The Cisco Switching Small Business / SG main commands

Configuration

  • Switch model : Cisco SG550X
  • Switch model : Cisco SG350X

Commands

Show

  • Get firmware version :
Cisco# show version
  • Get serial number :
Cisco# show system id
  • Get model, uptime, hostname, MAC Address :
Cisco# show system unit 1
  • Get mac address :
Cisco# show mac address-table
  • Get gbic (sfp module) informations :
Cisco# show inventory
  • Show last logs :
Cisco# show logging
  • Show learned ip addresses :
Cisco# show arp

Misc

  • Change password :
Cisco (config)# username cisco password myNEWpassword
  • Add admin user :
Cisco (config)# username cisco privilege 15 password myNEWpassword
  • Change hostname :
Cisco (config)# hostname Switch
  • Save current config :
Switch# copy running-config startup-config
  • Set switch ip :
Switch (config)# interface vlan1
Switch (config-if)# ip address 192.168.1.100 255.255.255.0
Switch (config-if)# no ip address dhcp
  • Set dns :
Switch (config)# ip name-server 192.168.1.110
Switch (config)# ip domain lookup
  • Add ip gateway :
Switch (config)# interface vlan1
Switch (config-if)# ip default-gateway 192.168.1.254
  • Reboot :
Switch # reload
  • Interface range :
Switch (config)# interface range ge1/0/4,ge1/0/30
Switch (config)# interface range ge1/0/4-18
  • Enable ssh server :
Switch (config)# ip ssh server
  • Disable http server
Switch (config)# no ip http server
  • Disable password maximum lifetime :
Switch (config)# password aging 0
  • Disable Bonjour :
Switch (config)# no bonjour enable

Import/Export Config

  • Upload config to tftp server
Switch # copy run tftp://tftp_server/YYYY-MM-DD
  • Import config from tftp server
Switch # copy tftp://tftp_server/YYYY-MM-DD run

Update Firmware (easy method)

  • Upload new firmware
Switch # boot system tftp://tftp_server/firmware.bin

Update Firmware

  • Upload new firmware
Switch # copy tftp://tftp_server/firmware.bin flash://system/images/
  • Get available firmwares
Switch # show bootvar
  • Enable new firmware
Switch # boot system image-2
  • Reboot
Switch # reload

PoE

  • Turn off PoE
Switch (config)# interface gi1/0/1
Switch (config-if)# no power inline
  • Turn on PoE
Switch (config)# interface gi1/0/1
Switch (config-if)# power inline auto
  • Get PoE informations
Switch # show power inline
Switch # show power inline gi1/0/1

VLAN

Add a VLAN

Switch (config)# vlan database
Switch (config-vlan)# vlan 4
Switch (config)# interface vlan 4
Switch (config-if)# name VoIP

Set the access VLAN to an interface

Switch (config)# interface GigabitEthernet 1/24
Switch (config-if)# switchport mode access
Switch (config-if)# switchport access vlan4

Configure the allowed VLANs to an interface (Trunk)

Switch (config)# interface te 1/0/1
Switch (config-if)# switchport mode trunk
Switch (config-if)# switchport trunk allowed vlan add 4,100,101,150

Locked Port / Disable port security

Message : Your port has port security enable and has noticed that the MAC address on that port is different from what the port had originally learned.

Switch # set interface active gi2/0/4
Switch # show ports security gi2/0/4
Switch (config) # interface gi2/0/4
Switch (config-if)# no port security

sFlow

Set sFlow

Switch (config)# interface range GigabitEthernet1/0/1-48
Switch (config-if-range)# sflow flow-sampling 1024 1
Switch (config-if-range)# sflow counters-sampling 600 1

Disable sFlow

Switch (config)# interface TengigabitEthernet1/0/1
Switch (config-if)# no sflow counters-sampling
Switch (config-if)# no sflow flow-sampling

Port Mirroring / SPAN

  • Set mirroring on GigabitEthernet1/0/1
Switch (config)# monitor session 1 destination interface GigabitEthernet1/0/1
  • With GigabitEthernet1/0/2 and GigabitEthernet1/0/3 traffic
Switch (config)# monitor session 1 source interface GigabitEthernet1/0/2 both
Switch (config)# monitor session 1 source interface GigabitEthernet1/0/3 both
Creative Commons License
This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.

Contact :