Table Of Contents

set accounting update

set alias

set arp

set authentication enable

set authentication login

set authorization commands

set authorization enable

set authorization exec

set banner motd

set boot auto-config

set boot config-register

set boot sync now

set boot system flash

set bridge apart

set bridge fddicheck

set bridge ipx 8022toether

set bridge ipx 8023rawtofddi

set bridge ipx snaptoether

set cam

set cdp

set cdp holdtime

set cdp interval

set cdp version

set cgmp

set cgmp leave

set channel cost

set channel vlancost

set config mode

set cops

set default portstatus

set dot1x

2s.

set accounting update

Use the set accounting update command to configure the frequency of accounting updates.

set accounting update {new-info | periodic} [interval]

Syntax Description

new-info	Keyword to update when new information in available.
periodic	Keyword to update on a periodic basis.
interval	(Optional) Periodic update interval time; valid intervals are from 1 to 71582 minutes.

Defaults

Accounting is disabled by default.

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

You must configure the TACACS+ servers and shared keys before enabling accounting.

Examples

This example shows how to send accounting updates every 200 minutes:

Console> (enable) set accounting update periodic 200

Accounting updates will be periodic at 200 minute intervals.

Console> (enable) 

This example shows how to send accounting updates only when there is new information:

Console> (enable) set accounting update new-info

Accounting updates will be sent on new information only.

Console> (enable)

Related Commands

set accounting commands
set accounting connect
set accounting exec
set accounting suppress
set accounting system
set tacacs server
show accounting

set alias

Use the set alias command to define command aliases (shorthand versions of commands).

set alias name command [parameter] [parameter]

Syntax Description

name	Name of alias being created.
command	Command for which the alias is being created.
parameter	(Optional) Parameters to apply to the command for which an alias is being created. See the specific command for information about parameters that apply.

Defaults

No aliases configured.

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

The name all cannot be defined as an alias. Reserved words cannot be defined as aliases.

Examples

This example shows how to set arpdel as the alias for the clear arp command:

Console> (enable) set alias arpdel clear arp

Command alias added.

Console> (enable) 

Related Commands

show alias

set arp

Use the set arp command to add IP address-to-MAC address mapping entries to the ARP table and to set the ARP aging time for the table.

set arp [dynamic | permanent | static] [ip_addr | hw_addr]

set arp agingtime agingtime

Syntax Description

dynamic	(Optional) Keyword to specify entries are subject to ARP aging updates.
permanent	(Optional) Keyword to specify permanent entries are stored in NVRAM until they are removed by the clear arp or clear config command.
static	(Optional) Keyword to specify entries are not subject to ARP aging updates.
ip_addr	(Optional) IP address or IP alias to map to the specified MAC address.
hw_addr	(Optional) MAC address to map to the specified IP address or IP alias.
agingtime agingtime	Keyword and variable to set the period of time (in seconds) after which an ARP entry is removed from the ARP table; valid values are from 0 to 1,000,000 seconds. Setting to 0 disables aging.

Defaults

No ARP table entries exist; ARP aging is set to 1200 seconds.

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

The hw_addr value is 6-hexbyte MAC address in canonical (00-11-22-33-44-55) or noncanonical (00:11:22:33:44:55) format.

Examples

This example shows how to configure a dynamic ARP entry mapping that will age out after the configured ARP aging time:

Console> (enable) set arp dynamic 198.133.219.232 00-00-0c-40-0f-bc

ARP entry added.

Console> (enable)

This example shows how to set the aging time for the ARP table to 1800 seconds:

Console> (enable) set arp agingtime 1800

ARP aging time set to 1800 seconds.

Console> (enable)

This example shows how to configure a permanent ARP entry, which will remain in the ARP cache after a system reset:

Console> (enable) set arp permanent 198.146.232.23 00-00-0c-30-0f-bc

Permanent ARP entry added as 198.146.232.23 at 00-00-0c-30-0f-bc on vlan 5

Console> (enable) 

This example shows how to configure a static ARP entry, which will be removed from the ARP cache after a system reset:

Console> (enable) set arp static 198.144.239.22 00-00-0c-50-0f-bc

Static ARP entry added as 198.144.239.22 at 00-00-0c-50-0f-bc on vlan 5

Console> (enable)

Related Commands

clear arp
show alias

set authentication enable

Use the set authentication enable command set to enable authentication using the TACACS+, RADIUS, or Kerberos server to determine if you have privileged access permission.

set authentication enable {radius | tacacs | kerberos} enable [console | telnet | http | all] [primary]

set authentication enable {enable | disable} [console | telnet | http | all] [primary]

set authentication enable local {enable | disable} [console | telnet | http | all] [primary]

set authentication enable attempt count [console | telnet]

set authentication enable lockout time [console | telnet]

Syntax Description

radius	Keyword to specify RADIUS authentication for login.
tacacs	Keyword to specify TACACS+ authentication for login.
kerberos	Keyword to specify Kerberos authentication for login.
enable	Keyword to enable the specified authentication method for login.
console	(Optional) Keyword to specify the authentication method for console sessions.
telnet	(Optional) Keyword to specify the authentication method for Telnet sessions.
http	(Optional) Keyword to specify the specified authentication method for HTTP sessions.
all	(Optional) Keyword to apply the authentication method to all session types.
primary	(Optional) Keyword to specify the specified authentication method be tried first.
disable	Keyword to disable the specified authentication method for login.
local	Keyword to specify local authentication for login.
attempt count	Keyword and variable to specify the number of connection attempts before initiating an error; valid values are 0 and from 3 to 10.
lockout time	Keyword and variable to specify the lockout timeout; valid values are from 30 to 600 seconds.

Defaults

The default is local authentication is enabled for console and Telnet sessions. RADIUS, TACACS+, and Kerberos are disabled for all session types. If authentication is enabled, the default attempt count value is 3.

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

Use authentication configuration for both console and Telnet connection attempts unless you use the console or telnet keywords to specify the authentication methods for each connection type individually.

If you enter a 0 for the count or time values, you disable the specified action.

Examples

This example shows how to use the TACACS+ server to determine if a user has privileged access permission:

Console> (enable) set authentication enable tacacs enable

tacacs enable authentication set to enable for console, telnet and http session.

Console> (enable)

This example shows how to use the local password to determine if the user has privileged access permission:

Console> (enable) set authentication enable local enable

local enable authentication set to enable for console, telnet and http session.

Console> (enable)

This example shows how to use the RADIUS server to determine if a user has privileged access permission for all session types:

Console> (enable) set authentication enable radius enable 

radius enable authentication set to enable for console, telnet and http session.

Console> (enable) 

This example shows how to use the TACACS+ server to determine if a user has privileged access permission for all session types:

Console> (enable) set authentication enable tacacs enable console

tacacs enable authentication set to enable for console session.

Console> (enable)  

This example shows how to set the Kerberos server to be used first:

Console> (enable) set authentication enable kerberos enable primary

kerberos enable authentication set to enable for console, telnet and http session as 
primary authentication method.

Console> (enable)

This example shows how to limit enable mode login attempts:

Console> (enable) set authentication enable attempt 5

Enable mode authentication attempts for console and telnet logins set to 5.

Console> (enable) 

This example shows how to set the enable mode lockout time for both console and Telnet connections:

Console> (enable) set authentication enable lockout 50

Enable mode lockout time for console and telnet logins set to 50.

Console> (enable) 

Related Commands

set authentication login
show arp

set authentication login

Use the set authentication login command set to enable TACACS+, RADIUS, or Kerberos as the authentication method for login.

set authentication login {radius | tacacs | kerberos} enable [console | telnet | http | all] [primary]

set authentication login {radius | tacacs | kerberos} disable [console | telnet | http | all]

set authentication login {enable | disable} [console | telnet | http | all]

set authentication login local {enable | disable} [console | telnet | http | all]

set authentication login attempt count [console | telnet]

set authentication login lockout time [console | telnet]

Syntax Description

radius	Keyword to specify the use of the RADIUS server password to determine if you have access permission to the switch.
tacacs	Keyword to specify the use of the TACACS+ server password to determine if you have access permission to the switch.
kerberos	Keyword to specify the Kerberos server password to determine if you have access permission to the switch.
enable	Keyword to enable the specified authentication method for login.
console	(Optional) Keyword to specify the authentication method for console sessions.
telnet	(Optional) Keyword to specify the authentication method for Telnet sessions.
http	(Optional) Keyword to specify the authentication method for HTTP sessions.
all	(Optional) Keyword to specify the authentication method for all session types.
primary	(Optional) Keyword to specify that the method specified is the primary authentication method for login.
disable	Keyword to disable the specified authentication method for login.
local	Keyword to specify a local password to determine if you have access permission to the switch.
attempt count	Keyword and variable to specify the number of login attempts before initiating an error; valid values are 0 and from 3 to 10.
lockout time	Keyword and variable to specify the lockout timeout; valid values are from 30 to 600 seconds.

Defaults

The default is local authentication is the primary authentication method for login.

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

This command allows you to choose the authentification method for the web interface. If you configure the authentification method for the HTTP session as RADIUS, then the username or password is validated using the RADIUS protocol, and TACACS+ and Kerberos authentication is set to disable for the HTTP sessions. By default, the HTTP login is validated using the local login password.

You can specify the authentication method for console, telnet, http, or all by entering the console, telnet, http, or all keywords. If you do not specify console, telnet, http, or all, the authentication method default is for all sessions.

If you enter a 0 for the count or timevalue, you disable the specified action.

Examples

This example shows how to disable TACACS+ authentication access for Telnet sessions:

Console> (enable) set authentication login tacacs disable telnet

tacacs login authentication set to disable for the telnet sessions.

Console> (enable) 

This example shows how to disable RADIUS authentication access for console sessions:

Console> (enable) set authentication login radius disable console

radius login authentication set to disable for the console sessions.

Console> (enable)

This example shows how to disable Kerberos authentication access for Telnet sessions:

Console> (enable) set authentication login kerberos disable telnet

kerberos login authentication set to disable for the telnet sessions.

Console> (enable)

This example shows how to set TACACS+ authentication access as the primary method for HTTP sessions:

Console> (enable) set authentication login tacacs enable http primary

tacacs login authentication set to enable for HTTP sessions as primary authentification 
method.

Console> (enable)

This example shows how to limit login attempt:

Console> (enable) set authentication login attempt 5

Login authentication attempts for console and telnet logins set to 5.

Console> (enable) 

This example shows how to set the lockout time for both console and Telnet connections:

Console> (enable) set authentication login lockout 50

Login lockout time for console and telnet logins set to 50.

Console> (enable) 

Related Commands

set authentication enable
show arp

set authorization commands

Use the set authorization commands command to enable authorization of command events on the switch.

set authorization commands enable {config | enable | all} {option} {fallbackoption}
[console | telnet | both]

set authorization commands disable [console | telnet | both]

Syntax Description

enable	Keyword to enable the specified authorization method for commands.
config	Keyword to permit authorization for configuration commands only.
enable	Keyword to permit authorization for enable mode commands only.
all	Keyword to permit authorization for all commands.
option	Switch response to an authorization request; valid values are tacacs+, if-authenticated, and none. Refer to the "Usage Guidelines" section for valid value definitions.
fallbackoption	Switch fallback response to an authorization request if the TACACS+ server is down or not responding; valid values are deny, if-authenticated, and none. Refer to the "Usage Guidelines" section for valid value definitions.
disable	Keyword to disable authorization for commands.
console	(Optional) Keyword to specify the authorization method applies to console sessions.
telnet	(Optional) Keyword to specify the authorization method applies to Telnet sessions.
both	(Optional) Keyword to specify the authorization method applies to both console and Telnet sessions.

Defaults

Authorization is disabled by default.

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

The tacacs+ keyword allows you to proceed with your action if you have authorization.

The if-authenticated keyword allows you to proceed with your action if you have been authenticated.

The none keyword allows you to proceed without further authorization if the TACACS+ server does not respond.

The deny keyword does not allow you to proceed if the TACACS+ server does not respond.

Examples

This example shows how to enable authorization for all commands with an if-authenticated option and no fallback option, in case the TACACS+ daemon is down or does not respond:

Console> (enable) set authorization commands enable all if-authenticated none

Successfully enabled commands authorization.

Console> (enable) 

This example shows how to disable command authorization:

Console> (enable) set authorization commands disable

Successfully disabled commands authorization.

Console> (enable) 

Related Commands

set authorization enable
set authorization exec
show authorization

set authorization enable

Use the set authorization enable command to enable authorization of enable (privileged mode) session events on the switch.

set authorization enable enable {option} {fallbackoption} [console | telnet | both]

set authorization enable disable [console | telnet | both]

Syntax Description

enable	Keyword to enable the specified authorization method.
option	Switch response to an authorization request; valid values are tacacs+, if-authenticated, and none. Refer to the "Usage Guidelines" section for valid value definitions.
fallbackoption	Switch fallback response to an authorization request if the TACACS+ server is down or not responding; valid values are deny, if-authenticated, and none. Refer to the "Usage Guidelines" section for valid value definitions.
console	(Optional) Keyword to specify the authorization method applies to console sessions.
telnet	(Optional) Keyword to specify the authorization method applies to Telnet sessions.
both	(Optional) Keyword to specify the authorization method applies to both console and Telnet sessions.
disable	Keyword to disable authorization method.

Defaults

Authorization is disabled by default.

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

The tacacs+ keyword allows you to proceed with your action if you have authorization.

The if-authenticated keyword allows you to proceed with your action if you have been authenticated.

The none keyword allows you to proceed without further authorization in case the TACACS+ server does not respond.

The deny keyword does not let you proceed if the TACACS+ server does not respond.

Examples

This example shows how to enable authorization of configuration commands in enable mode sessions:

Console> (enable) set authorization enable enable if-authenticated none 

Successfully enabled enable authorization.

Console> (enable) 

This example shows how to disable enable mode authorization:

Console> (enable) set authorization enable disable

Successfully disabled enable authorization.

Console> (enable) 

Related Commands

set authorization commands
set authorization exec
show authorization

set authorization exec

Use the set authorization exec command to enable authorization of exec (normal login mode) session events on the switch.

set authorization exec enable {option} {fallbackoption} [console | telnet | both]

set authorization exec disable [console | telnet | both]

Syntax Description

enable	Keyword to enable the specified authorization method.
option	Switch response to an authorization request; valid values are tacacs+, if-authenticated, and none. Refer to the "Usage Guidelines" section for valid value definitions.
fallbackoption	Switch fallback response to an authorization request if the TACACS+ server is down or not responding; valid values are deny, if-authenticated, and none. Refer to the "Usage Guidelines" section for valid value definitions.
console	(Optional) Keyword to specify the authorization method applies to console sessions.
telnet	(Optional) Keyword to specify the authorization method applies to Telnet sessions.
both	(Optional) Keyword to specify the authorization method applies to both console and Telnet sessions.
disable	Keyword to disable authorization method.

Defaults

Authorization is disabled by default.

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

The tacacs+ keyword allows you to proceed with your action if you have authorization.

The if-authenticated keyword allows you to proceed with your action if you have been authenticated.

The none keyword allows you to proceed without further authorization in case the TACACS+ server does not respond.

The deny keyword does not let you proceed if the TACACS+ server does not respond.

Examples

This example shows how to enable authorization of configuration commands in exec mode sessions:

Console> (enable) set authorization exec enable if-authenticated none 

Successfully enabled exec authorization.

Console> (enable) 

This example shows how to disable exec mode authorization:

Console> (enable) set authorization exec disable

Successfully disabled exec authorization.

Console> (enable) 

Related Commands

set authorization commands
set authorization enable
show authorization

set banner motd

Use the set banner motd command to create a login banner to display when users access the switch.

set banner motd c [text] c

Syntax Description

c	Delimiting character used to begin and end the message.
text	(Optional) Message of the day.

Defaults

No MOTD banner is defined.

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

The banner cannot contain more than 3,070 characters, including tabs. Tabs display as eight characters but take only one character of memory.

You can use either the clear banner motd command or the set banner motd cc command to clear the message-of-the-day banner.

Examples

This example shows how to set the message of the day using the pound sign (#) as the delimiting character:

Console> (enable) set banner motd #

** System upgrade at 6:00am Tuesday.

** Please log out before leaving on Monday. #

MOTD banner set.

Console> (enable>

This example shows how to clear the message of the day:

Console> (enable) set banner motd ##

MOTD banner cleared.

Console> (enable>

Related Commands

clear banner motd

set boot auto-config

Use the set boot auto-config command to specify one or more configuration files to use to configure the switch at startup and to set the recurrence option. A list of configuration files is stored in the config_file environment variable.

set boot auto-config device:filename [;<device:filename>...] [mod]

set boot auto-config {cfg1 | cfg2 | cfg1;cfg2}

set boot auto-config {recurring | non-recurring}

Syntax Description

device:	Device where the startup configuration file resides.
filename	Names of the startup configuration file.
mod	(Optional) Module number of the supervisor engine containing the Flash device.
cfg1	Keyword to specify the first startup configuration file on the Supervisor Engine II G and III G. Use a semicolon-separated list to specify multiple cfg files.
cfg2	Keyword to specify the second startup configuration file on the Supervisor Engine II G and III G.
recurring	Keyword to retain config_file environment variable settings. Available only on the Supervisor Engine II G and III G.
non-recurring	Keyword to clear config_file environment variable settings before the startup configuration file runs. Available only on the Supervisor Engine II G and III G.

Defaults

The default setting of this command is non-recurring and the config_file is not defined.

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

The set boot auto-config command always overwrites the existing config_file environment variable settings (you cannot prepend or append a file to the variable contents).

In the Supervisor Engine III, multiple configuration files may be specified. Separate the files using a semicolon (;).

In the Supervisor Engine II G and III G, two configuration files may be specified. Separate the files using a semicolon (;).

You can set recurring, non-recurring, cfg1, and cfg2 keywords in Supervisor Engines II G and
III G only.

Use a semicolon-separated list to specify multiple cfg files.

To set the recurrence on other supervisor engines and switches, use the set boot config-register auto-config command.

Examples

This example shows how to specify the configuration file environment variable:

Console> (enable) set boot auto-config slot0:cfg1

CONFIG_FILE variable = slot0:cfg1

WARNING: nvram configuration may be lost during next bootup,

         and re-configured using the file(s) specified.

Console> (enable)

This example shows how to specify the configuration file environment variable on Supervisor Engines II G and III G:

Console> (enable) set boot auto-config cfg1

CONFIG_FILE variable = cfg1

WARNING: nvram configuration may be lost during next bootup,

         and re-configured using the file(s) specified.

Console> (enable)

This example shows how to specify multiple configuration files on Supervisor Engines II G
and III G:

Console> (enable) set boot auto-config cfg1;cfg2

CONFIG_FILE variable = cfg1;cfg2

WARNING: nvram configuration may be lost during next bootup,

         and re-configured using the file(s) specified.

Console> (enable)

This example shows how to set the auto-configuration to recurring on Supervisor Engines II G
and III G:

Console> (enable) set boot auto-config recurring

auto-config: recurring

Console> (enable)

Related Commands

set boot system flash

set boot config-register

Use the set boot config-register command to set the boot configuration register value.

set boot config-register 0xvalue [mod]

set boot config-register boot {rommon | bootflash | system} [mod]

set boot config-register baud {1200 | 2400 | 4800 | 9600} [mod]

set boot config-register ignore-config {enable | disable} [mod]

set boot config-register auto-config {recurring | non-recurring} [mod]

Syntax Description

0xvalue	Keyword to set the 16-bit configuration register value. This value is a hexadecimal value and the valid range is 0x0 to 0xFFFF.
mod	(Optional) Module number of the supervisor engine on which to set the configuration register value.
boot	Keyword to specify the boot method to use the next time the switch is reset or power cycled.
rommon	Keyword to cause the switch to remain in ROM monitor mode the next time the switch is reset or power cycled.
bootflash	Keyword to cause the switch to boot using the first valid system image in bootflash the next time the switch is reset or power cycled.
system	Keyword to cause the switch to boot using the system images specified in the BOOT environment variable the next time the switch is reset or power cycled.
baud	Keyword to set the console baud rate.
1200 | 2400 | 4800 | 9600	Keywords to specify the ROM monitor console port baud rate.
ignore-config	Keyword to specify whether the switch should ignore the configuration in NVRAM the next time the switch is restarted.
enable	Keyword to cause the switch to ignore the configuration in NVRAM the next time the switch is restarted.
disable	Keyword to prevent the switch from ignoring the configuration in NVRAM the next time the switch is restarted.
auto-config recurring	Keyword to cause the switch to retain the contents of the config_file environment variable after the switch is reset or power cycled and configured using the files specified by the config_file environment variable.
auto-config non-recurring	Keyword to cause the switch to clear the contents of the config_file environment variable after the switch is reset or power cycled and before the switch is configured using the files specified by the config_file environment variable.

Defaults

The default configuration register value is 0x10F, which specifies the following settings:

•Boot method is "system" (the switch boots using the system images specified in the BOOT environment variable).

•ROM monitor console port baud rate is set to 9600.

•The ignore-config parameter is disabled.

•The auto-config parameter is set to non-recurring.

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

We recommend that you use only the rommon and system options to the set boot config-register boot command.

Each time you enter one of the set boot config-register commands, the system displays all current configuration register information (the equivalent of entering the show boot command).

The baud rate specified in the configuration register is used by the ROM monitor only and is different from the baud rate specified by the set system baud command.

The auto-config_file variable is slot0:switch.cfg for non-recurring.

---

Caution Enabling the ignore-config parameter is the same as entering the clear config all command; that is, it clears the entire configuration stored in NVRAM the next time the switch is restarted.

---

Examples

This example shows how to specify the default 16-bit configuration register value:

Console> (enable) set boot config-register 0x10f

Configuration register is 0x10f

ignore-config: disabled

auto-config: non-recurring

console baud: 9600

boot: image specified by the boot system commands

Console> (enable)

This example shows how to specify rommon as the boot image to use on the next restart:

Console> (enable) set boot config-register boot rommon

Configuration register is 0x100

ignore-config: disabled

auto-config: non-recurring

console baud: 9600

boot: the ROM monitor

Console> (enable) 

This example shows how to change the ROM monitor console port baud rate to 4800:

Console> (enable) set boot config-register baud 4800

Configuration register is 0x900

ignore-config: disabled

auto-config: non-recurring

console baud: 4800

boot: the ROM monitor

Console> (enable)

This example shows how to cause the switch to ignore the configuration in NVRAM the next time the switch is reset or power cycled:

Console> (enable) set boot config-register ignore-config enable

Configuration register is 0x940

ignore-config: enabled

auto-config: non-recurring

console baud: 4800

boot: the ROM monitor

Console> (enable) 

This example shows how to set the auto-configuration to recurring:

Console> (enable) set boot config-register auto-config recurring

Configuration register is 0x960

ignore-config: enabled

auto-config: recurring

console baud: 4800

boot: the ROM monitor

Console> (enable)

Related Commands

clear boot
show boot

set boot sync now

Use the set boot sync now command to immediately initiate synchronization of the system image between the active and standby supervisor engine.

set boot sync now

Syntax Description

This command has no arguments or keywords.

Defaults

The default is synchronization is disabled.

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

The set boot sync now command initiates synchronization to force the configuration files to synchronize automatically to the standby supervisor engine. The configuration files remain consistent with the files on the active supervisor engine.

This example shows how to initiate synchronization of the auto-config file:

Console> (enable) set boot sync now 

Console> (enable) 

Related Commands

clear boot
show boot

set boot system flash

Use the set boot system flash command to set the BOOT environment variable, which specifies a list of software images that the switch attempts to load at startup.

set boot system flash device:filename [prepend] [mod]

Syntax Description

device:	Flash device where the software image is stored (the colon [:] is required).
filename	Name of the software image file on the Flash device.
prepend	(Optional) Keyword to place the software image file first in the list of images to attempt to boot.
mod	(Optional) Module number of the supervisor engine on which to modify the BOOT environment variable.

Defaults

This command has no default settings.

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

You can enter several boot system commands to provide a reliable method for booting the switch. The system stores and executes the boot system commands in the order in which you enter them.

When you copy a new software image to a Flash device and want to switch to boot that image the next time the switch is reset, clear the BOOT environment variable using the clear boot system all command or use the prepend keyword to place the new software image file first in the list of images to attempt to boot.

If the file does not exist (for example, if you entered the wrong filename), then the filename is appended to the bootstring, and a message displays, "Warning: File not found but still added in the bootstring."

If the file does exist, but is not a supervisor engine software image, the file is not added to the bootstring, and a message displays, "Warning: file found but it is not a valid boot image."

Examples

This example shows how to append a software image file to the BOOT environment variable:

Console> (enable) set boot system flash bootflash:cat5000-sup3.6-1-1.bin

BOOT variable = 

bootflash:cat5000-sup3.5-2-1.bin,1;bootflash:cat5000-sup3.6-1-1.bin,1;

Console> (enable) 

This example shows how to prepend a software image file to the BOOT environment variable:

Console> (enable) set boot system flash slot0:cat5000-sup3.6-1-1.bin prepend

BOOT variable = 

slot0:cat5000-sup3.6-1-1.bin,1;bootflash:cat5000-sup3.4-5-2.bin,1;

Console> (enable) 

Related Commands

clear boot
show boot

set bridge apart

Use the set bridge apart command to enable or disable APaRT on FDDI.

set bridge apart {enable | disable}

Syntax Description

enable	Keyword to activate APaRT on FDDI.
disable	Keyword to deactivate APaRT on FDDI.

Defaults

The default is APaRT enabled.

Command Types

Switch command.

Command Modes

Privileged.

Examples

This example shows how to disable APaRT:

Console> (enable) set bridge apart disable

APaRT disabled

Console> (enable) 

Related Commands

set bridge fddicheck

set bridge fddicheck

Use the set bridge fddicheck command to enable or disable the relearning of MAC addresses (as FDDI MAC addresses) that were already learned from an Ethernet interface (as Ethernet MAC addresses).

set bridge fddicheck {enable | disable}

Syntax Description

enable	Keyword to permit FDDI to relearn MAC addresses learned from an Ethernet interface.
disable	Keyword to prevent FDDI from relearning MAC addresses learned from an Ethernet interface.

Defaults

The default configuration has fddicheck disabled.

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

When fddicheck is enabled, a MAC address seen on the FDDI ring is not learned (stored in FDDI CAM) as an FDDI MAC address if the MAC address was previously learned from an Ethernet interface (as an Ethernet MAC address).

With fddicheck enabled, MAC addresses previously learned from an Ethernet interface will not be relearned on the FDDI interface until the CAM is cleared.

This command requires information from the FDDI CAM. If you disable APaRT, fiddicheck is also automatically disabled. To enable fddicheck, first enable APaRT.

Examples

This example shows how to enable fddicheck on the switch:

Console> (enable) set bridge fddicheck enable

FDDICHECK enabled

Console> (enable) 

Related Commands

show bridge

set bridge ipx 8022toether

Use the set bridge ipx 8022toether command to set the default method for translating IPX packets from FDDI 802.2 to Ethernet.

set bridge ipx 8022toether {8023 | snap | eii | 8023raw}

Syntax Description

8023	Keyword to specify Ethernet 802.3 as the default translation method.
snap	Keyword to specify Ethernet SNAP as the default translation method.
eii	Keyword to specify Ethernet II as the default translation method.
8023raw	Keyword to specify Ethernet 802.3 RAW as the default translation method.

Defaults

The default translation method for FDDI 802.2 to Ethernet networks is 8023 (Ethernet 802.3).

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

The default translation method specified is used only until the real protocol types are learned.

Examples

This example shows how to set the default protocol to SNAP for translating IPX packets between FDDI 802.2 and Ethernet networks:

Console> (enable) set bridge ipx 8022toether snap

8022 to ETHER translation set.

Console> (enable)

Related Commands

show bridge

set bridge ipx 8023rawtofddi

Use the set bridge ipx 8023rawtofddi command to set the default method for translating IPX packets from Ethernet 802.3 to FDDI.

set bridge ipx 8023rawtofddi {8022 | snap | fddiraw}

Syntax Description

8022	Keyword to specify FDDI 802.2 as the default translation method.
snap	Keyword to specify FDDI SNAP as the default translation method.
fddiraw	Keyword to specify FDDI RAW as the default translation method.

Defaults

The default translation method for Ethernet 802.3 to FDDI networks is SNAP (FDDI SNAP).

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

The default translation method specified is used only until the real protocol types are learned.

Examples

This example shows how to set the default translation method to FDDI SNAP for translating IPX packets between Ethernet 802.3 and FDDI networks:

Console> (enable) set bridge ipx 8023rawtofddi snap

8023RAW to FDDI translation set.

Console> (enable)

Related Commands

show bridge

set bridge ipx snaptoether

Use the set bridge ipx snaptoether command to set the default method for translating IPX FDDI SNAP frames to Ethernet frames.

set bridge ipx snaptoether {8023 | snap | eii | 8023raw}

Syntax Description

8023	Keyword to specify Ethernet 802.3 as the default frame type.
snap	Keyword to specify Ethernet SNAP as the default frame type.
eii	Keyword to specify Ethernet II as the default frame type.
8023raw	Keyword to specify Ethernet 802.3 RAW as the default frame type.

Defaults

The default translation method for translating IPX FDDI SNAP frames to Ethernet frames is 8023raw (Ethernet 802.3 RAW).

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

The default translation specified is used for all broadcast IPX SNAP frames and for any unlearned Ethernet MAC addresses.

Examples

This example shows how to set the default method for translating IPX FDDI SNAP frames to Ethernet frames to SNAP:

Console> (enable) set bridge ipx snaptoether snap

Bridge snaptoether default IPX translation set.

Console> (enable)

Related Commands

show bridge

set cam

Use the set cam command set to add entries into the CAM table, set the aging time for the CAM table, and configure traffic filtering from and to a specific host.

set cam {dynamic | static | permanent} {unicast_mac | route_descr} mod/port [vlan