H3C Huawei switch simple maintenance command SNMP user

I. Add commands to the vswitch simple management protocol to facilitate access to Huawei's Management Software
SNMP-agent
SNMP-Agent Community read public
SNMP-Agent community write private
SNMP-Agent sys-Info version V1 v3
SNMP-Agent trap enable
Note: Each new vswitch must be added to the preceding command set. Otherwise, it cannot be managed by the management software.

2. Set the IP address for the vlan1 segment of the new vswitch.
Interface VLAN 1
IP address 10.63.0.1 255.255.254.0

Iii. cases related to Huawei switch commands

Quidway] Super Password
[Quidway] sysname switch name
[Quidway] interface Ethernet 0/1 enters the interface View
[Quidway] interface VLAN x enters the VLAN Interface view of segment x
[Quidway-VLAN-interfacex] IP address 10.65.1.1 255.255.0.0 sets the IP address for the VLAN segment
[Quidway] IP route-static 0.0.0.0 0.0.0.0 10.65.1.2 static route = Gateway

[Quidway] user-interface vty 0 4
[S3026-ui-vty0-4] Authentication-mode password
[S3026-ui-vty0-4] Set Authentication-mode password simple 222
[S3026-ui-vty0-4] user privilege level 3

[Quidway-Ethernet0/1] duplex {half | full | auto} Configure port duplex working status
[Quidway-Ethernet0/1] Speed {10 | 100 | auto} Configure port speed
[Quidway-Ethernet0/1] Flow-control Configure port Flow Control
[Quidway-Ethernet0/1] MDI {physical SS | auto | normal} Configure port MDI/mdix status flat or twist
[Quidway-Ethernet0/1] Port Link-type {trunk | access | hybrid} sets the Interface Working Mode
[Quidway-Ethernet0/1] shutdown close/restart Interface
[Quidway-Ethernet0/2] Quit Exit System View

[Quidway] VLAN 3: Create/delete a VLAN/Enter VLAN Mode
[Quidway-vlan3] port ethernet 0/1 to Ethernet 0/4 adds/deletes Ethernet interfaces in the current VLAN
[Quidway-Ethernet0/2] port access VLAN 3 Add the current interface to the specified VLAN
[Quidway-Ethernet0/2] Port trunk permit VLAN {ID | all} set VLAN allowed by trunk
[Quidway-Ethernet0/2] Port trunk pvid vlan 3 sets the PVID of the trunk Port

[Quidway] monitor-port <interface_type interface_num> specifies and clears the Image Port
[Quidway] Port mirror <interface_type interface_num> specifies and clears the mirrored Port
[Quidway] Port mirror int_list observing-port int_type int_num specifies the image and the image

[Quidway] Description string specifies the VLAN description character
[Quidway] Description Delete VLAN description characters
[Quidway] display VLAN [vlan_id] view VLAN settings

[Quidway] STP {enable | disable} enables/disables the spanning tree, which is disabled by default.
[Quidway] STP priority 4096 sets the switch priority
[Quidway] STPS root {primary | secondary} sets the switch as the root or root backup.
[Quidway-Ethernet0/1] STP cost 200 set switch port cost

[Switcha-vlanx] isolate-user-VLAN enable
[Switcha] isolate-user-VLAN <x> secondary <list>
[Quidway-Ethernet0/2] Port hybrid pvid vlan <ID> sets the PVID of a VLAN
[Quidway-Ethernet0/2] Port hybrid PVID Delete VLAN PVID
[Quidway-Ethernet0/2] Port hybrid VLAN vlan_id_list untagged set unidentified VLAN
If the vlan id of the package is the same as that of the PVID, the VLAN information is removed. The default value is PVID = 1.
Therefore, set the PVID to the vlan id and the VLAN that can communicate with each other as untagged.
----------------------------------------
Vro commands
~~~~~~~~~~
[Quidway] display version displays version information
[Quidway] display current-configuration display current configuration
[Quidway] Display Interfaces display interface information
[Quidway] display IP Route display route information

[Quidway] sysname aabbcc change the Host Name
[Quidway] Set password for super passwrod 123456
[Quidway] interface serial0 entry interface
[Quidway-serial0] IP address <ip> <mask>
[Quidway-serial0] Undo shutdown activation Port
[Quidway] link-Protocol HDLC binding HDLC Protocol
[Quidway] user-interface vty 0 4
[Quidway-ui-vty0-4] Authentication-mode password
[Quidway-ui-vty0-4] Set Authentication-mode password simple 222
[Quidway-ui-vty0-4] user privilege level 3
[Quidway-ui-vty0-4] Quit

[Quidway] debugging HDLC all serial0 displays all information
[Quidway] debugging HDLC event serial0 debug event information
[Quidway] debugging HDLC packet serial0 displays package information

Static Routing:
[Quidway] IP route-static <ip> <mask> {interface number | nexthop} [value] [reject | blackhole]
For example:
[Quidway] IP route-static 129.1.0.0 16 10.0.0.2
[Quidway] IP route-static 129.1.0.0 255.255.0.0 10.0.0.2
[Quidway] IP route-static 129.1.0.0 16 Serial 2
[Quidway] IP route-static 0.0.0.0 0.0.0.0 10.0.0.2

Dynamic Routing:
[Quidway] Rip
[Quidway] Rip work
[Quidway] Rip Input
[Quidway] RIP output
[Quidway-rip] network 1.0.0.0; can all
[Quidway-rip] network 2.0.0.0
[Quidway-rip] peer IP-address
[Quidway-rip] Summary
[Quidway] Rip version 1
[Quidway] Rip version 2 Multicast
[Quidway-Ethernet0] Rip split-horizon; horizontal separation

[Quidway] router ID a. B .c.d: ID of the router configured
[Quidway] OSPF enable OSPF protocol
[Quidway-OSPF] import-route direct introduces direct link Routing
[Quidway-Serial0] OSPF enable area <area_id> Configure OSPF Area

The standard access LIST command format is as follows:
ACL <ACL-number> [Match-order config | auto] by default, the former is matched sequentially.
Rule [Normal | special] {permit | deny} [source-ADDR source-Wildcard | any]
Example:
[Quidway] ACL 10
[Quidway-acl-10] Rule normal permit source 10.0.0.0 0.0.255
[Quidway-acl-10] Rule normal deny source any

Extended access control list configuration command

Configure the extended access list of TCP/UDP protocol:
Rule {normal | special} {permit | deny} {tcp | udp} source {<IP wild> | any} destination <IP wild> | any}
[Operate]

Configure the extended access list of the ICMP protocol:
Rule {normal | special} {permit | deny} ICMP Source {<IP wild> | any] Destination {<IP wild> | any]
[ICMP-code] [logging]

Meanings of extended access control list Operators
Equal portnumber is equal
Greater-than portnumber is greater
Less-than portnumber is smaller
Not-equal portnumber
Range portnumber1 portnumber2 range

Example of extended access control list
[Quidway] ACL 101
[Quidway-acl-101] Rule deny Souce any destination any
[Quidway-acl-101] Rule permit ICMP source any destination any ICMP-type echo
[Quidway-acl-101] Rule permit ICMP source any destination any ICMP-type echo-reply

[Quidway] ACL 102
[Quidway-acl-102] Rule permit IP source 10.0.0.1 0.0.0.0 destination 202.0.0.1 0.0.0.0
[Quidway-acl-102] Rule Deny IP source any destination any

[Quidway] ACL 103
[Quidway-acl-103] Rule permit TCP source any destination 10.0.0.1 0.0.0.0 destination-port equal FTP
[Quidway-acl-103] Rule permit TCP source any destination 10.0.0.2 0.0.0.0 destination-port equal WWW

[Quidway] firewall enable
[Quidway] firewall default permit | deny
[Quidway] int E0
[Quidway-Ethernet0] firewall packet-filter 101 inbound | outbound

Example of address translation Configuration
[Quidway] firewall enable
[Quidway] firewall default permit
[Quidway] ACL 101
[Quidway-acl-101] Rule Deny IP source any destination any
[Quidway-acl-101] Rule permit IP source 129.38.1.4 0 destination any
[Quidway-acl-101] Rule permit IP source 129.38.1.1 0 destination any
[Quidway-acl-101] Rule permit IP source 129.38.1.2 0 destination any
[Quidway-acl-101] Rule permit IP source 129.38.1.3 0 destination any
[Quidway] ACL 102
[Quidway-acl-102] Rule permit TCP source 202.39.2.3 0 destination 202.38.160.1 0
[Quidway-acl-102] Rule permit TCP source any destination 202.38.160.1 0 destination-port great-
1024

[Quidway-Ethernet0] firewall packet-filter 101 inbound
[Quidway-Serial0] firewall packet-filter 102 inbound

[Quidway] Nat address-group 202.38.160.101 202.38.160.103 pool1
[Quidway] ACL 1
[Quidway-acl-1] Rule permit source 10.110.10.0 0.0.255
[Quidway-acl-1] Rule deny source any
[Quidway-acl-1] int serial 0
[Quidway-Serial0] Nat outbound 1 address-group pool1

[Quidway-Serial0] Nat server global 202.38.160.101 inside 10.110.10.1 FTP TCP
[Quidway-Serial0] Nat server global 202.38.160.102 inside 10.110.10.2 WWW TCP
[Quidway-Serial0] Nat server global 202.38.160.102 8080 inside 10.110.10.3 WWW TCP
[Quidway-Serial0] Nat server global 202.38.160.103 inside 10.110.10.4 SMTP UDP

PPP Verification:
Primary Examiner: pap | chap
[Quidway] local-user U2 password {simple | cipher} aaa
[Quidway] interface serial 0
[Quidway-serial0] PPP authentication-mode {pap | chap}
[Quidway-serial0] ppp chap user U1 // pap, no need

PAP Examiner:
[Quidway] interface serial 0
[Quidway-serial0] PPP pap local-user U2 password {simple | cipher} aaa

Chap Examiner:
[Quidway] interface serial 0
[Quidway-serial0] ppp chap user u1
[Quidway-serial0] local-user U2 password {simple | cipher} aaa