Which Are the Default Passwords Used on S Series Switches

Issue Description

Which Are the Default Passwords Used on S Series Huawei Switches?

Solution

On the S series switches of all versions:

  • When you log in a a switch through a console port, no default user name or password is provided. The system asks you to set the user name and password when you log in to the switch for the first time.
  • Before you log in to a switch through Telnet, create a Telnet account.

You can set the Telnet login authentication method in the VTY. If the password authentication mode is configured, set a password in the VTY. If the AAA local authentication mode is configured, set the user name and password in the AAA view. If the remote AAA authentication mode is configured, set the user name and password on the AAA server.

  • When you log in to a switch through web, your default user level is 0: visit level.

For other default passwords, see Table 1

NOTE:
By default, the console login password, BootROM password, and Telnet password are case-sensitive.

Table 1 Default passwords used by S series switches

QQ图片20170908113909

QQ图片20170908113949

QQ图片20170908114012

QQ图片20170908114034

Advertisements

Why POE Interface board is not registered on S9300

Issue Description

FAQ-Why POE Interface board is not registered on S9300?

Alarm Information

None

Handling Process

FAQ-Why POE Interface board is not registered on S9300?
A: There should be POE power on S9300 so that POE interface board can be registered. We can check elabel to confirm if board can support poe function or not. If one board can support POE function, the description should contain “POE Interface Card” like below:
Description=Quidway S9300,LE02G48VA,48-Port 10/100/1000BASE-T POE Interface Card(EA,RJ45,POE),32K MAC,1*1
Then you can confirm whether interface board is registered or not with command “display device”
There are four poe power slots on S9306 and S9312. But there is only one on S9303. There are some cautions:
1.Only AC power modules can be installed in PoE slots.
2.When inserted into a PoE slot, an AC power module is used as a PoE power module and provides power for powered devices (PDs) by using an Ethernet PoE electrical interface card. When inserted into slot PWR1 or PWR2, an AC power module provides power for the entire device.

Root Cause

None

Suggestions

None

 

S series switch password infomation summary

Issue Description

since there are so many different type password on s series switch of Huawei, It’s hardly to remember them clearly.,what’s worse, different version has different password for the same login way.

Solution

1、for web login (http )

QQ图片20170831091542

2、for bootrom

QQ图片20170831091645

Huawei S2300 Series switch, Huawei S2700 Series switch, Huawei S3300 Series switch, Huawe S3700 Series switch

 

loopback internal on S2326 cause packets loss

Issue Description

QQ图片20170824163304

As shown above, S2326 and S5328 trunk vlan 200 and gateway is S9306. The packets loss when do ping test from S9306 to clients.

Alarm Information

  1. There are  RX power too low warnings on S5328:
    Oct  5 2008 03:00:28+08:00 DS_ADMIN %%01SRM/3/RXPOWER_EXCEEDMINOR(l)[13]:Optical module in interface GigabitEthernet0/0/21 exception, RX power too low.
    Oct  5 2008 02:59:12+08:00 DS_ADMIN %%01IFNET/4/IF_STATE(l)[14]:Interface GigabitEthernet0/0/4 has turned into UP state.
    Oct  5 2008 02:56:08+08:00 DS_ADMIN %%01SRM/3/RXPOWER_EXCEEDMINOR(l)[15]:Optical module in interface GigabitEthernet0/0/21 exception, RX power too low.
    2. There are reboo logs on both S5328 and S2326
    <DS_ADMIN>[42D                                          [42D
    =======================================================
    ===============display reboot-info===============
    =======================================================
    Slot ID   Times          Reboot Type          Reboot Time
    ===========================================================================
    0         1              POWER               2008/10/01 00:02:28
    0         2              POWER               2008/10/01 00:02:24
    0         3              POWER               2008/10/01 00:02:24
    0         4              POWER               2008/10/01 00:02:25
    0         5              POWER               2008/10/01 00:02:25
    0         6              POWER               2008/10/01 00:02:25
    0         7              POWER               2008/10/01 00:02:24
    0         8              POWER               2008/10/01 00:02:25
    0         9              MANUAL              2009/04/14 02:19:42
    0         10             POWER               2008/10/01 00:02:25
    3. There are CPCAR drop logs on S9306
    Jul  8 2013 13:50:10+06:00 UNJ-Core %%01DEFD/4/CPCAR_DROP_LPU(l)[0]:Some packets are dropped by cpcar on the LPU in slot 3. (Protocol=arp-reply, Drop-Count=0273)
    Jul  8 2013 13:40:10+06:00 UNJ-Core %%01DEFD/4/CPCAR_DROP_LPU(l)[1]:Some packets are dropped by cpcar on the LPU in slot 3. (Protocol=arp-reply, Drop-Count=076)
    Jul  8 2013 13:40:10+06:00 UNJ-Core %%01DEFD/4/CPCAR_DROP_LPU(l)[2]:Some packets are dropped by cpcar on the LPU in slot 3. (Protocol=arp-request, Drop-Count=0888)

Handling Process

  1. Check the optical interface by command “display transceiver interface” , the RX and TX power is normal. The warning is false alarm.
    2. Check CPU usage on switches, found CPU usage on S2326 is too high
    AS_E_FBS_2326POE_01 %%01VOSCPU/4/CPU_USAGE_HIGH(l)[2]:The CPU is overloaded, and the tasks with top three CPU occupancy are GVRP(56%), POE (10%), tCOUNTER.0(8%). (CpuUsage=99%, Threshold=95%)
    3. As CPCAR drop warning on S9306, suspect there is a loop on S2326-1. Check interface state by command “display stp brief” , found Ethernet0/0/17 is loopback and this S2326 didn’t enable STP:
    < AS_E_FBS_2326POE_01>display stp brief
    MSTID      Port                  Role  STP State     Protection
    0        GigabitEthernet0/7    DESI  FORWARDING      NONE
    0        GigabitEthernet0/17   DESI  FORWARDING  LOOPBACK
    0        GigabitEthernet0/18   DESI  FORWARDING      NONE
    4. Because of  loopback, MAC address learning will be refeshed to this interface, which causes swithes learn incorrect MAC addresses.
    5. This problem is resolved by enabling STP protocol on this S2326

Root Cause

Following reasons may cause packets loss:
1. Link quality is bad
2. CPU usage is too high
3. MAC floating
4. Other reasons

Suggestions

Enabling STP to avoid loop in Layer-2 network is necessary.

Layer 2 Packet Loss Causuaweisded by Loops

Issue Description

Applicable Products and Versions:All products and versions.

Networking
As shown in Figure 4-3, a Huawei switch is connected to an enterprise network through a leased line. The switch functions as a Layer 2 aggregation switch, and an NE80 functions as the gateway.

Figure 4-3 Network where layer 2 packet loss occurs
QQ图片20170817095151

Layer 2 Packet Loss Caused by Loops.

Alarm Information

Enterprise network users complain that the network has a slow response to their service requests. When the NE80 pings a terminal on the enterprise network, packet loss occurs.

Handling Process

  1. Enable MAC address flapping detection on the switch and check alarms.NOTE:
    Alarm information differs for fixed and modular switches of different versions. The following alarm information is only used as an example.

    #Jul 28 09:59:34 2012 Switch L2IF/4/mac_flapping_alarm:OID 1.3.6.1.4.1.2011.5.25.42.2.1.7.12The mac-address has flap value . (BaseTrapSeverity=0, BaseTrapProbableCause=0, BaseTrapEventType=4, L2IfPort=549,entPhysicalIndex=1, MacAdd=0025-9e03-02f1,vlanid=107, FormerIfDescName=GigabitEthernet12/0/0,CurrentIfDescName=GigabitEthernet10/0/6,DeviceName= Switch)
    The preceding alarm information indicates that MAC address flapping occurs.

    2.  Set the NE80 MAC address to a static MAC address on GE12/0/0.

    The loop on the downstream network of GE10/0/6 is eliminated.

Root Cause

A loop exists on the downstream network of GE10/0/6. As a result, the MAC address of the NE80 flaps between GE10/0/6 and GE12/0/0 of the switch. When GE10/0/6 learns the MAC address of the NE80, user packets cannot be forwarded to the gateway.

Suggestions

To locate Layer 2 packet loss and intermittent disconnection problems, first check whether MAC address flapping occurs in addition to checking basic factors such as network cables, optical power of optical modules, and interface status. Then configure a static MAC address and check whether the problems are resolved. Configuring a static MAC address only prevents loops. To eliminate loops, configure a loop prevention protocol.