Real console on Linksys SRW2024 switch


I’ve been meaning to put this up for a while, as I’ve been very critical in the past about Linksys and their very – challenging? useless? way to configure the SRW2024 switch – however there is a better way to configure the devices. There is however, a Cisco-like interface that you can use and ditch the useless default console.

First, telnet (or SSH, or console) to your device and login

$ telnet

                          Login Screen

                       User Name:  admin                


Then, when you get to the main menu, press Ctrl + Z on your terminal.

                               Switch Main Menu

                         1. System Configuration Menu

                         2. Port Status

                         3. Port Configuration

                         4. System Mode (Layer 2 / Layer 3)

                         5. Help

                         0. logout

ArrowKey/TAB/BACK=Move  SPACE=Toggle  ENTER=Select  ESC=Back

Now you should get to a prompt that has a couple of options.

Unknown parameter
May be one from the following list:

debug     exit      help      lcli      logout    mcli      menu      


From here, we want to launch the lcli application. When we have done so, we will be asked to login.


User Name:admin


Now we arrive at a VERY Cisco-ish console. It follows the Cisco command set (mainly). Using a ? to view available options, we get:

  clear                Reset functions
  clock                Manage the system clock
  configure            Enter configuration mode
  copy                 Copy from one file to another
  crypto               Cryptographic commands
  debug-mode           Exit from the EXEC to debug mode
  delete               Delete a file from the flash file system
  disable              Disable privileged commands
  dot1x                802.1x EXEC commands
  exit                 Exit from the EXEC
  help                 Description of the interactive help system
  login                Exit from the EXEC and Log in
  no                   Negate command
  ping                 Send echo messages
  reload               Halt and perform a cold restart
  resume               Resume telnet session.
  set                  Set System Parameters
  show                 Show running system information
  telnet               Open telnet session.
  terminal             Set current session functions
  test                 diagnose
  traceroute           Discover the routes to destination

You can use these commands to configure the switch, change port settings, and gather information about the switch configuration.

SRW2024# show ver
SW version    1.2.2 ( date  28-Jan-2007 time  13:48:36 )
Boot version    1.0.1 ( date  11-Jun-2006 time  18:43:59 )
HW version    00.03.00
SRW2024# show interfaces status 
                                             Flow Link          Back   Mdix
Port     Type         Duplex  Speed Neg      ctrl State       Pressure Mode
-------- ------------ ------  ----- -------- ---- ----------- -------- -------
g1       1G-Copper    Full    100   Enabled  Off  Up          Disabled On     
g2       1G-Copper    Full    1000  Enabled  Off  Up          Disabled On     
g3       1G-Copper    Full    1000  Enabled  Off  Up          Disabled Off    
g4       1G-Copper      --      --     --     --  Down           --     --    
g5       1G-Copper      --      --     --     --  Down           --     --    
g6       1G-Copper    Full    1000  Enabled  Off  Up          Disabled On     
g7       1G-Copper      --      --     --     --  Down           --     --    
g8       1G-Copper      --      --     --     --  Down           --     --    
g9       1G-Copper      --      --     --     --  Down           --     --    
g10      1G-Copper      --      --     --     --  Down           --     --    
g11      1G-Copper      --      --     --     --  Down           --     --    
g12      1G-Combo-C     --      --     --     --  Down           --     --    
g13      1G-Copper      --      --     --     --  Down           --     --    
g14      1G-Copper      --      --     --     --  Down           --     --    
g15      1G-Copper      --      --     --     --  Down           --     --    
g16      1G-Copper      --      --     --     --  Down           --     --    
g17      1G-Copper      --      --     --     --  Down           --     --    
g18      1G-Copper    Full    100   Enabled  Off  Up          Disabled On     
g19      1G-Copper      --      --     --     --  Down           --     --    
g20      1G-Copper    Half    10    Enabled  Off  Up          Disabled Off    
g21      1G-Copper      --      --     --     --  Down           --     --    
g22      1G-Copper      --      --     --     --  Down           --     --    
g23      1G-Copper      --      --     --     --  Down           --     --    
g24      1G-Combo-C     --      --     --     --  Down           --     --    

                                          Flow    Link        
Ch       Type    Duplex  Speed  Neg      control  State       
-------- ------- ------  -----  -------- -------  ----------- 
ch1         --     --      --      --       --    Not Present 
ch2         --     --      --      --       --    Not Present 
ch3         --     --      --      --       --    Not Present 
ch4         --     --      --      --       --    Not Present 
ch5         --     --      --      --       --    Not Present 
ch6         --     --      --      --       --    Not Present 
ch7         --     --      --      --       --    Not Present 
ch8         --     --      --      --       --    Not Present 
SRW2024# show vlan     

Vlan       Name                   Ports                Type     Authorization 
---- ----------------- --------------------------- ------------ ------------- 
 1           1          g(1-4,9-16,21-24),ch(1-8)     other       Required    
 10         LAN               g(1-4,17-20)          permanent     Required    
203         DMZ                  g(1-8)             permanent     Required    


You can go into configuration mode by simply using the configure command.

SRW2024# configure
  aaa                  Authentication, Authorization and Accounting is used
                       to manage user access to the system
  arp                  Set a static ARP entry
  bridge               Global Bridge table configuration commands
  class-map            This command create class map and enter class map
                       configuration mode.
                       Use no form in order to delete the class.
  clock                Manage the system clock
  crypto               Global cryptographic features configuration subcommands
  do                   execute an EXEC-level command
  dot1x                Global Configuration Commands for 802.1x
  enable               Modify enable password parameters.
  end                  Exit from configure mode
  exit                 Exit from configure mode
  file-system          File system configuration command
  gvrp                 Global GVRP configuration commands
  help                 Description of the interactive help system
  hostname             Set system's network name
  interface            Select an interface to configure
  ip                   IP configuration
  lacp                 Global IEEE 802.3 link aggregation commands
  line                 To identify a specific line for configuration
  lldp                 Configure LLDP protocol
  logging              Configure message logging facilities.
  mac                  MAC access lists commands
  management           IP management
  no                   Negate command
  policy-map           This command create policy map and enter policy map
                       configuration mode. Use no form to delete the policy
  port                 switch ports configuration
  priority-queue       Set priority queue parameters
  qos                  Enable/Disable QoS on the device and enter the QoS
                       mode (advance/basic/service).
  radius-server        Modify RADIUS parameters
  rmon                 Remote Monitoring (RMON) configuration subcommand
  service              Service commands.
  snmp-server          SNMP and system commands.
  sntp                 Global Simple Network Time Protocol (SNTP) 
                       configuration subcommands
  spanning-tree        Configure Spanning Tree Subsystem
  tacacs-server        TACACS server command
  username             Establish User Name Authentication.
  vlan                 Vlan commands
  wrr-queue            Configure queue drop mechanism on egress port.

As you can see, everything looks VERY Cisco. For those familiar with setting up Cisco switches, finding your way around this console mode in the SRW2024 will be fairly easy – with only a few variations on the “Cisco method” of configuration.

So, enjoy your no longer useless serial, SSH, and telnet configuration of your SRW2024 switch and get the most out of this excellent piece of hardware!

EDIT: Will add to this as I use the switch more via CLI.

Basic Reference Guide

Configure VLAN

1) Create the vlan in the database:
# configure
(config)# vlan database
(config-vlan)# vlan 993 (enter your VLAN ID of choice here)
(config-vlan)# end

2) Add a switchport to the VLAN:
# configure
(config)# interface ethernet g1
(config-if)# switchport access vlan 993
(config-if)# end

tagged (Repeat for each allowed vlan)
# configure
(config)# interface ethernet g1
(config-if)# switchport general allowed vlan add 993
(config-if)# end

Show Port Config:

# show interfaces configuration ethernet g1
                                               Flow    Admin     Back   Mdix
Port     Type         Duplex  Speed  Neg      control  State   Pressure Mode
-------- ------------ ------  -----  -------- -------  -----   -------- ----
g1       1G-Copper    Full    1000   Enabled  Off      Up      Disabled Auto

Show port configuration

# show interfaces switchport ethernet g1 
Port : g1
Port Mode: General
Gvrp Status: disabled
Ingress Filtering: true
Acceptable Frame Type: admitOnlyVlanTagged
Ingress UnTagged VLAN ( NATIVE ): 1
Protected: Disabled
Port is member in: 
Vlan               Name               Egress rule Port Membership Type 
---- -------------------------------- ----------- -------------------- 
 1                  1                  Untagged          System        
 10                LAN                  Tagged           Static        
192                wifi                 Tagged           Static        
203                DMZ                  Tagged           Static        
Forbidden VLANS: 
Vlan               Name               
---- -------------------------------- 
Classification rules: 

Show vlan config

# show vlan 
Vlan       Name                   Ports                Type     Authorization 
---- ----------------- --------------------------- ------------ ------------- 
 1           1               g(1-4),ch(1-8)           other       Required    
 10         LAN               g(1-4,13-24)          permanent     Required    
192        wifi                  g(1,12)            permanent     Required    
203         DMZ                  g(1-11)            permanent     Required    

  21 Responses to “Real console on Linksys SRW2024 switch”

  1. thank you Very Muchhhhhh, this is gonna be very useful for me.

  2. Wow! Thats really cool and for me ultimatly helpful to administer that beast in my Cisco environment. Thanks alot!

  3. if you want to go into the mcli menu the password is mcliadmin, debug password is ‘admindebug’ (thanks, ReidMeFirst!)

    Dell PowerConnect switches use mcli password ‘mcli’, and debug password ‘debug’.

  4. SRW224G4 is on my desk and i’m having problems trying to change its system mode to layer 3, there is no EDIT option when in the menu

  5. Very nice, although there are a few infuriatingly unciscoish kinks.
    For example, the aggregation of configuration options over several ports is somewhat erratic.

    Also, this beast absolutely refuses to put VLAN 1 dot1q encapsulated on a trunk, and my hopes to get around that strange limitation through the command line were disappointed: the command “switchport trunk allowed vlan add 1” is rejected with the strange message: “VLAN 1: VLAN was not created by user.”

    Oh well. At least I get an explicit error message instead of strange GUI malfunctions. And even just being able to see the entire configuration as a text file is enormously helpful. Many thanks for that!

  6. Trying to lock down a bunch of those switches here – any idea on how to disable the telnet server completely? Don’t use it, and don’t want it showing up on a security audit..

  7. Thanks Steven – I tried creating an ACL denying TCP to port 23 @ ip of the switch but that seems to lock the switch up completely.. Oh well – these things are 5+ years old – need to think about replacing them..


  8. What firmware version are you on there? I’m looking to configure LLDP on my SRW2024 and I don’t have the option for LLDP under the configure like you do.

    • Jason: If you want to send them my way, I’d be MORE than happy to ‘dispose’ of them for you 😉

      Jeff: My switch shows:

      Model Name SRW2024
      Hardware Version 00.03.00
      Boot Version 1.0.1
      Firmware Version 1.2.2b

  9. Is there any way or command
    to reset linksys srw2024 to factory reset from console command line

    • Yes!

      1.) Connect the Linksys serial cable that came with the switch between the switch serial port and a nearby computer serial port. For Windows, use Hyper Terminal or VanDyke CRT/SecureCRT. For Linux, use minicom. For other unix types, try cu/tip.

      2.) The switch default serial port configuration is set to 38400 baud, 8 data bits, no parity, 1 stop bit, no flow control.

      3.) Confirm that you have a valid serial connection by pressing enter a few times. You should be prompted with a login screen.

      4.) If you have successfully established serial communication with the switch, reboot the switch by disconnecting and then reconnecting it’s power cable.

      5.) The switch will begin it’s POST procedure as displayed in the serial terminal emulator. Be ready at the keyboard to press the Esc key.

      6.) Watch for the following line to appear during the boot sequence. When you see it, immediately press the Esc key;

      “Autoboot in 2 seconds – press RETURN or Esc. to abort and enter prom.”

      IMPORTANT: Do not hold down the Esc or Enter/Return key during the boot sequence. Only press the Esc key when prompted.

      7.) If you successfully interrupted the boot sequence, you will be prompted with a Startup Menu. Option number 3 will be the “Password Recovery Procedure”. Select this option.

      8.) The terminal will display, “Current password will be ignored!”. Press enter to continue with the boot sequence.

      9.) The default account “admin/” will be enabled and you can log into the switch using this account. From here, you can set new accounts without having lost the switch configuration.

      10.) After you have configured new accounts and documented the passwords, reboot the switch and log in normally to confirm that passwords have been recovered successfully.

      11.) You are done. Disconnect and store the serial cable in a safe place for future use. Be sure to document a login username and password somewhere safe for future reference.

      From here

  10. Thank you for these valuable infos.
    I have a question: Is it possible to make a sequence of command using a batch file?


  11. I’m trying to configure LACP group of 4 ports and cannot find a command reference.. Has anyone done it and care to help. I know a little about networking however I’m not guru, step-by-step would be greatly apprecaited 🙂

  12. any one please give ne the command for mac-address table ?

  13. Is there a way to determine the serial number?

    show version

    Does not seem to reveal the system serial like the full blown Cisco switch command.

 Leave a Reply

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>