You can log into an S3100-SI series
Ethernet switch in one of the following ways:
l
Logging in locally through the Console port
l
Telneting locally or remotely to an Ethernet
port
l
Telneting to the Console port using a modem
l
Logging into the Web-based network management
system
l
Logging in through NMS (network management
system)
The S3100-SI series Ethernet switch
supports two types of user interfaces: AUX and VTY.
Table 1-1 Description
on user interface
|
User interface
|
Applicable user
|
Port used
|
Description
|
|
AUX
|
Users logging in through the Console port
|
Console port
|
Each switch can accommodate one AUX user.
|
|
VTY
|
Telnet users and SSH users
|
Ethernet port
|
Each switch can accommodate up to five
VTY users.
|
As the AUX port and
the Console port of a H3C series switch are the same one, you will be in the
AUX user interface if you log in through this port.
Two kinds of user interface index exist:
absolute user interface index and relative user interface index.
1)
The absolute user interface indexes are as
follows:
l
AUX user interface: 0
l
VTY user interfaces: Numbered after AUX user
interfaces and increases in the step of 1
A relative user interface index can be
obtained by appending a number to the identifier of a user interface type. It
is generated by user interface type. The relative user interface indexes are as
follows:
l
AUX user interface: AUX 0
l
VTY user interfaces: VTY 0, VTY 1, VTY 2, and so
on.
Table 1-2 Common
user interface configuration
|
Operation
|
Command
|
Description
|
|
Lock the current user interface
|
lock
|
Optional
Execute this command in user view.
A user interface is not locked by
default.
|
|
Specify to send messages to all user
interfaces/a specified user interface
|
send { all
| number | type number }
|
Optional
Execute this command in user view.
|
|
Disconnect a specified user interface
|
free user-interface [ type ] number
|
Optional
Execute this command in user view.
|
|
Enter system view
|
system-view
|
—
|
|
Set the banner
|
header [
incoming | login | shell ] text
|
Optional
|
|
Set a system name for the switch
|
sysname string
|
Optional
The system name defaults to
“H3C”.
|
|
Enter user interface view
|
user-interface [ type ] first-number [ last-number ]
|
—
|
|
Set the command that is automatically
executed when a user logs into the user interface
|
auto-execute command text
|
Optional
By default, no command is automatically
executed when a user logs into a user interface.
|
|
Display the information about the current
user interface/all user interfaces
|
display users [ all ]
|
You can execute this command in any view.
|
|
Display the physical attributes and
configuration of the current/a specified user interface
|
display user-interface [ type number | number ] [ summary ]
|
You can execute this command in any view.
|
Caution:
The auto-execute command command may cause you unable to
perform common configuration in the user interface, so use it with caution.
Before executing the auto-execute command command and save
your configuration, make sure you can log into the switch in other modes and cancel
the configuration.
Chapter
2 Logging in through the Console Port
To log in through the Console port is the
most common way to log into a switch. It is also the prerequisite to configure
other login methods. By default, you can log into an S3100-SI series Ethernet
switch through its Console port only.
To log into an Ethernet switch through its
Console port, the communication configuration of the user terminal must be in
accordance with that of the Console port.
Table 2-1 lists the default settings of a Console port.
Table 2-1 The default settings of a Console port
|
Setting
|
Default
|
|
Baud rate
|
9,600 bps
|
|
Flow control
|
Off
|
|
Check mode
|
No check bit
|
|
Stop bits
|
1
|
|
Data bits
|
8
|
After logging into a switch, you can
perform configuration for AUX users. Refer to section 2.3
“Console Port Login Configuration” for more.
l
Connect the serial port of your PC/terminal to
the Console port of the switch, as shown in Figure 2-1.
Figure 2-1
Diagram for setting the connection to the Console
port
l
If you use a PC to connect to the Console port,
launch a terminal emulation utility (such as Terminal in Windows 3.X or
HyperTerminal in Windows 9X) and perform the configuration shown in Figure 2-2 through Figure 2-4 for the connection to be created. Normally, the parameters of a terminal are configured as those listed in Table 2-1. And the type of the terminal is set to VT100.
Figure 2-2
Create a connection
Figure 2-3 Specify the port used to establish the connection
Figure 2-4
Set port parameters
l
Turn on the switch. The user will be prompted to
press the Enter key if the switch successfully completes POST (power-on self
test). The prompt (such as <H3C>) appears after the user presses the
Enter key.
l
You can then configure the switch or check the
information about the switch by executing commands. You can also acquire help
by type the ? character. Refer to the following chapters for information about
the commands.
Table 2-2 lists the common configuration of Console port login.
Table 2-2 Common configuration of Console port login
|
Configuration
|
Description
|
|
Console port configuration
|
Baud rate
|
Optional
The default baud rate is 9,600 bps.
|
|
Check mode
|
Optional
By default, the check mode of the Console
port is set to “none”, which means no check bit.
|
|
Stop bits
|
Optional
The default stop bits of a Console port
is 1.
|
|
Data bits
|
Optional
The default data bits of a Console port
is 8.
|
|
AUX user interface configuration
|
Configure the command level available to
the users logging into the AUX user interface
|
Optional
By default, commands of level 3 are
available to the users logging into the AUX user interface.
|
|
Terminal configuration
|
Make terminal services available
|
Optional
By default, terminal services are
available in all user interfaces
|
|
Set the maximum number of lines the screen
can contain
|
Optional
By default, the screen can contain up to
24 lines.
|
|
Set history command buffer size
|
Optional
By default, the history command buffer
can contain up to 10 commands.
|
|
Set the timeout time of a user interface
|
Optional
The default timeout time is 10 minutes.
|
Caution:
Changing of Console
port configuration terminates the connection to the Console port. To establish
the connection again, you need to modify the configuration of the termination
emulation utility running on your PC accordingly. Refer to section 2.2 “Logging into the Switch through the Console Port” for more.
Table 2-3 lists Console port login configurations for different authentication modes.
Table 2-3 Console port login
configurations for different authentication modes
|
Authentication mode
|
Console port login configuration
|
Description
|
|
None
|
Perform common configuration
|
Perform common configuration for Console
port login
|
Optional
Refer to section 2.3.1
“Common Configuration” for more.
|
|
Password
|
Configure
the password
|
Configure
the password for local authentication
|
Required
|
|
Perform common configuration
|
Perform common configuration for Console
port login
|
Optional
Refer to section 2.3.1
“Common Configuration” for more.
|
|
Scheme
|
Specify to perform local authentication
or RADIUS authentication
|
AAA configuration specifies whether to
perform local authentication or RADIUS authentication
|
Optional
Local authentication is performed by
default.
Refer to the AAA-RADIUS module for more.
|
|
Configure user name and password
|
Configure user names and passwords for
local/remote users
|
Required
l
The user name and password of a local user are
configured on the switch.
l
The user name and password of a remote user
are configured on the DADIUS server. Refer to user manual of RADIUS server
for more.
|
|
Manage AUX users
|
Set service type for AUX users
|
Required
|
|
Perform common configuration
|
Perform common configuration for Console
port login
|
Optional
Refer to section 2.3.1
“Common Configuration” for more.
|
Changes of the
authentication mode of Console port login will not take effect unless you log
off from and log in again to the CLI.
Table 2-4 Console
port login configuration with the authentication mode being none
|
Operation
|
Command
|
Description
|
|
Enter system view
|
system-view
|
—
|
|
Enter AUX user interface view
|
user-interface aux 0
|
—
|
|
Configure not to authenticate users
|
authentication-mode none
|
Required
By default, users logging in through the
Console port are not authenticated.
|
|
Configure the Console port
|
Set the baud rate
|
speed speed-value
|
Optional
The default baud rate of an AUX port
(also the Console port) is 9,600 bps.
|
|
Set the check mode
|
parity { even
| none | odd }
|
Optional
By default, the check mode of a Console
port is set to none, that is, no check bit.
|
|
Set the stop bits
|
stopbits {
1 | 1.5 | 2 }
|
Optional
The stop bits of a Console port is 1.
|
|
Set the data bits
|
databits {
7 | 8 }
|
Optional
The default data bits of a Console port
is 8.
|
|
Configure the command level available to
users logging into the user interface
|
user privilege level level
|
Optional
By default, commands of level 3 are
available to users logging into the AUX user interface.
|
|
Make terminal services available
|
shell
|
Optional
By default, terminal services are
available in all user interfaces.
|
|
Set the maximum number of lines the
screen can contain
|
screen-length screen-length
|
Optional
By default, the screen can contain up to
24 lines.
You can use the screen-length 0
command to disable the function to display information in pages.
|
|
Set the history command buffer size
|
history-command max-size value
|
Optional
The default history command buffer size
is 10. That is, a history command buffer can store up to 10 commands by
default.
|
|
Set the timeout time for the user
interface
|
idle-timeout minutes [ seconds ]
|
Optional
The default timeout time of a user
interface is 10 minutes.
With the timeout time being 10 minutes,
the connection to a user interface is terminated if no operation is performed
in the user interface within 10 minutes.
You can use the idle-timeout 0 command
to disable the timeout function.
|
Note that if you configure not to
authenticate the users, the command level available to users logging into a
switch depends on both the authentication-mode none command and
the user privilege level level command, as listed in the
following table.
Table 2-5 Determine
the command level (A)
|
Scenario
|
Command level
|
|
Authentication mode
|
User type
|
Command
|
|
None (authentication-mode none)
|
Users logging in through Console ports
|
The user privilege level level
command not executed
|
Level 3
|
|
The user privilege level level
command already executed
|
Determined by the level argument
|
I. Network requirements
Assume that you are a level 3 VTY user and
want to perform the following configuration for users logging in through the
Console port:
l
Do not authenticate users logging in through the
Console port.
l
Commands of level 2 are available to users
logging into the AUX user interface.
l
The baud rate of the Console port is 19,200 bps.
l
The screen can contain up to 30 lines.
l
The history command buffer can contain up to 20
commands.
l
The timeout time of the AUX user interface is 6
minutes.
II. Network diagram
Figure 2-5 Network diagram for AUX user interface configuration (with the
authentication mode being none)
III. Configuration procedure
# Enter system view.
<H3C> system-view
# Enter AUX user interface view.
[H3C] user-interface aux 0
# Specify not to authenticate users logging
in through the Console port.
[H3C-ui-aux0] authentication-mode
none
# Specify commands of level 2 are available
to users logging into the AUX user interface.
[H3C-ui-aux0] user privilege level 2
# Set the baud rate of the Console port to
19,200 bps.
[H3C-ui-aux0] speed 19200
# Set the maximum number of lines the
screen can contain to 30.
[H3C-ui-aux0] screen-length 30
# Set the maximum number of commands the
history command buffer can store to 20.
[H3C-ui-aux0] history-command
max-size 20
# Set the timeout time of the AUX user
interface to 6 minutes.
[H3C-ui-aux0] idle-timeout 6
Table 2-6 Console
port login configuration with the authentication mode being password
|
Operation
|
Command
|
Description
|
|
Enter system view
|
system-view
|
—
|
|
Enter AUX user interface view
|
user-interface aux 0
|
—
|
|
Configure to authenticate users using the
local password
|
authentication-mode password
|
Required
By default, users logging in through the
Console port are not authenticated, whereas modem users and Telnet users are
authenticated.
|
|
Set the local password
|
set authentication password { cipher | simple } password
|
Required
|
|
Configure the Console port
|
Set the baud rate
|
speed speed-value
|
Optional
The default baud rate of an AUX port
(also the Console port) is 9,600 bps.
|
|
Set the check mode
|
parity { even
| none | odd }
|
Optional
By default, the check mode of a Console
port is set to none, that is, no check bit.
|
|
Set the stop bits
|
stopbits {
1 | 1.5 | 2 }
|
Optional
The default stop bits of a Console port
is 1.
|
|
Set the data bits
|
databits {
7 | 8 }
|
Optional
The default data bits of a Console port
is 8.
|
|
Configure the command level available to
users logging into the user interface
|
user privilege level level
|
Optional
By default, commands of level 3 are
available to users logging into the AUX user interface.
|
|
Make terminal services available to the
user interface
|
shell
|
Optional
By default, terminal services are
available in all user interfaces.
|
|
Set the maximum number of lines the
screen can contain
|
screen-length screen-length
|
Optional
By default, the screen can contain up to
24 lines.
You can use the screen-length 0
command to disable the function to display information in pages.
|
|
Set history command buffer size
|
history-command max-size value
|
Optional
The default history command buffer size
is 10. That is, a history command buffer can store up to 10 commands by
default.
|
|
Set the timeout time for the user
interface
|
idle-timeout minutes [ seconds ]
|
Optional
The default timeout time of a user
interface is 10 minutes.
With the timeout time being 10 minutes,
the connection to a user interface is terminated if no operation is performed
in the user interface within 10 minutes.
You can use the idle-timeout 0
command to disable the timeout function.
|
Note that if you configure to authenticate
the users in the password mode, the command level available to users logging
into a switch depends on both the authentication-mode password
and the user privilege level level command, as listed in the
following table.
Table 2-7 Determine
the command level (B)
