytes that do not exist in a NetBIOS packet (that is, if the packet is shorter than was intended when setting up a byte-filter list), then the filter item will not be applied to the packet and the packet will not be filtered. If a series of byte filter items is used to set up a single NetBIOS filter list, then a packet will not be tested for filtering if any of the byte filter items within the NetBIOS filter list represent bytes that do not exist in the NetBIOS packet.

Example: add inclusive

           Byte Offset  [0] ?
           Hex Pattern  [] ?
           Hex Mask (<CR> for no mask)  [] ?

add exclusive byte-offset hex-pattern <hex mask>

Adds a filter item to the byte filter list. This command is identical to the add inclusive command, except that if the result of the comparison between the filter item and a NetBIOS packet results in a match, then the filter list evaluates to Exclusive (False). Datagram Broadcast Packets can be specified to be discarded by using this command with a byte offset of 4 and a byte pattern of 09.

Byte-offset specifies the number of bytes (in decimal) to offset into the packet being filtered. This starts at the NetBIOS header of the packet.
Hex-pattern is a hexadecimal number that is compared with the bytes starting at the byte-offset offset of the NetBIOS header. Syntax rules for hex-pattern include no 0x in front, a maximum of 32 numbers, and an even number of hex digits.
Hex-mask, if present, must be the same length as hex-pattern and is logically ANDed with the bytes in the packet starting at byte-offset before the result is compared for equality with hex-pattern. If the hex-mask argument is omitted, it is considered to be all binary 1's.

Example: add exclusive

           Byte Offset  [0] ?
           Hex Pattern  [] ?
           Hex Mask  (<CR> for no mask)  [] ?

default include

Changes the default setting of the filter list to "inclusive." This command indicates that if no filter items of the filter list match the contents of the packet being considered for filtering, the filter list will be evaluated as Inclusive. This is the default setting.

default exclude

Changes the default setting of the filter list to "exclusive." This command indicates that, if no filter items of the filter list match the contents of the packet being considered for filtering, the filter list will be evaluated as Exclusive.

delete filter-item

Deletes a filter item from the filter list.

Filter-item is a decimal number representing a filter item that was previously created by the add command.

list

Displays information related to filter items in the specified filter list.

BYTE Filter List Name:     Engineering
BYTE Filter List Default:  Exclusive
Filter Item # Inc/Ex       Byte Offset    Pattern          Mask
1          Inclusive        14         0x123456          0xFFFF00
2          Exclusive         0         0x9876            0xFFFF
3          Exclusive        28         0x1000000         0xFF00FF00

move filter-item1 filter-item2

Reorders filter items within the filter list. The filter item whose number is specified by filter-item1 is moved and renumbered to be just after filter item2.

exit

Exits to the previous command prompt level.

Update Name-Filter-List (Command Options)

The following section lists the command options available for the update name-filter-list command:

add inclusive ASCII host-name <LAST-hex number>

Adds a filter item to the host-name filter list. With this command, the host name fields of the NetBIOS packets are compared with the host-name given in this command. The following list shows how these comparisons are made:

ADD_GROUP_NAME_QUERY: Source NetBIOS name field is examined
ADD_NAME_QUERY: Source NetBIOS name field is examined
DATAGRAM: Destination NetBIOS name field is examined
NAME_QUERY: Destination NetBIOS name field is examined

If there is a match (taking into account wildcard designations in this command), then the filter list evaluates to Inclusive. If not, the next filter item of the filter list (if any) of the filter is applied to the packet. If the packet is not one of the four types supported by NetBIOS Name filtering, then the packet is bridged.

Host-name is an ASCII string up to 16 characters long. A question mark (?) can be used in host-name to indicate a single character wildcard. An asterisk (*) can be used as the final character of host-name to indicate a wildcard for the remainder of the host-name. If host-name contains fewer than 15 characters, it is padded to the 15th character with ASCII spaces. Host-name can contain any character except the following:
. / \ [ ] : | < > + = ; , <space>
Note: Host-name is case sensitive.
LAST-hex-number can be used if host-name contains fewer than 16 characters. It is a hexadecimal number (with no 0x in front of it) which indicates the value to be used for the last character. If the LAST argument is not specified on a hostname less than 16 characters, then a "?" wildcard is supplied for the 16th character.

add inclusive HEX hexstring

Adds a filter item to the host-name filter list. This command is functionally the same as the add inclusive ASCII command. However, the representation of hostname is different. This command supplies the hostname as a series of hexadecimal numbers (with no 0x in front).

Hexstring must consist of an even number of hexadecimal numbers. If you do not supply a full 32 hexadecimal numbers, ASCII blanks are padded to the 29th and 30th numbers and a wildcard is supplied as the 31st and 32nd (16th byte) numbers. A wildcard for a single byte can be specified by ??.

add exclusive ASCII host-name <LAST-hex-number>

Adds a filter item to the host-name filter list. This command is identical to the add inclusive ASCII command, except that packets that are matched against this filter item produce an Exclusive result for the filter list.

Host-name is an ASCII string up to 16 characters long. A question mark (?) can be used in host-name to indicate a single character wildcard. An asterisk (*) can be used as the final character of host-name to indicate a wildcard for the remainder of the host-name. If host-name contains fewer than 15 characters, it is padded to the 15th character with ASCII spaces. Host-name can contain any character except the following:
. / \ [ ] : | < > + = ; , <space>
LAST-hex-number can be used if host-name contains fewer than 16 characters. It is a hexadecimal number (with no 0x in front of it) that indicates the value to be used for the last character. If the LAST argument is not specified on a host-name less than 16 characters, then a ? wildcard is supplied for the 16th character.

add exclusive HEX hexstring

Adds a filter item to the name filter list. This command is functionally the same as the add inclusive hex command, except that packets that are matched against this filter item produce an Exclusive result for the filter list.

Hexstring must consist of an even number of hexadecimal numbers. If you do not supply a full 32 hexadecimal numbers, ASCII blanks are padded to the 29th and 30th numbers and a wildcard is supplied as the 31st and 32nd (16th byte) numbers. A wildcard for a single byte can be specified by ??.

default include

Changes the default setting of the filter list to "inclusive." This command indicates that, if no filter items of the filter list match the contents of the packet being considered for filtering, the filter list will evaluate to Inclusive. This is the default setting.

default exclude

delete filter-item

Deletes a filter item from the filter list.

Filter-item is a decimal number representing a filter item that was previously created by the add command.

list

Displays information related to filter items in the specified filter-list.

NAME Filter List Name: nlist
NAME Filter List Default: Exclusive
 
Filter Item #   Type    Inc/Ex        Hostname       Last Char
 
      1         ASCII   Inclusive     EROS
      2         ASCII   Inclusive     ATHENA
      3         ASCII   Exclusive     FOOBAR

move filter-item1 filter-item2

Reorders filter items within the filter list. The filter item whose number is specified by filter-item1 is moved and renumbered to be just after filter-item2.

exit

Exits to the previous command prompt level.

Set

Use the set command to set certain values, functions, and parameters associated with the bridge configuration. These include:

Aging time for dynamic address entries in the filtering database
Bridge address
MAC service data unit (MSDU) size
Spanning tree protocol bridge and port parameters
Size of the bridge filtering database
Protection against unauthorized access to the switched network using port security.

Syntax:

set: age
: bridge
: filtering
: maximum-packet-size . . .
: port
: port security
: protocol bridge
: protocol port . . .

age seconds resolution

Sets the time for aging out dynamic entries in the filtering database when the port with the entry is in the forwarding state. This age is also used for aging RIF entries in the adaptive database in the case of an SR-TB bridge personality.

Enter the required value after each prompt and press Return.

Aging Time Valid Values: 10 to 1000000

Aging Time Default Value: 30

The resolution value specifies how often dynamic entries in the filtering database should be scanned to determine if they have exceeded their age limit as set by the aging timer.

Resolution Valid Values: 1 to 60 seconds

Resolution Default Value: 5 seconds

Example: set age

            seconds [300]  ?  400
            resolution [5] ?  6

bridge bridge-address

Sets the bridge address. This is the low-order 6-octet bridge address found in the bridge identifier. By default, the bridge-addr-value is set to the medium access control (MAC) address of the lowest-numbered port at initialization time. You can use this command to override default address and enter your own unique address.

Note:

Each bridge in the network must have a unique address for the spanning tree protocol to operate correctly.

Attention:

In cases where a serial line interface is the lowest numbered port, it is mandatory to use this command so that the bridge will have a unique address when restarted. This process is necessary because serial lines do not have their own MAC address.

At the prompt, enter the bridge address in 12-digit hexadecimal format and press Return.

If you enter the address in the wrong format you will receive the message Illegal Address. If you enter no address at the prompt you will receive the message Zero length address supplied and the bridge will maintain its previous value. To return the bridge address to the default value, enter an address of all zeros.

Valid Values: 12 hexadecimal digits

Do not use dashes or colons to separate each octet. Each bridge in the network must have a unique address for the spanning tree protocol to operate correctly.

Default Value: 000000000000

Example: set bridge

            Bridge Address (in 12-digit hex)[]?

filtering database-size

Sets the number of entries that can be held in the bridge filtering database.

Default Value: 1024 times the number of bridge ports.

For more information, see the list filtering command on page ***.

Example: set filtering

            database-size [2048]?

maximum-packet-size port# msdu-size

Sets the largest MAC service data unit (MSDU) size for the port, if source routing is enabled on this port. The MSDU value setting has no implication on traditionally transparent media. An MSDU value greater than the packet size configured in the device will be treated as an error.

If this parameter is not set, the default value used is the size configured as the packet size for that interface.

Valid Values: Specify an integer in the range 16 to 65535

Default Value: packet size set for the port

Example: set maximum-packet-size 1 4399

port block or disable

Begins the port's participation in the spanning tree protocol. This is done by entering a status value of "block." This places the port in the "blocked" status as a starting point. The actual state of the port will later be determined by the spanning tree protocol as it determines its topology. Entering a status value of "disable" removes the port from participating in the spanning tree.

Example: set port block

            Port Number [1]?

port security enable or disable

Specifies whether port security is enabled or disabled. Port security provides protection against unauthorized access to the switched network and is available only on Ethernet interfaces.

When enabled, an Ethernet port will learn the source MAC address of the first frame that it receives. If a frame with a different source MAC address is subsequently received, the Ethernet interface will be disabled. The disabling of the interface causes link down and bridge topology change SNMP traps to be sent to alert the network manager of the situation.

Once a source MAC address has been learned on a secure port, the MAC address is inserted into the bridging database as a static entry, preventing the entry from being aged out due to inactivity. You can use the talk 5 ASRT> list database static command to display these MAC addresses. See page *** for more information about the list database static command.

Learned MAC addresses are not retained if the IBM 8371 is rebooted.

protocol bridge or port

Modifies the spanning tree protocol bridge or port parameters for a new configuration, or tunes the configuration parameters to suit a specific topology.

Enter "bridge" as the option to modify bridge parameters. The bridge-related parameters that can be modified with this command are described below.

When setting these values, make sure that the following relationships exist between the parameters or the input will be rejected:
2 X (Bridge Forward Delay - 1 second) >= Bridge Maximum Age
Bridge Maximum Age >= 2 X (Bridge Hello Time + 1 second)

Example: set protocol bridge tb

            Bridge Max-Age [20]  25
            Bridge Hello Time [2]   3
            Bridge Forward Delay [15] 20
            Bridge Priority [32768]    1

Bridge Maximum Age

Maximum age (period of time) that should be used to time out spanning tree protocol-related information.

When this bridging device is selected as the root bridge in a spanning tree, the value of this parameter specifies how long other active bridges are to store the configuration bridge protocol data units (BPDUs) they receive. When a BPDU reaches its maximum age limit without being replaced, the active bridges in the network discard it and assume that the root bridge has failed. A new root bridge is then selected.

Dependencies

The setting of this parameter may be affected by the setting of the Bridge Hello Time parameter. In addition, the setting of this parameter may affect the setting of the Bridge Forward Delay parameter.

Valid Values: 6 to 40 seconds

Default Value: 20 seconds

Bridge Hello Timer

Time interval between HELLO BPDUs.

When this bridging device is selected as the root bridge in a spanning tree, this parameter specifies how often this bridge transmits configuration bridge protocol data units (BPDUs). BPDUs contain information about the topology of the spanning tree and reflect changes to the topology.

Dependencies

The setting of this parameter may affect the setting of the Max age parameter.

Valid Values: 1 to 10 seconds

Default Value: 2

Bridge Forward Delay

Time interval used before changing to another state (should this bridge become the root).

When this bridging device is selected as the root bridge in a spanning tree, the value of this parameter specifies how long active ports in all bridges remain in a listening state. When the forward delay time expires, ports in the listening state go into the forwarding state. State changes occur as a result of changes in the topology of the spanning tree, such as when an active bridge fails or is shut down.

The root bridge conveys this value to all bridges. This process ensures that all bridges are consistent between changes.

Valid Values: 4 to 30 seconds

Default Value: 15

Bridge Priority

A high-order 2-octet bridge address found in the Bridge Identifier - either the MAC address obtained from the lowest-numbered port or the address set by the Set Bridge command.

The bridge priority indicates the chances that this bridge will become the root bridge of the spanning tree. The lower the numerical value of the bridge priority parameter, the higher the priority of the bridge and the more likely it is to be chosen. The spanning tree algorithm chooses the bridge with the lowest numerical value of this parameter to be the root bridge.

Valid Values: 0 to 65535

Default Value: 32768

Enter port as the option to modify the spanning tree protocol port parameters. Enter the desired value at each prompt and press Return.

Example: set protocol port

            Port Number [1] ?
            Port Path-Cost (O for default) [0] ?   1
            Port Priority [128] ?   1

Port Number

Bridge port number; selects the port for which the path cost and port priority will be changed.

Path Cost

Cost associated with the port, which is used for possible root path cost.

Each port interface has an associated path cost, which is the relative value of using the port to reach the root bridge in a bridged network. The spanning tree algorithm uses the path cost to compute a path that minimizes the cost from the root bridge to all other bridges in the network topology.

This parameter specifies the cost associated with passing frames through this port interface, should this bridging device become the root bridge. Factor this value in when determining spanning tree routes between any two stations. A value of 0 instructs the bridging device to automatically calculate a path cost for this port using its own formula.

Valid Values: 1 to 65535

Default Value: 0 (means the cost will be calculated automatically)

Port Priority

Identifies port priority for the specified port. This is used by the spanning tree algorithm in making comparisons for port selection (which port offers the lowest cost path to the root bridge) and blocking decisions.

Valid Values: 0 to 255

Default Value: 128

VLANS

Use the vlans command to access the VLAN configuration prompt. VLAN configuration commands are entered at this prompt. See "Dynamic Protocol Filtering (VLANS) Configuration Commands" for an explanation of each of these commands.

Syntax:

vlans

Example:

Bridge 2 Config> vlans
Bridge 2 VLAN config>

[ Top of Page | Previous Page | Next Page | Table of Contents | Index ]