Moved to: https://osmium.morningside.edu/confluence/x/JgIRCw

Introduction

This document may be used as a quick-reference for CLI switch configurations.

Connecting

Console Access

With a console cable connected to USB or serial port on a PC, use a terminal emulator to connect (such as PuTTY or HyperTERM)

Remote access (Telnet/SSH)

If the switch is already configured and networked, one may telnet (or preferably SSH) into it if it is so configured. Ex: telnet 192.168.1.1.

Term settings

No matter what terminal is chosen, the following settings must be employed to successfully connect:

Option	Value
Baud Rate	38400
Parity	None
Stopbits	1
Data bits	8
Hardware Flow Control	None
Software Flow Control	None

Actually connecting

Once the terminal is configured and plugged in, press return ("enter") twice to initialize the connection.

Basic Configuration Steps

1. Connect to the device

2. Enter configuration context with configure terminal. (Remember, any command may be abbreviated)

3. Set a valid and descriptive hostname for the switch with hostname <hostname>

4. Set the primary switch IP Address from the VLAN 101 context:

   • vlan 101
     name Net_Mgmt
     ip address 192.168.1.n 255.255.255.0
     exit

5. Physically label the switch with the IP address and hostname.

6. Set a valid default gateway with ip default-gateway 192.168.1.1

7. Set ports with the proper vlan tagging for Net_Mgmt vlan with the vlan 100 tagged <i>port-list</i> or vlan 101 untagged <i>port-list</i> commands.

8. Save your changes: write memory

9. logout, you're done!

Helps

From the command line, at any point, TAB completion is available. Pressing the TAB key will show possible completions for the command you may have partially typed. If the command is unique, it will be completed for you. If there are multiple possibilities, they will be displayed.

Additionally, pressing the ?-key at any point will display contextual help for a given command.

For more help, ending a command with help will display a more verbose description of that command.

Upgrading Switch Firmware

Prerequisets

• Access to a working TFTP server on the network
• Access to a network-ready switch

• Access to the HP support site HP Support Lookup Tool

Process

First, a copy of the latest edition of the firmware must be obtained from the HP Support website. Search the switch model and take a look at the versions of software under "General Availability."

Download and extract the ZIP file. The *.swi file must be moved into the directory shared by tftp.

Once the firmware is downloaded, compare the version to that running on the switch using the show flash command on the switch.

E.g.,

• ProCurve Switch 2520G-8-PoE# show flash
  Image           Size(Bytes)   Date   Version
  -----           ----------  -------- -------
  Primary Image   : 6123139   03/08/12 J.14.61 
  Secondary Image : 6123139   03/08/12 J.14.61 
  Boot Rom Version: J.14.05
  Default Boot    : Primary

I see from the support site that the latest version of the firmware is J.15.09 released on 22-Oct-2013.

Suppose the IP of the tftp server is 192.168.0.101. The firmware has been extracted into the tftp server directory as J_15_09_0014.swi.

From the console, it may be transfered into primary flash:

• ProCurve Switch 2520G-8-PoE(config)# copy tftp flash 192.168.0.101 J_15_09_0014.swi primary 
  The Primary OS Image will be deleted, continue [y/n]?  y
  
  Validating and Writing System Software to FLASH...

After copying, verify the flash versions and use the boot command to reboot the switch into the primary flash.

• ProCurve Switch 2520G-8-PoE(config)# sh flash
  Image           Size(Bytes)   Date   Version
  -----           ----------  -------- -------
  Primary Image   : 7649429   02/25/13 J.15.09 
  Secondary Image : 6123139   03/08/12 J.14.61 
  Boot Rom Version: J.14.05
  Default Boot    : Primary
  
  ProCurve Switch 2520G-8-PoE(config)# boot system flash primary 
  Device will be rebooted, do you want to continue [y/n]?  y
  Do you want to save current configuration [y/n/^C]?  y

Once the device has rebooted, repeat the procedure to copy the new image into the secondary flash:

ProCurve Switch 2520G-8-PoE(config)# copy tftp flash 192.168.0.101 J_15_09_0014.swi secondary 
The Secondary OS Image will be deleted, continue [y/n]?  y

Validating and Writing System Software to FLASH...

The switch software is now up to date.

Standard Switch Configuration

--meyersh 19:40, 15 July 2009 (UTC)

General Configuration stuff

hostname "<Switch Hostname>" 
snmp-server location "<Description of Switch Location>" 
snmp-server contact "Shaun Meyer" 
logging 10.0.0.100
logging facility local4
timesync sntp
sntp unicast
sntp server priority 1 10.0.0.100
time timezone -300
ip authorized-managers 192.168.2.0 255.255.255.0 access manager
ip authorized-managers 192.168.0.0 255.255.255.0 access manager
ip authorized-managers 10.0.0.0 255.255.255.0 access manager
ip authorized-managers 192.168.1.1 255.255.255.255 access manager
ip default-gateway 192.168.1.1
snmp-server community "public" unrestricted
snmp-server community "feeblexxx" operator
snmp-server host 192.168.0.250 community "public"
vlan 101
   name "Net_Mgmt"
   no ip address
   exit
password manager
write memory

STP

spanning-tree
spanning-tree force-version RSTP-operation

Loop Protect

Ensure that loop-protect is enabled on edge ports.

loop-protect 1-24

IP Routing

1. To enable IP routing, use the ip routing command. Now, all IP addresses on all VLANs on the switch (now router) will be routed.

2. VLANs get an IP address by the ip-address command:

   vlan xxx ip-address 192.168.x.y/24

3. A default route must be added.

   ip route 0.0.0.0 0.0.0.0 <dest ip>

4. A DHCP helper address may be needed on the vlan.

   vlan xxx ip helper-address 192.168.0.24

5. A route back to the router (from the default gateway) must be created on the default gateway.

   ip route 192.168.x.0/24 <router ip>