Dell Force10 Z9000 Reference Manual Download | Manualshive

Page: 1157 / 1483

background image

37

Private VLAN (PVLAN)

The private VLAN (PVLAN) feature of the Dell Force10 operating software (FTOS) is supported on the C-Series, S-Series,

Z-Series, or S4810 platforms.
Private VLANs extend the FTOS security suite by providing Layer 2 isolation between ports within the same private
VLAN. A private VLAN partitions a traditional VLAN into subdomains identified by a primary and secondary VLAN pair.
The FTOS private VLAN implementation is based on RFC 3069.
For more information, refer to the following commands. The command output is augmented in FTOS version 7.8.1.0 at
later to provide PVLAN data:

•

show arp

•

show vlan

Private VLAN Concepts

Primary VLAN:
The primary VLAN is the base VLAN and can have multiple secondary VLANs. There are two types of secondary VLAN
— community VLAN and isolated VLAN:

•

A primary VLAN can have any number of community VLANs and isolated VLANs.

•

Private VLANs block all traffic to isolated ports except traffic from promiscuous ports. Traffic received from an

isolated port is forwarded only to promiscuous ports or trunk ports.

Community VLAN:
A community VLAN is a secondary VLAN of the primary VLAN:

•

Ports in a community VLAN can talk to each other. Also, all ports in a community VLAN can talk to all

promiscuous ports in the primary VLAN and vice-versa.

•

Devices on a community VLAN can communicate with each other using member ports, while devices in an

isolated VLAN cannot.

Isolated VLAN:
An isolated VLAN is a secondary VLAN of the primary VLAN:

•

Ports in an isolated VLAN cannot talk to each other. Servers would be mostly connected to isolated VLAN ports.

•

Isolated ports can talk to promiscuous ports in the primary VLAN, and vice-versa.

Port Types:

•

Community port

: A community port is a port that belongs to a community VLAN and is allowed to communicate

with other ports in the same community VLAN and with promiscuous ports.

•

Isolated port

: An isolated port is a port that, in Layer 2, can only communicate with promiscuous ports that are in

the same PVLAN.

•

Promiscuous port

: A promiscuous port is a port that is allowed to communicate with any other port type.

1157

«
...
1155
1156
1157
1158
1159
...
»

Summary of Contents for Force10 Z9000

Page 1: ...FTOS Command Line Reference Guide for the Z9000 System FTOS 9 1 0 0 ...

Page 2: ... AMD Sempron are trademarks of Advanced Micro Devices Inc Microsoft Windows Windows Server Internet Explorer MS DOS Windows Vista and Active Directory are either trademarks or registered trademarks of Microsoft Corporation in the United States and or other countries Red Hat and Red Hat Enterprise Linux are registered trademarks of Red Hat Inc in the United States and or other countries Novell and ...

Page 3: ...8 Filtering show Commands 49 Command Modes 50 Determining Chassis Mode 56 3 File Management 57 boot config 57 boot host 59 boot network 59 boot system 60 boot system S4810 and Z9000 61 boot system gateway 62 cd 63 change bootflash image 63 copy 64 copy Streamline Upgrade 66 copy running config startup config 67 delete 67 dir 68 download alt boot image 69 download alt full image 69 download alt sys...

Page 4: ...de S Series management unit and Z Series 90 upgrade fpga image 92 restore fpga image 93 upgrade fpga image 94 4 Control and Monitoring 97 asf mode 97 audible cut off 98 banner exec 98 banner login 99 banner motd 100 cam audit linecard 101 clear alarms 102 clear command history 102 clear line 103 configure 103 debug cpu traffic stats 104 debug ftpserver 105 disable 105 do 106 enable 107 enable opti...

Page 5: ... 131 rpm slot location led 132 send 133 service timestamps 134 show alarms 135 show chassis 136 show command history 137 show command tree 139 show console lp 140 show cpu traffic stats 140 show debugging 142 show environment C Series and E Series 142 show environment S Series 144 show inventory C Series and E Series 146 show inventory S Series and Z Series 148 show linecard 150 show linecard boot...

Page 6: ...al xml 188 traceroute 189 undebug all 191 upload trace log 191 virtual ip 192 write 193 5 802 1X 195 debug dot1x 196 dot1x auth fail vlan 196 dot1x auth server 197 dot1x auth type mab only 197 dot1x authentication Configuration 198 dot1x authentication Interface 199 dot1x guest vlan 199 dot1x host mode 200 dot1x mac auth bypass 201 dot1x max eap req 201 dot1x max supplicants 202 dot1x port control...

Page 7: ... 220 permit 221 resequence access list 222 resequence prefix list ipv4 223 seq 224 Extended IP ACL Commands 226 deny 226 deny arp 228 deny ether type 230 deny icmp 232 deny tcp 235 deny udp 238 ip access list extended 240 permit 241 permit arp 243 permit ether type 245 permit icmp 247 permit tcp 248 permit udp 251 resequence access list 254 resequence prefix list ipv4 255 seq arp 255 seq ether typ...

Page 8: ...ow ip prefix list detail 281 show ip prefix list summary 282 Route Map Commands 283 continue 283 description 284 match as path 284 match community 285 match interface 286 match ip address 287 match ip next hop 287 match ip route source 288 match metric 289 match origin 290 match route type 290 match tag 291 route map 292 set as path 293 set automatic tag 294 set comm list delete 294 set community ...

Page 9: ... Bidirectional Forwarding Detection BFD 313 bfd all neighbors 313 bfd disable 314 bfd enable Configuration 315 bfd enable Interface 315 bfd interval 316 bfd neighbor 317 bfd protocol liveness 317 clear bfd counters 318 debug bfd 319 ip route bfd 320 isis bfd all neighbors 321 neighbor bfd 322 neighbor bfd disable 323 show bfd counters 324 show bfd neighbors 325 vrrp bfd 327 8 Border Gateway Protoc...

Page 10: ...p log neighbor changes 343 bgp non deterministic med 343 bgp recursive bgp next hop 344 bgp regex eval optz disable 344 bgp router id 345 bgp soft reconfig backup 346 capture bgp pdu neighbor 347 capture bgp pdu max buffer size 347 clear ip bgp 348 clear ip bgp dampening 349 clear ip bgp flap statistics 350 clear ip bgp peer group 351 debug ip bgp 351 debug ip bgp dampening 352 debug ip bgp events...

Page 11: ...group passive 372 neighbor remote as 372 neighbor remove private as 373 neighbor route map 374 neighbor route reflector client 375 neighbor send community 375 neighbor shutdown 376 neighbor soft reconfiguration inbound 377 neighbor subnet 378 neighbor timers 378 neighbor update source 379 neighbor weight 380 network 380 network backdoor 381 redistribute 382 redistribute isis 383 redistribute ospf ...

Page 12: ...lticast 420 clear ip bgp dampening 420 clear ip bgp flap statistics 421 debug ip bgp dampening 422 debug ip bgp peer group updates 422 debug ip bgp updates 423 distance bgp 423 neighbor activate 424 neighbor advertisement interval 425 neighbor default originate 425 neighbor distribute list 426 neighbor filter list 427 neighbor maximum prefix 427 neighbor next hop self 428 neighbor remove private a...

Page 13: ... extcommunity list 452 show running config extcommunity list 453 IPv6 BGP Commands 454 address family 454 aggregate address 454 bgp always compare med 455 bgp bestpath as path ignore 456 bgp bestpath med confed 456 bgp bestpath med missing as best 457 bgp client to client reflection 457 bgp cluster id 458 bgp confederation identifier 458 bgp confederation peers 459 bgp dampening 459 bgp default lo...

Page 14: ...v6 prefix list 477 max paths 478 maximum paths 479 neighbor activate 479 neighbor advertisement interval 480 neighbor allowas in 480 neighbor default originate 481 neighbor description 482 neighbor distribute list 482 neighbor ebgp multihop 483 neighbor fall over 484 neighbor filter list 484 neighbor maximum prefix 485 neighbor X X X X password 486 neighbor next hop self 486 neighbor peer group as...

Page 15: ...icast flap statistics 505 show ip bgp ipv6 unicast inconsistent as 506 show ip bgp ipv6 unicast neighbors 506 show ip bgp ipv6 unicast peer group 507 show ip bgp ipv6 unicast summary 508 show ip bgp next hop 509 show ip bgp paths 509 show ip bgp paths as path 510 show ip bgp paths community 510 show ip bgp paths extcommunity 511 show ip bgp regexp 511 show ipv6 prefix list 512 timers bgp 512 IPv6 ...

Page 16: ...p bgp ipv6 unicast dampened paths 530 show ip bgp ipv6 unicast detail 530 show ip bgp ipv6 unicast filter list 531 show ip bgp ipv6 unicast flap statistics 532 show ip bgp ipv6 unicast inconsistent as 533 show ip bgp ipv6 unicast neighbors 536 show ip bgp ipv6 unicast peer group 537 show ip bgp ipv6 unicast summary 537 show ipv6 mbgproutes 539 9 Bare Metal Provisioning BMP 541 reload conditional n...

Page 17: ...pdump 570 Offline Diagnostic Commands 571 diag stack unit 571 offline stack unit 572 online stack unit 573 Buffer Tuning Commands 573 buffer Buffer Profile 574 buffer Configuration 575 buffer profile Configuration 576 show buffer profile stack unit 577 show buffer profile 577 show buffer profile interface 578 Hardware Commands 579 clear hardware stack unit 579 clear hardware system flow 580 hardwa...

Page 18: ...oping 600 Object Missing 601 ip dhcp snooping 601 ip dhcp snooping binding 601 ip dhcp snooping database 602 ip dhcp snooping database renew 603 ip dhcp snooping trust 603 ip dhcp source address validation 603 ip dhcp snooping vlan 604 ip dhcp relay information option 605 ip dhcp relay information agent remote id 605 ip dhcp snooping verify mac address 606 show ip dhcp snooping 606 14 Equal Cost M...

Page 19: ...cs 626 debug fip snooping 626 feature fip snooping 627 fip snooping enable 627 fip snooping fc map 628 fip snooping port mode fcf 628 fip snooping port mode fcoe trusted 629 show fip snooping config 629 show fip snooping enode 630 show fip snooping fcf 630 show fip snooping sessions 631 show fip snooping statistics 632 show fip snooping system 635 show fip snooping vlan 636 show fips status 636 17...

Page 20: ...63 20 ICMP Message Types 665 21 Internet Group Management Protocol IGMP 667 IGMP Commands 667 clear ip igmp groups 667 debug ip igmp 668 ip igmp access group 669 ip igmp group join limit 670 ip igmp immediate leave 670 ip igmp last member query interval 671 ip igmp querier timeout 672 ip igmp query interval 672 ip igmp query max resp time 673 ip igmp ssm map 674 ip igmp static group 674 ip igmp ve...

Page 21: ...nagement 693 duplex 10 100 Interfaces 694 ecmp group 695 flowcontrol 696 interface 699 interface loopback 700 interface ManagementEthernet 700 interface null 701 interface range 702 interface range macro define 705 interface range macro name 706 interface vlan 707 ipg Gigabit Ethernet interfaces 708 ipg 10 Gigabit Ethernet interfaces 708 keepalive 709 lfs enable EtherScale 710 link debounce timer ...

Page 22: ... interface 748 stack unit portmode 749 switchport 750 wanport 751 Port Channel Commands 752 channel member 752 group 754 interface port channel 755 minimum links 756 port channel failover group 757 show config 757 show interfaces port channel 758 show port channel flow 761 Time Domain Reflectometer TDR 763 tdr cable test 763 show tdr 764 UDP Broadcast 765 debug ip udp helper 765 ip udp broadcast a...

Page 23: ...op count disable 789 ip host 789 ip max frag count 790 ip mtu 791 ip name server 792 ip proxy arp 793 ip redirects 793 ip route 794 ip source route 796 ip unreachables 796 ip vlan flooding 797 load balance C Series S Series Z Series 797 load balance E Series 799 load balance hg 800 management route 802 show arp 803 show arp retries 806 show hosts 806 show ip cam linecard 808 show ip cam stack unit...

Page 24: ...9 ipv6 name server 840 ipv6 nd dad attempts 841 ipv6 nd prefix 841 ipv6 route 842 ipv6 unicast routing 844 show ipv6 cam linecard 845 show ipv6 cam stack unit 847 show ipv6 control plane icmp 848 show ipv6 fib linecard 848 show ipv6 fib stack unit 849 show ipv6 flowlabel zero 850 show ipv6 interface 850 show ipv6 mld_host 853 25 Intermediate System to Intermediate System IS IS 855 adjacency check ...

Page 25: ...estart restart wait 871 hello padding 872 hostname dynamic 872 ignore lsp errors 873 ip router isis 873 ipv6 router isis 874 isis circuit type 875 isis csnp interval 875 isis hello interval 876 isis hello multiplier 877 isis hello padding 878 isis ipv6 metric 878 isis metric 879 isis network point to point 880 isis password 880 isis priority 881 is type 882 log adjacency changes 882 lsp gen interv...

Page 26: ...rity 910 port channel mode 911 port channel protocol lacp 912 show lacp 912 27 Layer 2 915 MAC Addressing Commands 915 clear mac address table 915 mac accounting destination 916 mac address table aging time 917 mac address table static 918 mac address table station move threshold 919 mac address table station move time interval 920 mac address table station move refresh arp 921 mac cam fib partiti...

Page 27: ...2 show vlan 943 tagged 946 track ip 947 untagged 948 Far End Failure Detection FEFD 949 debug fefd 949 fefd 950 fefd global 951 fefd reset 952 show fefd 953 28 Link Layer Discovery Protocol LLDP 955 LLPD Commands 955 advertise dot1 tlv 955 advertise dot3 tlv 956 advertise management tlv 957 advertise management tlv Interface 958 clear lldp counters 958 clear lldp neighbors 959 debug lldp interface...

Page 28: ...overy Protocol MSDP 977 clear ip msdp peer 977 clear ip msdp sa cache 977 clear ip msdp statistic 978 debug ip msdp 979 ip msdp cache rejected sa 979 ip msdp default peer 980 ip msdp log adjacency changes 981 ip msdp mesh group 981 ip msdp originator id 982 ip msdp peer 983 ip msdp redistribute 984 ip msdp sa filter 985 ip msdp sa limit 985 ip msdp shutdown 986 ip multicast msdp 986 show ip msdp 9...

Page 29: ... 1012 mtrace 1013 queue backplane multicast 1014 restrict flooding 1015 show ip mroute 1015 show ip rpf 1018 show queue backplane multicast 1018 IPv6 Multicast Commands 1019 clear ipv6 mroute 1019 ipv6 multicast limit 1020 ipv6 multicast routing 1020 ip multicast limit 1021 show ipv6 mroute 1021 show ipv6 mroute mld 1023 show ipv6 mroute summary 1024 32 Neighbor Discovery Protocol NDP 1027 clear i...

Page 30: ...ibute list in 1048 distribute list out 1049 enable inverse mask 1050 fast convergence 1051 flood 2328 1051 graceful restart grace period 1052 graceful restart helper reject 1053 graceful restart mode 1053 graceful restart role 1054 ip ospf auth change wait time 1054 ip ospf authentication key 1055 ip ospf cost 1055 ip ospf dead interval 1056 ip ospf hello interval 1057 ip ospf message digest key 1...

Page 31: ... ospf database opaque link 1085 show ip ospf database router 1086 show ip ospf database summary 1088 show ip ospf interface 1091 show ip ospf neighbor 1093 show ip ospf routes 1094 show ip ospf statistics 1095 show ip ospf timers rate limit 1098 show ip ospf topology 1099 show ip ospf virtual links 1099 summary address 1101 timers spf 1102 timers throttle lsa all 1102 timers throttle lsa arrival 1...

Page 32: ...parse Mode PIM SM 1129 IPv4 PIM Sparse Mode Commands 1129 clear ip pim rp mapping 1129 clear ip pim tib 1129 debug ip pim 1130 ip pim bsr border 1131 ip pim bsr candidate 1132 ip pim dr priority 1133 ip pim join filter 1133 ip pim neighbor filter 1134 ip pim query interval 1135 ip pim register filter 1135 ip pim rp address 1136 ip pim rp candidate 1137 ip pim sparse mode 1138 ip pim sparse mode sg...

Page 33: ... mapping 1164 switchport mode private vlan 1164 38 Per VLAN Spanning Tree Plus PVST 1167 description 1167 disable 1168 extend system id 1168 protocol spanning tree pvst 1169 show spanning tree pvst 1170 spanning tree pvst 1173 spanning tree pvst err disable 1175 tc flush standard 1176 vlan bridge priority 1177 vlan forward delay 1177 vlan hello time 1178 vlan max age 1179 39 Quality of Service QoS...

Page 34: ...input 1202 policy map output 1203 qos policy input 1204 qos policy output 1205 queue backplane ignore backpressure 1206 queue egress 1206 queue ingress 1207 rate limit 1208 rate police 1209 rate shape 1210 service policy input 1211 service policy output 1212 service queue 1213 set 1214 show cam layer2 qos 1214 show cam layer3 qos 1216 show qos class map 1218 show qos policy map 1218 show qos polic...

Page 35: ... receive version 1243 ip rip send version 1244 ip split horizon 1244 maximum paths 1245 neighbor 1246 network 1246 offset list 1247 output delay 1248 passive interface 1249 redistribute 1250 redistribute isis 1251 redistribute ospf 1251 router rip 1252 show config 1253 show ip rip database 1254 show running config rip 1255 timers basic 1256 version 1257 41 Remote Monitoring RMON 1259 rmon alarm 12...

Page 36: ...tp 1281 tc flush standard 1283 43 Security 1285 AAA Accounting Commands 1285 aaa accounting 1285 aaa accounting suppress 1287 accounting 1287 show accounting 1288 Authorization and Privilege Commands 1289 authorization 1289 aaa authorization commands 1289 aaa authorization config commands 1290 aaa authorization exec 1291 privilege level CONFIGURATION mode 1291 privilege level LINE mode 1292 Authen...

Page 37: ...r host 1313 tacacs server key 1314 Port Authentication 802 1X Commands 1315 dot1x authentication Configuration 1315 dot1x authentication Interface 1316 dot1x auth fail vlan 1316 dot1x auth server 1317 dot1x guest vlan 1317 dot1x mac auth bypass 1318 dot1x max eap req 1318 dot1x port control 1319 dot1x quiet period 1319 dot1x reauthentication 1320 dot1x reauth max 1320 dot1x server timeout 1321 dot...

Page 38: ...ng 1339 ip dhcp snooping database 1340 ip dhcp snooping database renew 1340 ip dhcp snooping trust 1341 ip dhcp source address validation 1341 ip dhcp snooping vlan 1342 show ip dhcp snooping 1342 44 Service Provider Bridging 1343 debug protocol tunnel 1343 protocol tunnel 1344 protocol tunnel destination mac 1346 protocol tunnel enable 1346 protocol tunnel rate limit 1347 show protocol tunnel 134...

Page 39: ...mp server group 1370 snmp server host 1371 snmp server location 1374 snmp server packetsize 1374 snmp server trap source 1375 snmp server user 1376 snmp server view 1378 snmp trap link status 1379 Syslog Commands 1379 clear logging 1380 default logging buffered 1380 default logging console 1381 default logging monitor 1381 default logging trap 1382 logging 1382 logging buffered 1383 logging consol...

Page 40: ...tion 1408 storm control unknown unicast Interface 1409 49 Spanning Tree Protocol STP 1411 bridge priority 1411 bpdu destination mac address 1412 debug spanning tree 1412 description 1413 disable 1414 forward delay 1414 hello time 1415 max age 1416 protocol spanning tree 1416 show config 1417 show spanning tree 0 1418 spanning tree 1421 50 System Time and Date 1425 calendar set 1425 clock read cale...

Page 41: ...49 stack unit stack group 1450 vlan stack access 1450 vlan stack compatible 1451 vlan stack dot1p mapping 1452 vlan stack protocol type 1452 vlan stack trunk 1454 52 Virtual Link Trunking VLT 1457 back up destination 1457 clear vlt statistics 1458 delay restore 1459 lacp ungroup member independent 1459 peer link port channel 1460 show vlt backup link 1461 show vlt brief 1461 show vlt counter 1462 ...

Page 42: ... interval 1471 authentication type 1471 clear counters vrrp 1472 debug vrrp 1472 description 1474 disable 1474 hold time 1475 preempt 1475 priority 1476 show config 1476 show vrrp 1477 track 1480 virtual address 1481 vrrp delay minimum 1482 vrrp delay reload 1482 vrrp group 1483 ...

Page 43: ...ith usage information and sample output NOTE For more information about when to use the CLI commands refer to the FTOS Configuration Guide for your system Audience This book is intended for system administrators who are responsible for configuring or maintaining networks This guide assumes that you are knowledgeable in Layer 2 and Layer 3 networking technologies Conventions This book uses the foll...

Page 44: ... all of the options Information Icons This book uses the following information symbols NOTE The Note icon signals important operational information CAUTION The Caution icon signals information about situations that could result in equipment damage or loss of data WARNING The Warning icon signals information about hardware handling that could result in injury 44 ...

Page 45: ... 53 Trying 172 31 1 53 Connected to 172 31 1 53 Escape character is Login username Password FTOS After you log in to the switch the prompt provides you with the current command level information For example Prompt CLI Command Mode FTOS EXEC FTOS EXEC Privilege FTOS conf CONFIGURATION NOTE For a list of all the command mode prompts refer to the Command Modes section Multiple Configuration Users Whe...

Page 46: ...When another user enters CONFIGURATION mode FTOS sends a message similar to the following Warning User admin on line vty2 172 16 1 210 is in configuration In this case the user is admin on vty2 46 ...

Page 47: ...unity list entry domain list Domain name to complete unqualified host name domain lookup Enable IP Domain Name System hostname translation domain name Define the default domain name fib FIB configuration commands ftp FTP configuration commands host Add an entry to the ip hostname table max frag count Max fragmented packets allowed in IP re assembly multicast routing Enable IP multicast forwarding ...

Page 48: ...s the cursor forward one character CNTL I Completes a keyword CNTL K Deletes all the characters from the cursor to the end of the command line CNTL L Re enters the previous command CNTL N Returns to the more recent commands in the history buffer after recalling commands with Ctrl P or the up Arrow key CNTL P Recalls commands beginning with the last command CNTL R Re enters the previous command CNT...

Page 49: ...or example the commands show run grep Ethernet returns a search result with instances containing a capitalized Ethernet such as interface GigabitEthernet 0 0 show run grep ethernet does not return the above search result because it only searches for instances containing a noncapitalized ethernet show run grep Ethernet ignore case returns instances containing both Ethernet and ethernet no more does...

Page 50: ...clear address resolution protocol ARP entries and IP addresses In addition you can access CONFIGURATION mode to configure interfaces routes and protocols on the switch While you are logged in to EXEC Privilege mode the prompt is displayed CONFIGURATION Mode In EXEC Privilege mode use the configure command to enter CONFIGURATION mode and configure routing protocols and access interfaces To enter CO...

Page 51: ...rnet interface followed by slot port information FTOS conf if range Designated interface range used for bulk configuration LINE Mode You must use LINE mode to configure the console or virtual terminal parameters To enter LINE mode 1 Verify that you are logged in to CONFIGURATION mode 2 Enter the line command Include the keywords console or vty and their line number available on the switch The prom...

Page 52: ...de 1 Verify that you are logged in to CONFIGURATION mode 2 Use the ip access list standard or ip access list extended command Include a name for the ACL The prompt changes to include conf std nacl or conf ext nacl You can return to CONFIGURATION mode by using the exit command ROUTE MAP Mode You must use ROUTE MAP mode to configure a route map To enter ROUTE MAP mode 1 Verify that you are logged in...

Page 53: ...munity list The prompt changes to include config community list You can return to CONFIGURATION mode by using the exit command REDIRECT LIST Mode You must use REDIRECT LIST mode to configure a Redirect list on the E Series For more information refer to the E Series FTOS Command Line Reference Guide Policy based Routing PBR To enter REDIRECT LIST mode 1 Verify that you are logged in to CONFIGURATIO...

Page 54: ...nd You can return to CONFIGURATION mode by using the exit command MULTIPLE SPANNING TREE MSTP Mode You must use MULTIPLE SPANNING TREE mode to enable and configure MSTP For more information refer to Multiple Spanning Tree Protocol MSTP To enter MULTIPLE SPANNING TREE mode 1 Verify that you are logged in to CONFIGURATION mode 2 Enter the protocol spanning tree mstp command You can return to CONFIGU...

Page 55: ...ries For more information refer to the Intermediate System to Intermediate System IS IS chapter in the E Series FTOS Command Line Reference Guide To enter ROUTER ISIS mode 1 Verify that you are logged in to CONFIGURATION mode 2 Enter the router isis tag command The prompt changes to include conf router_isis You can switch to INTERFACE mode by using the interface command or you can switch to ROUTER...

Page 56: ...f the instance you want to create or configure The prompt changes to include conf of instance of id You can return to the CONFIGURATION mode by entering the exit command Determining Chassis Mode Chassis mode in FTOS determines which hardware is being supported in an E Series chassis Chassis mode is programmed into an electrically erasable programmable read only memory EEPROM on the backplane of th...

Page 57: ...rds remote first to attempt to load the boot configuration files from a remote location rpm0 Enter the keywords rpm0 first to specify the local boot configuration file for route processor module RPM 0 rpm1 Enter the keywords rpm1 first to specify the local boot configuration file for RPM 1 file url Enter the location information For a file on the internal Flash enter flash followed by the filename...

Page 58: ...AL CONFIG FILE variable does not exist PRIMARY HOST CONFIG FILE variable does not exist SECONDARY HOST CONFIG FILE variable does not exist PRIMARY NETWORK CONFIG FILE variable does not exist SECONDARY NETWORK CONFIG FILE variable does not exist CURRENT IMAGE FILE flash FTOS EF 8 2 1 0 bin CURRENT CONFIG FILE 1 flash startup config CURRENT CONFIG FILE 2 variable does not exist CONFIG LOAD PREFERENC...

Page 59: ...NFIGURATION Command History Version 7 5 1 0 Introduced on C Series E Series Original command Usage Information To display these changes in the show bootvar command output save the running configuration to the startup configuration using the copy command Related Commands show bootvar displays the variable settings for the E Series boot parameters boot network Set the location of the configuration f...

Page 60: ...Parameters rpm0 Enter the keyword rpm0 to configure boot parameters for RPM0 rpm1 Enter the keyword rpm1 to configure boot parameters for RPM1 default After entering rpm0 or rpm1 enter the keyword default to specify the parameters used if those specified by primary or secondary fail The default location should always be the internal flash device flash so that you can be sure that a verified image ...

Page 61: ...to access the FTOS image used to boot the system Z Series S4810 Syntax This command was deprecated in FTOS 8 3 12 0 boot system gateway ip address stack unit 0 11 0 7 all default primary system A B tftp secondary To return to the default boot sequence use the no boot system command Parameters gateway Enter the IP address of the default next hop gateway for the management subnet stack unit Enter th...

Page 62: ...ess of the default next hop gateway for the management subnet boot system gateway Specify the IP address of the default next hop gateway for the management subnet C Series E Series Syntax boot system gateway ip address Parameters ip address Enter an IP address in dotted decimal format Command Modes CONFIGURATION Command History Version 7 5 1 0 Introduced on C Series E Series Original command Usage...

Page 63: ... image from which to boot C Series E Series Syntax change bootflash image cp linecard linecard slot rp Parameters cp Enter the keyword cp to change the bootflash image on the control processor on the RPM linecard linecard slot Enter the keyword linecard followed by the slot number to change the bootflash image on a specific line card The C Series range is 0 7 The E Series range is 0 to 13 on the E...

Page 64: ...lowed by the filename To copy a file on an FTP server enter ftp user password hostip filepath To copy a file from the internal FLASH on RPM0 enter rpm0flash filepath To copy a file from the external FLASH on RPM0 enter rpm0slot0 filepath To copy a file from the internal FLASH on RPM1 enter rpm1flash filepath To copy a file from the external FLASH on RPM1 enter rpm1slot0 filepath To copy the runnin...

Page 65: ...list of approved universal serial bus USB vendors refer to the FTOS Release Notes When copying a file to a remote location for example using Secure Copy SCP enter only the keywords and FTOS prompts you need for the rest of the information For example when using SCP you can enter copy running config scp where running config is the source and the target is specified in the ensuing prompts FTOS promp...

Page 66: ...mmands cd changes the working directory copy Streamline Upgrade Copy a system image to a local file and update the boot profile C Series E Series Syntax copy source url target url boot image synchronize rpm external Parameters Enter the following location keywords and information source url Enter the source file in url format The source file is a valid Dell Force10 release image Image validation i...

Page 67: ...rtup config Copy running configuration to the startup configuration C Series E Series Syntax copy running config startup config duplicate Command Modes EXEC Privilege Command History Version 7 5 1 0 Introduced on the C Series Version 6 3 1 0 Introduced Usage Information This command is useful for quickly making a changed configuration on one chassis available on external flash in order to move it ...

Page 68: ...e system The default is the current directory C Series E Series S Series Syntax dir filename directory name Parameters filename directory name OPTIONAL Enter one of the following For a file or directory on the internal Flash enter flash followed by the filename or directory name For a file or directory on the external Flash enter slot0 followed by the filename or directory name Command Modes EXEC ...

Page 69: ...tes Related Commands upgrade E Series version upgrades the bootflash or boot selector versions upgrade C Series version upgrades the bootflash or boot selector versions download alt full image Download an alternate FTOS image to the chassis E Series Syntax download alt full image file url Command Modes EXEC Privilege Command History Version 7 7 1 0 Removed from E Series Version 6 5 1 0 Introduced ...

Page 70: ...image upgrades the bootflash or boot selector versions format C Series and E Series Erase all existing files and reformat a file system After the file system is formatted files cannot be restored C Series E Series Syntax format filesystem dosFs1 0 dosFs2 0 Parameters filesystem Enter one of the following To reformat the internal Flash enter flash To reformat the external Flash enter slot0 dosFs1 0...

Page 71: ...ase all existing files and reformat the filesystem in the internal flash memory After the filesystem is formatted files cannot be restored S Series Syntax format flash Defaults flash memory Command Modes EXEC Privilege Command History Version 7 8 1 0 Introduced on the S Series Usage Information You must include the colon when entering this command After reformatting is complete three empty directo...

Page 72: ...mory Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Usage Information You must include the colon when entering this command CAUTION This command deletes all files including the startup configuration file So after executing this command consider saving the running config as the startup config use the write memory command or copy run start command fsck flash S ...

Page 73: ...write memory command or copy run start command Related Commands copy copy one file to another location show file Display contents of a text file in the local file system show file systems Display information about the file systems on the system pwd Display the current working directory C Series E Series Syntax pwd Defaults Crash kernel files are uploaded to flash by default Command Modes EXEC Priv...

Page 74: ...ies S4810 Syntax show boot system all linecard slot all rpm Parameters all Enter the keyword all to display boot image information for all linecards and RPMs linecard Enter the keyword linecard to display boot image information for the specified line card s on the system rpm Enter the keyword rpm to display boot image information for all RPMs on the system Defaults none Command Modes EXEC EXEC Pri...

Page 75: ...eload mode normal or Jumpstart Version 8 3 11 1 Introduced on the Z9000 Version 7 5 1 0 Introduced on the C Series E Series Original command Example FTOS show bootvar PRIMARY IMAGE FILE ftp box password 10 31 1 205 home 5 3 1 5 3 1 0 FTOS ED RPM1 5 3 1 0 bin SECONDARY IMAGE FILE variable does not exist DEFAULT IMAGE FILE flash FTOS ED 5 3 1 0 bin LOCAL CONFIG FILE variable does not exist PRIMARY H...

Page 76: ...filesystem Enter one of the following For internal flash enter flash For external Flash enter slot0 Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series Original command Example FTOS show file flash startup config boot system rpm0 primary ftp test server 10 16 1 144 home ...

Page 77: ...ile systems Command Modes EXEC Privilege Command History Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series Original command Example FTOS show file systems Size b Free b Feature Type Flags Prefixes 63938560 51646464 dosFs2 0 MMC rw flash 63938560 18092032 dosFs1 0 MMC rw slot0 network rw ftp network rw tftp network rw scp FTOS Command Fields Field Descri...

Page 78: ... local filesystem show sfm Displays the current SFM status show linecard View the current linecard status C Series E Series Syntax show linecard number all boot information Parameters number Enter a number to view information on that linecard Range 0 to 6 all OPTIONAL Enter the keyword all to view a table with information on all present linecards boot information OPTIONAL Enter the keyword boot in...

Page 79: ...FTP server enter ftp user password hostip filepath For a file on the external Flash enter slot0 followed by the filename For a file on a TFTP server enter tftp hostip filepath NOTE ftp and tftp are the only S Series options Defaults none Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the...

Page 80: ...1 control processor passed boot flash 1 0 0 40 linecard passed boot selector 2 7 0 1 control processor passed boot selector 1 0 0 40 linecard passed FPGA IMAGE INFORMATION Card Version Release Date Primary RPM 4 1 May 02 2007 Secondary RPM 4 1 May 02 2007 LC0 3 2 May 02 2007 LC5 3 2 May 02 2007 LC6 2 2 May 02 2007 FTOS show running config Display the current configuration and display changes from ...

Page 81: ... current host configuration hardware monitor for hardware monitor action on error settings hypervisor for the current hypervisor configuration igmp for the current IGMP configuration interface for the current interface configuration ip for the current IP configuration isis for the current ISIS configuration line for the current line configuration lldp for the current LLDP configuration load balanc...

Page 82: ... for the current RADIUS configuration redirect list for the current redirect list configuration redundancy for the current RPM redundancy configuration resolve for the current DNS configuration rip for the current RIP configuration rmon for the current RMON configuration route map for the current route map configuration sflow for the current sFlow configuration snmp for the current SNMP configurat...

Page 83: ...d on the C Series Version 7 4 1 0 Expanded to include the last configuration change start up last updated date and time and who made the change Version 6 5 4 0 Added the status option Example FTOS show running config Current Configuration Version 7 4 1 0 Last configuration change at Tue Apr 10 17 43 38 2007 by admin Startup config last updated at Thu Mar 29 02 35 08 2007 by default boot system rpm...

Page 84: ...Startup config last updated at Thu Mar 29 02 35 08 2007 by default boot system rpm0 primary flash FTOS EF 7 4 1 0 bin boot system rpm0 secondary flash FTOS EF 6 3 1 2 bin boot system rpm0 default flash FTOS EF 6 5 1 8 bin Related Commands show running config displays the current running configuration show version Display the current FTOS version information on the system C Series E Series S Series...

Page 85: ... 24 port GE line card with SFP optics EE 1 12 port GE Flex line card with SFP optics EE 1 2 port OC48c line card with SR optics EC 2 24 port GE line card with SX optics EB 1 2 port 10GE WAN PHY line card with 10Km 1310nm optics EE 1 12 port GE Flex line card with SFP optics EC 1 2 port 10GE LAN PHY line card with 10Km 1310nm optics ED 1 12 port OC12c 3c PoS line card with IR optics EC 1 24 port GE...

Page 86: ...ll Force10 Networks Inc Build Time Mon Nov 24 18 59 27 2008 Build Path sites sjc work sw build build2 Release E7 8 1 SW SRC Dell Force10 uptime is 1 minute s System Type S50V Control Processor MPC8451E with 252739584 bytes of memory 32M bytes of boot flash memory 1 48 port E FE GE with POE SB 48 GigabitEthernet IEEE 802 3 interface s 4 Ten GigabitEthernet IEEE 802 3 interface s FTOS Example S4810 ...

Page 87: ... the keyword bootselector image to upgrade the boot selector image Use with TAC supervision only system image Enter the keyword system image to upgrade the system image Use with TAC supervision only all Enter the keyword all to upgrade the bootflash or boot selector image on all processors This keyword does not upgrade the bootflash on the standby RPM Enter the keyword all after the keyword lineca...

Page 88: ...tifier URI should be enclosed in square brackets X X X X X For maximum flexibility this command accepts IPv6 host addresses with or without the square brackets A system message appears stating the Bootflash upgrade status Reload the system to boot from the upgraded boot images After the URL is specified you can use the same downloaded image for upgrading an individual RPM line cards SFM FPGA and s...

Page 89: ...o upgrade using an FTOS image other than the one currently running Enter the transfer method and file location flash filename ftp userid password hostip filepath slot0 filename tftp hostip filepath where hostip is either an IPv4 dotted decimal address or an IPv6 URI x x x x x format address Defaults none Command Modes EXEC Privilege Command History Version 7 7 1 0 Removed alt bootflash image alt b...

Page 90: ...ering the keyword scp you can either follow it with the location of the source file in this form userid password hostip filepath or press Enter to launch a prompt sequence slot0 After entering the keyword slot0 you can either follow it with the location of the source file in this form hostlocation filepath or press Enter to launch a prompt sequence tftp After entering the keyword tftp you can eith...

Page 91: ... Added support for the SSD on the Z9000 only Version 7 7 1 0 Added support for TFTP and SCP Version 7 6 1 0 Introduced on the S Series Usage Information RFC 3986 specifies that IPv6 host addresses in a uniform resource identifier URI must be enclosed in square brackets X X X X X For maximum flexibility this command accepts IPv6 host addresses with or without the square brackets You must reload FTO...

Page 92: ...rade the FPGA on all a specific SFM booted Enter the path to the upgrade source Entering CR updates the FPGA from the flash file url Enter the following location keywords and information to upgrade the FPGA using an FTOS image other than the one currently running To specify an FTOS image on the internal flash enter flash file path filename To specify an FTOS image on an FTP server enter ftp user p...

Page 93: ...ary FPGA image C Series Syntax restore fpga image rpm linecard number Parameters rpm Enter the keyword rpm to upgrade an RPM FPGA linecard Enter the keyword linecard to upgrade a line card FPGA number Enter the linecard or RPM slot number For the C Series linecard the range is 0 to 7 and for RPM the range is 0 to 1 Defaults none Command Modes EXEC Privilege Command History Version 7 7 1 0 Renamed ...

Page 94: ...ange is 0 to 1 linecard number Enter the keyword linecard followed by the line card slot number to upgrade a linecard FPGA The range is 0 to 7 on the C300 and 0 to 3 on the C150 all Enter the keyword all to upgrade all RPM and linecard FPGAs Enter the keyword all after the keyword rpm to upgrade all FPGAs on all RPMs Enter the keyword all after the keyword linecard to upgrade all FPGAs on all line...

Page 95: ...ted decimal address or an IPv6 URI x x x x x format address Defaults none Command Modes EXEC Privilege Command History Version 7 7 1 0 Renamed the keywords primary fpga flash to fpga image Added support for upgrading using a remote FTOS image Version 7 6 1 0 Added support for the all keyword Version 7 5 1 0 Introduced on the C Series Example FTOS conf FTOS conf upgrade primary fpga flash rpm Proce...

Page 96: ...96 ...

Page 97: ...imple network management protocol SNMP management information base MIB asf mode Enable Alternate Store and Forward ASF mode and forward packets as soon as a threshold is reached S4810 Z Series Syntax asf mode stack unit unit id all queue size To return to standard Store and Forward mode use the no asf mode stack unit command Parameters unit id Enter the stack member unit identifier of the stack me...

Page 98: ... exec c line c To delete a banner use the no banner exec command Parameters c Enter the keywords banner exec then enter a character delineator represented here by the letter c Press ENTER line Enter a text string for your banner message ending the message with your delineator In the example below the delineator is a percent character the banner message is testing testing Defaults No banner is disp...

Page 99: ...sets a Message of the Day banner exec banner Enables the display of a text string when you enter EXEC mode line enables and configures the console and virtual terminal lines to the system banner login Set a banner to be displayed when logging on to the system C Series E Series S Series Z Series Syntax banner login keyboard interactive no keyboard interactive c line c Parameters keyboard interactiv...

Page 100: ...er login keyboard interactive Prompt will be displayed by default cr FTOS conf banner login keyboard interactive Enter TEXT message End with the character This is the banner FTOS conf end FTOS exit 13d21h9m RPM0 P CP SEC 5 LOGOUT Exec session is terminated for user on line console This is the banner FTOS con0 now available Press RETURN to get started 13d21h10m RPM0 P CP SEC 5 LOGIN_SUCCESS Login s...

Page 101: ... enables the display of a text string when you enter EXEC mode banner login sets a banner to be displayed after successful login to the system cam audit linecard Enable audit of the IPv4 forwarding table on all line cards E Series Syntax cam audit linecard all ipv4 fib interval time in minutes Parameters all Enter the keyword all to enable CAM audit on all line cards ipv4 fib Enter the keyword ipv...

Page 102: ...that are no longer active If an alarm situation is still active it is seen in the system output clear command history Clear the command history log C Series E Series S Series Z Series Syntax clear command history Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Versio...

Page 103: ...clear a terminal line Range 0 to 9 Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series Original command configure Enter CONFIGURATION mode from EXEC Privilege mode C Series E Series S Series Z Series Syntax configure te...

Page 104: ...Series Usage Information This command enables and disables the collection of CPU traffic statistics from the time this command is executed not from system boot However excessive traffic received by a CPU automatically triggers turn on the collection of CPU traffic statics The following message is an indication that collection of CPU traffic is automatically turned on To view the traffic statistics...

Page 105: ...1 0 Introduced on the C Series E Series Original command disable Return to EXEC mode C Series E Series S Series Z Series S4810 Syntax disable level Parameters level OPTIONAL Enter a number for a privilege level of the FTOS Range 0 to 15 Default 1 Defaults 1 Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 ...

Page 106: ...Scale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 1 1 0 Introduced on the E Series Usage Information The following commands are not supported by the do command enable disable exit config Example FTOS conf if te 5 0 do clear counters Clear counters on all interfaces confirm FTOS conf if te 5 0 FTOS conf if te 5 0 do clear logging Clear logging buf...

Page 107: ... can access configuration commands To protect against unauthorized access use the enable password command to configure a password for the enable command at a specific privilege level If no privilege level is specified the default is privilege level 15 Related Commands enable password configures a password for the enable command and to access a privilege level enable optic info update interval Enab...

Page 108: ...utes Defaults Disabled Command Modes CONFIGURATION Command History Version 8 3 11 4 Deprecated command for Z9000 only Replaced by the enable optic info update interval command to update information on temperature and power monitoring in the SNMP MIB Version 8 3 10 0 Deprecated command for the S4810 only Replaced by the enable optic info update interval command to update information on temperature ...

Page 109: ...REFIX LIST AS PATH ACL COMMUNITY LIST ROUTER OSPF ROUTER RIP ROUTER ISIS ROUTER BGP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series and E Series E Series Original command Related Commands exit returns to the lower command mode epoch Set the epoch schedu...

Page 110: ...ries ExaScale E1200i Version 6 2 1 1 Introduced on the E Series E300 10 4 only Version 6 1 1 0 Values changed as described above Usage Information Save the configuration and reload the chassis for the changes to the epoch command setting to take affect When using ten SFMs in an ExaScale chassis the 10 4 and 2 4 settings are both line rate Additionally the 2 4 setting has a lower latency When using...

Page 111: ...cess EXEC mode This command toggles that display Related Commands banner exec configures a banner to display when entering EXEC mode line enables and configures console and virtual terminal lines to the system exec timeout Set a time interval the system will wait for input on a line before disconnecting the session C Series E Series S Series Z Series Syntax exec timeout minutes seconds To return t...

Page 112: ...get started FTOS exit Return to the lower command mode C Series E Series S Series Z Series Syntax exit Command Modes EXEC Privilege CONFIGURATION LINE INTERFACE TRACE LIST PROTOCOL GVRP SPANNING TREE MULTIPLE SPANNING TREE MAC ACCESS LIST ACCESS LIST AS PATH ACL COMMUNITY LIST PREFIX LIST ROUTER OSPF ROUTER RIP ROUTER ISIS ROUTER BGP Command History Version 8 3 11 1 Introduced on the Z9000 Version...

Page 113: ...mmand Example morpheus ftp 10 31 1 111 Connected to 10 31 1 111 220 FTOS 1 0 FTP server ready Name 10 31 1 111 dch dch 331 Password required Password 230 User logged in ftp pwd 257 Current directory is flash ftp dir 200 Port set okay 150 Opening ASCII mode data connection size date time name 512 Jul 20 2004 18 15 00 tgtimg 512 Jul 20 2004 18 15 00 diagnostic 512 Jul 20 2004 18 15 00 other 512 Jul ...

Page 114: ...evel directory path Without a top level directory path specified the FTOS directs users to the flash directory when logging in to the FTP server Related Commands ftp server enable enables FTP server functions on the E Series ftp server username sets a username and password for incoming FTP connections to the E Series ftp server username Create a user name and associated password for incoming FTP s...

Page 115: ...troduced on the C Series E Series Original command hostname Set the host name of the system C Series E Series S Series Z Series Syntax hostname name Parameters name Enter a text string up to 32 characters long Defaults FTOS Command Modes CONFIGURATION Command History Version 8 3 12 0 Changed the default from Force10 to FTOS Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the...

Page 116: ...rsion 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series Original command Usage Information The password is listed in the configuration file you can view the password by entering the show running config ftp command The password configured by the ip ftp password command i...

Page 117: ...ter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a 40 Gigabit Ethernet interface enter the keyword fortyGigE followed by the slot port information For a VLAN interface enter the keyword vlan followed by a number from 1 to 4094 Defaults The IP address on the system that is c...

Page 118: ...ale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series Original command Usage Information You must also configure a password with the ip ftp password command Related Commands ip ftp password sets the password for FTP connections ip telnet server enable Enable the Telnet server on the switch C Series E Series S Series Z Series Syntax ip telnet server enab...

Page 119: ...s enter the keyword loopback followed by a number from zero 0 to 16383 For the SONET interfaces enter the keyword sonet followed by slot port information For a Port Channel enter the keyword port channel followed by a number For the C Series and S Series 1 to 128 For the E Series 1 to 32 for EtherScale 1 to 255 for TeraScale and 1 to 512 for ExaScale For a 10 Gigabit Ethernet interface enter the k...

Page 120: ... GigabitEthernet followed by the slot port information For Loopback interfaces enter the keyword loopback followed by a number from zero 0 to 16383 For a Port Channel enter the keyword port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For the SONET interfaces enter the keyword sonet f...

Page 121: ...xiliary terminal connection NOTE This option is supported on E Series only console 0 Enter the keyword console 0 to configure the console port The console option for the S Series is 0 0 vty number Enter the keyword vty followed by a number from 0 to 9 to configure a virtual terminal line for Telnet sessions The system supports 10 Telnet sessions end number OPTIONAL Enter a number from 1 to 9 as th...

Page 122: ...igured Command Modes CONFIGURATION Command History Version 8 1 1 2 Introduced on the E Series ExaScale E600i Version 8 1 1 0 Introduced on the E Series ExaScale E1200i Version 7 5 1 0 Introduced on the C Series E Series Original command Usage Information Use this command only for empty slots or a slot where you have hot swapped a different line card type Before inserting a card of a different type...

Page 123: ...umber port set1 port number port number Parameters slot number Enter the slot number in which you will use the line card The range is 0 13 on the E1200i and 0 5 on the E600i card type Enter the line card ID Valid values are EX04PH Configures the slot for a 6 port 40GE line card with 10M CAM LC EH 40GE 4P EX04PJ Configures the slot for a 6 port 40GE line card with 40M CAM LC EJ 40GE 4P linerate Con...

Page 124: ... configured for a 4 port 40GE line card be sure to enter the no linecard number command WARNING After you enter the linecard command to reconfigure a 4 port 40GE line card installed in an ExaScale switch you are prompted to reboot the line card to activate the settings Traffic on the line card is interrupted when you reset the card On a 4 port 40GE line card there are six ports and two port pipes ...

Page 125: ...n the E Series ExaScale E600i Version 8 1 1 0 Introduced on the E Series ExaScale E1200i Version 7 5 1 0 Introduced on the C Series E Series Original command motd banner Enable a message of the day MOTD banner to appear when you log in to the system C Series E Series S Series Z Series Syntax motd banner To disable the MOTD banner use the no motd banner command Defaults Enabled on all lines Command...

Page 126: ...sting connectivity NOTE The notation specifies successive hexadecimal fields of zeros count Enter the number of echo packets to be sent Default 5 number 1 2147483647 continuous transmit echo request continuously datagram size Enter the ICMP datagram size Range 36 15360 bytes Default 100 timeout Enter the interval to wait for an echo reply before timing out Range 0 3600 seconds Default 2 seconds so...

Page 127: ...the minimum size of datagram in sweep range Range 52 15359 bytes sweep max size Enter the maximum size of datagram in sweep range Range 53 15359 bytes sweep interval Enter the incremental value for sweep size Range 1 15308 seconds ointerface IPv4 only Enter the outgoing interface for multicast packets Enter the IP address in A B C D format For an 100 1000 Ethernet interface enter the keyword Gigab...

Page 128: ...n the C Series Version 7 4 1 0 Added support for IPv6 address on the E Series Usage Information When you enter the ping command without specifying an IP IPv6 address Extended Ping you are prompted for a target IP IPv6 address a repeat count a datagram size up to 1500 bytes a timeout in seconds and for Extended Commands For information on the ICMP message codes that return from a ping command refer...

Page 129: ...the standby extra switch fabric module SFM C Series E Series Syntax power off linecard number sfm sfm slot id Parameters linecard number Enter the keyword linecard and a number for the line card slot number For the C Series the range is 0 to 7 For the E Series the range is 0 to 13 on the E1200 E1200i 0 to 6 on the E600 E600i and 0 to 5 on the E300 sfm sfm slot id Enter the keyword sfm by the slot ...

Page 130: ...the E600 E600i and 0 to 5 on the E300 sfm standby Enter the keyword sfm followed by the slot number of the SFM to power on NOTE This option is supported on the E Series only Defaults Disabled Command Modes EXEC Privilege Command History Version 8 1 1 2 Introduced on the E Series ExaScale E600i Version 8 1 1 0 Introduced on the E Series ExaScale E1200i Version 7 5 1 0 Introduced on the C Series E S...

Page 131: ...ration changes made to the nvram such as stack group and fanout configurations must be saved Related Commands reset resets a line card RPM or a failed SFM TeraScale and ExaScale reset stack unit resets any designated stack member except the management unit reset Reset a line card RPM or a failed SFM TeraScale only C Series E Series Syntax reset linecard number hard power cycle rpm number hard powe...

Page 132: ... image on the line card Use the power cycle command after upgrading an FPGA When a soft reset is issued on a line card reset linecard number FTOS boots the line card from its runtime image Only when you enter reset linecard number hard is the software image reloaded on the line card Related Commands reload reboots the system restore fpga image copies the backup C Series FPGA image to the primary F...

Page 133: ... console Enter the keyword console to send a message to the primary terminal line vty Enter the keyword vty to send a message to the virtual terminal Defaults none Command Modes EXEC Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 5 1 0 Introd...

Page 134: ... localtime in the timestamp msec OPTIONAL Enter the keyword msec to include milliseconds in the timestamp show timezone OPTIONAL Enter the keyword show timezone to include the time zone information in the timestamp uptime OPTIONAL Enter the keyword uptime to have the timestamp based on time elapsed since system reboot Defaults Not configured Command Modes CONFIGURATION Command History Version 8 3 ...

Page 135: ... on the S Series Version 7 5 1 0 Introduced on the C Series E Series Original command Example FTOS show alarms Minor Alarms Alarm Type Duration RPM 0 PEM A failed or rmvd 7 hr 37 min SFM 0 PEM A failed or rmvd 7 hr 37 min SFM 1 PEM A failed or rmvd 7 hr 37 min SFM 2 PEM A failed or rmvd 7 hr 37 min SFM 3 PEM A failed or rmvd 7 hr 37 min SFM 4 PEM A failed or rmvd 7 hr 37 min SFM 5 PEM A failed or ...

Page 136: ...l command Example FTOS FTOS show chassis brief Chassis Type E1200 Chassis Mode TeraScale Chassis Epoch 3 2 micro seconds Line cards Slot Status NxtBoot ReqTyp CurTyp Version Ports 0 not present 1 not present 2 not present 3 not present 4 not present 5 not present 6 not present 7 not present 8 not present 9 not present 10 not present 11 online online E48PF E48PF 6 1 1 0 48 12 not present E48PF 13 n...

Page 137: ...yntax show command history Defaults none Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series and E Series Usage Information One trace log message is generated for each command No password information is saved to this file A...

Page 138: ...itethernet 0 2 by default from console 11 20 15 47 23 CMD CLI no ip address by default from console 11 20 15 47 23 CMD CLI shutdown by default from console 11 20 15 47 23 CMD CLI interface gigabitethernet 0 3 by default from console 11 20 15 47 23 CMD CLI ip address 5 5 5 1 24 by default from console 11 20 15 47 23 CMD CLI no shutdown by default from console 11 20 15 47 23 CMD CLI interface gigabi...

Page 139: ... Defaults none Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 2 1 0 Introduced Usage Information Reload the system to reset the command tree counters Example FTOS show command tree count Enable privilege mode enable command usage 3 0 15 option usage 0 exit command usage 1 show command tree command usage 9 count option usage 3 show version comma...

Page 140: ... technical support representative to troubleshoot a problem Do not use this command unless a technical support representative instructs you to do so show cpu traffic stats View the CPU traffic statistics C Series E Series S Series Z Series Syntax show cpu traffic stats port number all cp linecard all slot rp1 rp2 Parameters port number OPTIONAL Enter the port number to display traffic statistics o...

Page 141: ...ce basis the interface receiving the most traffic is displayed first All CPU and port information is displayed unless a specific port or CPU is specified Traffic information is displayed for router ports only not for management interfaces The traffic statistics are collected only after the debug cpu traffic stats command is executed not from the system bootup NOTE After debugging is complete use t...

Page 142: ... command Example FTOS show debug Generic IP IP packet debugging is on for ManagementEthernet 0 0 Port channel 1 2 Port channel 5 GigabitEthernet 4 0 3 5 6 10 11 20 GigabitEthernet 5 0 1 5 6 10 11 15 17 19 21 ICMP packet debugging is on for GigabitEthernet 5 0 2 4 6 8 10 12 14 16 FTOS show environment C Series and E Series View the system component status for example temperature or voltage C Series...

Page 143: ... 7 5 1 0 Introduced on the C Series E Series Original command Usage Information Fan speed is controlled by temperatures measured at the sensor located on the fan itself The fan temperatures shown with this command may not accurately reflect the temperature and fan speed For fan speed and temperature information refer to your hardware installation guide Example E1200 FTOS show environment Fan Statu...

Page 144: ...8C up up 4 active 52C up up 5 active 50C up up 6 active 47C up up 7 active 48C up up 8 active 47C up up Example E600 FTOS show environment fan Fan Status Status Temp Fan1 Fan2 Fan3 Serial Num Version up 29C 6000 RPM 7500 RPM 7500 RPM 0 0 FTOS Example C300 FTOS show env fan Fan Status Tray 0 FanNumber Speed Status 0 4170 up 1 4140 up 2 3870 up 3 4140 up 4 3870 up 5 3810 up FTOS show environment S S...

Page 145: ...s as up or down Version 7 6 1 0 Introduced for the S Series S Series options and output differ from the C Series E Series version Usage Information The example below shows the output of the show environment fan command as it appears prior to FTOS 7 8 1 0 Example all FTOS show environment all Fan Status Unit TrayStatus Fan0 Fan1 Fan2 Fan3 Fan4 Fan5 0 up up up up up up up Power Supplies Unit Bay Sta...

Page 146: ...d Modes CONFIGURATION Command History Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 8 1 0 Output expanded to include SFP media on the C Series Version 7 7 1 0 Vendor field removed from output of the show inventory media command Version 7 5 1 0 Introduced on the C Series and expanded to include transceiver media Version 6 2 1 0 Expanded to include the Software Protocol Configured fi...

Page 147: ...29999 04 3 LC CB GE 48T FX000020075 7520036700 01 0 LC CB RPM 0060361 7520029300 02 0 CC C 1200W AC N A N A N A 1 CC C 1200W AC N A N A N A 0 CC C300 FAN standby Software Protocol Configured OSPF FTOS Example E300 FTOS show inventory Chassis Type E300 Chassis Mode TeraScale Software Version FTOS EF 7 5 1 0 Slot Item Serial Number Part Number Revision E300 0015259 7520009601 02 1 LC EF3 10GE 2P 001...

Page 148: ...w interfaces displays a specific interface configuration show interfaces transceiver displays the physical status and operational status of an installed transceiver The output also displays the transceiver s serial number show inventory S Series and Z Series Display the S Series or Z Series switch type components including media and FTOS version including hardware identification numbers and config...

Page 149: ...N A N A 0 S50 PWR AC N A N A N A 0 S50 FAN N A N A N A Management Unit Software Protocol Configured Example S Series S50V_7 7 show inventory media 0 7 Slot number Pipe through a command cr S50V_7 7 show inventory media Slot Port Type Media Serial Number F10Qualified 0 49 Media not present or accessible 0 50 XFP 10GBASE SR C707XS0MD Yes 0 45 Media not present or accessible 0 46 Media not present or...

Page 150: ...number OPTIONAL Enter a slot number to view information on the line card in that slot For the C Series the range is 0 to 7 For the E Series the ange is 0 to 13 on the E1200 0 to 6 on the E600 and 0 to 5 on the E300 all OPTIONAL Enter the keyword all to view a table with information on all present line cards brief OPTIONAL Enter the keyword brief to view an abbreviated list of line card information...

Page 151: ...mbo frames Boot Flash Ver Displays the two possible Bootflash versions The Booted keyword next to the version states which version was used at system boot Memory Size List the memory of the line card processor Temperature Displays the temperature of the line card Minor alarm status if the temperature is over 65 C Power Status Lists the type of power modules used in the chassis AC AC power supply D...

Page 152: ...re 49C Power Status PEM0 absent or down PEM1 up Voltage ok Serial Number Part Number Rev Vendor Id Date Code Country Code FTOS Example brief FTOS show linecard 11 brief Line card 11 Status online Next Boot online Required Type E48PF 48 port GE line card with SFP optics EF Current Type E48PF 48 port GE line card with SFP optics EF Hardware Rev Base 1 0 PP0 n a PP1 n a Num Ports 48 Up Time 11 hr 24 ...

Page 153: ...card serial number Booted from Indicates whether the line card cache booted or system booted In addition the image with which the line card booted is also displayed If the line card cache booted the output is A or B followed by the image in the flash partition A 6 5 1 4 or B 6 5 1 4 If the line card system booted the display is the current FTOS version number 6 5 1 4 Next boot Indicates if the nex...

Page 154: ...es the range is 0 to 7 For the E Series The range is 0 to 13 on the E1200 E1200i 0 to 6 on the E600 E600i and 0 to 5 on the E300 rp1 OPTIONAL Enter the keyword rp1 to view information on Route Processor 1 on the RPM NOTE This option is supported on the E Series only rp2 OPTIONAL Enter the keyword rp2 to view information on Route Processor 2 on the RPM NOTE This option is supported on the E Series ...

Page 155: ... Indirectly it indicates the maximum usage in the lifetime of the system Total minus Lowest Largest displays the current largest available This relates to the block size and is not related to the amount of memory on the system show memory S Series View current memory usage on the S Series or Z Series switch S Series Z Series Syntax show memory stack unit id Parameters stack unit id OPTIONAL Enter ...

Page 156: ...nter the keyword rp2 to view CPU usage of the Route Processor 2 lp linecard 1 99 OPTIONAL Enter the keyword lp followed by the line card number to display the CPU usage of that line card The optional 1 99 variable sets the number of tasks to display in order of the highest CPU usage in the past five 5 seconds lp all OPTIONAL Enter the keyword lp all to view CPU utilization on all active line cards...

Page 157: ...153ab0 216 13 16615 0 00 0 00 0 00 0 ev more Example rp1 FTOS show processes cpu rp1 CPU utilization for five seconds 0 0 one minute 0 five minutes 0 PID Runtime ms Invoked uSecs 5Sec 1Min 5Min TTY Process 0x0000007c 60 6 10000 0 00 0 00 0 00 0 ospf 0x00000077 460 46 10000 0 00 0 00 0 00 0 dsm 0x00000074 100 10 10000 0 00 0 00 0 00 0 ipm1 0x0000006e 180 18 10000 0 00 0 00 0 00 0 rtm 0x0000006b 100...

Page 158: ...odoned 0x00000004 960 96 10000 0 00 0 00 0 00 0 ioflush 0x00000003 140 14 10000 0 00 0 00 0 00 0 reaper 0x00000002 0 0 0 0 00 0 00 0 00 0 pagedaemon 0x00000001 160 16 10000 0 00 0 00 0 00 0 init 0x00000000 700 70 10000 0 00 0 00 0 00 0 swapper 0x00000098 140 14 10000 0 00 0 00 0 00 0 msdp show processes cpu S Series Display CPU usage information based on processes running in an S Series or Z Serie...

Page 159: ... processes cpu summary CPU utilization 5Sec 1Min 5Min Unit0 0 0 0 CPU utilization 5Sec 1Min 5Min Unit1 1 0 0 Unit2 0 0 0 Unit3 0 0 0 Mgmt Unit Example management unit FTOS show processes cpu management unit 0 CPU utilization for five seconds 1 0 one minute 10 five minutes 2 PID Runtime ms Invoked uSecs 5Sec 1Min 5Min TTY Process 272 20 2 10000 0 00 0 00 0 00 0 topoDPC 271 0 0 0 0 00 0 00 0 00 0 bc...

Page 160: ...0 00 0 ospf 80 100 10 10000 0 00 0 00 0 00 0 dsm 74 60 6 10000 0 00 0 00 0 00 0 rtm 70 30 3 10000 0 00 0 00 0 00 0 rip 68 120 12 10000 0 00 0 00 0 00 0 ipm1 64 70 7 10000 0 00 0 00 0 00 0 acl 63 30 3 10000 0 00 0 00 0 00 0 bcmLINK 1 62 290 29 10000 0 00 0 00 0 00 0 bcmCNTR 1 61 50 5 10000 0 00 0 00 0 00 0 bcmRX 60 40 4 10000 0 00 0 00 0 00 0 bcmLINK 0 59 0 0 0 0 00 0 00 0 00 0 bcmXGS3AsyncTX 58 0 ...

Page 161: ...ncTX 140410880 0 0 0 0 0 58 bcmTX 140410880 0 0 0 0 0 57 bcmCNTR 0 140410880 0 0 0 0 0 55 bcmDPC 140410880 0 0 0 0 0 52 sysd 44650496 22876160 3930856 1358248 2589172 2572608 28 inetd 876544 69632 0 0 0 0 21 mount_mfs 22642688 1953792 0 0 0 0 output truncated Example stack unit FTOS show processes memory stack unit 0 Memory Statistics On Unit 0 Processor bytes start Total 160231424 MaxUsed 1305968...

Page 162: ...information based on processes running in an S Series show processes ipc flow control Display the single window protocol queue SWPQ statistics C Series E Series S Series Z Series Syntax show processes ipc flow control cp rp1 rp2 lp linecard number Parameters cp OPTIONAL Enter the keyword cp to view the control processor s SWPQ statistics rp1 OPTIONAL Enter the keyword rp1 to view the control proce...

Page 163: ...eliable communication between the sending and receiving software tasks A sending task enqueues messages into the SWP queue3 for a receiving task and waits for an acknowledgement If no response is received within a defined period of time the SWP timeout mechanism resubmits the message at the head of the FIFO queue After retrying a defined number of times the SWP 2 NOMORETIMEOUT timeout message is g...

Page 164: ...0 6 6 8 8 IFMGR0 TCLASSMGR0 0 2 0 0 13 13 8 8 IFMGR0 VRRP0 0 3 0 0 25 25 8 8 IFMGR0 MRTM0 0 2 0 0 21 21 8 8 TCLASSMGR0 ARPMGR0 0 0 0 0 0 0 100 100 IFMGR0 IPMGR2 0 6 0 0 44 44 8 8 output truncated Example rp FTOS show processes ipc flow control rp2 qid Source Dest Cur High of of msg msg Retr total Len Mark to Retr Sent Ackd 1 unknown2 unknown2 0 0 0 0 0 0 3 3 2 l2pm0 spanMgr0 0 2 0 0 2298 2298 25 2...

Page 165: ...PIM0 0 0 0 0 0 0 20 20 FRRP0 L2PM0 0 0 0 0 0 0 25 25 L2PM0 FRRP0 0 1 0 0 13 13 25 25 ACL0 ACL_AGENT0 0 4 0 0 7 7 90 90 ACL0 MACAGENT0 0 0 0 0 0 0 90 90 IFMGR0 EVENTTERMLOG0 0 1 0 0 1 1 8 8 IFMGR0 SNMP0 0 1 0 0 1 1 8 8 IFMGR0 IPMGR0 0 7 0 0 9 9 8 8 IFMGR0 DIFFSERV0 0 2 0 0 3 3 8 8 DIFFSERV0 ACL_AGENT0 0 0 0 0 0 0 100 100 output truncated show processes memory C Series and E Series View memory usage...

Page 166: ... 0 Introduced on the C Series Version 7 4 1 0 Added the lp all and lp summary options Version 6 5 1 0 For rp1 and rp2 only the output displays memory consumption of all the processes including a summary Usage Information show processes memory rp1 rep2 output Field Description Total Total system memory available MaxUsed Total maximum memory used ever history indicated with a time stamp CurrentUsed ...

Page 167: ...xUsed 64886986 CurrentUsed 64873866 Current TaskName TotalAllocated TotalFreed MaxHeld CurrentHolding tRootTask 39083408 1395840 38143920 37687568 tARL 64 0 64 64 tBcmTask 256 0 256 256 tPortmapd 18560 0 18560 18560 tShell 3440 0 3440 3440 tPingTmo0 0 1088 0 0 tExcTask 0 592864 0 0 tme 4002494 192 4002302 4002302 ipc 34060 192 34060 33868 irc 943436 0 943436 943436 RpmAvailMgr 9376 32 9344 9344 ev...

Page 168: ...7936 565810 0 565810 565810 132 pim 6664192 516096 2812528 0 2812528 2812528 128 igmp 4112384 344064 627684 0 627684 627684 124 ipm2 3923968 237568 363396 0 363396 363396 120 mrtm 25567232 593920 697790 0 697790 697790 116 l2mgr 4579328 520192 830098 0 830098 830098 112 l2pm 3874816 225280 367446 32948 367446 334498 108 arpm 3702784 208896 268420 0 268420 268420 104 acl2 3485696 94208 132144 0 132...

Page 169: ...uced on the S Series Usage Information show processes memory output Field Description Total Total system memory available MaxUsed Total maximum memory used ever history indicated with time stamp CurrentUsed Total memory currently in use CurrentFree Total system memory available SharedUsed Total used shared memory SharedFree Total free shared memory PID Process ID Process Process Name ResSize Actua...

Page 170: ...Used 13007848 SharedFree 7963696 PID Process ResSize Size Allocs Frees Max Current 337 KernLrnAgMv 117927936 0 0 0 0 0 331 vrrp 5189632 249856 50572 0 50572 50572 323 frrp 5206016 241664 369238 0 369238 369238 322 xstp 7430144 2928640 38328 0 38328 38328 321 pim 5267456 823296 62168 0 62168 62168 314 igmp 4960256 380928 18588 16564 18588 2024 313 mrtm 6742016 1130496 72758 0 72758 72758 308 l2mgr ...

Page 171: ...ommand Example FTOS show processes switch utilization Switch fabric utilization 5Sec 1Min 5Min 3 3 3 show rpm Show the current RPM status C Series E Series Syntax show rpm number brief all Parameters number OPTIONAL Enter either zero 0 or 1 for the RPM all OPTIONAL Enter the keyword all to view a table with information on all present RPMs brief OPTIONAL Enter the keyword brief to view an abbreviat...

Page 172: ...shutdown power supply failed E Series possible values normal power cycle insufficient power normal power cycle reset by user automatic failover software reload of both RPMs or master RPM resetting peer force failover redundancy force failover command FTOS Version Displays the operating software version Jumbo Capable Displays a Yes or No indicating if the RPM is capable of sending and receiving Jum...

Page 173: ...ID Displays an internal code which specifies the manufacturing vendor Date Code Displays the line card s manufacturing date Country Code Displays the country of origin 01 USA Example E Series FTOS show RPM 0 RPM card 0 Status active Next Boot online Card Type RPM Route Processor Module LC EF RPM Hardware Rev 2 0 Num Ports 1 Up Time 36 min 51 sec Last Restart reset FTOS Version 6 2 1 0 Jumbo Capabl...

Page 174: ...thernet interface enter the keyword GigabitEthernet For a Port Channel interface enter the keyword port channel followed by a number The C Series and S Series range is 1 to 128 The E Series range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a 10G Ethernet interface enter the keyword TenGigabitEthernet For a 40 Gigabit Ethernet interface enter the keyword fortyGigE C Series options also ...

Page 175: ...x000000f3 0x00030000 0x00000000 0x00000000 0 IGMP 0 0x000e027f 0x00000000 0x00000000 0x00000000 0 SNMP 0 0x00000000 0x00000000 0x800302c0 0x00000002 30 EVTTERM 0 0x00000000 0x00000000 0x800002c0 0x00000000 29 MRTM 0 0x00000000 0x00000200 0x81f7103f 0x00000000 38 DSM 0 0x00000000 0x00000000 0x80771003 0x00000000 32 LACP 0 0x00000000 0x00000000 0x8000383f 0x00000000 35 DHCP 0 0x00000000 0x00000000 0...

Page 176: ...nd LC side up FTOS show system S Series and Z Series Display the current status of all stack members or a specific member S Series Z Series Syntax show system brief stack unit unit id stack ports status topology Parameters brief OPTIONAL Enter the keyword brief to view an abbreviated list of system information stack unit unit id OPTIONAL Enter the keywords stack unit followed by the stack member I...

Page 177: ...how system brief Stack MAC 0 1 e8 d6 4 70 Stack Info Unit UnitType Status ReqTyp CurTyp Version Ports 0 Member not present 1 Standby online S50V S50V 7 7 1 0 52 2 Mgmt online S50V S50V 7 7 1 0 52 3 Member not present 4 Member not present 5 Member not present 6 Member not present 7 Member not present Module Info Unit Module No Status Module Type Ports 1 0 online S50 01 10GE 2P 2 1 1 online S50 01 2...

Page 178: ...ature deg C FanSpeed rpm Example S4810 FTOS show system stack unit 0 Unit 0 Unit Type Management Unit Status online Next Boot online Required Type S4810 48 port E FE GE SC Current Type S4810 48 port E FE GE SC Master priority 0 Hardware Rev 2 0 Num Ports 52 Up Time 2 hr 16 min FTOS Version 1 2 0 205 Jumbo Capable yes POE Capable no Boot Flash 1 0 0 2 Memory Size 2147483648 bytes Temperature 50C Vo...

Page 179: ...meters linecard 0 6 OPTIONAL Enter the keyword linecard followed by the linecard number to view information relating to a specific linecard page OPTIONAL Enter the keyword page to view 24 lines of text at a time Press the SPACE BAR to view the next 24 lines Press ENTER to view the next line of text display except find grep no more If you use the pipe command enter one of these keywords to filter c...

Page 180: ...ement route show ip protocols show ip route summary show processes cpu show processes memory show redundancy show rpm show running conf show sfm show version Example C Series FTOS show tech support page show version Dell Force10 Networks Real Time Operating System Software Dell Force10 Operating System Version 1 0 Dell Force10 Application Software Version FTOS 7 5 1 0 Copyright c 1999 2007 by Forc...

Page 181: ...e Save output to a file FTOS show tech support linecard 3 save flash Save to local file system flash filename max 20 chars slot0 Save to local file system slot0 filename max 20 chars FTOS show tech support linecard 3 save flash LauraSave Start saving show command report FTOS dir Directory of flash 1 drwx 32768 Jan 01 1980 00 00 00 00 00 2 drwx 512 Aug 22 2008 14 21 13 00 00 3 drwx 8192 Mar 30 1919...

Page 182: ...o perform troubleshooting on S Series or Z Series switches S Series Z Series Syntax show tech support stack unit unit id page Parameters stack unit OPTIONAL Enter the keywords stack unit to view CPU memory usage for the stack member designated by unit id The unit ID range for the S4810 is 0 11 For all other S Series the range is 0 7 page OPTIONAL Enter the keyword page to view 24 lines of text at ...

Page 183: ...e summary show processes cpu show processes memory show redundancy show running conf show version Example S Series FTOS show tech support page Page through output stack unit Unit Number Pipe through a command cr FTOS show tech support stack unit 1 Pipe through a command cr FTOS show tech support stack unit 1 except Show only text that does not match a pattern find Search for the first occurrence o...

Page 184: ...Boot Flash memory 1 48 port E FE GE SB 48 GigabitEthernet IEEE 802 3 interface s 4 Ten GigabitEthernet IEEE 802 3 interface s show clock 12 03 01 695 UTC Wed Nov 21 2007 show running config Current Configuration Version E_MAIN4 7 5 414 Last configuration change at Wed Nov 21 11 42 19 2007 by default service timestamps log datetime hostname FTOS enable password 7 xxxxxxxx username admin password 7 ...

Page 185: ...Introduced on the C Series Version 6 3 1 0 Introduced on the E Series Usage Information This command is not available when the peer RPMs are running different FTOS releases ssh peer stack unit Open an SSH connection to the peer RPM S Series Z Series Syntax ssh peer stack unit l username Parameters l username OPTIONAL Enter the keyword l followed by your user name The default is the user name assoc...

Page 186: ...e source interface Enter the following keywords and slot port or number information For a 100 1000 Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Loopback interface enter the keyword loopback followed by a number from zero 0 to 16383 For the N...

Page 187: ... VRF Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series and added support for IPv6 address on the E Series only telnet peer stack unit Open a Telnet connection to the peer stack unit S Series Z Series Syntax telnet peer stack unit Defaults Not configured Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 11 1 In...

Page 188: ...nd terminal xml Enable XML mode in Telnet and SSH client sessions C Series E Series Syntax terminal xml To exit XML mode enter terminal no xml Defaults Disabled Command Modes EXEC EXEC Privilege Command History Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 7 1 0 Introduced on the C Series Version 6 5 1 0 Introduced for the E Series Usage Information This command enables the XML inp...

Page 189: ...34 Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 2 1 0 Introduced on the E Series ExaScale with IPv6 Version 8 1 1 0 Introduced on the E Series ExaScale IPv4 only Version 7 9 1 0 Introduced VRF Version 7 6 1 0 Added support for the S Series Version 7 5 1 0 Introduced on the C Series Version 7 4 1 0 Added support for IPv6 address on the E Serie...

Page 190: ...1 000 ms 3 fw sjc 01 force10networks com 10 11 127 254 000 000 ms 000 000 ms 000 000 ms 4 www force10networks com 10 11 84 18 000 000 ms 000 000 ms 000 000 ms FTOS Example IPv6 FTOS traceroute 100 1 Type Ctrl C to abort Tracing the route to 100 1 64 hops max 60 byte packets Hops Hostname Probe1 Probe2 Probe3 1 100 1 000 000 ms 000 000 ms 000 000 ms FTOS traceroute 3ffe 501 ffff 100 201 e8ff fe00 4...

Page 191: ...g Upload trace log files from the three CPUs cp rp1 and rp2 C Series E Series Syntax upload trace log cp cmd history hw trace sw trace rp1 cmd history hw trace sw trace rp2 cmd history hw trace sw trace Parameters cp rp1 rp2 Enter the keyword cp rp1 rp2 to upload the trace log from that CPU cmd history OPTIONAL Enter the keyword cmd history to upload the CPU s command history hw trace OPTIONAL Ent...

Page 192: ...interface in a dotted decimal format A B C D ipv6 address Enter an IPv6 address of the active management interface in the x x x x x format NOTE The notation specifies successive hexadecimal fields of zeros Defaults none Command Modes CONFIGURATION Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 5 1 0 Introduced on the C Series E...

Page 193: ...the show running config command Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series Original command Usage Information The write memory command saves the running configuration to the file labeled startup configuration W...

Page 194: ...194 ...

Page 195: ...802 1X authorization the port configures in its access VLAN after successful authentication If you enable 802 1X authorization but the VLAN information from the RADIUS server is not valid the port returns to the Unauthorized state and remains in the configured access VLAN This safeguard prevents ports from appearing unexpectedly in an inappropriate VLAN due to a configuration error Configuration e...

Page 196: ...he S4810 Version 8 4 1 0 Introduced on the C Series and S Series dot1x auth fail vlan Configure an authentication failure VLAN for users and devices that fail 802 1X authentication C Series E Series S Series S4810 Syntax dot1x auth fail vlan vlan id max attempts number To delete the authentication failure VLAN use the no dot1x auth fail vlan vlan id max attempts number command Parameters vlan id E...

Page 197: ...t the next reauthentication interval dot1x reauthentication Related Commands dot1x port control dot1x guest vlan show dot1x interface dot1x auth server Configure the authentication server to RADIUS C Series E Series S Series S4810 Syntax dot1x auth server radius Defaults none Command Modes CONFIGURATION Command History Version 8 3 12 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the C Se...

Page 198: ...y authentication fails the host is placed in the guest VLAN if configured To disable MAB only authentication on a port enter the no dot1x auth type mab only command Related Commands dot1x mac auth bypass dot1x authentication Configuration Enable dot1x globally Enable dot1x both globally and at the interface level C Series E Series TeraScale S Series S4810 Syntax dot1x authentication To disable dot...

Page 199: ... S4810 Syntax dot1x guest vlan vlan id To disable the guest VLAN use the no dot1x guest vlan vlan id command Parameters vlan id Enter the VLAN Identifier The range is 1 to 4094 Defaults Not configured Command Modes CONFIGURATION conf if interface slot port Command History Version 8 3 12 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the C Series E Series and S Series Usage Information 1X ...

Page 200: ...ntax dot1x host mode single host multi host multi auth Parameters single host Enable single host authentication multi host Enable multi host authentication multi auth Enable multi supplicant authentication Defaults single host Command Modes INTERFACE Command History Version 8 3 12 0 Introduced on the S4810 Version 8 4 1 0 Added the multi auth option on the C Series and S Series Version 8 3 2 0 Add...

Page 201: ...he C Series and S Series Related Commands dot1x auth type mab only dot1x max eap req Configure the maximum number of times an extensive authentication protocol EAP request is transmitted before the session times out C Series E Series S Series S4810 Syntax dot1x max eap req number To return to the default use the no dot1x max eap req command Parameters number Enter the number of times an EAP reques...

Page 202: ...ACE Command History Version 8 3 12 0 Introduced on the S4810 Version 8 4 1 0 Introduced on the C Series and S Series Related Commands dot1x host mode dot1x port control Enable port control on an interface C Series E Series S Series S4810 Syntax dot1x port control force authorized auto force unauthorized Parameters force authorized Enter the keywords force authorized to forcibly authorize a port au...

Page 203: ...ts 60 seconds Command Modes INTERFACE Command History Version 8 3 12 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the C Series and S Series Version 7 4 1 0 Introduced on the E Series dot1x reauthentication Enable periodic reauthentication of the client C Series E Series S Series S4810 Syntax dot1x reauthentication interval seconds To disable periodic reauthentication use the no dot1x re...

Page 204: ...thentications The range is 1 to 10 The default is 2 Defaults 2 Command Modes INTERFACE Command History Version 8 3 12 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the C Series and S Series Version 7 4 1 0 Introduced on the E Series dot1x server timeout Configure the amount of time after which exchanges with the server time out C Series E Series S Series S4810 Syntax dot1x server timeout...

Page 205: ... timeout 30 seconds radius server retransmit 3 seconds and radius server timeout 5 seconds For example FTOS conf radius server host 10 11 197 105 timeout 6 FTOS conf radius server host 10 11 197 105 retransmit 4 FTOS conf interface gigabitethernet 2 23 FTOS conf if gi 2 23 dot1x server timeout 40 dot1x supplicant timeout Configure the amount of time after which exchanges with the supplicant time o...

Page 206: ...dot1x cos mapping interface Display the CoS priority mapping table the RADIUS server provides and applied to authenticated supplicants on an 802 1X enabled C Series S Series S4810 Syntax show dot1x cos mapping interface interface mac address mac address Parameters interface Enter one of the following keywords and slot port or number information For a Gigabit Ethernet interface enter the keyword Gi...

Page 207: ...s that are in Single Hot Multi Host and Multi Supplicant authentication modes Example FTOS show dot1x cos mapping interface gigabitethernet 2 21 802 1p CoS re map table on Gi 2 21 Dot1p Remapped Dot1p 0 7 1 6 2 5 3 4 4 3 5 2 6 1 7 0 FTOS show dot1x cos mapping int g 2 21 mac address 00 00 01 00 07 00 802 1p CoS re map table on Gi 2 21 802 1p CoS re map table for Supplicant 00 00 01 00 07 00 Dot1 R...

Page 208: ...ries and S Series only Enter a supplicant s MAC address using the mac address option to display information only on the 802 1X enabled port to which the supplicant is connected If you enable 802 1X multi supplicant authentication on a port additional 802 1X configuration details Port Authentication status Untagged VLAN ID Authentication PAE state and Backend state are displayed for each supplicant...

Page 209: ...licants 128 Port status and State info for Supplicant 00 00 01 00 07 00 Port Auth Status AUTHORIZED MAC AUTH BYPASS Untagged VLAN id 4094 Auth PAE State Authenticated Backend State Idle FTOS Example Interface FTOS show dot1x interface g 0 21 802 1x information on Gi 0 21 Dot1x Status Enable Port Control AUTO Re Authentication Disable Guest VLAN Enable Guest VLAN id 100 Auth Fail VLAN Disable Auth ...

Page 210: ...t 00 00 00 00 00 11 192 802 1X www dell com s u p p o r t d e l l com Port Auth Status AUTHORIZED Untagged VLAN id 300 Auth PAE State Authenticated Backend State Idle Port status and State info for Supplicant 00 00 00 00 00 15 Port Auth Status AUTHORIZED GUEST VLAN Untagged VLAN id 100 Auth PAE State Authenticated Backend State Idle 210 ...

Page 211: ... commands that use the Trace function refer to the Trace List Commands section in the Security chapter NOTE For IPv6 ACL commands refer to IPv6 Access Control Lists IPv6 ACLs Commands Common to all ACL Types The following commands are available within each ACL mode and do not have mode specific options Some commands in this chapter may use similar names but require different options to support the...

Page 212: ... S4810 Syntax remark remark number description Parameters remark number Enter the remark number The range is 0 to 4294967290 NOTE You can use the same sequence number for the remark and an ACL rule description Enter a description of up to 80 characters Defaults Not configured Command Modes CONFIGURATION STANDARD ACCESS LIST CONFIGURATION EXTENDED ACCESS LIST CONFIGURATION MAC ACCESS LIST STANDARD ...

Page 213: ...tandard test remark 5 Permit traffic from XYZ Inc seq 5 permit 1 1 1 0 24 remark 10 Deny rest of the traffic seq 10 Deny any FTOS config std nacl Related Commands show config displays the current ACL configuration show config Display the current ACL configuration C Series E Series S Series Z Series S4810 Syntax show config Command Modes CONFIGURATION STANDARD ACCESS LIST CONFIGURATION EXTENDED ACC...

Page 214: ...ss list name command Parameters access list name Enter the name of a configured Standard ACL up to 140 characters Defaults Not configured Command Modes LINE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 8 1 0 Increase the name string to accept up to 140 characters Prior to 7 8 1 0 names...

Page 215: ...ess list name Enter the name of a configured access list up to 140 characters in Enter the keyword in to apply the ACL to incoming traffic out Enter the keyword out to apply the ACL to outgoing traffic NOTE Available only on the 12 port 1 Gigabit Ethernet FLEX line card For specifications refer to your line card documentation Not available on the S Series implicit permit OPTIONAL Enter the keyword...

Page 216: ...is applied to the interface on a Layer 3 port or on a Layer 2 Layer 3 port Related Commands ip access list standard configures a standard ACL ip access list extended configures an extended ACL ip control plane egress filter Enable egress Layer 3 ACL lookup for IPv4 CPU traffic Z Series S4810 Syntax ip control plane egress filter Defaults Not enabled Command Modes EXEC Privilege Command History Ver...

Page 217: ...Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 5 1 0 Added support for the 4 port 40G line cards on ExaScale Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced Usage Information show ip accounting access lists Field Description Extended IP Displays the name of the IP ACL se...

Page 218: ...format of the network from which the packet was sent mask OPTIONAL Enter a network mask in prefix format x or A B C D The mask when specified in A B C D format may be either contiguous or non contiguous discontiguous any Enter the keyword any to specify that all routes are subject to the filter host ip address Enter the keyword host and then enter the IP address to specify a host IP address only c...

Page 219: ...rt for the non contiguous mask and added the monitor option Version 6 5 1 0 Expanded to include the optional QoS order priority for the ACL entry Usage Information The order option is relevant in the context of the Policy QoS feature only For more information refer to the Quality of Service chapter of the FTOS Configuration Guide When you use the log option the CP processor logs detail the packets...

Page 220: ...1 0 Increased the name string to accept up to 140 characters Prior to 7 8 1 0 names are up to 16 characters long Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 7 4 1 0 Added support for the non contiguous mask and added the monitor option Version 6 5 1 0 Expanded to include the optional QoS order priority for the ACL entry Usage Information FTOS suppo...

Page 221: ...d then enter the IP address to specify a host IP address or hostname count OPTIONAL Enter the keyword count to count packets processed by the filter dscp OPTIONAL Enter the keyword dcsp to match to the IP DCSCP values byte OPTIONAL Enter the keyword byte to count bytes processed by the filter log OPTIONAL E Series only Enter the keyword log to enter ACL matches in the log order OPTIONAL Enter the ...

Page 222: ...the packets that match Depending on how many packets match the log entry and at what rate the CP may become busy as it has to log these packets details The monitor option is relevant in the context of flow based monitoring only For more information refer to Port Monitoring The C Series and S Series cannot count both packets and bytes when you enter the count byte options only bytes are incremented...

Page 223: ...s Version 7 4 1 0 Introduced on the E Series Usage Information When you have exhausted all the sequence numbers this feature permits re assigning a new sequence number to entries of an existing access list Related Commands resequence prefix list ipv4 resequences a prefix list resequence prefix list ipv4 Re assign sequence numbers to entries of an existing prefix list C Series E Series S Series Z S...

Page 224: ...ber deny permit source mask any host ip address count byte log dscp value order monitor fragments To delete a filter use the no seq sequence number command Parameters sequence number Enter a number from 0 to 4294967290 For the S4810 the range is 0 to 65534 deny Enter the keyword deny to configure a filter to drop packets meeting this condition permit Enter the keyword permit to configure a filter ...

Page 225: ...onfiguration Guide fragments Enter the keyword fragments to use ACLs to control packet fragments Defaults Not configured Command Modes CONFIGURATION STANDARD ACCESS LIST Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 3 1 0 Add the DSCP value for ACL matching Version 8 2 1 0 Allows ACL control of fragmented packets for IP Layer 3 ACLs Vers...

Page 226: ... ACL is created without any rule and then applied to an interface ACL behavior reflects an implicit permit The following commands configure extended IP ACLs which in addition to the IP address also examine the packet s protocol type C Series and S Series platforms except the S4810 support Ingress IP ACLs only The S4810 and Z9000 support both Ingress and Egress IP ACLs NOTE Also refer to the Comman...

Page 227: ... dcsp to match to the IP DCSCP values order OPTIONAL Enter the keyword order to specify the QoS priority for the ACL entry The range is 0 to 254 where 0 is the highest priority and 254 is the lowest lower order numbers have a higher priority If you do not use the keyword order the ACLs have the lowest order by default 255 monitor OPTIONAL Enter the keyword monitor when the rule is describing the t...

Page 228: ...ptions only bytes are incremented NOTE When ACL logging and byte counters are configured simultaneously byte counters may display an incorrect value Configure packet counters with logging instead Related Commands deny tcp assigns a filter to deny TCP packets deny udp assigns a filter to deny UDP packets ip access list extended creates an extended ACL deny arp Configure an egress filter that drops ...

Page 229: ...er the keyword order to specify the QoS priority for the ACL entry The range is 0 to 254 where 0 is the highest priority and 254 is the lowest lower order numbers have a higher priority If you did not use the keyword order the ACLs have the lowest order by default 255 monitor OPTIONAL Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL in which yo...

Page 230: ...itor To remove this filter you have two choices Use the no seq sequence number command if you know the filter s sequence number Use the no deny ether type protocol type number destination mac address mac address mask any vlan vlan id source mac address mac address mask any command Parameters protocol type number Enter a number from 600 to FFFF as the specific Ethernet type traffic to drop destinat...

Page 231: ...ration Guide Defaults Not configured Command Modes CONFIGURATION EXTENDED ACCESS LIST Command History Version 8 2 1 0 Allows ACL control of fragmented packets for IP Layer 3 ACLs Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Added the monitor option Version 6 5 1 0 Expanded to include the optional QoS order priority for the ACL entry Usage Information The order option is rele...

Page 232: ...cify a host IP address destination Enter the IP address of the network or host to which the packets are sent dscp Enter this keyword dscp to deny a packet based on the DSCP value The range is 0 to 63 message type OPTIONAL Enter an ICMP message type either with the type and code if necessary numbers or with the name of the message type The range is 0 to 255 for ICMP type and 0 to 255 for ICMP code ...

Page 233: ...re only For more information refer to the Quality of Service chapter of the FTOS Configuration Guide The monitor option is relevant in the context of flow based monitoring only For more information refer to the Port Monitoring chapter When you use the log option the CP processor logs details the packets that match Depending on how many packets match the log entry and at what rate the CP may become...

Page 234: ...k redirect net tos redirect Network redirect for TOS net tos unreachable Network unreachable for TOS net unreachable Network unreachable network unknown Network unknown no room for option Parameter required but no room option missing Parameter required but not present packet too big Fragmentation needed and DF set parameter problem All parameter problems port unreachable Port unreachable precedenc...

Page 235: ...s Use the no seq sequence number command if you know the filter s sequence number Use the no deny tcp source mask any host ip address destination mask any host ip address command Parameters source Enter the IP address of the network or host from which the packets are sent mask Enter a network mask in prefix format x or A B C D The mask when specified in A B C D format may be either contiguous or n...

Page 236: ... to count packets processed by the filter byte OPTIONAL Enter the keyword byte to count bytes processed by the filter log OPTIONAL E Series only Enter the keyword log to have the information kept in an ACL log file Supported on Jumbo enabled line cards only order OPTIONAL Enter the keyword order to specify the QoS priority for the ACL entry The range is 0 to 254 where 0 is the highest priority and...

Page 237: ...me busy as it has to log these packets details The C Series and S Series cannot count both packets and bytes when you enter the count byte options only bytes are incremented NOTE When ACL logging and byte counters are configured simultaneously byte counters may display an incorrect value Configure packet counters with logging instead Most ACL rules require one entry in the CAM However rules with T...

Page 238: ...any host ip address command Parameters source Enter the IP address of the network or host from which the packets were sent mask Enter a network mask in prefix format x or A B C D The mask when specified in A B C D format may be either contiguous or non contiguous any Enter the keyword any to specify that all routes are subject to the filter host ip address Enter the keyword host and then enter the...

Page 239: ... that you want to monitor and the ACL in which you are creating the rule is applied to the monitored interface For more information refer to the section Flow based Monitoring in the Port Monitoring chapter of the FTOS Configuration Guide fragments Enter the keyword fragments to use ACLs to control packet fragments Defaults Not configured Command Modes CONFIGURATION EXTENDED ACCESS LIST Command His...

Page 240: ... TCP port range of 4000 8000 uses eight entries in the CAM Rule Data Mask From To Covered 1 0000111110100000 1111111111100000 4000 4031 32 2 0000111111000000 1111111111000000 4032 4095 64 3 0001000000000000 1111100000000000 4096 6143 2048 4 0001100000000000 1111110000000000 6144 7167 1024 5 0001110000000000 1111111000000000 7168 7679 512 6 0001111000000000 1111111100000000 7680 7935 256 7 00011111...

Page 241: ...access list extended TESTListEXTEND FTOS config ext nacl Related Commands ip access list standard configures a standard IP access list show config displays the current configuration permit Configure a filter to pass IP packets meeting the filter criteria C Series E Series S Series Z Series S4810 Syntax permit ip ip protocol number source mask any host ip address destination mask any host ip addres...

Page 242: ...OPTIONAL Enter the keyword order to specify the QoS priority for the ACL entry The range is 0 to 254 where 0 is the highest priority and 254 is the lowest lower order numbers have a higher priority If you do not use the keyword order the ACLs have the lowest order by default 255 monitor OPTIONAL Enter the keyword monitor when the rule is describing the traffic that you want to monitor and the ACL ...

Page 243: ...OTE When ACL logging and byte counters are configured simultaneously byte counters may display an incorrect value Configure packet counters with logging instead Related Commands ip access list extended creates an extended ACL permit tcp assigns a permit filter for TCP packets permit udp assigns a permit filter for UDP packets permit arp Configure a filter that forwards ARP packets meeting this cri...

Page 244: ... keyword log to have the information kept in an ACL log file order OPTIONAL Enter the keyword order to specify the QoS priority for the ACL entry The range is 0 to 254 where 0 is the highest priority and 254 is the lowest lower order numbers have a higher priority If you do not use the keyword order the ACLs have the lowest order by default 255 monitor OPTIONAL Enter the keyword monitor when the r...

Page 245: ...her type protocol type number destination mac address mac address mask any vlan vlan id source mac address mac address mask any count byte log order monitor To remove this filter you have two choices Use the no seq sequence number command if you know the filter s sequence number Use the no permit ether type protocol type number destination mac address mac address mask any vlan vlan id source mac a...

Page 246: ...e creating the rule is applied to the monitored interface NOTE For more information refer to the Flow based Monitoring section in the Port Monitoring chapter of the FTOS Configuration Guide Defaults Not configured Command Modes CONFIGURATION EXTENDED ACCESS LIST Command History Version 8 2 1 0 Allows ACL control of fragmented packets for IP Layer 3 ACLs Version 8 1 1 0 Introduced on the E Series E...

Page 247: ...ic on the interface host ip address Enter the keyword host and then enter the IP address to specify a host IP address destination Enter the IP address of the network or host to which the packets are sent dscp Enter the keyword dscp to deny a packet based on the DSCP value The range is 0 to 63 message type OPTIONAL Enter an ICMP message type either with the type and code if necessary numbers or wit...

Page 248: ... relevant in the context of the Policy QoS feature only For more information refer to the Quality of Service chapter of the FTOS Configuration Guide When you use the log option the CP processor logs details about the packets that match Depending on how many packets match the log entry and at what rate the CP may become busy as it has to log these packets details The monitor option is relevant in t...

Page 249: ...n rst reset the connection syn synchronize sequence numbers urg urgent field dscp Enter the keyword dscp to deny a packet based on the DSCP value The range is 0 to 63 operator OPTIONAL Enter one of the following logical operand eq equal to neq not equal to gt greater than lt less than range inclusive range of ports you must specify two ports for the port parameter port port Enter the application l...

Page 250: ...lts Not configured Command Modes CONFIGURATION EXTENDED ACCESS LIST Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 1 0 Added the keyword dscp Version 8 2 1 0 Allows ACL control of fragmented packets for IP Layer 3 ACLs Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 7 4 1 0 Added...

Page 251: ...024 5 0001110000000000 1111111000000000 7168 7679 512 6 0001111000000000 1111111100000000 7680 7935 256 7 0001111100000000 1111111111000000 7936 7999 64 8 0001111101000000 1111111111111111 8000 8000 1 Total Ports 4001 Example An ACL rule with a TCP port lt 1023 uses only one entry in the CAM Rule Data Mask From To Covered 1 0000000000000000 1111110000000000 0 1023 1024 Total Ports 1024 Related Com...

Page 252: ... 65535 destination Enter the IP address of the network or host to which the packets are sent count OPTIONAL Enter the keyword count to count packets processed by the filter byte OPTIONAL Enter the keyword byte to count bytes processed by the filter log OPTIONAL E Series only Enter the keyword log to have the information kept in an ACL log file order OPTIONAL Enter the keyword order to specify the ...

Page 253: ...ate the CP may become busy as it has to log these packets details The C Series and S Series cannot count both packets and bytes when you enter the count byte options only bytes are incremented The monitor option is relevant in the context of flow based monitoring only For more information refer to Port Monitoring Most ACL rules require one entry in the CAM However rules with TCP and UDP port opera...

Page 254: ...SeqNum Enter the starting sequence number to resequence The range is 0 to 4294967290 Step to Increment Enter the step to increment the sequence number The range is 1 to 4294967290 Defaults none Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale IPv4 Version 7 8 1 0 Increased the name string to accept up to ...

Page 255: ...up to 140 characters Prior to 7 8 1 0 names were up to 16 characters long Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 7 4 1 0 Introduced on the E Series Usage Information When you have exhausted all the sequence numbers this feature permits re assigning a new sequence number to entries of an existing prefix list Related Commands resequence access l...

Page 256: ...in dotted decimal format A B C D as the target IP address of the ARP opcode code number Enter the keyword opcode and then enter the number of the ARP opcode The range is 1 to 16 count OPTIONAL Enter the keyword count to count packets the filter processes byte OPTIONAL Enter the keyword byte to count bytes the filter processes log OPTIONAL E Series only Enter the keyword log to have the information...

Page 257: ...log option the CP processor logs details about the packets that match Depending on how many packets match the log entry and at what rate the CP may become busy as it has to log these packets details You cannot include IP TCP or UDP Layer 3 filters in an ACL configured with ARP or Ether type Layer 2 filters Apply Layer 2 ACLs to interfaces in Layer 2 mode NOTE When ACL logging and byte counters are...

Page 258: ...fore a mask of ff ff ff ff ff ff allows entries that do not match and a mask of 00 00 00 00 00 00 only allows entries that match exactly count OPTIONAL Enter the keyword count to count packets the filter processes byte OPTIONAL Enter the keyword byte to count bytes the filter processes log OPTIONAL E Series only Enter the keyword log to have the information kept in an ACL log file order OPTIONAL E...

Page 259: ...kets match the log entry and at what rate the CP may become busy as it has to log these packets details You cannot include IP TCP or UDP Layer 3 filters in an ACL configured with ARP or Ether type Layer 2 filters Apply Layer 2 ACLs to interfaces in Layer 2 mode NOTE When ACL logging and byte counters are configured simultaneously byte counters may display an incorrect value Configure packet counte...

Page 260: ...ter one of the following logical operands eq equal to neq not equal to gt greater than lt less than range inclusive range of ports you must specify two ports for the port parameter port port OPTIONAL Enter the application layer port number Enter two port numbers if you are using the range logical operand The range is 0 to 65535 The following list includes some common TCP port numbers 23 Telnet 20 ...

Page 261: ... 0 Introduced on the S4810 Version 8 3 1 0 Add the DSCP value for ACL matching Version 8 2 1 0 Allows ACL control of fragmented packets for IP Layer 3 ACLs Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 7 4 1 0 Added support for the non contiguous mask and added the monitor option Deprecated the keyw...

Page 262: ...ets Common MAC Access List Commands The following commands are available within both MAC ACL modes Standard and Extended and do not have mode specific options These commands allow you to clear display and assign MAC ACL configurations The C Series and S Series platforms except the S4810 support Ingress MAC ACLs only The S4810 and Z9000 support both Ingress and Egress MAC ACLs clear counters mac ac...

Page 263: ...d in to configure the ACL to filter incoming traffic out Enter the keyword out to configure the ACL to filter outgoing traffic NOTE The option is not available on the S Series Defaults none Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 8 1 0 Increased the name string to accept up to 140 characters Prio...

Page 264: ...rface enter the keyword sonet and then enter the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet and then enter the slot port information For a 40 Gigabit Ethernet interface enter the keyword fortyGigE and then enter the slot port information in out Identify whether ACL is applied on ingress or egress side Command Modes EXEC EXEC Privilege Command His...

Page 265: ...00 00 49 count 0 packets seq 25 permit any any count 0 packets FTOS Standard MAC ACL Commands When you create an access control list without any rule and then apply it to an interface the ACL behavior reflects implicit permit These commands configure standard MAC ACLs The C Series and S Series platforms except the S4810 system support Ingress MAC ACLs only The S4810 and Z9000 support both Ingress ...

Page 266: ...d History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 7 4 1 0 Added the monitor option Usage Information When you use the log option the CP processor logs detail the packets that match Depending on how many packets match the log entry and at what rate the C...

Page 267: ...dware dependent For detailed specifications on entries allowed per ACL refer to your line card documentation NOTE Ingress ACLs are supported on C Series and S Series platforms only Example FTOS conf mac access list access list standard TestMAC FTOS config std macl deny Specify packets to reject description List description exit Exit from access list configuration mode no Negate a command or set it...

Page 268: ... NOTE For more information refer to the Flow based Monitoring section in the Port Monitoring chapter of the FTOS Configuration Guide Defaults Not configured Command Modes CONFIGURATION MAC ACCESS LIST STANDARD Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Se...

Page 269: ...tch If no mask is specified a mask of 00 00 00 00 00 00 is applied in other words the filter allows only MAC addresses that match count OPTIONAL Enter the keyword count to count packets the filter processes byte OPTIONAL Enter the keyword byte to count bytes the filter processes log OPTIONAL E Series only Enter the keyword log to log the packets monitor OPTIONAL Enter the keyword monitor when the ...

Page 270: ...ries and S Series platforms support Ingress MAC ACLs only The S4810 and Z9000 support both Ingress and Egress MAC ACLs NOTE For more information also refer to the Commands Common to all ACL Types and Common MAC Access List Commands sections deny Configure a filter to drop packets that match the filter criteria C Series E Series S Series Z Series Syntax deny any host mac address mac source address ...

Page 271: ...rame format llc is the IEEE 802 3 frame format snap is the IEEE 802 3 SNAP frame format count OPTIONAL Enter the keyword count to count packets processed by the filter byte OPTIONAL Enter the keyword byte to count bytes processed by the filter log OPTIONAL E Series only Enter the keyword log to log the packets monitor OPTIONAL Enter the keyword monitor when the rule is describing the traffic that ...

Page 272: ...ame Enter a text string as the MAC access list name up to 140 characters cpu qos Enter the keywords cpu qos to assign this ACL to control plane traffic only CoPP Defaults none Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 10 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 8 1 0 Increased the name string to a...

Page 273: ...ies E Series S Series Z Series Syntax permit any host mac address mac source address mac source address mask any host mac address mac destination address mac destination address mask ethertype operator count byte log monitor To remove this filter you have two choices Use the no seq sequence number command if you know the filter s sequence number Use the no permit any host mac address mac source ad...

Page 274: ...applied to the monitored interface NOTE For more information refer to the Flow based Monitoring section in the Port Monitoring chapter of the FTOS Configuration Guide Defaults Not configured Command Modes CONFIGURATION MAC ACCESS LIST EXTENDED Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Vers...

Page 275: ... MAC ACL supports an inverse mask therefore a mask of ff ff ff ff ff ff allows entries that do not match and a mask of 00 00 00 00 00 00 only allows entries that match exactly mac source address mask Specify which bits in the MAC address must be matched mac destination address Enter the destination MAC address and mask in nn nn nn nn nn nn format mac destination address mask Specify which bits in ...

Page 276: ...ormation When you use the log option the CP processor logs details about the packets that match Depending on how many packets match the log entry and at what rate the CP may become busy as it has to log these packets details NOTE When ACL logging and byte counters are configured simultaneously byte counters may display an incorrect value Configure packet counters with logging instead Related Comma...

Page 277: ...list deny Configure a filter to drop packets meeting the criteria specified C Series E Series S Series Z Series Syntax deny ip prefix ge min prefix length le max prefix length To delete a drop filter use the no deny ip prefix command Parameters ip prefix Specify an IP prefix in the network length format For example 35 0 0 0 8 means match the first 8 bits of address 35 0 0 0 ge min prefix length OP...

Page 278: ...Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 8 1 0 Increased the name string to accept up to 140 characters Prior to 7 8 1 0 names are up to 16 characters long Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series Usage...

Page 279: ...000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Usage Information Sequence numbers for this filter are automatically assigned starting at sequence number 5 If you do not use the ge or le options only packets with an exact match to the prefix are filtered Rela...

Page 280: ...s a number from zero 0 to 32 bitmask number Enter the keyword bitmask and then enter a bit mask number in dotted decimal format Defaults Not configured Command Modes PREFIX LIST Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 3 1 0 Added the b...

Page 281: ...the E Series ExaScale Version 7 8 1 0 Increased the name string to accept up to 140 characters Prior to 7 8 1 0 names are up to 16 characters long Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Example FTOS show ip prefix list detail Prefix list with the last deletion insertion filter_ospf ip prefix list filter_i...

Page 282: ...to 7 8 1 0 names are up to 16 characters long Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Example FTOS show ip prefix summary Prefix list with the last deletion insertion test ip prefix list test count 3 range entries 1 sequences 5 15 ip prefix list test1 count 2 range entries 2 sequences 5 10 ip prefix list t...

Page 283: ...simply moves to the next sequence number also known as an implied continue If a match clause exists the continue feature executes only after a successful match occurs If there are no successful matches the continue feature is ignored Match clause with Continue clause The continue feature can exist without a match clause A continue clause without a match clause executes and jumps to the specified r...

Page 284: ...iption to this route map C Series E Series S Series Z Series Syntax description description To remove the description use the no description description command Parameters description Enter a description to identify the route map 80 characters maximum Defaults none Command Modes ROUTE MAP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale p...

Page 285: ...S Series Z Series Syntax match community community list name exact To delete a community match filter use the no match community command Parameters community list name Enter the name of a configured community list exact OPTIONAL Enter the keywords exact to process only those routes with this community list name Defaults Not configured Command Modes ROUTE MAP Command History Version 8 3 11 1 Introd...

Page 286: ... to 255 for TeraScale and 1 to 512 for ExaScale For a SONET interface enter the keyword sonet and then enter the slot port information For a Ten Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a 40 Gigabit Ethernet interface enter the keyword fortyGigE and then enter the slot port information For a VLAN enter the keyword vlan and then enter...

Page 287: ...0 Increased the name string to accept up to 140 characters Prior to 7 8 1 0 names are up to 16 characters long Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Related Commands match interface redistributes routes that match the next hop interface match ip next hop redistributes routes that match the next hop IP ad...

Page 288: ...outes advertised by other routers match metric redistributes routes that match a specific metric match route type redistributes routes that match a route type match tag redistributes routes that match a specific tag match ip route source Configure a filter to match based on the routes advertised by routes specified in IP access lists or IP prefix lists C Series E Series S Series Z Series Syntax ma...

Page 289: ...ue To delete a value use the no match metric metric value command Parameters metric value Enter a value to match The range is zero 0 4294967295 Defaults Not configured Command Modes ROUTE MAP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6...

Page 290: ... E Series ExaScale pre Version 6 1 1 0 Introduced on the E Series match route type Configure a filter to match routes based on the how the route is defined C Series E Series S Series Z Series S4810 Syntax match route type external type 1 type 2 internal level 1 level 2 local To delete a match use the no match route type local internal external type 1 type 2 level 1 level 2 command Parameters exter...

Page 291: ...at match routes advertised by other routers match metric redistributes routes that match a specific metric match tag redistributes routes that match a specific tag match tag Configure a filter to redistribute only routes that match a specified tag value C Series E Series S Series Z Series S4810 Syntax match tag tag value To remove a match use the no match tag command Parameters tag value Enter a v...

Page 292: ...0 characters to name the route map for easy identification permit OPTIONAL Enter the keyword permit to set the route map default as permit If you do not specify a keyword the default is permit deny OPTIONAL Enter the keyword deny to set the route map default as deny sequence number OPTIONAL Enter a number to identify the route map for editing and sequencing with other route maps You are prompted f...

Page 293: ...enter up to eight AS numbers to be inserted into the BGP path information The range is 1 to 65535 Defaults Not configured Command Modes ROUTE MAP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0...

Page 294: ...ute redistribution set metric specify the metric value assigned to redistributed routes set metric type specify the metric type assigned to redistributed routes set tag specify the tag assigned to redistributed routes set comm list delete Configure a filter to remove the specified community list from the BGP route s COMMUNITY attribute C Series E Series S Series Z Series S4810 Syntax set comm list...

Page 295: ...ute set community specifies a COMMUNITY attribute set community Allows you to assign a BGP COMMUNITY attribute C Series E Series S Series Z Series S4810 Syntax set community community number local as no advertise no export none additive To delete a BGP COMMUNITY attribute assignment use the no set community community number local as no advertise no export none command Parameters community number E...

Page 296: ...ity redistributes routes that match the COMMUNITY attribute neighbor send community assigns the COMMUNITY attribute show ip bgp community displays BGP community groups show ip community lists displays configured Community access lists set level Configure a filter to specify the IS IS level or OSPF area to which matched routes are redistributed C Series E Series S Series Z Series S4810 Syntax set l...

Page 297: ...e assigned to redistributed routes set tag specifies the tag assigned to redistributed routes set local preference Configure a filter to set the BGP LOCAL_PREF attribute for routers within the local autonomous system C Series E Series S Series Z Series S4810 Syntax set local preference value To delete a BGP LOCAL_PREF attribute use the no set local preference command Parameters value Enter a numbe...

Page 298: ...e Enter a number as the new metric value The range is zero 0 to 4294967295 Defaults Not configured Command Modes ROUTE MAP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Se...

Page 299: ... E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Related Commands set automatic tag computes the tag value of the route set level specifies the OSPF area for route redistribution set metric specifies the metric value assigned to redistributed routes set tag specifies the tag assigned to redistrib...

Page 300: ...the next hop for a BGP neighbor set origin Configure a filter to manipulate the BGP ORIGIN attribute C Series E Series S Series Z Series S4810 Syntax set origin igp egp incomplete To delete an ORIGIN attribute setting use the no set origin command Parameters egp Enter the keyword egp to set routes originating from outside the local AS igp Enter the keyword igp to set routes originating within the ...

Page 301: ...putes the tag value of the route set level specifies the OSPF area for route redistribution set metric specifies the metric value assigned to redistributed routes set metric type specifies the route type assigned to redistributed routes set weight Configure a filter to add a non RFC compliant attribute to the BGP route to assist with route selection C Series E Series S Series Z Series S4810 Syntax...

Page 302: ...weight attribute of zero show config Display the current route map configuration C Series E Series S Series Z Series S4810 Syntax show config Command Modes ROUTE MAP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series...

Page 303: ...es Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Example FTOS show route map route map firpo permit sequence 10 Match clauses Set clauses tag 34 FTOS Related Commands route map configures a route map AS Path Commands The following commands configure AS Path ACLs deny Create a filter to drop routes that match the route s AS PATH attribute Use regular expr...

Page 304: ...ace right brace left parenthesis right parenthesis the beginning of the input string the end of the input string or a space pipe matches either character Defaults Not configured Command Modes AS PATH ACL Usage Information The regular expression must match part of the ASCII text in the AS PATH attribute of the BGP route Command History Version 8 1 1 0 Introduced on the E Series ExaScale pre Version...

Page 305: ... a regular expression to match BGP AS PATH attributes Use one or a combination of the following period matches on any single character including white space asterisk matches on sequences in a pattern zero or more sequences plus sign matches on sequences in a pattern one or more sequences question mark matches sequences in a pattern 0 or 1 sequences NOTE You must enter an escape sequence CNTL v pri...

Page 306: ...onfig as path show config ip as path access list snickers deny 3 FTOS config as path show ip as path access lists Display the all AS PATH access lists configured on the E Series E Series S4810 Syntax show ip as path access lists Command Modes EXEC EXEC Privilege Command History Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale pre Version 6 1 1 0 Introduce...

Page 307: ...sed to external BGP peers no advertise Enter the keywords no advertise to drop all routes containing the well known community attribute of NO_ADVERTISE All routes with the NO_ADVERTISE 0xFFFFFF02 community attribute must not be advertised to other BGP peers no export Enter the keywords no export to drop all routes containing the well known community attribute of NO_EXPORT All routes with the NO_EX...

Page 308: ...text in the AS PATH attribute of the BGP route Command History Version 8 1 1 0 Introduced on the E Series ExaScale pre Version 6 1 1 0 Introduced on the E Series ip community list Enter COMMUNITY LIST mode and create an IP community list for BGP E Series S4810 Syntax ip community list comm list name To delete a community list use the no ip community list comm list name command Parameters comm list...

Page 309: ...advertised to other BGP peers no export Enter the keywords no export to drop all routes containing the well known community attribute of NO_EXPORT All routes with the NO_EXPORT 0xFFFFFF01 community attribute must not be advertised outside a BGP confederation boundary regexp regular expression Enter the keyword regexp and then enter a regular expression Use one or a combination of the following per...

Page 310: ...current configuration E Series Syntax show config Command Modes COMMUNITY LIST Command History Version 8 1 1 0 Introduced on the E Series ExaScale pre Version 6 1 1 0 Introduced on the E Series Example FTOS config std community list show config ip community list standard patches deny 45 1 permit no export FTOS config std community list show ip community lists Display configured IP community lists ...

Page 311: ... 1 0 names are up to 16 characters long pre Version 6 1 1 0 Introduced on the E Series Example FTOS show ip community lists ip community list standard 1 deny 701 20 deny 702 20 deny 703 20 deny 704 20 deny 705 20 deny 14551 20 deny 701 112 deny 702 112 deny 703 112 deny 704 112 deny 705 112 deny 14551 112 deny 701 666 deny 702 666 deny 703 666 deny 704 666 deny 705 666 deny 14551 666 FTOS 311 ...

Page 312: ...312 ...

Page 313: ...nterval interval min_rx min_rx multiplier value role active passive Parameters interval milliseconds OPTIONAL Enter the keyword interval to specify non default BFD session parameters beginning with the transmission interval The range is 50 to 1000 The default is 100 min_rx milliseconds Enter the keyword min_rx to specify the minimum rate at which the local system would like to receive control pack...

Page 314: ...disable BFD on an interface if BFD is explicitly enabled using the isis bfd all neighbors command Neighbors that have been explicitly enabled or disabled for a BFD session with the bfd neighbor or neighbor bfd disable commands in ROUTER BGP mode do not inherit the global BFD enable disable values configured with the bfd neighbor command or configured for the peer group to which a neighbor belongs ...

Page 315: ...ATION Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 3 10 0 Introduced on the S4810 Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the C Series Version 7 4 1 0 Introduced on the E Series bfd enable Interface Enable BFD on an interface C Series E Series Z Series S4810 Syntax bfd enable Defaults BFD is enabled on all interfaces when you enable BF...

Page 316: ... is 100 multiplier value Enter the keywords multiplier to specify the number of packets that must be missed in order to declare a session down The range is 3 to 50 The default is 3 role active passive Enter the role that the local system assumes Active The active system initiates the BFD session Both systems can be active for the same session Passive The passive system does not initiate a session ...

Page 317: ...ion 8 2 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the C Series Version 7 5 1 0 Added support for VLAN and port channel interfaces on the E Series Version 7 4 1 0 Introduced on the E Series Related Commands show bfd neighbors displays the BFD neighbor information on all interfaces or a specified interface bfd protocol liveness Enable the BFD protocol liveness feature E S...

Page 318: ...hen enter the slot port information For a 10 Gigabit Ethernet interface enter the keyword tengigabitethernet and then enter the slot port information For a SONET interface enter the keyword sonet and then enter the slot port information For a port channel interface enter the keyword port channel and then enter a number For the C Series the range is 1 to 128 For the E Series the range is 1 to 255 f...

Page 319: ... and then enter the slot port information For a SONET interface enter the keyword sonet and then enter the slot port information For a port channel interface enter the keyword port channel and then enter a number For the C Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For VLAN interfaces enter the keyword vlan and then enter a number fr...

Page 320: ...assive command Parameters interval milliseconds OPTIONAL Enter the keywords interval to specify non default BFD session parameters beginning with the transmission interval The range is 50 to 1000 The default is 100 min_rx milliseconds Enter the keywords min_rx to specify the minimum rate at which the local system would like to receive control packets from the remote system The range is 50 to 1000 ...

Page 321: ...disable BFD on this interface interval milliseconds OPTIONAL Enter the keywords interval to specify non default BFD session parameters beginning with the transmission interval The range is 50 to 1000 The default is 100 min_rx milliseconds Enter the keywords min_rx to specify the minimum rate at which the local system would like to receive control packets from the remote system The range is 50 to 1...

Page 322: ...name bfd Parameters ip address Enter the IP address of the BGP neighbor that you want to explicitly enable for BFD sessions in dotted decimal format A B C D peer group name Enter the name of the peer group that you want to explicitly enable for BFD sessions Defaults none Command Modes ROUTER BGP Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 3 8 0 Introduced on the S4810 Version...

Page 323: ...essions Defaults none Command Modes ROUTER BGP Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 3 8 0 Introduced on the S4810 Version 8 4 1 3 Introduced on the E Series ExaScale Usage Information When you explicitly disable a BGP neighbor for a BFD session with the neighbor bfd disable command The neighbor does not inherit the global BFD disable values configured with the bfd neig...

Page 324: ... the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For VLAN interfaces enter the keyword vlan and then enter a number from 1 to 4094 For ExaScale VLAN interfaces the range is 1 to 2730 VLAN IDs can be 0 to 4093 bgp OPTIONAL Enter the keyword bgp to display counter information for BFD sessions established with BGP neighbors isis OPTIONAL Enter the ...

Page 325: ...e of the following keywords and slot port or number information For a 1 Gigabit Ethernet interface enter the keyword gigabitethernet and then enter the slot port information For a 10 Gigabit Ethernet interface enter the keyword tengigabitethernet and then enter the slot port information For a SONET interface enter the keyword sonet and then enter the slot port information For a port channel interf...

Page 326: ... OSPF R Static Route RTM LocalAddr RemoteAddr Interface State Rx int Tx int Mult Clients 10 1 3 2 10 1 3 1 Gi 1 3 Up 300 250 3 C Example Detail FTOS show bfd neighbors detail Session Discriminator 1 Neighbor Discriminator 1 Local Addr 10 1 3 2 Local MAC Addr 00 01 e8 02 15 0e Remote Addr 10 1 3 1 Remote MAC Addr 00 01 e8 27 2b f1 Int GigabitEthernet 1 3 State Up Configured parameters TX 100ms RX 1...

Page 327: ...e BFD neighbor interval milliseconds OPTIONAL Enter the keyword interval to specify non default BFD session parameters beginning with the transmission interval The range is 50 to 1000 The default is 100 min_rx milliseconds Enter the keyword min_rx to specify the minimum rate at which the local system would like to receive control packets from the remote system The range is 50 to 1000 The default i...

Page 328: ...Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the C Series Version 7 5 1 0 Introduced on the E Series 328 ...

Page 329: ...mmunities RFC 4360 IPv6 BGP Commands IPv6 MBGP Commands BGP IPv4 Commands Border Gateway Protocol BGP is an external gateway protocol that transmits interdomain routing information within and between Autonomous Systems AS BGP supports classless interdomain routing CIDR and the aggregation of routes and AS paths Basically two routers called neighbors or peers exchange information including full rou...

Page 330: ...p name Parameters ip address mask Enter the IP address and mask of the route to be the aggregate address Enter the IP address in dotted decimal format A B C D and mask in prefix format x advertise map map name OPTIONAL Enter the keywords advertise map followed by the name of a configured route map to set filters for advertising an aggregate route as set OPTIONAL Enter the keyword as set to generat...

Page 331: ...er words they are allowed The opposite is also true routes meeting the permit clause are suppressed If the route is injected via the network command that route still appears in the routing table if the summary only parameter is configured in the aggregate address command The summary only parameter suppresses all advertisements If you want to suppress advertisements to only specific neighbors use t...

Page 332: ...no bgp always compare med Defaults Disabled that is the software only compares MEDs from neighbors within the same AS Command Modes ROUTER BGP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Introduced command Version 7 7 1 0 Introduced on the C Series Usage Information Any update without a MED attribute is the least preferred route ...

Page 333: ...on asdot FTOS conf router_bgp ex FTOS conf do show run grep bgp router bgp 1 bgp four octet as support bgp asnotation asdot FTOS conf router bgp 1 FTOS conf router_bgp bgp asnotation asdot FTOS conf router_bgp ex FTOS conf do show run grep bgp router bgp 1 bgp four octet as support bgp asnotation asdot FTOS conf router bgp 1 FTOS conf router_bgp bgp asnotation asplain FTOS conf router_bgp ex FTOS ...

Page 334: ...mmand History Version 8 3 11 4 Introduced on the Z9000 8 3 7 0 Introduced on the S4810 Usage Information The bestpath router bgp configuration mode command changes the default bestpath selection algorithm The multipath relax option allows load sharing across providers with different but equal length autonomous system paths Without this option ECMP expects the AS paths to be identical for load shar...

Page 335: ...ersion 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 6 3 1 0 Introduced Usage Information The MED is a 4 byte unsigned integer value and the default behavior is to assume a missing MED as 4294967295 This command causes a missing MED to be treated as 0 During path selection paths...

Page 336: ... 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Usage Information Route reflection to clients is not necessary if all client routers are fully meshed Related Commands bgp cluster id assigns an ID to a BGP cluster with two or more route reflectors neighbor route reflector client configures a route reflector and clients bgp cluster id Assign a cluster ID to a BGP cluster wit...

Page 337: ...igure an identifier for a BGP confederation C Series E Series S Series Z Series S4810 Syntax bgp confederation identifier as number To delete a BGP confederation identifier use the no bgp confederation identifier as number command Parameters as number Enter the AS number The range is 0 to 65535 2 byte 1 to 4294967295 4 byte or 0 1 to 65535 65535 dotted format Defaults Not configured Command Modes ...

Page 338: ...5 2 byte 1 to 4294967295 4 byte or 0 1 to 65535 65535 dotted format Defaults Not configured Command Modes ROUTER BGP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Added support for the 4 byte format Usage Information All the routers in the Confederation must be 4...

Page 339: ... suppress value which is compared to the flapping route s Penalty value If the Penalty value is greater than the suppress value the flapping route is no longer advertised that is it is suppressed The range is 1 to 20000 The default is 2000 max suppress time OPTIONAL Enter the maximum number of minutes a route can be suppressed The default is four times the half life value The range is 1 to 255 The...

Page 340: ...d History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Usage Information The bgp default local preference command setting is applied by all routers within the AS To set the local preference for a specific route use the set local preference command in ROUTE MAP mode Related Comm...

Page 341: ...nable the fast external fallover feature which immediately resets the BGP session if a link to a directly connected external peer fails C Series E Series S Series Z Series S4810 Syntax bgp fast external fallover To disable fast external fallover use the no bgp fast external fallover command Defaults Enabled Command Modes ROUTER BGP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8...

Page 342: ...hbor a BGP node or designate a local router to support graceful restart as a receiver only C Series E Series S Series Z Series S4810 Syntax bgp graceful restart restart time seconds stale path time seconds role receiver only To return to the default use the no bgp graceful restart command Parameters restart time seconds Enter the keyword restart time followed by the maximum number of seconds neede...

Page 343: ...ntroduced on the S Series Version 7 7 1 0 Introduced on the C Series Usage Information Use the show logging command in EXEC mode to view BGP neighbor resets The bgp log neighbor changes command appears in the show config command output Related Commands show logging views logging settings and system messages logged to the system bgp non deterministic med Compare MEDs of paths from different autonom...

Page 344: ...he no bgp recursive bgp next hop command Defaults Enabled Command Modes ROUTER BGP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 2 1 0 Introduced Usage Information This command is a knob to disable BGP next hop resolution using BGP learned routes During...

Page 345: ...ressions use up CPU cycles particularly with large databases The Regex Engine Performance Enhancement feature optimizes the CPU usage by caching and reusing regular expression evaluation results This caching and reuse may be at the expensive of RP1 processor memory Examples FTOS conf router_bgp no bgp regex eval optz disable FTOS conf router_bgp do show ip protocols Routing Protocol is ospf 22222 ...

Page 346: ...ig backup To return to the default setting use the no bgp soft reconfig backup command Defaults Off Command Modes ROUTER BGP Command History Version 9 1 0 0 Added support for IPv6 Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 2 1 0 Introduced Usage Information When you...

Page 347: ...8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 5 1 0 Introduced Related Commands capture bgp pdu max buffer size specifies a size for the capture buffer show capture bgp pdu neighbor displays BGP packet capture information capture bgp pdu max buffer size Set the size of the BGP packet capture buffer This buffer size p...

Page 348: ...535 dotted format ip address Enter an IP address in dotted decimal format to reset all prefixes from that neighbor flap statistics OPTIONAL Enter the keyword flap statistics to reset the flap statistics on all prefixes from that neighbor soft OPTIONAL Enter the keyword soft to configure and activate policies without resetting the BGP TCP session that is BGP Soft Reconfiguration NOTE If you enter t...

Page 349: ...GP bgp soft reconfig backup turns on BGP Soft Reconfiguration clear ip bgp dampening Clear information on route dampening and return the suppressed route to the Active state C Series E Series S Series Z Series S4810 Syntax clear ip bgp dampening ip address mask Parameters ip address mask OPTIONAL Enter an IP address in dotted decimal format and the prefix mask in slash format x to clear dampening ...

Page 350: ...s question mark sequences in a pattern either 0 or 1 sequences NOTE You must enter an escape sequence CTRL v prior to entering the regular expression brackets a range of single character patterns parenthesis groups a series of pattern elements to a single element braces minimum and the maximum match count caret the beginning of the input string If you use the caret at the beginning of a sequence o...

Page 351: ...out To disable all BGP debugging use the no debug ip bgp command Parameters ip address Enter the IP address of the neighbor in dotted decimal format peer group peer group name Enter the keywords peer group followed by the name of the peer group to debug in OPTIONAL Enter the keyword in to view only information on inbound BGP routes out OPTIONAL Enter the keyword out to view only information on out...

Page 352: ... Entering a no debug ip bgp command removes all configured debug commands for BGP Related Commands debug ip bgp events views information about BGP events debug ip bgp keepalives views information about BGP keepalives debug ip bgp notifications views information about BGP notifications debug ip bgp updates views information about BGP updates show debugging views enabled debugging operations debug i...

Page 353: ...outbound BGP messages Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Usage Information Enter the no debug ip bgp command to remove all configured debug commands for BGP debug ip bgp keepalives Display information about BGP keepalive me...

Page 354: ...ess peer group peer group name notifications in out To disable debugging use the no debug ip bgp ip address peer group peer group name notifications in out command Parameters ip address OPTIONAL Enter the IP address of the neighbor in dotted decimal format peer group peer group name OPTIONAL Enter the keyword peer group followed by the name of the peer group in OPTIONAL Enter the keyword in to vie...

Page 355: ... on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 2 1 0 Introduced Usage Information This command turns on BGP soft reconfiguration inbound debugging If no neighbor is specified debug turns on for all neighbors debug ip bgp updates Allows you to view information about BGP updates C Series E Series S...

Page 356: ...etric Allows you to change the metric of redistributed routes to locally originated routes Use this command with the redistribute command C Series E Series S Series Z Series S4810 Syntax default metric number To return to the default setting use the no default metric command Parameters number Enter a number as the metric to be assigned to routes from other protocols The range is 1 to 4294967295 De...

Page 357: ...bgp enters ROUTER mode on the switch distance bgp Define an administrative distance for routes C Series E Series TeraScale Z Series S Series Syntax distance bgp external distance internal distance local distance To return to default values use the no distance bgp command Parameters external distance Enter a number to assign to routes learned from a neighbor external to the AS The range is 1 to 255...

Page 358: ...nfigure the maximum number of parallel routes multipath support BGP supports C Series E Series S Series Z Series S4810 Syntax max paths ebgp ibgp number To return to the default values enter the no maximum paths command Parameters ebgp Enter the keyword ebgp to enable multipath support for External BGP routes ibgp Enter the keyword ibgp to enable multipath support for Internal BGP routes number En...

Page 359: ...0 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Usage Information By default when you create a neighbor peer group configuration in the Router BGP context this enables IPv4 Unicast AFI SAFI When you use activate in the new context the neighbor peer group enables for AFI SAFI neighbor add path This command allows the sp...

Page 360: ...r ip address peer group name advertisement interval seconds To return to the default value use the no neighbor ip address peer group name advertisement interval command Parameters ip address OPTIONAL Enter the IP address of the neighbor in dotted decimal format peer group name Enter the name of the peer group to set the advertisement interval for all routers in the peer group seconds Enter a numbe...

Page 361: ...0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series neighbor allowas in Set the number of times an AS number can occur in the AS path C Series E Series S Series Z Series S4810 Syntax neighbor ip address peer group name allowas in number To return to the default value use the no neighbor ip address peer group name allowas in command Parame...

Page 362: ... of the peer group to set the default route of all routers in that peer group route map map name OPTIONAL Enter the keyword route map followed by the name of a configured route map Defaults Not configured Command Modes ROUTER BGP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on ...

Page 363: ...p address peer group name distribute list prefix list name in out To delete a neighbor distribution list use the no neighbor ip address peer group name distribute list prefix list name in out command Parameters ip address Enter the IP address of the neighbor in dotted decimal format peer group name Enter the name of the peer group to apply the distribute list filter to all routers in the peer grou...

Page 364: ...ip address Enter the IP address of the neighbor in dotted decimal format peer group name Enter the name of the peer group ttl OPTIONAL Enter the number of hops as the Time to Live ttl value The range is 1 to 255 The default is 255 Defaults Disabled Command Modes ROUTER BGP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on...

Page 365: ...n with the peer Related Commands show ip bgp neighbors displays information on the BGP neighbors neighbor filter list Configure a BGP filter based on the AS PATH attribute C Series E Series S Series Z Series Syntax neighbor ip address peer group name filter list as path name in out To delete a BGP filter use the no neighbor ip address peer group name filter list as path name in out command Paramet...

Page 366: ...nds role receiver only To return to the default enter the no bgp graceful restart command Parameters ip address Enter the IP address of the neighbor in dotted decimal format peer group name Enter the name of the peer group to apply the filter to all routers in the peer group restart time seconds Enter the keyword restart time followed by the maximum number of seconds needed to restart and bring up...

Page 367: ...or all routers in the peer group as number Enter the AS number to reset all neighbors belonging to that AS The range is 0 to 65535 2 byte 1 to 4294967295 4 byte or 0 1 to 65535 65535 dotted format no prepend Specifies that local AS values do not prepend to announcements from the neighbor Defaults Not configured Command Modes ROUTER BGP Command History Version 8 3 11 1 Introduced on the Z9000 Versi...

Page 368: ...n 7 7 1 0 Introduced on the C Series Usage Information If you configure the neighbor maximum prefix command and the neighbor receives more prefixes than allowed by the neighbor maximum prefix command configuration the neighbor goes down and the show ip bgp summary command displays prfxd in the State PfxRcd column for that neighbor The neighbor remains down until you enter the clear ip bgp command ...

Page 369: ...me Enter the name of a configured peer group encryption type OPTIONAL Enter 7 as the encryption type for the password entered 7 means that the password is encrypted and hidden password Enter a text string up to 80 characters long The first character of the password must be a letter You cannot use spaces in the password Defaults Not configured Command Modes ROUTER BGP Command History Version 8 3 11...

Page 370: ...es S Series Z Series S4810 Syntax neighbor ip address peer group peer group name To delete a peer from a peer group use the no neighbor ip address peer group peer group name command Parameters ip address Enter the IP address of the router to be included in the peer group peer group name Enter the name of a configured peer group Defaults Not configured Command Modes ROUTER BGP Command History Versi...

Page 371: ...eer group and assign it a name C Series E Series S Series Z Series S4810 Syntax neighbor peer group name peer group To delete a peer group use the no neighbor peer group name peer group command Parameters peer group name Enter a text string up to 16 characters long as the name of the peer group Defaults Not configured Command Modes ROUTER BGP Command History Version 8 3 11 1 Introduced on the Z900...

Page 372: ...he Z9000 Version 8 3 8 0 Introduced the limit keyword on the S4810 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Usage Information After you configure a peer group as passive you must assign it a subnet using the neighbor soft reconfiguration inbound command For passive eBGP limits the Remote AS must be different from ...

Page 373: ...entry in the neighbor is considered an internal BGP peer entry This command creates a peer and the newly created peer is disabled Shutdown Related Commands router bgp enters ROUTER BGP mode and configures routes in an AS bgp four octet as support enables 4 byte support for the BGP process neighbor remove private as Remove private AS numbers from the AS PATH of outgoing updates C Series E Series S ...

Page 374: ...dress peer group name route map map name in out command Parameters ip address Enter the IP address of the neighbor in dotted decimal format peer group name Enter the name of the peer group map name Enter the name of an established route map If the Route map is not configured the default is deny to drop all routes in Enter the keyword in to filter inbound routes out Enter the keyword out to filter ...

Page 375: ...eflects routes to the neighbors assigned to the cluster Neighbors in the cluster do not need not be fully meshed By default when you use no route reflector the internal BGP IBGP speakers in the network must be fully meshed The first time you enter this command the router configures as a route reflector and the specified BGP neighbors configure as clients in the route reflector cluster When you rem...

Page 376: ...eries Version 7 7 1 0 Introduced on the C Series Usage Information To configure a COMMUNITY attribute use the set community command in ROUTE MAP mode neighbor shutdown Disable a BGP neighbor or peer group C Series E Series S Series Z Series S4810 Syntax neighbor ip address peer group name shutdown To enable a disabled neighbor or peer group use the neighbor ip address peer group name no shutdown c...

Page 377: ...d Parameters ip address Enter the IP address of the neighbor in dotted decimal format peer group name Enter the name of the peer group to disable or enable all routers within the peer group Defaults Disabled Command Modes ROUTER BGP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced ...

Page 378: ...rsion 7 7 1 0 Introduced on the C Series neighbor timers Set keepalive and hold time timers for a BGP neighbor or a peer group C Series E Series S Series Z Series S4810 Syntax neighbor ip address peer group name timers keepalive holdtime To return to the default values use the no neighbor ip address peer group name timers command Parameters ip address Enter the IP address of the peer router in dot...

Page 379: ... value is the new keepalive value neighbor update source Enable the E Series software to use Loopback interfaces for TCP connections for BGP sessions C Series E Series S Series Z Series S4810 Syntax neighbor ip address peer group name update source interface To use the closest interface use the no neighbor ip address peer group name update source interface command Parameters ip address Enter the I...

Page 380: ...he default is 0 Defaults 0 Command Modes ROUTER BGP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Usage Information In the FTOS best path selection process the path with the highest weight value is preferred NOTE In the FTOS best path selection process the path w...

Page 381: ...d Command Modes ROUTER BGP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Usage Information FTOS software resolves the network address configured by the network command with the routes in the main routing table to ensure that the networks are reachable using non B...

Page 382: ...ute redistribute Redistribute routes into BGP C Series E Series S Series Z Series S4810 Syntax redistribute connected static route map map name To disable redistribution use the no redistribution connected static command Parameters connected Enter the keyword connected to redistribute routes from physically connected interfaces static Enter the keyword static to redistribute manually configured ro...

Page 383: ...c the metric for redistributed static and connected is 0 To redistribute the default route 0 0 0 0 0 configure the neighbor default originate command Related Commands neighbor default originate injects the default route redistribute isis Redistribute IS IS routes into BGP E Series Syntax redistribute isis WORD level 1 level 1 2 level 2 metric metric value route map map name To return to the defaul...

Page 384: ...ic type internal and applied outbound to an EBGP peer peer group the advertised routes corresponding to those peer peer group have the IGP cost set as MED IS IS to BGP redistribution supports matching of level 1 or level 2 routes or all routes default You can perform more advanced match options using route maps You can set the metric value of redistributed routes by the redistribution command Exam...

Page 385: ...distribute command to advertise the IGP cost as the MED on redistributed routes When you set the route map with metric type internal and apply outbound to an EBGP peer peer group the advertised routes corresponding to those peer peer group have the IGP cost set as MED When you enter the redistribute isis process id command without any other parameters FTOS redistributes all OSPF internal routes ex...

Page 386: ...0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 5 1 0 Introduced Example FTOS conf router_bgp show capture bgp pdu neighbor 20 20 20 2 Incoming packet capture enabled for BGP neighbor 20 20 20 2 Available buffer size 40958758 26 packet s captured using 680 bytes PDU 1 len 101 captured 00 34 51 ago ffffffff ffffffff ffffffff ...

Page 387: ...ed on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Example FTOS conf router_bgp show confi router bgp 45 neighbor suzanne peer group neighbor suzanne no shutdown neighbor sara peer group neighbor sara shutdown neighbor 13 14 15 20 peer group suzanne neighbor 13 14 15 20 shutdown neighbor 123 34 55 123 peer g...

Page 388: ...gp non deterministic med command the show ip bgp command output for a BGP route does not list the INACTIVE reason The following describes the show ip bgp command shown in the Example below Field Description Network Displays the destination network prefix of each BGP route Next Hop Displays the next hop address of the BGP router If 0 0 0 0 is listed in this column then local routes exist in the rou...

Page 389: ...8 33 0 0 18508 More Related Commands show ip bgp community views the BGP communities neighbor maximum prefix controls the number of network prefixes received show ip bgp cluster list View BGP neighbors in a specific cluster C Series E Series S Series Z Series S4810 Syntax show ip bgp ipv4 unicast cluster list cluster id Parameters ipv4 unicast OPTIONAL Enter the keywords ipv4 unicast to view infor...

Page 390: ...es i IGP e EGP incomplete Network Next Hop Metric LocPrf Weight Path I 10 10 10 1 32 192 68 16 1 0 100 0 i I 192 68 16 1 0 100 0 i I 192 68 16 1 0 100 0 i I 192 68 16 1 0 100 0 i I 192 68 16 1 0 100 0 i I 192 68 16 1 0 100 0 i I 10 19 75 5 32 192 68 16 1 0 100 0 I 192 68 16 1 0 100 0 I 192 68 16 1 0 100 0 I 192 68 16 1 0 100 0 I 192 68 16 1 0 100 0 I 192 68 16 1 0 100 0 I 10 30 1 0 24 192 68 16 1 ...

Page 391: ...0xFFFFFF01 community attribute must not be advertised outside a BGP confederation boundary Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Usage Information To view the total number of COMMUNITY attributes found use the show ip bgp...

Page 392: ...71 0 16 100 0 209 i i 4 24 187 12 30 205 171 0 16 100 0 209 i i 4 24 202 0 30 205 171 0 16 100 0 209 i i 4 25 88 0 30 205 171 0 16 100 0 209 3561 3908 i i 6 1 0 0 16 205 171 0 16 100 0 209 7170 1455 i i 6 2 0 0 22 205 171 0 16 100 0 209 7170 1455 i i 6 3 0 0 18 205 171 0 16 100 0 209 7170 1455 i i 6 4 0 0 16 205 171 0 16 100 0 209 7170 1455 i i 6 5 0 0 19 205 171 0 16 100 0 209 7170 1455 i i 6 8 0...

Page 393: ...nd output The following describes the show ip bgp community list pass command shown in the Example below Field Description Network Displays the destination network prefix of each BGP route Next Hop Displays the next hop address of the BGP router If 0 0 0 0 is listed in this column then local routes exist in the routing table Metric Displays the BGP route s metric if assigned LocPrf Displays the BG...

Page 394: ...e route is dampened From Displays the IP address of the neighbor advertising the dampened route Reuse Displays the hour minutes seconds until the dampened route is available Path Lists all the ASs the dampened route passed through to reach the destination network Example FTOS show ip bgp damp BGP table version is 210708 local router ID is 63 114 8 2 Status codes s suppressed d damped h history val...

Page 395: ...0 NdTmpRRClP 0x41a4b000 NdTmpOptP 0x41a4b800 NdTmpNHP NdOrigPAP 0 NdOrgNHP 0 NdModPathP 0x419efcc0 NdModASPAP 0x41a4c000 NdModCommP 0x41a4c800 NdModOptP 0x41a4d000 NdModNHP NdComSortBufP 0x41a19110 NdComSortHdP 0x41a19d04 NdUpdAFMsk 0 AFRstSet 0x41a1a298 NHopDfrdHdP 0x41a1a3e0 NumNhDfrd 0 CfgHdrAFMsk 1 AFChkNetTmrP 0x41ee705c AFRtDamp 0 AlwysCmpMed 0 LocrHld 10 LocrRem 10 softReconfig 0x41a1a58c D...

Page 396: ...CtxAdd 1101110868 NdRedCtxAddrLen 255 NdAfRedMkrP 0x41a19e88 AFAggRttP 0x41a0d600 AfAggCtxAddr 1101111028 AfAggrCtxAddrLen 255 AfNumAggrPfx 0 AfNumAggrASSet 0 AfNumSuppmap 0 AfNumAggrValidPfx 0 AfMPathRttP 0x41a0d700 MpathCtxAddr 1101111140 MpathCtxAddrlen 255 AfEorSet 0x41a19f98 NumDfrdPfx 0 AfActPeerHd 0x41a1a3a4 AfExtDist 1101112312 AfIntDist 200 AfLocDist 200 AfNumRRc 0 AfRR 0 AfNetRttP 0x41a0...

Page 397: ...lter list View the routes that match the filter lists C Series E Series S Series S Series S4810 Syntax show ip bgp ipv4 unicast filter list as path name Parameters ipv4 unicast OPTIONAL Enter the keywords ipv4 unicast to view information only related to ipv4 unicast routes as path name Enter the name of an AS PATH Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the...

Page 398: ...al a aggregate c confed external r redistributed n network Origin codes i IGP e EGP incomplete Network Next Hop Metric LocPrf Weight Path I 6 1 5 0 24 192 100 11 2 20000 9999 0 I 192 100 8 2 20000 9999 0 I 192 100 9 2 20000 9999 0 I 192 100 10 2 20000 9999 0 I 6 1 5 1 20000 9999 0 I 6 1 6 1 20000 9999 0 I 6 1 20 1 20000 9999 0 I 6 1 6 0 24 192 100 11 2 20000 9999 0 I 192 100 8 2 20000 9999 0 I 192...

Page 399: ...more sequences question mark sequences in a pattern either 0 or 1 sequences NOTE You must enter an escape sequence CTRL v prior to entering the regular expression brackets a range of single character patterns parenthesis groups a series of pattern elements to a single element braces minimum and the maximum match count caret the beginning of the input string If you use the caret at the beginning of...

Page 400: ...stributed n network Origin codes i IGP e EGP incomplete Network From Flaps Duration Reuse Path FTOS show ip bgp inconsistent as View routes with inconsistent originating autonomous system AS numbers that is prefixes that are announced from the same neighbor AS but with a different AS Path C Series E Series S Series Z Series S4810 Syntax show ip bgp ipv4 unicast inconsistent as Command Modes EXEC E...

Page 401: ... i 63 114 8 60 0 18508 209 7018 80 i 63 114 8 33 0 18508 701 80 i 3 18 135 0 24 63 114 8 60 0 18508 209 7018 63 114 8 34 0 18508 209 7018 63 114 8 33 0 18508 701 7018 63 114 8 33 0 18508 209 7018 4 0 0 0 8 63 114 8 60 0 18508 209 1 i 63 114 8 34 0 18508 209 1 i 63 114 8 33 0 18508 701 1 i 63 114 8 33 0 18508 209 1 i 6 0 0 0 20 63 114 8 60 0 18508 209 3549 i 63 114 8 34 0 18508 209 3549 i 63 114 8 ...

Page 402: ...om neighbors NOTE You must configure the neighbor soft reconfiguration inbound command prior to viewing all the information received from the neighbors denied routes network network mask OPTIONAL Enter the keywords denied routes followed by either the network address in dotted decimal format or the network mask in slash prefix format to view all information on routes denied via neighbor inbound fi...

Page 403: ... error messages and the number of messages waiting in a queue for processing Sent messages The line displays the number of BGP messages sent the number of notifications error messages and the number of messages waiting in a queue for processing Received updates This line displays the number of BGP updates received and sent Soft reconfiguration This line indicates that soft reconfiguration inbound ...

Page 404: ...rnal link BGP version 4 remote router ID 192 168 2 101 BGP state ESTABLISHED in this state for 00 16 12 Last read 00 00 12 last write 00 00 03 Hold time is 180 keepalive interval is 60 seconds Received 1404 messages 0 in queue 3 opens 1 notifications 1394 updates 6 keepalives 0 route refresh requests Sent 48 messages 0 in queue 3 opens 2 notifications 0 updates 43 keepalives 0 route refresh reques...

Page 405: ...damped h history valid best Path source I internal a aggregate c confed external r redistributed n network D denied S stale Origin codes i IGP e EGP incomplete Network Next Hop Metric LocPrf Weight Path D 70 70 21 0 24 100 10 10 2 0 0 100 200 D 70 70 22 0 24 100 10 10 2 0 0 100 200 D 70 70 23 0 24 100 10 10 2 0 0 100 200 D 70 70 24 0 24 100 10 10 2 0 0 100 200 70 70 25 0 24 100 10 10 2 0 0 100 200...

Page 406: ...describes the show ip bgp next hop command shown in the Example below Field Description Next hop Displays the next hop IP address Via Displays the IP address and interface used to reach the next hop RefCount Displays the number of BGP routes using this next hop Cost Displays the cost associated with using this next hop Flaps Displays the number of times the next hop has flapped Time Elapsed Displa...

Page 407: ...tterns parenthesis groups a series of pattern elements to a single element braces minimum and the maximum match count caret the beginning of the input string If you use the caret at the beginning of a sequence or range it matches on everything BUT the characters specified dollar sign the end of the output string Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z...

Page 408: ...0x1efe7b1c 287 336 20000 0x1efe7d1c 295 10000 13 0x1efe7c5c 339 6 92 93 0x1efe7cdc 351 10000 12 0x1efe7c1c 395 6 82 83 0x1efe7bdc 451 6 72 73 0x1efe7b5c 491 78 0 0x1efe7adc 883 2 120 i 0x1efe7e9c 983 10000 33 0x1efe7b9c 1003 6 0 i FTOS show ip bgp paths as path View all unique AS PATHs in the BGP database C Series E Series S Series Z Series S4810 Syntax show ip bgp paths as path Command Modes EXEC...

Page 409: ... 0x1ea3c144 763 1 102 103 0x1ea3c17c 763 1 12 0x1ea3c2cc 763 1 32 0x1ea3c09c 764 1 72 73 0x1ea3c0d4 764 1 82 83 0x1ea3c224 1019 1 43 0x1ea3c294 1019 1 23 0x1ea3c02c 1021 4 FTOS show ip bgp paths community View all unique COMMUNITY numbers in the BGP database C Series E Series S Series Z Series S4810 Syntax show ip bgp paths community Command Modes EXEC EXEC Privilege Command History Version 8 3 11...

Page 410: ... 209 209 4069 209 21362 3908 900 19092 300 0x1c9f88e4 53 4 209 209 209 3193 209 21362 3908 900 19092 300 0x1f58a944 57 6 209 209 209 2073 209 21362 3908 900 19092 300 0x1ce6be44 80 2 209 209 209 999 209 40832 0x1c6e2374 80 2 209 777 209 41528 0x1f58ad6c 82 46 209 209 209 41528 0x1c6e2064 83 2 209 777 209 40832 0x1f588ecc 85 570 209 209 209 40832 0x1f57cc0c 98 2 209 209 209 21226 286 3031 13646 104...

Page 411: ... command shown in the Example below Line beginning with Description Peer group Displays the peer group s name Administratively shut Displays the peer group s status if the peer group is not enabled If you enable the peer group this line is not displayed BGP version Displays the BGP version supported Minimum time Displays the time interval between BGP advertisements For address family Displays IPv4...

Page 412: ... 12 4 1 2 12 4 1 3 12 4 1 4 12 4 1 5 12 4 1 6 Related Commands neighbor peer group assigning peers assigns a peer to a peer group neighbor peer group creating group creates a peer group show ip bgp peer group multicast views information on the BGP peers in a peer group show ip bgp regexp Display the subset of the BGP routing table matching the regular expressions specified C Series E Series S Seri...

Page 413: ...d on the C Series Usage Information The following describes the show ip bgp regexp command shown in the Example below Field Description Network Displays the destination network prefix of each BGP route Next Hop Displays the next hop address of the BGP router If 0 0 0 0 is listed in this column then non BGP routes exist in the router s routing table Metric Displays the BGP router s metric if assign...

Page 414: ...3 180 0 24 1 1 1 2 0 100 0 2914 3561 6128 30576 i I 4 36 200 0 21 1 1 1 2 0 100 0 2914 14742 11854 14135 i I 4 67 64 0 22 1 1 1 2 0 100 0 2914 11608 19281 i I 4 78 32 0 21 1 1 1 2 0 100 0 2914 3491 29748 i I 6 1 0 0 16 1 1 1 2 0 100 0 2914 701 668 i I 6 2 0 0 22 1 1 1 2 0 100 0 2914 701 668 i I 6 3 0 0 18 1 1 1 2 0 100 0 2914 701 668 i show ip bgp summary Allows you to view the status of all BGP c...

Page 415: ...s more details on the COMMUNITY attributes Dampening enabled Displayed only when you enable dampening Displays the number of paths designated as history dampened or penalized Neighbor Displays the BGP neighbor address AS Displays the AS number of the neighbor MsgRcvd Displays the number of BGP messages that neighbor received MsgSent Displays the number of BGP messages that neighbor sent TblVer Dis...

Page 416: ...2 bytes of memory 5 paths using 380 bytes of memory 4 denied paths using 164 bytes of memory BGP RIB over all using 385 bytes of memory 2 BGP path attribute entrie s using 168 bytes of memory 1 BGP AS PATH entrie s using 39 bytes of memory 1 BGP community entrie s using 43 bytes of memory 2 neighbor s using 7232 bytes of memory Neighbor AS MsgRcvd MsgSent TblVer InQ OutQ Up Down State Pfx 100 10 1...

Page 417: ...fault is 180 seconds Defaults none Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 6 1 0 Introduced on the E Series MBGP Commands Multiprotocol BGP MBGP is an enhanced BGP that enables multicast routing policy throughout the I...

Page 418: ...xt aggregate address Summarize a range of prefixes to minimize the number of entries in the routing table C Series E Series TeraScale S Series Syntax aggregate address ip address mask advertise map map name as set attribute map map name summary only suppress map map name Parameters ip address mask Enter the IP address and mask of the route to be the aggregate address Enter the IP address in dotted...

Page 419: ... The opposite is also true routes meeting the permit clause are suppressed If the route is injected via the network command that route still appears in the routing table if the summary only parameter is configured in the aggregate address command The summary only parameter suppresses all advertisements If you want to suppress advertisements to only specific neighbors use the neighbor distribute li...

Page 420: ...flap statistics OPTIONAL Enter the keywords flap statistics to reset the flap statistics on all prefixes from that neighbor peer group OPTIONAL Enter the keywords peer group to clear all members of a peer group Command Modes EXEC Privilege Command History Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series clear ip bgp dampening Clear information on route dampenin...

Page 421: ...d by regular expressions Use one or a combination of the following period any single character including a white space asterisk the sequences in a pattern 0 or more sequences plus the sequences in a pattern 1 or more sequences question mark sequences in a pattern either 0 or 1 sequences NOTE You must enter an escape sequence CTRL v prior to entering the regular expression brackets a range of singl...

Page 422: ...oup updates View information about BGP peer group updates C Series E Series TeraScale S Series Syntax debug ip bgp peer group peer group name updates in out To disable debugging use the no debug ip bgp peer group peer group name updates in out command Parameters peer group peer group name Enter the keywords peer group followed by the name of the peer group updates Enter the keyword updates to view...

Page 423: ...0 Introduced IPv6 MGBP on the E Series distance bgp Configure three administrative distances for routes C Series E Series TeraScale S Series S4810 Syntax distance bgp external distance internal distance local distance To return to default values use the no distance bgp command Parameters external distance Enter a number to assign to routes learned from a neighbor external to the AS The range is 1 ...

Page 424: ...AFI SAFI C Series E Series TeraScale S Series Syntax neighbor ip address peer group name activate To disable use the no neighbor ip address peer group name activate command Parameters ip address OPTIONAL Enter the IP address of the neighbor in dotted decimal format peer group name OPTIONAL Enter the name of the peer group activate Enter the keyword activate to enable the neighbor peer group in the...

Page 425: ...lt is 5 seconds for internal BGP peers and 30 seconds for external BGP peers Defaults seconds 5 seconds internal peers seconds 30 seconds external peers Command Modes ROUTER BGP Address Family conf router_bgp_af Command History Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 6 1 0 Introduced IPv6 MGBP on the E Series neighbor default originate Inject...

Page 426: ...format peer group name Enter the name of the peer group to apply the distribute list filter to all routers in the peer group prefix list name Enter the name of an established prefix list If the prefix list is not configured the default is permit to allow all routes in Enter the keyword in to distribute only inbound traffic out Enter the keyword out to distribute only outbound traffic Defaults Not ...

Page 427: ...tes out Enter the keyword out to filter outbound BGP routes Defaults Not configured Command Modes ROUTER BGP Address Family conf router_bgp_af Command History Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 6 1 0 Introduced IPv6 MGBP on the E Series Usage Information Use the ip as path access list command in CONFIGURATION mode to enter AS PATH ACL mo...

Page 428: ... is reached Defaults threshold 75 Command Modes ROUTER BGP Address Family conf router_bgp_af Command History Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 6 1 0 Introduced IPv6 MGBP on the E Series neighbor next hop self Allows you to configure the router as the next hop for a BGP neighbor C Series E Series TeraScale S Series Syntax neighbor ip add...

Page 429: ...on the C Series Added 4 byte support Version 7 6 1 0 Introduced IPv6 MGBP on the E Series neighbor route map Apply an established route map to either incoming or outbound routes of a BGP neighbor or peer group C Series E Series TeraScale S Series Syntax neighbor ip address peer group name route map map name in out To remove the route map use the no neighbor ip address peer group name route map map...

Page 430: ...uration use the no neighbor ip address peer group name route reflector client command Parameters ip address Enter the IP address of the neighbor in dotted decimal format peer group name Enter the name of the peer group All routers in the peer group receive routes from a route reflector Defaults Not configured Command Modes ROUTER BGP Address Family conf router_bgp_af Command History Version 7 8 1 ...

Page 431: ...nfigured the default is deny to drop all routes Defaults Not configured Command Modes ROUTER BGP Address Family conf router_bgp_af Command History Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 6 1 0 Introduced IPv6 MGBP on the E Series Usage Information FTOS software resolves the network address configured by the network command with the routes in ...

Page 432: ... configured Command Modes ROUTER BGP Address Family conf router_bgp_af Command History Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 6 1 0 Introduced IPv6 MGBP on the E Series Usage Information If you do not configure the default metric command in addition to the redistribute command or there is no route map to set the metric the metric for redistr...

Page 433: ...e E Series Usage Information When you enter the redistribute isis process id command without any other parameters FTOS redistributes all OSPF internal routes external type 1 routes and external type 2 routes This feature is not supported by an RFC This feature is not supported by an RFC show ip bgp ipv4 multicast View the current MBGP routing table for the system C Series E Series TeraScale S Seri...

Page 434: ... weight Path Lists all the ASs the route passed through to reach the destination network Example FTOS show ip bgp ipv4 multicast BGP table version is 14 local router ID is 100 10 10 1 Status codes s suppressed S stale d damped h history valid best Path source I internal a aggregate c confed external r redistributed n network Origin codes i IGP e EGP incomplete Network Next Hop Metric LocPrf Weight...

Page 435: ...l AS Enter the keywords local AS to view all routes with the COMMUNITY attribute of NO_EXPORT_SUBCONFED All routes with the NO_EXPORT_SUBCONFED 0xFFFFFF03 community attribute must not be advertised to external BGP peers no advertise Enter the keywords no advertise to view all routes containing the well known community attribute of NO_ADVERTISE All routes with the NO_ADVERTISE 0xFFFFFF02 community ...

Page 436: ... Parameters community list name Enter the name of a configured IP community list max 16 characters Command Modes EXEC EXEC Privilege Command History Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 6 1 0 Introduced IPv6 MGBP on the E Series show ip bgp dampened paths View BGP routes that are dampened non active C Series E Series S Series Z Series S481...

Page 437: ...al r redistributed n network Origin codes i IGP e EGP incomplete Network From Reuse Path FTOS show ip bgp filter list View the routes that match the filter lists C Series E Series TeraScale S Series Syntax show ip bgp ipv4 multicast filter list as path name Parameters as path name Enter the name of an AS PATH Command Modes EXEC EXEC Privilege Command History Version 7 8 1 0 Introduced on the S Ser...

Page 438: ...t enter an escape sequence CTRL v prior to entering the regular expression brackets a range of single character patterns parenthesis groups a series of pattern elements to a single element braces minimum and the maximum match count caret the beginning of the input string If you use the caret at the beginning of a sequence or range it matches on everything BUT the characters specified dollar sign t...

Page 439: ... OPTIONAL Display detailed neighbor information flap statistics OPTIONAL Enter the keywords flap statistics to view flap statistics on the neighbor s routes routes OPTIONAL Enter the keyword routes to view only the neighbor s feasible routes Command Modes EXEC EXEC Privilege Command History Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 6 1 0 Introd...

Page 440: ...of the Route map AS PATH ACL or Prefix list configured for the policy For address family Displays IPv4 Unicast as the address family BGP table version Displays the which version of the primary BGP routing table the router and the neighbor are using accepted prefixes Displays the number of network prefixes accepted by the router and the amount of memory used to process those prefixes Prefix adverti...

Page 441: ...0 from peer Connections established 2 dropped 1 Last reset 00 03 17 due to user reset Notification History Connection Reset Sent 1 Recv 0 Local host 100 10 10 1 Local port 179 Foreign host 25 25 25 25 Foreign port 2290 BGP neighbor is 211 1 1 129 remote AS 640 external link BGP version 4 remote router ID 0 0 0 0 BGP state ACTIVE in this state for 00 00 36 Last read 00 00 41 hold time is 180 keepal...

Page 442: ... Command Modes EXEC EXEC Privilege Command History Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 6 1 0 Introduced IPv6 MGBP on the E Series Version 7 5 1 0 Added the detail option Related Commands neighbor peer group assigning peers assigns a peer to a peer group neighbor peer group creating group creates a peer group show ip bgp peer group multica...

Page 443: ...ighbor Displays the BGP neighbor address AS Displays the AS number of the neighbor MsgRcvd Displays the number of BGP messages that neighbor received MsgSent Displays the number of BGP messages that neighbor sent TblVer Displays the version of the BGP table that was sent to that neighbor InQ Displays the number of messages from that neighbor waiting to be processed OutQ Displays the number of mess...

Page 444: ... 4 octet AA NN to 8 octet Type Value to provide enough number communities Communities are structured using a new Type field 1 or 2 octets allowing you to provide granular control filter routing information based on the type of extended communities deny Use this feature to reject deny from the two types of extended communities route origin rt or site of origin soo C Series E Series S Series Z Serie...

Page 445: ...tures allows you to specify an extended communities to reject deny using a regular expressions regex C Series E Series S Series Z Series Syntax deny regex regex To remove use the no deny regex regex command Parameters regex Enter a regular expression Defaults Not configured Command Modes CONFIGURATION conf ext community list Command History Version 7 8 1 0 Introduced on the S Series Version 7 7 1 ...

Page 446: ... Series Version 7 6 1 0 Introduced on the E Series ip extcommunity list Use this feature to enter the Extended Community list mode C Series E Series S Series Z Series Syntax ip extcommunity list word To exit from this mode use the exit command Parameters word Enter a community list name maximum 16 characters Defaults none Command Modes CONFIGURATION conf ext community list Command History Version ...

Page 447: ...tch the attribute Example FTOS config route map match extcommunity Freedombird FTOS config route map permit Use this feature to add rules permit from the two types of extended communities Route Origin rt or Site of Origin soo C Series E Series S Series Z Series Syntax permit rt soo as4 ASN4 NN ASN NNNN IPADDR NN To change the rules use the no permit rt soo as4 ASN4 NN ASN NNNN IPADDR NN command Pa...

Page 448: ...atures allows you specify an extended communities to forward permit using a regular expressions regex C Series E Series S Series Z Series Syntax permit regex regex To remove use the no permit regex regex command Parameters regex Enter a regular expression Defaults Not configured Command Modes CONFIGURATION conf ext community list Command History Version 7 8 1 0 Introduced on the S Series Version 7...

Page 449: ...te community value additive OPTIONAL Enter the keyword additive to add to the existing extended community non trans OPTIONAL Enter the keywords non trans to indicate a non transitive BGP extended community Defaults none Command Modes ROUTE MAP config route map Command History Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 6 1 0 Introduced on the E S...

Page 450: ... byte IPv4 Unicast Address 2 byte community value non trans OPTIONAL Enter the keywords non trans to indicate a non transitive BGP extended community Defaults none Command Modes ROUTE MAP config route map Command History Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 6 1 0 Introduced on the E Series Usage Information If the set community rt and soo ...

Page 451: ... E Series Usage Information If there is a type or sub type that is not well known it is displayed as TTSS XX YYYY Where TT is type SS is sub type displayed in hexadecimal format XX YYYY is the value divided into 2 byte and 4 byte values in decimal format This format is consistent with other vendors For example if the extended community has type 0x04 sub type 0x05 value 0x20 00 00 00 10 00 it displ...

Page 452: ...own in the Example below Field Description Address Displays the internal address where the path attribute is stored Hash Displays the hash bucket where the path attribute is stored Refcount Displays the number of BGP routes using these extended communities Community Displays the extended community attributes in this BGP path Example FTOS show ip bgp paths extcommunity Total 1 Extended Communities ...

Page 453: ...the current configuration of the extended community lists C Series E Series S Series Z Series Syntax show running config extcommunity list word Parameters word Enter the name of the extended community list you want to view Defaults none Command Modes EXEC Privilege Command History Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 6 1 0 Introduced on th...

Page 454: ...rmation Enter ipv6unicast to enter the BGP for IPv6 mode CONF ROUTER_BGPv6_AF aggregate address Summarize a range of prefixes to minimize the number of entries in the routing table C Series E Series Syntax aggregate address ipv6 address prefix length advertise map map name as set attribute map map name summary only suppress map map name Parameters ipv6 address prefix length Enter the IPv6 address ...

Page 455: ...rack of the changes in the AS_PATH In route maps used in the suppress map parameter routes meeting the deny clause are not suppress in other words they are allowed The opposite is true routes meeting the permit clause are suppressed If the route is injected via the network command that route still appears in the routing table if the summary only parameter is configured in the aggregate address com...

Page 456: ...eries ExaScale Version 7 4 1 0 Introduced Usage Information If you enable this command use the clear ip bgp command to recompute the best path bgp bestpath med confed Enable MULTI_EXIT_DISC MED attribute comparison on paths learned from BGP confederations C Series E Series Syntax bgp bestpath med confed To disable MED comparison on BGP confederation paths use the no bgp bestpath med confed command...

Page 457: ...ED to be treated as 0 During the path selection paths with a lower MED are preferred over those with a higher MED bgp client to client reflection Allows you to enable route reflection between clients in a cluster C Series E Series Syntax bgp client to client reflection To disable client to client reflection use the no bgp client to client reflection command Defaults Enabled when a route reflector ...

Page 458: ... assign a cluster ID with the bgp cluster id command Without a cluster ID the route reflector cannot recognize route updates from the other route reflectors within the cluster The default format for displaying the cluster id is dotted decimal but if you enter the cluster id as an integer it is displayed as an integer Related Commands bgp client to client reflection enables route reflection between...

Page 459: ...mmand use the no bgp confederation peer command Parameters as number Enter the AS number The range is 1 to 65535 as number OPTIONAL Enter up to 16 confederation numbers The range is 1 to 65535 Defaults Not configured Command Modes ROUTER BGP Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced Usage Information The autonomous systems configured in this com...

Page 460: ...ult is 2000 max suppress time OPTIONAL Enter the maximum number of minutes a route can be suppressed The default is four times the half life value The range is 1 to 255 The default is 60 minutes route map map name OPTIONAL Enter the keywords route map followed by the name of a configured route map Only match commands in the configured route map are supported Defaults Disabled Command Modes ROUTER ...

Page 461: ...nd Defaults Enabled Command Modes ROUTER BGP Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced Usage Information This is enabled by default that is for all updates received from EBGP peers BGP ensures that the first AS of the first AS segment is always the AS of the peer If not the update is dropped and a counter is incremented Use the show ip bgp neigh...

Page 462: ...uters supporting 4 Byte ASNs advertise that function in the OPEN message The behavior of a 4 Byte router is slightly different depending on whether it is speaking to a 2 Byte router or a 4 Byte router When creating Confederations all the routers in the Confederation must be 4 or 2 byte identified routers You cannot mix them Where the 2 Byte format is 1 65535 the 4 Byte format is 1 4294967295 Both ...

Page 463: ... router to support graceful restart as a receiver only Defaults As above Command Modes ROUTER BGP Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced Usage Information This feature is advertised to BGP neighbors through a capability advertisement In Receiver Only mode BGP saves the advertised routes of peers that support this capability when they restart ...

Page 464: ... all paths in the AS group are from the same AS When you change the path selection from deterministic to non deterministic the path selection for existing paths remains deterministic until you enter the clear ip bgp command to clear existing paths bgp recursive bgp next hop Enable next hop resolution through other routes learned by BGP C Series E Series Syntax bgp recursive bgp next hop To disable...

Page 465: ...taining regular expressions to match as path and communities tend to use a lot of CPU processing time which in turn affects the BGP routing convergence Additionally the show bgp commands which are filtered through regular expressions use up CPU cycles particularly with large databases The regex engine performance enhancement feature optimizes the CPU usage by caching and reusing regular expression...

Page 466: ...on both rx tx Enter the keyword direction and a direction either rx for inbound tx for outbound or both Defaults Not configured Command Modes EXEC EXEC Privilege Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 5 1 0 Introduced Related Commands clear ip bgp enables route reflection between route reflector and clients show capture bgp pdu neighbor configures a route ref...

Page 467: ...soft in out Parameters Enter an asterisk to reset all BGP sessions ipv4 multicast soft in out OPTIONAL This keyword sequence sets options within the a specified IPv4 address family ipv6 unicast soft in out OPTIONAL This keyword sequence sets options within the a specified IPv6 address family soft OPTIONAL Enter the keyword soft to configure and activate policies without resetting the BGP TCP sessi...

Page 468: ...S or a specified address family within that AS ipv4 OPTIONAL Enter the keyword ipv4 to select options for that address family ipv6 OPTIONAL Enter the keyword ipv6 to select options for that address family unicast OPTIONAL Enter the keyword unicast to select the unicast option within the selected address family multicast OPTIONAL Enter the keyword multicast to select the multicast option within the...

Page 469: ...v4 OPTIONAL Enter the keyword ipv4 to select options for that address family ipv6 OPTIONAL Enter the keyword ipv6 to select options for that address family unicast OPTIONAL Enter the keyword unicast to select the unicast option within the selected address family multicast OPTIONAL Enter the keyword multicast to select the multicast option within the selected address family Multicast is supported o...

Page 470: ... C Series E Series Syntax debug ip bgp ipv6 unicast dampening in out To disable debugging use the no debug ip bgp ipv6 unicast dampening command Parameters in OPTIONAL Enter the keyword in to view only information on inbound dampened routes out OPTIONAL Enter the keyword out to view only information on outbound dampened routes Command Modes EXEC Privilege Command History Version 8 2 1 0 Introduced...

Page 471: ...one or a combination of the following period matches on any single character including white space asterisk matches on sequences in a pattern zero or more sequences plus sign matches on sequences in a pattern one or more sequences question mark matches sequences in a pattern 0 or 1 sequences brackets matches a range of single character patterns caret matches the beginning of the input string If yo...

Page 472: ... routes Command Modes EXEC Privilege Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced Usage Information To view information on both incoming and outgoing routes do not include the in and out parameters in the debugging command The in and out parameters cancel each other for example if you enter debug ip bgp in and then enter debug ip bgp out you will n...

Page 473: ...nges and other BGP events C Series E Series Syntax debug ip bgp ipv6 address peer group peer group name events in out To disable debugging use the no debug ip bgp ipv6 address peer group peer group name events command Parameters ipv6 address OPTIONAL Enter the IPv6 address in the x x x x x format followed by the prefix length in the x format The range is 0 to 128 NOTE The notation specifies succes...

Page 474: ...ame of the peer group in OPTIONAL Enter the keyword in to view only information on inbound keepalive routes out OPTIONAL Enter the keyword out to view only information on outbound keepalive routes Command Modes EXEC Privilege Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced Usage Information Enter the no debug ip bgp command to remove all configured de...

Page 475: ... Syntax debug ip bgp ipv6 address peer group peer group name ipv6 unicast ipv6 address updates in out prefix list prefix list name To disable debugging use the no debug ip bgp ip address peer group peer group name ipv6 unicast ipv6 address updates in out command Parameters ipv6 address OPTIONAL Enter the IPv6 address in the x x x x x format followed by the prefix length in the x format The range i...

Page 476: ...ory Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced Usage Information The default metric command in BGP sets the value of the BGP MULTI_EXIT_DISC MED attribute for redistributed routes only Related Commands bgp always compare med enables comparison of all BGP MED attributes redistribute redistributes routes from other routing protocols into BGP description Enter a de...

Page 477: ...orks listed in the network command The range is 1 to 255 The default is 200 Defaults external distance 20 internal distance 200 local distance 200 Command Modes ROUTER BGPV6 ADDRESS FAMILY Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced Usage Information CAUTION Dell Force10 recommends that you do not change the administrative distance of internal rou...

Page 478: ...es enter the no maximum paths command Parameters ebgp Enter the keyword ebgp to enable multipath support for External BGP routes ibgp Enter the keyword ibgp to enable multipath support for Internal BGP routes number Enter a number as the maximum number of parallel paths The S4810 range is 2 to 64 Defaults none Command Modes ROUTER BGP Command History Version 8 3 11 1 Introduced on the Z9000 Versio...

Page 479: ...and S4810 Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced on the E Series TeraScale Usage Information If you enable this command use the capture bgp pdu max buffer size command to recompute the best path neighbor activate This command allows the specified neighbor peer group to be enabled for the current AFI SAFI C Series E Series Syntax neighbor ipv6 address peer gr...

Page 480: ...advertisement interval command Parameters ipv6 address Enter the IPv6 address in the x x x x x format NOTE The notation specifies successive hexadecimal fields of zeros peer group name Enter the name of the peer group to set the advertisement interval for all routers in the peer group seconds Enter a number as the time interval in seconds between BGP advertisements The range is 0 to 600 seconds Th...

Page 481: ...enables 4 Byte support for the BGP process neighbor default originate Inject the default route to a BGP peer or neighbor C Series E Series Syntax neighbor ipv6 address peer group name default originate route map map name To remove a default route use the no neighbor ipv6 address peer group name default originate route map map name command Parameters ipv6 address Enter the IPv6 address in the x x x...

Page 482: ... fields of zeros peer group name Enter the name of the peer group to set the advertisement interval for all routers in the peer group text Enter a continuous text string up to 80 characters Defaults Not configured Command Modes ROUTER BGP Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced neighbor distribute list Distribute BGP information via an establi...

Page 483: ... and accept BGP connections to external peers on networks that are not directly connected C Series E Series Syntax neighbor ipv6 address peer group name ebgp multihop ttl To disallow and disconnect connections use the no neighbor ipv6 address peer group name ebgp multihop ttl command Parameters ipv6 address Enter the IPv6 address in the x x x x x format NOTE The notation specifies successive hexad...

Page 484: ...peer remote address and the peer local address Whenever either address becomes unreachable for example no active route exists in the routing table for peer IP or IPv6 destination local address BGP brings down the session with the peer Related Commands show ip bgp neighbors displays information on the BGP neighbors neighbor filter list Configure a BGP filter based on the AS PATH attribute C Series ...

Page 485: ...reshold warning only command Parameters ipv6 address Enter the IPv6 address in the x x x x x format NOTE The notation specifies successive hexadecimal fields of zeros peer group name Enter the name of the peer group maximum Enter a number as the maximum number of prefixes allowed for this BGP router The range is 1 to 4294967295 threshold OPTIONAL Enter a number to be used as a percentage of the ma...

Page 486: ...x x x password 7 encrypt pass clear pass To return to the default setting use the no neighbor x x x x password command Parameters encrypt pass Enter the encrypted password clear pass Enter the clear text password Defaults Disabled Command Modes ROUTER BGPV6 ADDRESS FAMILY Command History Version 8 2 1 0 Introduced Usage Information The TCP session is authentication and hence prevents the data from...

Page 487: ... Enter the IPv6 address in the x x x x x format NOTE The notation specifies successive hexadecimal fields of zeros peer group peer group name Enter the keywords peer group followed by the name of a configured peer group The maximum is 16 characters Defaults Not configured Command Modes ROUTER BGP Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced Usage I...

Page 488: ... Series Syntax neighbor peer group name peer group To delete a peer group use the no neighbor peer group name peer group command Parameters peer group name Enter a text string up to 16 characters long as the name of the peer group Defaults Not configured Command Modes ROUTER BGP Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced Usage Information When a ...

Page 489: ... address peer group name remote as number To delete a remote AS entry use the no neighbor ipv6 address peer group name remote as number command Parameters ipv6 address Enter the IPv6 address in the x x x x x format NOTE The notation specifies successive hexadecimal fields of zeros peer group name Enter the name of the peer group to enter the remote AS into routing tables of all routers within the ...

Page 490: ...oduced on the E Series ExaScale Version 7 4 1 0 Introduced Usage Information Applies to EBGP neighbors only If the AS PATH contains both public and private AS number or contains AS numbers of an EBGP neighbor the private AS numbers are not removed If a confederation contains private AS numbers in its AS PATH the software removes the private AS numbers only if they follow the confederation numbers ...

Page 491: ...mmand If you identify a peer by IP address the Route map overwrites either the inbound or outbound policies on that peer neighbor route reflector client Configure a neighbor as a member of a route reflector cluster C Series E Series Syntax neighbor ipv6 address peer group name route reflector client To indicate that the neighbor is not a route reflector client or to delete a route reflector config...

Page 492: ...ers within the peer group Defaults Enabled that is BGP neighbors and peer groups are disabled Command Modes ROUTER BGP Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced Usage Information Peers that are enabled within a peer group are disabled when their peer group is disabled The neighbor shutdown command terminates all BGP sessions on the BGP neighbor ...

Page 493: ...r ipv6 address peer group name timers command Parameters ipv6 address Enter the IPv6 address in the x x x x x format NOTE The notation specifies successive hexadecimal fields of zeros peer group name Enter the name of the peer group to set the timers for all routers within the peer group keepalive Enter a number for the time interval in seconds between keepalive messages sent to the neighbor route...

Page 494: ...ame update source loopback interface command Parameters ipv6 address Enter the IPv6 address in the x x x x x format NOTE The notation specifies successive hexadecimal fields of zeros peer group name Enter the name of the peer group to disable all routers within the peer group loopback interface Enter the keyword loopback followed by a number of the loopback interface The range is 0 to 16383 Defaul...

Page 495: ...mand to apply the weight to the connection and recompute the best path network Specify the networks for the BGP process and enter them in the BGP routing table C Series E Series Syntax network ipv6 address prefix length route map map name To remove a network use the no network ip address mask route map map name command Parameters ipv6 address prefix length Enter the IPv6 address in the x x x x x f...

Page 496: ...oor Specify this IGP route as the preferred route C Series E Series Syntax network ipv6 address prefix length backdoor To remove a network use the no network ipv6 address prefix length backdoor command Parameters ipv6 address prefix length Enter the IPv6 address in the x x x x x format followed by the prefix length in the x format The r range is 0 to 128 NOTE The notation specifies successive hexa...

Page 497: ...an established route map Only the following ROUTE MAP mode commands are supported match ipv6 address match ipv6 next hop match ipv6 route source set ipv6 next hop If the route map is not configured the default is deny to drop all routes Defaults Not configured Command Modes ROUTER BGPV6 ADDRESS FAMILY Command History Version 7 4 1 0 Introduced Usage Information If you do not configure the default ...

Page 498: ...ONAL The external link type associated with the default route advertised into a routing domain You must specify one of the following external internal default route map map name OPTIONAL Enter the keywords route map followed by the name of an established route map Only the following ROUTE MAP mode commands are supported match ipv6 address match ipv6 next hop match ipv6 route source set ipv6 next h...

Page 499: ...L Enter the keywords route map followed by the name of an established route map Only the following ROUTE MAP mode commands are supported match ipv6 address match ipv6 next hop match ipv6 route source set ipv6 next hop If you do not configure the route map the default is deny to drop all routes Defaults Not configured Command Modes ROUTER BGPV6 ADDRESS FAMILY Command History Version 8 2 1 0 Introdu...

Page 500: ...Privilege Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 5 1 0 Introduced Related Commands capture bgp pdu neighbor enables capture of an IPv6 BGP neighbor packet clear ip bgp specifies a size for the capture buffer show config View the current ROUTER BGP configuration C Series E Series Syntax show config Command Modes ROUTER BGPV6 ADDRESS FAMILY Example FTOS conf ro...

Page 501: ...twork network mask longer prefixes Parameters network OPTIONAL Enter the network address in dotted decimal format of the BGP network to view information only on that network network mask OPTIONAL Enter the network mask in slash prefix format of the BGP network address longer prefixes OPTIONAL Enter the keywords longer prefixes to view all routes with a common prefix Command Modes EXEC EXEC Privile...

Page 502: ...the COMMUNITY attribute of NO_EXPORT_SUBCONFED All routes with the NO_EXPORT_SUBCONFED 0xFFFFFF03 community attribute must not be advertised to external BGP peers no advertise Enter the keywords no advertise to view all routes containing the well known community attribute of NO_ADVERTISE All routes with the NO_ADVERTISE 0xFFFFFF02 community attribute must not be advertised to other BGP peers no ex...

Page 503: ...ties Command Modes EXEC EXEC Privilege Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced show ip bgp ipv6 unicast dampened paths View BGP routes that are dampened non active C Series E Series Syntax show ip bgp ipv6 unicast dampened paths Command Modes EXEC EXEC Privilege Command History Version 7 4 1 0 Introduced show ip bgp ipv6 unicast detail Display...

Page 504: ...formation To view the total number of COMMUNITY attributes found use the show ip bgp summary command The text line above the route table states the number of COMMUNITY attributes found The show ip bgp community command without any parameters lists BGP routes with at least one BGP community attribute and the output is the same as for the show ip bgp command output show ip bgp ipv6 unicast filter li...

Page 505: ...on Enter a regular expression then use one or a combination of the following characters to match period any single character including a white space asterisk the sequences in a pattern 0 or more sequences plus the sequences in a pattern 1 or more sequences question mark sequences in a pattern either 0 or 1 sequences NOTE You must enter an escape sequence CTRL v prior to entering the regular expres...

Page 506: ...dress prefix length ip address Enter the IPv6 address in the x x x x x format followed by the prefix length in the x format The range is 0 to 128 NOTE The notation specifies successive hexadecimal fields of zeros or enter an IP address in dotted decimal format to reset all prefixes from that neighbor advertised routes OPTIONAL Enter the keywords advertised routes to view only the routes the neighb...

Page 507: ...tus information of the peers in that peer group The output is the same as that found in show ip bgp summary command Command Modes EXEC EXEC Privilege Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced Example FTOS show ip bgp peer group Peer group RR CLIENT remote AS 18508 BGP version 4 Minimum time between advertisement runs is 5 seconds For address fam...

Page 508: ...bytes of memory 6 BGP AS PATH entrie s using 294 bytes of memory 6 BGP community entrie s using 234 bytes of memory Neighbor AS MsgRcvd MsgSent TblVer InQ OutQ Up Down State Pfx 1109 33 18508 0 0 0 0 0 never Active 2222 220 18508 0 0 0 0 0 never Active 4000 33 18508 0 0 0 0 0 never Active 4000 60 18508 0 0 0 0 0 never Active 9000 4 2 18508 0 0 0 0 0 never Active 9000 5 2 1 35 32 0 0 0 00 16 42 0 9...

Page 509: ...0 0 00 23 22 9000 7 2 9000 7 2 Gi 8 38 2 0 0 00 23 22 9000 8 2 9000 8 2 Gi 8 38 2 0 0 00 23 22 9000 9 2 9000 9 2 Gi 8 38 6000 0 0 00 23 16 9000 a 2 9000 a 2 Gi 8 38 2 0 0 00 23 22 FTOS show ip bgp paths View all the BGP path attributes in the BGP database C Series E Series Syntax show ip bgp paths regexp regular expression Parameters regexp regular expression Enter a regular expression then use on...

Page 510: ...uced show ip bgp paths as path View all unique AS PATHs in the BGP database C Series E Series Syntax show ip bgp paths as path Command Modes EXEC EXEC Privilege Command History Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced show ip bgp paths community View all unique COMMUNITY numbers in the BGP database C Series E Series Syntax show ip bgp paths community Command M...

Page 511: ...se one or a combination of the following characters to match period any single character including a white space asterisk the sequences in a pattern 0 or more sequences plus the sequences in a pattern 1 or more sequences question mark sequences in a pattern either 0 or 1 sequences NOTE You must enter an escape sequence CTRL v prior to entering the regular expression brackets a range of single char...

Page 512: ...IPv6 prefix list timers bgp Allows you to adjust the BGP network timers for all neighbors C Series E Series Syntax timers bgp keepalive holdtimer To return to the default values use the no timers bgp command Parameters keepalive Enter the time interval in seconds between which the E Series sends keepalive messages The range is 1 to 65535 The default is 60 seconds holdtimer Enter the time interval ...

Page 513: ...ord unicast to specify multicast as SAFI Defaults IPv6 Unicast Command Modes ROUTER BGPV6 ADDRESS FAMILY Command History Version 7 4 1 0 Introduced Usage Information All subsequent commands apply to this address family after you execute this command You can exit from this AFI SAFI to the IPv6 Unicast the default family by entering exit and returning to the Router BGP context aggregate address Summ...

Page 514: ...east one of the routes included in the aggregate address must be in the BGP routing table for the configured aggregate to become active Do not add the as set parameter to the aggregate If routes within the aggregate are constantly changing the aggregate flaps to keep track of the changes in the AS_PATH In route maps used in the suppress map parameter routes meeting the deny clause are not suppress...

Page 515: ...prefix length Enter the IPv6 address in the x x x x x format followed by the prefix length in the x format The range is 0 to 128 NOTE The notation specifies successive hexadecimal fields of zeros dampening OPTIONAL Enter the keyword dampening to clear route flap dampening information flap statistics OPTIONAL Enter the keywords flap statistics to reset the flap statistics on all prefixes from that ...

Page 516: ... a configured AS PATH list A maximum of 16 characters regexp regexp OPTIONAL Enter the keyword regexp followed by regular expressions Use one or a combination of the following period matches on any single character including white space asterisk matches on sequences in a pattern zero or more sequences plus sign matches on sequences in a pattern one or more sequences question mark matches sequences...

Page 517: ...n about BGP peer group updates E Series Syntax debug ip bgp ipv6 unicast peer group peer group name updates in out To disable debugging use the no debug ip bgp ipv6 unicast peer group peer group name updates in out command Parameters peer group peer group name Enter the keywords peer group followed by the name of the peer group updates Enter the keyword updates to view BGP update information in OP...

Page 518: ...bors out OPTIONAL Enter the keyword out to view only BGP updates sent to neighbors Defaults Disabled Command Modes EXEC Privilege Command History Version 7 4 1 0 Introduced distance bgp Define an administrative distance for routes E Series Syntax distance bgp external distance internal distance local distance To return to default values use the no distance bgp command Parameters external distance ...

Page 519: ...r the current AFI SAFI E Series Syntax neighbor ipv6 address peer group name activate To disable use the no neighbor ipv6 address peer group name activate command Parameters ipv6 address Enter the IPv6 address in the x x x x x format NOTE The notation specifies successive hexadecimal fields of zeros peer group name Identify a peer group by name activate Enter the keyword activate to enable the ide...

Page 520: ...n BGP advertisements The range is 0 to 600 seconds The default is 5 seconds for internal BGP peers and 30 seconds for external BGP peers Defaults seconds 5 seconds internal peers seconds 30 seconds external peers Command Modes ROUTER BGPV6 ADDRESS FAMILY Command History Version 7 4 1 0 Introduced neighbor default originate Inject the default route to a BGP peer or neighbor E Series Syntax neighbor...

Page 521: ...e x x x x x format NOTE The notation specifies successive hexadecimal fields of zeros peer group name Enter the name of the peer group prefix list name Enter the name of an established prefix list If you do not configure the prefix list the default is permit to allow all routes in Enter the keyword in to distribute only inbound traffic out Enter the keyword out to distribute only outbound traffic ...

Page 522: ...ccess list If you do not configure the AS PATH access list the default is permit to allow routes in Enter the keyword in to filter inbound BGP routes out Enter the keyword out to filter outbound BGP routes Defaults Not configured Command Modes ROUTER BGPV6 ADDRESS FAMILY Command History Version 7 4 1 0 Introduced neighbor maximum prefix Control the number of network prefixes received E Series Synt...

Page 523: ...Modes ROUTER BGPV6 ADDRESS FAMILY Command History Version 7 4 1 0 Introduced neighbor next hop self Allows you to configure the router as the next hop for a BGP neighbor E Series Syntax neighbor ipv6 address peer group name next hop self To return to the default setting use the no neighbor ipv6 address peer group name next hop self command Parameters ipv6 address Enter the IPv6 address in the x x ...

Page 524: ... 4 1 0 Introduced neighbor route map Apply an established route map to either incoming or outbound routes of a BGP neighbor or peer group E Series Syntax neighbor ipv6 address peer group name route map map name in out To remove the route map use the no neighbor ipv6 address peer group name route map map name in out command Parameters ipv6 address Enter the IPv6 address in the x x x x x format NOTE...

Page 525: ... route reflector client command Parameters ipv6 address Enter the IPv6 address in the x x x x x format NOTE The notation specifies successive hexadecimal fields of zeros peer group name Enter the name of the peer group All routers in the peer group receive routes from a route reflector Defaults Not configured Command Modes ROUTER BGPV6 ADDRESS FAMILY Command History Version 7 4 1 0 Introduced Usag...

Page 526: ...software resolves the network address configured by the network command with the routes in the main routing table to ensure that the networks are reachable via non BGP routes and non default routes Related Commands redistribute redistributes routes into BGP redistribute Redistribute routes into BGP C Series E Series Syntax redistribute connected static route map map name To disable redistribution ...

Page 527: ...ghbor default originate command Related Commands neighbor default originate injects the default route show ip bgp ipv6 unicast View the current BGP routing table for the E Series E Series Syntax show ip bgp ipv6 unicast network network mask length Parameters network OPTIONAL Enter the network address in dotted decimal format of the BGP network to view information only on that network network mask ...

Page 528: ...stributed n network Origin codes i IGP e EGP incomplete Network Next Hop Metric LocPrf Weight Path h dead 1 100 5ffe 10 3 0 0 1 i h 5ffe 11 3 0 0 1 i dead 2 100 5ffe 10 3 0 0 1 i 5ffe 11 3 0 0 1 i dead 3 100 5ffe 10 3 0 0 1 i 5ffe 11 3 0 0 1 i h dead 4 100 5ffe 10 3 0 0 1 i h 5ffe 11 3 0 0 1 i FTOS show ip bgp ipv6 unicast dead 3 100 BGP routing table entry for dead 3 100 version 3 Paths 2 availab...

Page 529: ...cific to that autonomous system You can specify up to eight community numbers to view information on those community groups local AS Enter the keywords local AS to view all routes with the COMMUNITY attribute of NO_EXPORT_SUBCONFED All routes with the NO_EXPORT_SUBCONFED 0xFFFFFF03 community attribute must not be advertised to external BGP peers no advertise Enter the keywords no advertise to view...

Page 530: ...ommunity list community list name Parameters community list name community list name Enter the name of a configured IP community list Command Modes EXEC EXEC Privilege Command History Version 7 4 1 0 Introduced show ip bgp ipv6 unicast dampened paths View BGP routes that are dampened non active E Series Syntax show ip bgp ipv6 unicast dampened paths Command Modes EXEC EXEC Privilege Command Histor...

Page 531: ...dRRClsTblP 0x41a190a8 NdPktPA 0 NdLocCBP 0x41a6f000 NdTmpPAP 0x419efc80 NdTmpASPAP 0x41a25000 NdTmpCommP 0x41a25800 NdTmpRRClP 0x41a4b000 NdTmpOptP 0x41a4b800 NdTmpNHP NdOrigPAP 0 NdOrgNHP 0 NdModPathP 0x419efcc0 NdModASPAP 0x41a4c000 NdModCommP 0x41a4c800 NdModOptP 0x41a4d000 NdModNHP NdComSortBufP 0x41a19110 NdComSortHdP 0x41a19d04 NdUpdAFMsk 0 AFRstSe t 0x41a1a298 NHopDfrdHdP 0x41a1a3e0 NumNhDf...

Page 532: ... a pattern 0 or more sequences plus the sequences in a pattern 1 or more sequences question mark sequences in a pattern either 0 or 1 sequences NOTE You must enter an escape sequence CTRL v prior to entering the regular expression brackets a range of single character patterns caret the beginning of the input string If you use the caret at the beginning of a sequence or range it matches on everythi...

Page 533: ... neighbor sent dampened routes OPTIONAL Enter the keywords dampened routes to view information on dampened routes from the BGP neighbor detail OPTIONAL Enter the keyword detail to view neighbor specific internal information for the IPv6 address family flap statistics OPTIONAL Enter the keywords flap statistics to view flap statistics on the neighbor s routes routes OPTIONAL Enter the keyword route...

Page 534: ... the minimum time in seconds between advertisements list of inbound and outbound policies Displays the policy commands configured and the names of the Route map AS PATH ACL or Prefix list configured for the policy For address family Displays IPv6 Unicast as the address family BGP table version Displays the which version of the primary BGP routing table the router and the neighbor are using accepte...

Page 535: ...drawn 0 by peer Prefixes advertised 0 rejected 0 withdrawn 0 from peer Connections established 3 dropped 2 Last reset 00 00 39 due to Closed by neighbor Notification History OPEN error Bad AS Sent 0 Recv 1 Local host 5ffe 10 4 Local port 179 Foreign host 5ffe 10 3 Foreign port 35470 BGP neighbor is 5ffe 11 3 remote AS 1 external link BGP version 4 remote router ID 5 5 5 3 BGP state ESTABLISHED in ...

Page 536: ... by the prefix length in the x format The range is 0 to 128 NOTE The notation specifies successive hexadecimal fields of zeros or enter an IP address in dotted decimal format to reset all prefixes from that neighbor advertised routes OPTIONAL Enter the keywords advertised routes to view only the routes the neighbor sent dampened routes OPTIONAL Enter the keywords dampened routes to view informatio...

Page 537: ... bgp summary command Command Modes EXEC EXEC Privilege Command History Version 7 4 1 0 Introduced Related Commands neighbor peer group assigning peers assigns a peer to a peer group neighbor peer group creating group creates a peer group show ip bgp ipv6 unicast summary Allows you to view the status of all BGP connections E Series Syntax show ip bgp ipv6 unicast summary Command Modes EXEC EXEC Pri...

Page 538: ...splays the number of messages waiting to be sent to that neighbor If a number appears in parentheses the number represents the number of messages waiting to be sent to the peer group Up Down Displays the amount of time in hours minutes seconds that the neighbor is in the Established stage If the neighbor has never moved into the Established stage the word never is displayed State Pfx If the neighb...

Page 539: ...MBGP routes in the table Z Series Syntax show ipv6 mbgproutes ipv6 address prefix length summary Parameters ipv6 address prefix length OPTIONAL Enter the IPv6 address in the x x x x x format followed by the prefix length in the x format The range is 0 to 128 NOTE The notation specifies successive hexadecimal fields of zeros summary Display a summary of RPF routes Command Modes EXEC Command History...

Page 540: ...540 ...

Page 541: ...h Switch access is allowed through all ports management and user ports with or without DHCP based dynamic IP address configuration of a switch Booting up in Layer 3 mode with interfaces already in No Shutdown mode Enables only some basic protocols to protect the system and the network Supports preconfiguration and postconfiguration scripts to automatically load predefined configurations and FTOS i...

Page 542: ...d user defined string Optional Enter a brief description for DHCP Option 60 Defaults A switch running BMP 3 0 reloads in BMP mode as a DHCP client with all ports configured for Layer 3 traffic Command Modes GLOBAL CONFIGURATION Command History Version 9 1 0 0 Introduced on the Z9000 Updated Command Mode from EXEC Privilege to GLOBAL CONFIGURATION Updated parameter from jumpstart to bmp Added suppo...

Page 543: ...the current reload mode Normal or BMP mode stop bmp stops the BMP process and prevents a loop if the DHCP server is not found script post config Run this command to execute the post configuration script after applying the start up configuration Z Series S4810 Syntax script post config script name Parameter post config scriptname Enter the name of the script to be run after the BMP start up configu...

Page 544: ...eload mode as Normal or BMP stop bmp Stop the switch from reloading in BMP mode to prevent an infinite loop Z Series S4810 Syntax stop bmp Defaults none Command Modes CONFIGURATION Command History Version 9 1 0 0 Replaces the stop jump start command Version 8 3 11 4 Introduced on the Z9000 Version 8 3 10 1 Introduced for the S4810 Usage Information Use the stop bmp command on a switch running BMP ...

Page 545: ...n 8 3 10 1 Introduced for the S4810 Usage Information Use the stop jumpstart command on a switch running BMP 2 0 if the switch enters a loop while reloading in jumpstart mode loop occurs when the switch is continuously trying to contact a DHCP server and a DHCP server is not found The stop jumpstart command stops the switch from connecting to the DHCP server After you use the stop jumpstart comman...

Page 546: ...546 ...

Page 547: ...LANs for IP egress ACLs Important Points to Remember CAM Profiles are available on FTOS versions 6 3 1 1 and later for the E Series TeraScale FTOS versions 7 8 1 0 and later support CAM allocations on the C Series and S Series All line cards within a single system must have the same CAM profile including CAM sub region configurations this profile must match the system CAM profile the profile on th...

Page 548: ...or 8 for the number of OpenFlow FP blocks 4 Creates 242 entries for use by the OpenFlow controller 256 total entries minus the 14 entries reserved for internal functionality 8 Creates 498 entries for use by the OpenFlow controller 512 total entries minus the 14 entries reserved for internal functionality Command Modes CONFIGURATION Command History Version 9 1 0 0 Added support for OpenFlow Version...

Page 549: ...zation Optimize CAM utilization for QoS Entries by minimizing require policy map CAM space C Series S Series Z Series Syntax cam optimization qos Parameters qos Optimize CAM usage for QoS Defaults Disabled Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 2 1 0 Introduced on the S Series Version 7 8 1 0 Introduced on the C Series Usage Information When ...

Page 550: ...ing more CAM space for the Ingress and Egress Layer 2 ACL and IPv4 ACL regions Enter the keywords ipv4 vrf to specify the CAM profile that maintains the CAM allocations for the IPv4 FIB while allocating CAM space for VRF Enter the keywords ipv4 v6 vrf to specify the CAM profile that maintains the CAM allocations for the IPv4 and IPv6FIB while allocating CAM space for VRF Enter the keywords ipv4 64...

Page 551: ...l2 ipv4 inacl CAM profile Version 7 4 2 0 Added the unified default CAM profile and lag hash align microcode Version 7 4 1 0 Added the lag hash mpls microcode Version 6 5 1 0 Added the eg default and ipv4 320k CAM profiles Version 6 3 1 0 Introduced on the E Series Usage Information You must save the running configuration using the copy running config startup config command after changing the CAM ...

Page 552: ...Ipv4Acl 5 Ipv6Acl 0 Ipv4Qos 1 L2Qos 1 L2PT 0 IpMacAcl 0 VmanQos 0 VmanDualQos 0 Ipv4pbr 0 Line card 4 Current Settings in block sizes L2Acl 6 Ipv4Acl 5 Ipv6Acl 0 Ipv4Qos 1 L2Qos 1 L2PT 0 IpMacAcl 0 VmanQos 0 VmanDualQos 0 Ipv4pbr 0 FTOS Example Non Default FTOS show cam acl Chassis Cam ACL Current Settings in block sizes L2Acl 2 Ipv4Acl 2 Ipv6Acl 2 Ipv4Qos 2 L2Qos 2 L2PT 1 IpMacAcl 2 VmanQos 0 Vma...

Page 553: ...rds unified default to specify the CAM profile that maintains the CAM allocations for the IPv6 and IPv4 FIB while allocating more CAM space for the Ingress and Egress Layer 2 ACL and IPv4 ACL regions Enter the keywords ipv4 vrf to specify the CAM profile that maintains the CAM allocations for the IPv4 FIB while allocating CAM space for VRF Enter the keywords ipv4 v6 vrf to specify the CAM profile ...

Page 554: ...ne cards Defaults none Command Modes EXEC Privilege Command History Version 8 2 1 0 Added support for the ipv4 64k ipv6 profile Version 7 9 1 0 Added support for the VRF protocols Version 6 3 1 0 Introduced on the E Series Usage Information If the CAM profile has been changed this command displays the current CAM profile setting in one column and in the other column displays the CAM profile and th...

Page 555: ...2K entries IPv4Flow 24K entries 24K entries EgL2ACL 1K entries 1K entries EgIPv4ACL 1K entries 1K entries Reserved 8K entries 8K entries IPv6FIB 0 entries 0 entries IPv6ACL 0 entries 0 entries IPv6Flow 0 entries 0 entries EgIPv6ACL 0 entries 0 entries MicroCode Name Default Default FTOS show cam usage Display Layer 2 Layer 3 ACL or all CAM usage statistics E Series Syntax show cam usage acl router...

Page 556: ...sage switch Linecard Portpipe CAM Partition Total CAM Used CAM AvailableCAM 11 0 IN L2 ACL 7152 0 7152 IN L2 FIB 32768 1081 31687 OUT L2 AC 0 0 0 11 1 IN L2 ACL 7152 0 7152 IN L2 FIB 32768 1081 31687 OUT L2 ACL 0 0 0 FTOS Example router FTOS show cam usage router Linecard Portpipe CAM Partition Total CAM Used CAM AvailableCAM 11 0 IN L3 ACL 8192 3 8189 IN L3 FIB 196607 1 196606 IN L3 SysFlow 2878 ...

Page 557: ...eries and 0 to 7 for S Series Defaults none Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 7 8 1 0 Introduced Usage Information This command applies to both IPv4 and IPv6 CAM Profiles but is best used when verifying QoS optimization for IPv6 ACLs QoS Optimization for IPv6 ACLs does not impact the CAM usage for applying a policy on a single or the firs...

Page 558: ...0 Allowed 4 0 IPv4Flow 232 0 Allowed 4 0 IPv6Flow 0 0 Allowed FTOS FTOS test cam usage service policy input LauraMapTest linecard 4 port set 0 Linecard Portpipe CAM Partition AvailableCAM EstimatedCAM per Port Status 4 0 IPv4Flow 232 0 Allowed 4 0 IPv6Flow 0 0 Allowed FTOS FTOS test cam usage service policy input LauraMapTest linecard 2 port set 1 Linecard Portpipe CAM Partition AvailableCAM Estim...

Page 559: ...the amount of CAM space the listed policy will require Status Indicates whether or not the policy will be allowed in the CAM Example S Series FTOS test cam usage service policy input LauraIn stack unit all Stack Unit Portpipe CAM Partition AvailableCAM EstimatedCAM per Port Status 0 0 IPv4Flow 102 0 Allowed 0 1 IPv4Flow 102 0 Allowed FTOS FTOS test cam usage service policy input LauraIn stack unit...

Page 560: ...560 ...

Page 561: ...ry Version 8 3 11 1 Introduced on the Z9000 Version 8 3 8 0 Introduced on the S4810 service policy rate limit cpu queues Apply a policy map for the system to rate limit control traffic on a per queue basis S4810 Z Series Syntax service policy rate limit cpu queues policy name Parameters policy name Enter the service policy name using a string up to 32 characters Defaults Not configured Command Mod...

Page 562: ...ers policy name Enter the service policy name using a string up to 32 characters Defaults Not configured Command Modes CONTROL PLANE CPUQOS Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 8 0 Introduced on the S4810 Usage Information This command applies the service policy based on the type of protocol defined in the ACL rules You must create ACL and QoS policies prior to enab...

Page 563: ...ust create ACL and QoS policies prior to enabling this command Example FTOS show cpu queue rate cp Service Queue Rate PPS Q0 1300 Q1 300 Q2 300 Q3 300 Q4 2000 Q5 400 Q6 400 Q7 1100 FTOS show ip protocol queue mapping Display the queue mapping for each configured protocol Z Series S4810 Syntax show ip protocol queue mapping Defaults Not configured Command Modes EXEC Privilege Command History Versio...

Page 564: ...TELNET any 23 _ Q6 CP _ VRRP any any _ Q7 CP _ FTOS show ipv6 protocol queue mapping Display the queue mapping for each configured IPv6 protocol Z Series S4810 Syntax show ipv6 protocol queue mapping Defaults Not configured Command Modes EXEC Privilege Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 3 8 0 Introduced on the S4810 Example FTOS show ipv6 protocol queue mapping Proto...

Page 565: ...d on the Z9000 Version 8 3 8 0 Introduced on the S4810 Example FTOS show mac protocol queue mapping Protocol Destination Mac EtherType Queue EgPort Rate kbps ARP any 0x0806 Q5 Q6 CP _ FRRP 01 01 e8 00 00 10 11 any Q7 CP _ LACP 01 80 c2 00 00 02 0x8809 Q7 CP _ LLDP any 0x88cc Q7 CP _ GVRP 01 80 c2 00 00 21 any Q7 CP _ STP 01 80 c2 00 00 00 any Q7 CP _ ISIS 01 80 c2 00 00 14 15 any Q7 CP _ 09 00 2b ...

Page 566: ...566 ...

Page 567: ...coredump C Series E Series S Series Z Series Syntax logging coredump cp linecard number all rps Parameters cp Enable coredump for the CP linecard Enable coredump for a linecard rps Enable coredump for RP 1 and 2 Defaults The kernal coredump is enabled by default for RP 1 and 2 on the E Series The kernel coredump for CP and application coredump are disabled on all systems by default Command Modes C...

Page 568: ...server where FTOS sends application core dumps ip address Enter the IP address of the target server in dotted decimal format ipv6 address Enter an IPv6 address of the target server in the x x x x x format NOTE The notation specifies successive hexadecimal fields of zeros name Enter a username to access the target server ftp username Enter the user name to access the target ftp server type Enter th...

Page 569: ...ure a single coredump server Configuration of a new coredump server over writes any previously configured server NOTE You must disable logging coredump before you designate a new server destination for your core dumps Related Commands logging coredump enables coredump logging coredump stack unit Enable coredump on a stack S Series Z Series S4810 Syntax logging coredump stack unit all Parameters al...

Page 570: ...ile reaches 1MB a new file is created up to the specified number The range is 1 to 20 packet count Enter the number of packets to capture The counter begins as soon as the command is enabled The range is 10 to 150000 snap length Enter the number of bytes per packet to capture Use this option to reduce the size of the captured packets to capture only the needed headers and avoid rest of the data po...

Page 571: ...unit to which you are connected to via a stacking link Diagnostic results are printed to the screen FTOS does not write them to memory Diagnostics only test connectivity not the entire data path diag stack unit Run offline diagnostics on a stack unit S Series Z Series Syntax diag stack unit number alllevels level0 level1 level2 verbose testname Parameters number Enter the stack unit number The ran...

Page 572: ...Enter the keyword level2 to run a specific test case Enclose the test case name in double quotes For example diag stack unit 1 level1 testname first Defaults none Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 1 0 Introduced the verbose option Version 7 7 1 0 Introduced on the S Series offline stack unit Place a stack unit in the offline state S S...

Page 573: ...uced on the S Series Usage Information You cannot enter this command on a Master or Standby unit The system reboots when the off line diagnostics complete This is an automatic process A warning message appears when the offline stack unit command is implemented Warning Diagnostic execution will cause stack unit to reboot after completion of diags Proceed with Offline Diags confirm yes no y Related ...

Page 574: ...er Range 0 to 2013 Dynamic Buffer Range FP 0 to 2013 CSF 0 to 131200 in multiples of 80 Packet Pointer Range 0 to 2047 queue1 number Enter the keyword queue1 and the number to allocate an amount of buffer space or packet pointers to Queue 1 Dedicated Buffer Range 0 to 2013 Dynamic Buffer Range FP 0 to 2013 CSF 0 to 131200 in multiples of 80 Packet Pointer Range 0 to 2047 queue2 number Enter the ke...

Page 575: ... S Series buffer policy buffer profile Enter the keywords buffer policy followed by the name of a buffer profile you created Defaults none Command Modes BUFFER PROFILE Command History Version 7 7 1 0 Introduced on the S Series Version 7 6 1 0 Introduced on the C Series Usage Information If you attempt to apply a buffer profile to a non existent port pipe FTOS displays the following message However...

Page 576: ... choose a pre defined buff fer profile for four queue for example QoS applications Defaults global 4Q Command Modes CONFIGURATION Command History Version 8 3 11 0 Introduced on the Z9000 Version 7 8 1 0 Added the global keyword Version 7 7 1 0 Introduced on the S Series Version 7 6 1 0 Introduced on the C Series Usage Information The buffer profile global command fails if you have already applied ...

Page 577: ...er profile stack unit Stack Unit Current Buffer Profile Next Boot Buffer Profile 0 Default Dynamic Default Dynamic show buffer profile Display the buffer profile that is applied to an interface C Series S Series Syntax show buffer profile detail summary csf fp uplink Parameters detail Display the buffer allocations of the applied buffer profiles summary Display the buffer profiles that are applied...

Page 578: ...ch Fabric Processors that are applied to line card port pipes in the system interface interface Enter the keyword interface followed by the interface type either gigabitethernet or tengigabitethernet slot port Enter the slot and port number of the interface Defaults none Command Modes INTERFACE Command History Version 7 7 1 0 Introduced on the S Series Version 7 6 1 0 Introduced on the C Series Ex...

Page 579: ...t pipe number from 0 to 1 followed by the keyword counters to clear the counters on the selected port pipe NOTE S25 models S25N S25P S25V etc have only port pipe 0 cpu data plane statistics Enter the keywords cpu data plane statistics to clear the data plane statistics cpu party bus statistics Enter the keywords cpu party bus statistics to clear the management statistics stack port 0 52 Enter the ...

Page 580: ...t pipe 0 Defaults none Command Modes EXEC Privilege Command History Version 8 3 11 0 Introduced on the Z9000 Version 7 8 1 0 Introduced on the S Series Related Commands show hardware stack unit displays the data plane or management plane input and output statistics of the designated component of the designated stack member hardware watchdog Set the watchdog timer to trigger a reboot and restart th...

Page 581: ...on the S Series Usage Information The unit numbers given are internal port numbers For a cross reference of the internal and user port numbers refer to the Z9000 Debugging and Diagnostics chapter in the FTOS Configuration Guide for the Z9000 System show hardware layer3 Display Layer 3 ACL or QoS data for the selected stack member and stack member port pipe S Series Z Series Syntax show hardware la...

Page 582: ...nnected cpu i2c statistics Z9000 only Enter the keywords cpu i2c statistics to display active i2c address statistics cpu party bus statistics Enter the keywords cpu party bus statistics to display the Management plane input output counter statistics of the pseudo party bus interface cpu sata interface statistics Z9000 only Enter the keywords cpu sata interface statistics to display the sata interf...

Page 583: ...kts 11 over 127 byte pkts 222 over 255 byte pkts 236 over 511 byte pkts 0 over 1023 byte pkts 919 Multicasts 430 Broadcasts 0 runts 0 giants 0 throttles 0 CRC 0 overrun 0 discarded Output Statistics 325 packets 27629 bytes 0 underruns 9 64 byte pkts 310 over 64 byte pkts 1 over 127 byte pkts 1 over 255 byte pkts 2 over 511 byte pkts 2 over 1023 byte pkts 0 Multicasts 3 Broadcasts 322 Unicasts 0 th...

Page 584: ...ged Drops 0 TTL Threshold Drops 0 INVALID VLAN CNTR Drops 0 L2MC Drops 0 PKT Drops of ANY Conditions 0 Hg MacUnderflow 0 TX Err PKT Counter 0 25 FTOS Example Port Stats FTOS show hardware stack unit 0 unit 0 port stats ena speed link auto STP lrn inter max loop port link duplex scan neg state pause discrd ops face frame back ge0 down SW Yes Block Untag FA SGMII 1554 ge1 ena SW Yes Block Tag FA SGM...

Page 585: ...x0060804c ASFPORTSPEED ge8 0x00000000 0x0060904c ASFPORTSPEED ge9 0x00000000 0x0060a04c ASFPORTSPEED ge10 0x00000000 0x0060b04c ASFPORTSPEED ge11 0x00000000 0x0060c04c ASFPORTSPEED ge12 0x00000000 0x0060d04c ASFPORTSPEED ge13 0x00000000 0x0060e04c ASFPORTSPEED ge14 0x00000000 0x0060f04c ASFPORTSPEED ge15 0x00000000 0x0061004c ASFPORTSPEED ge16 0x00000000 0x0061104c ASFPORTSPEED ge17 0x00000000 0x0...

Page 586: ...CAST_STORM_CONTROL ge5 0x00000000 0x0b706001 BCAST_STORM_CONTROL ge6 0x00000000 0x0b707001 BCAST_STORM_CONTROL ge7 0x00000000 0x0b708001 BCAST_STORM_CONTROL ge8 0x00000000 0x0b709001 BCAST_STORM_CONTROL ge9 0x00000000 0x0b70a001 BCAST_STORM_CONTROL ge10 0x00000000 output truncated Example Details e10 show hardware stack unit 0 unit 1 details The total no of FP CSF Devices in the Card is 2 The tota...

Page 587: ... Port 27 is FALSE output truncated Example Total Buffer FTOS conf sh hardware stack unit 0 buffer total buffer FTOS sh hardware stack unit 0 buffer total buffer Buffer Details for Stack Unit 0 Total Buffers allocated per Stack Unit 46080 Example Buffer Info FTOS conf sh hardware stack unit 0 buffer unit 0 port 1 buffer info Buffer Stats for Unit 0 Port 1 Maximum Shared Limit for the Port 30720 Def...

Page 588: ... the keyword counters to display hit counters for the selected ACL or QoS option Defaults none Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 7 8 1 0 Introduced on the S Series Example FTOS show hardware system flow layer2 stack unit 0 port set 0 counters EntryId Description HITS 2048 STP BPDU Redirects 0 2047 LLDP BPDU Redirects 0 2045 LACP traffic R...

Page 589: ...de 0x01 entries 1 FP Entry for redirecting GVRP traffic to RSM EID 2044 gid 1 slice 15 slice_idx 0x03 prio 0x7fc flags 0x82 Installed tcam color_indep 0 higig 0 higig_mask 0 KEY 0x00000000 00000000 00000000 0180c200 00210000 00000000 00000000 FPF4 0x00 MASK 0x00000000 00000000 00000000 ffffffff ffff0000 00000000 00000000 0x00 action act Drop param0 0 0x00 param1 0 0x00 action act CosQCpuNew param0...

Page 590: ...action act UpdateCounter param0 1 0x01 param1 0 0x00 output truncated 590 ...

Page 591: ...DHCP Server Use the following commands to configure the system to ba DHCP server clear ip dhcp Reset the DHCP counters C Series S Series Z Series S4810 Syntax clear ip dhcp binding address conflict server statistics Parameters binding Enter the keyword binding to delete all entries in the binding table address Enter the IP address to clear the binding entry for a single IP address conflicts Enter ...

Page 592: ...e Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 2 1 0 Introduced on the C Series and S Series default router Assign a default gateway to clients based on the address pool C Series S Series Z Series S4810 Syntax default router address address2 address8 Parameters address Enter a list of routers that may be the default gateway for clients on the subnet You may specify up to eigh...

Page 593: ...based on address pool C Series S Series Z Series S4810 Syntax dns server address address2 address8 Parameters address Enter the a list of DNS servers that may service clients on the subnet You may list up to eight servers in order of preference Defaults none Command Modes DHCP POOL Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Intr...

Page 594: ...dress in a range of addresses to be excluded from the pool high address Enter the highest address in a range of addresses to be excluded from the pool Defaults none Command Modes DHCP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Introduced on the C Series and S Series hardware address For manual configurations specify the client h...

Page 595: ...troduced on the C Series and S Series lease Specify a lease time for the addresses in a pool C Series S Series Z Series S4810 Syntax lease days hours minutes infinite Parameters days Enter the number of days of the lease The range is 0 to 31 hours Enter the number of hours of the lease The range is 0 to 23 minutes Enter the number of minutes of the lease The range is 0 to 59 infinite Specify that ...

Page 596: ...on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Introduced on the C Series and S Series netbios node type Specify the NetBIOS node type for a Microsoft DHCP client Dell Force10 recommends specifying clients as hybrid C Series S Series Z Series S4810 Syntax netbios node type type Parameters type Enter the NETBIOS node type Broadcast Enter the keyword b node Hybrid Enter the key...

Page 597: ... on the S4810 Version 8 2 1 0 Introduced on the C Series and S Series pool Create an address pool C Series S Series Z Series S4810 Syntax pool name Parameters name Enter the address pool s identifying name Defaults none Command Modes DHCP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Introduced on the C Series and S Series show ip ...

Page 598: ... EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 2 1 0 Introduced on the C Series and S Series show ip dhcp conflict Display the address conflict log C Series S Series Z Series Syntax show ip dhcp conflict address Parameters address Display a particular conflict log entry Defaults none Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the...

Page 599: ...Disabled Command Modes INTERFACE VLAN Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 3 1 0 Introduced on the E Series Version 8 2 1 0 Introduced on the C Series and S Series Related Commands arp inspection trust specifies a port as trusted so that ARP frames are not validated against the binding table arp inspection trust Specify a port a...

Page 600: ...g Clear the DHCP binding table C Series E Series Z Series S Series Syntax clear ip dhcp snooping binding Defaults none Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 1 0 Introduced on the E Series Version 8 2 1 0 Introduced on the C Series and S Series Related Commands show ip dhcp snooping displays the contents of the DHCP binding table 600 ...

Page 601: ...duced in FTOS version 7 8 1 0 DHCP snooping was available for Layer 3 only and dependent on DHCP Relay Agent ip helper address FTOS version 8 2 1 0 extends DHCP Snooping to Layer 2 You do not have to enable relay agent to snoop on Layer 2 interfaces Related Commands ip dhcp snooping vlan enables DHCP snooping on one or more VLANs ip dhcp snooping binding Create a static entry in the DHCP binding t...

Page 602: ...ess will be leased The range is 1 to 4294967295 Defaults none Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 5 1 0 Added support for 4 port 40G line cards on ExaScale Version 8 3 7 0 Introduced on the S4810 Version 8 3 1 0 Introduced on the E Series Version 7 8 1 0 Introduced on the C Series and S Series Related Commands show ip dhcp snooping d...

Page 603: ...uced on the E Series Version 7 8 1 0 Introduced on the C Series and S Series ip dhcp snooping trust Configure an interface as trusted C Series E Series S Series Z Series S4810 Syntax no ip dhcp snooping trust Defaults Untrusted Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 3 1 0 Introduced on the E Series Version ...

Page 604: ...mode 2 Save the running config to the startup config 3 Reload the system ip dhcp snooping vlan Enable DHCP Snooping on one or more VLANs C Series E Series Z Series S Series Syntax no ip dhcp snooping vlan name Parameters name Enter the name of a VLAN on which to enable DHCP Snooping Defaults Disabled Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 1...

Page 605: ...t the remote id for Option 82 Z Series Syntax ip dhcp relay information agent remote id hostname remote id Parameters hostname Set the hostname as the remote id in Option 82 remote id Enter the name of the remote id maximum 64 characters Default Chassis MAC address Command Modes CONFIGURATION Command History Version 9 0 0 0 Introduced on the Z9000 Usage Information Option 82 is comprised of two su...

Page 606: ...g Display the contents of the DHCP binding table or display the interfaces configured with IP Source Guard C Series E Series S Series Z Series Syntax show ip dhcp snooping binding source address validation Parameters binding Display the interfaces configured with IP Source Guard source address validation Display the interfaces configured with IP Source Guard Defaults none Command Modes EXEC EXEC P...

Page 607: ...e monitor command Parameters ecmp group ID Enter the identifier number for the ECMP group The range is 2 to 64 interface Enter the following keywords and slot port to add the interface to the ECMP group 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port inf...

Page 608: ... seed value To return to the default hash algorithm use the no hash algorithm command To return to the default ECMP hash algorithm use the no hash algorithm ecmp algorithm value command To remove the hash algorithm on a particular line card use the no hash algorithm linecard number command Parameters algorithm number Enter the algorithm number The range is 0 to 47 ecmp crc16 crc16cc crc32MSB crc32...

Page 609: ...C16_BISYNC_AND_XOR8 Upper 8 bits of CRC16 BISYNC and lower 8 bits of xor8 xor16 Use CR16 16 bit XOR Enter the keywords stack unit followed by a stack unit number to specify a stack unit The range is 0 to 7 Enter the keywords port set port pipe followed by the port pipe number The range is 0 to 5 hg seed seed value stack unit Z Series only Enter the keywords hg seed followed by the hash algorithm s...

Page 610: ...hash value calculated with the hash algorithm command is unique to the entire chassis The hash algorithm command with the line card option changes the hash for a particular line card by applying the mask specified in the IPSA and IPDA fields The line card option is applicable with the lag hash align microcode only refer to cam profile Config Any other microcode returns an error message as follows ...

Page 611: ...the ECMP LAG and NH hashing algorithm E Series Syntax hash algorithm d value linecard slot port set number Parameters d value Enter the keyword d followed by the d value The range is 0 to 4095 linecard slot Enter the keyword linecard followed by the linecard slot number port set number Enter the keywords port set followed by the linecard port pipe number Defaults none Command Modes CONFIGURATION C...

Page 612: ...es the destination IP for ECMP hashing Default enabled lsb Returns the LSB of the key as the hash Default crc lower Defaults crc lower dest ip enabled Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Usage Information The hash...

Page 613: ... bits of xor1 xor2 Use CRC16_BISYNC_AND_XOR2 Upper 8 bits of CRC16 BISYNC and lower 8 bits of xor2 xor4 Use CRC16_BISYNC_AND_XOR4 Upper 8 bits of CRC16 BISYNC and lower 8 bits of xor4 xor8 Use CRC16_BISYNC_AND_XOR8 Upper 8 bits of CRC16 BISYNC and lower 8 bits of xor8 xor16 Use CR16 16 bit XOR crc16cc Use CRC16_CCITT 16 bit CRC16 using CRC16 CCITT polynomial crc32MSB Use CRC32_UPPER MSB 16 bits of...

Page 614: ... 0 to 5 Defaults 32 bit chassis MAC and system time Command Modes CONFIGURATION Command History Version 8 3 11 4 Introduced on the Z9000 hash algorithm seed Select the seed value for the ECMP LAG and NH hashing algorithm E series Z Series Syntax hash algorithm seed value linecard slot port set number Parameters seed value Enter the keyword seed followed by the seed value The range is 0 to 4095 lin...

Page 615: ...n each port pipe to achieve deterministic behavior If the hash algorithm configuration is removed the hash seed does not go to the original factory default setting ip ecmp deterministic Deterministic ECMP Next Hop arranges all ECMPs in order before writing them into the CAM E Series Syntax ip ecmp deterministic Defaults Disabled Command Modes CONFIGURATION Command History Version 8 3 1 0 Introduce...

Page 616: ...ION Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 3 10 0 Introduced on the S4810 Usage Information You must save the new ECMP settings to the startup config write mem then reload the system for the new settings to take effect Related Commands show ip cam stack unit Display content addressable memory CAM entries for an S Series switch ipv6 ecmp deterministic Deterministic ECMP N...

Page 617: ...o exit from ecmp group mode use the exit command Command Modes ECMP GROUP PORT CHANNEL INTERFACE Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 3 10 0 Introduced on the S4810 link bundle distribution trigger threshold Provides a mechanism to set the threshold to trigger when traffic distribution will begin being monitored on an ECMP link bundle Z Series S4810 Syntax link bundle ...

Page 618: ...tribution Display the link bundle distribution for the interfaces in the bundle type of bundle LAG or ECMP and the most recently calculated interface utilization either bytes per second rate or maximum rate for each interface S4810 Syntax show link bundle distribution Command Modes EXEC Privilege Command History Version 8 3 10 0 Introduced on the S4810 Example FTOS show link bundle distribution Li...

Page 619: ...mode enable command to disable the FIPS cryptography mode Default Disabled Command Modes CONFIGURATION Example FTOS conf fips mode enable WARNING Enabling FIPS mode will close all SSH Telnet connection restart those servers and destroy all configured host keys proceed y n y FTOS conf Command History Version 9 1 0 0 Introduced on the Z9000 Version 8 3 12 0 Introduced on the S4810 Related Commands i...

Page 620: ...ssions show system S Series and S4810 Display the current status of all units in the system show ip ssh Configure the port for bridge to FCF links Z Series S4810 Syntax show ip ssh Defaults None Command Modes EXEC EXEC Privilege Example FTOS show ip ssh SSH server enabled SSH server version v1 and v2 Password Authentication enabled Hostbased Authentication disabled RSA Authentication disabled Vty ...

Page 621: ...Some of the parameters in this command require licensing to access For more information contact your Dell Force10 representative Z Series S4810 Syntax ssh hostname ipv4 address ipv6 address c encryption cipher l username m HMAC alogorithm p port number v 1 2 Parameters hostname OPTIONAL Enter the IP address or the hostname of the remote device vrf instance OPTIONAL E Series Only Enter the keyword ...

Page 622: ... algorithm hmac md5 96 Force ssh to use the hmac md5 96 HMAC algorithm With the FIPS mode enabled hmac sha1 Force ssh to use the hmac sha1 HMAC algorithm hmac sha1 96 Force ssh to use the hmac sha1 96 HMAC algorithm p port number OPTIONAL Enter the keyword p followed by the port number Range 1 to 65536 Default 22 v 1 2 OPTIONAL Enter the keyword v followed by the SSH version 1 or 2 Default The ver...

Page 623: ...o use hmac sha1 96 HMAC algorithm hmac md5 Force ssh to use hmac md5 HMAC algorithm hmac md5 96 Force ssh to use hmac md5 96 HMAC algorithm With FIPS mode enabled FTOS ssh 10 11 8 12 c Encryption cipher to use for v2 client l User name option m HMAC algorithm to use for v2 clients only p SSH server port option default 22 cr FTOS ssh 10 11 8 12 c aes128 cbc Force ssh to use aes128 cbc encryption ci...

Page 624: ...624 ...

Page 625: ...FCF clear fip snooping database interface vlan Clear FIP snooping information on a VLAN for a specified FCoE MAC address ENode MAC address or FCF MAC address and remove the corresponding ACLs generated by FIP snooping S4810 and MXL Switch Syntax clear fip snooping database interface vlan vlan id enode enode mac address fcf fcf mac address session session mac address Parameters enode mac address En...

Page 626: ...Modes EXEC Privilege Command History Version 8 3 12 0 Introduced on the S4810 Version 8 3 16 0 Introduced on the MXL 10 40GbE Switch IO Module debug fip snooping Enable debugging on FIP snooping S4810 and MXL Switch Syntax debug fip snooping all acl error ifm info ipc rx Parameters all Enter the keyword all to enable debugging on all the options acl Enter the keyword acl for ACL specific debugging...

Page 627: ...Module fip snooping enable Enable FIP snooping on all VLANs or on a specified VLAN S4810 and MXL Switch Syntax fip snooping enable To disable the FIP snooping feature on all or a specified VLAN use the no fip snooping enable command Defaults FIP snooping is disabled on all VLANs Command Modes CONFIGURATION VLAN INTERFACE Command History Version 8 3 12 0 Introduced on the S4810 Version 8 3 16 0 Int...

Page 628: ...mand History Version 8 3 12 0 Introduced on the S4810 Version 8 3 16 0 Introduced on the MXL 10 40GbE Switch IO Module fip snooping port mode fcf Configure the port for bridge to FCF links S4810 and MXL Switch Syntax fip snooping port mode fcf To disable the bridge to FCF link on a port use the no fip snooping port mode fcf command Command Modes INTERFACE Command History Version 8 3 12 0 Introduce...

Page 629: ...ule Usage Information The maximum number of FCoE VLANs supported on the switch is eight show fip snooping config Display the FIP snooping status and configured FC MAP values S4810 and MXL Switch Syntax show fip snooping config Command Modes EXEC EXEC Privilege Command History Version 8 3 12 0 Introduced on the S4810 Version 8 3 16 0 Introduced on the MXL 10 40GbE Switch IO Module Example FTOS show...

Page 630: ... fip snooping enode command shown in the Example below Field Description ENode MAC MAC address of the ENode ENode Interface Slot port number of the interface connected to the ENode FCF MAC MAC address of the FCF VLAN VLAN ID number the session uses FC ID Fibre Channel session ID the FCF assigns Example FTOS show fip snooping enode Enode MAC Enode Interface FCF MAC VLAN FC ID d4 ae 52 1b e3 cd Te 0...

Page 631: ...o the ENode FKA_ADV_PERIOD Time in milliseconds during which FIP keep alive advertisements transmit No of ENodes Number of ENodes connected to the FCF FC ID Fibre Channel session ID the FCF assigns Example FTOS show fip snooping fcf FCF MAC FCF Interface VLAN FC MAP FKA_ADV_PERIOD No of Enodes 54 7f ee 37 34 40 Po 22 100 0e fc 00 4000 2 show fip snooping sessions Display information on FIP snooped...

Page 632: ...ibre Channel ID the FCF assigns Port WWPN Worldwide port name of the CNA port Port WWNN Worldwide node name of the CNA port Example FTOS show fip snooping sessions Enode MAC Enode Intf FCF MAC FCF Intf VLAN FCoE MAC FC ID Port WWPN Port WWNN 00 00 c9 f1 e1 37 Te 0 28 54 7f ee 34 77 4e Te 1 47 111 0e fc 00 b5 00 07 b5 00 07 10 00 00 00 c9 f1 e1 37 20 00 00 00 c9 f1 e1 37 00 c0 dd 12 c0 05 Te 1 26 5...

Page 633: ...e Number of Multicast Discovery Solicits Number of FIP snoop multicast discovery solicit frames received on the interface Number of Unicast Discovery Solicits Number of FIP snoop unicast discovery solicit frames received on the interface Number of FLOGI Number of FIP snoop FLOGI request frames received on the interface Number of FDISC Number of FIP snoop FDISC request frames received on the interf...

Page 634: ...ue to Hardware Config Number of session failures due to hardware configuration that occurred on the interface Example FTOS show fip snooping statistics interface vlan 100 Number of Vlan Requests 0 Number of Vlan Notifications 0 Number of Multicast Discovery Solicits 2 Number of Unicast Discovery Solicits 0 Number of FLOGI 2 Number of FDISC 16 Number of FLOGO 0 Number of Enode Keep Alive 9021 Numbe...

Page 635: ...its 0 Number of Unicast Discovery Solicits 0 Number of FLOGI 0 Number of FDISC 0 Number of FLOGO 0 Number of Enode Keep Alive 0 Number of VN Port Keep Alive 0 Number of Multicast Discovery Advertisement 4451 Number of Unicast Discovery Advertisement 2 Number of FLOGI Accepts 2 Number of FLOGI Rejects 0 Number of FDISC Accepts 16 Number of FDISC Rejects 0 Number of FLOGO Accepts 0 Number of FLOGO R...

Page 636: ...ing vlan Command Modes EXEC EXEC Privilege Command History Version 8 3 12 0 Introduced on the S4810 Version 8 3 16 0 Introduced on the MXL 10 40GbE Switch IO Module Example FTOS show fip snooping vlan Default VLAN VLAN FC MAP FCFs Enodes Sessions 1 100 0X0EFC00 1 2 17 show fips status Display the FIPs status on the platform S4810 and MXL Switch Syntax show fips status NOTE You must have a license ...

Page 637: ...Command History Version 8 3 12 0 Introduced on the S4810 Version 8 3 16 0 Introduced on the MXL 10 40GbE Switch IO Module 637 ...

Page 638: ...638 ...

Page 639: ...roprietary protocol that does not interoperate with any other vendor Spanning Tree must be disabled on both primary and secondary interfaces before Resilient Ring protocol is enabled A VLAN configured as the control VLAN for a ring cannot be configured as a control or member VLAN for any other ring Member VLANs across multiple rings are not supported in Master nodes If multiple rings share one or ...

Page 640: ...guration debug frrp Clear the FRRP statistics counters C Series E Series S Series Z Series S4810 Syntax debug frrp event packet detail ring id count number To disable debugging use the no debug frrp event packet detail ring id countnumber command Parameters event Enter the keyword event to display debug information related to ring protocol transitions packet Enter the keyword packet to display bri...

Page 641: ...es S Series Z Series Syntax description Word To remove the ring description use the no description Word command Parameters Word Enter a description of the ring Maximum 255 characters Defaults none Command Modes CONFIGURATION conf frrp Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 2 1 0 Introduced on the C Series Version 7 4 1 0 Introduced disable Disable the Resilient Ring Pro...

Page 642: ...net interface enter the keyword FastEthernet followed by the slot port information 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information Port Channel interface enter the keyword port channel followed by a number C Series and S Series Range 1 128 E Series Range 1 to 255 for TeraScale and 1 to 512 for ExaScale SONET interface enter the keyword sonet fol...

Page 643: ...0 Gigabit Ethernet interface enter the keyword fortyGigE followed by the slot port information control vlan vlan id Enter the keyword control vlan followed by the VLAN ID Range 1 to 4094 Defaults none Command Modes CONFIGURATION conf frrp Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 2 1 0 Introduced on the C Series Version 7 4 1 0 Introduced Usage Information This command cau...

Page 644: ... frrp Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Introduced on the C Series Version 7 4 1 0 Introduced mode Set the Master or Transit mode of the ring C Series E Series S Series Z Series S4810 Syntax mode master transit To reset the mode use the no mode master transit command Parameters master Enter the keyword master to set the...

Page 645: ... Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Introduced on the C Series Version 7 4 1 0 Introduced Usage Information This command places you into the resilient ring protocol After executing this command the command line prompt changes to conf frrp show frrp Display the Resilient Ring Protocol configuration C Series E Series S Series Z Series S4810 Syntax show frrp ring id summary summa...

Page 646: ...owing counters hello Rx and Tx counters Topology change Rx and Tx counters The number of state change counters Example Summary FTOS show frrp summary Ring ID State Mode Ctrl_Vlan Member_Vlans 2 UP Master 2 11 20 25 27 30 31 UP Transit 31 40 41 50 Down Transit 50 32 FTOS Example 1 FTOS show frrp 1 Ring protocol 1 is in Master mode Ring Protocol Interface Primary GigabitEthernet 0 16 State Forwardin...

Page 647: ... is generated Range 50 to 2000 ms Default 500 ms dead interval milliseconds Enter the keyword dead interval followed by the time in milliseconds to set the dead interval of the control packets Range 50 to 6000 ms Default 1500 ms NOTE The configured dead interval must be at least three times the hello interval Defaults 500 ms for hello interval milliseconds 1500 ms for dead intervalmilliseconds Com...

Page 648: ...648 ...

Page 649: ... All VLAN ports added by GVRP are tagged GVRP is supported on untagged ports belonging to a default VLAN and tagged ports GVRP cannot be enabled on untagged ports belonging to a non default VLAN unless native VLAN is turned on GVRP requires end stations with dynamic access NICs Based on updates from GVRP enabled devices GVRP allows the system to dynamically create a port based VLAN unspecified wit...

Page 650: ...rt or number information For a Fast Ethernet interface enter the keyword FastEthernet followed by the slot port information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Port Channel interface enter the keywords port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to ...

Page 651: ...et followed by the slot port information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Port Channel interface enter the keywords port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a 10 Gigabit Ethernet interface ent...

Page 652: ...ax garp timers join leave leave all To return to the previous setting use the no garp timers join leave leave all command Parameters join Enter the keyword join followed by the number of milliseconds to configure the join time The range is 100 to 147483647 milliseconds The default is 200 milliseconds NOTE Designate the milliseconds in multiples of 100 leave Enter the keyword leave followed by the ...

Page 653: ...age sent for de registering some attribute information If a Join message is not received before the Leave time expires the GARP application entity removes the attribute information as requested Leave All Timer The Leave All timer starts when a GARP application entity starts When this timer expires the entity sends a Leave all message so that other entities can reregister their attribute informatio...

Page 654: ...7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on C Series E Series and S Series Usage Information Fixed registration prevents an interface configured using the command line to belong to a VLAN static configuration from being unconfigured when it receives a Leave message Therefore Registration mode on that interface is fixed Normal registration is the default registration The port s member...

Page 655: ...e global GVRP configuration C Series E Series S Series Z Series S4810 Syntax show config Command Modes CONFIGURATION GVRP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on C Series E Series and S Series Related Commands gvrp enable enables GVRP on physical interfaces and LAGs protocol gvrp accesses the GVRP protocol show ...

Page 656: ...rief to display a brief summary of the GVRP configuration interface OPTIONAL Enter the following keywords and slot port or number information For a Fast Ethernet interface enter the keyword FastEthernet followed by the slot port information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Port Channel interface enter the keywords port...

Page 657: ...sabled No R3 show gvrp brief Related Commands show gvrp statistics displays the GVRP statistics show gvrp statistics Display the GVRP configuration statistics C Series E Series S Series Z Series Syntax show gvrp statistics interface interface summary Parameters interface interface OPTIONAL Enter the keyword interface followed by one of the interface keywords and slot port or number information For...

Page 658: ...bute that was being parsed was not the GVRP VID Attribute Type 0x01 The attribute that was being parsed had an invalid attribute length The attribute that was being parsed had an invalid GARP event The attribute that was being parsed had an invalid VLAN ID The valid range is 1 to 4095 A failed registration can occur for the following reasons Join requests were received on a port that was blocked f...

Page 659: ...Related Commands show gvrp displays the GVRP configuration 659 ...

Page 660: ...660 ...

Page 661: ...immediately as indicated by the grub prompt NOTE This chapter describes only a few commands available in GRUB NOTE You cannot use the Tab key to complete commands in this mode clear Clears the grub screen Z Series Syntax clear Command Modes grub Command History Version 8 3 11 1 Introduced on the Z9000 Example grub clear list_env Lists all the environment variables Z Series Syntax list_env Command ...

Page 662: ...true grubcfg_version 1 0 0 8 gpxe_version 1 0 0 14 serialunit 0 grub_version 1 0 0 25 enablepwdignore false stconfigignore false grub reboot Reboots the unit Z Series Syntax reboot Command Modes grub Command History Version 8 3 11 1 Introduced on the Z9000 Usage Information Save the environment variables before giving the reboot command or the changed variables are lost Example grub reboot save_en...

Page 663: ...te enablepwdignore stdconfigignore Parameters serverip Set the IP address of the server ipaddr Set the Management IP address of the unit netmask Set the subnet mask of the Management IP address gatewayip Set the IP address of the gateway primary_boot Set the primary boot parameter The location must be flash0 flash1 or any valid tftp location The primary boot parameter must be in the following synt...

Page 664: ...ting the values save the variables that you set using the save_env command before rebooting to ensure the variables are saved The IP address and the MAC addresses must be a standard IPv4 and MAC address respectively NOTE The enablepwdignore and stconfigignore GRUB commands when set as true are applicable only for the first time when the unit boots up The next time the unit boots up these variables...

Page 665: ... 0 network unreachable 1 host unreachable 2 protocol unreachable 3 port unreachable 4 fragmentation needed but don t fragment bit set 5 source route failed 6 destination network unknown 7 destination host unknown 8 source host isolated obsolete 9 destination network administratively prohibited 10 destination host administratively prohibited 11 network unreachable for TOS 12 host unreachable for TO...

Page 666: ...vertisement 10 0 router solicitation 11 time exceeded 0 time to live equals 0 during transit 1 time to live equals 0 during reassembly 12 parameter problem 1 IP header bad catchall error 2 required option missing 13 0 timestamp request 14 0 timestamp reply 15 0 information request obsolete 16 0 information reply obsolete 17 0 address mask request 18 0 address mask reply 666 ...

Page 667: ...v2 The maximum number of interfaces supported is 512 on the E Series On the C Series and S Series the maximum number of interfaces supported 31 The Z9000 supports up to 95 interfaces There is no hard limit on the maximum number of groups supported IGMPv3 router interoperability with IGMPv2 and IGMPv1 routers on the same subnet is not supported An administrative command ip igmp version is added to ...

Page 668: ...duced on the S Series Version 7 5 1 0 Introduced on the C Series E Series legacy command Usage Information IGMP commands accept only non VLAN interfaces specifying VLAN does not yield results debug ip igmp Enable debugging of IGMP packets C Series E Series S Series Z Series S4810 Syntax debug ip igmp group address interface To disable IGMP debugging use the no debug ip igmp group address interface...

Page 669: ... E Series legacy command Usage Information IGMP commands accept only non VLAN interfaces specifying VLAN does not yield results This command displays packets for IGMP and IGMP snooping ip igmp access group Use this feature to specify access control for packets C Series E Series S Series Z Series S4810 Syntax ip igmp access group access list To remove the feature use the no ip igmp access group acc...

Page 670: ...s 1 to 10000 Defaults none Command Modes CONFIGURATION conf if interface slot port Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the C Series and S Series Version 7 6 1 0 Introduced on the E Series ip igmp immediate leave Enable IGMP immediate leave C Series E Series S Series Z Series S4810 Syntax ip igmp immediate le...

Page 671: ...ied groups ip igmp last member query interval Change the last member query interval which is the Max Response Time inserted into Group Specific Queries sent in response to Leave Group messages This interval is also the interval between Group Specific Query messages C Series E Series S Series Z Series S4810 Syntax ip igmp last member query interval milliseconds To return to the default value use th...

Page 672: ...d on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 6 1 0 Introduced on the S Series in Interface VLAN mode only to enable the system to act as an IGMP Proxy Querier Version 7 5 1 0 Introduced on the C Series in Interface VLAN mode only to enable the system to act as an IGMP Proxy Querier E Series legacy command ip igmp query interval Chan...

Page 673: ...Series Z Series S4810 Syntax ip igmp query max resp time seconds To return to the default values use the no ip igmp query max resp time command Parameters seconds Enter the number of seconds for the maximum response time The range is 1 to 25 The default is 10 seconds Defaults 10 seconds Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on t...

Page 674: ...Introduced on the C Series and S Series Version 7 7 1 0 Introduced on the E Series Usage Information Mapping applies to both v1 and v2 IGMP joins any updates to the ACL are reflected in the IGMP groups You may not use extended access lists with this command When you configure a static SSM map and the router cannot find any matching access lists the router continues to accept G groups Related Comma...

Page 675: ...ave at least one source address defined In exclude mode if you do not specify a source address FTOS implicitly assumes all sources are included If you do not specify either include or exclude FTOS implicitly assumes a IGMPv2 static join Command Limitations Only one mode include or exclude is permitted per multicast group per interface To configure another mode all sources belonging to the original...

Page 676: ...on For a 100 1000 Ethernet interface enter the keyword gigabitethernet followed by the slot port information For a 1 Gigabit Ethernet interface enter the keyword gigabitethernet followed by the slot port information For a Port Channel interface enter the keywords port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraSca...

Page 677: ...d port number Mode Displays the IGMP version used Uptime Displays the amount of time the group has been operational Expires Displays the amount of time until the entry expires Last Reporter Displays the IP address of the last host to be a member of the IGMP group Member Ports Indicates the port channel If the port channel is VLT an asterisk after the port channel number indicates the port channel ...

Page 678: ...0 Syntax show ip igmp interface interface Parameters interface OPTIONAL Enter the interface type and slot port information For a 100 1000 Ethernet interface enter the keyword gigabitethernet followed by the slot port information For a 1 Gigabit Ethernet interface enter the keyword gigabitethernet followed by the slot port information For a Port Channel interface enter the keywords port channel fol...

Page 679: ...bled GigabitEthernet 0 7 is up line protocol is down Internet protocol processing disabled GigabitEthernet 7 9 is up line protocol is up Internet address is 10 87 5 250 24 IGMP is enabled on interface IGMP query interval is 60 seconds IGMP querier timeout is 120 seconds IGMP max query response time is 10 seconds IGMP last member query response interval is 1000 ms IGMP activity 0 joins 0 leaves IGM...

Page 680: ...uring VLAN Stack related commands IGMP snooping does not react to Layer 2 topology changes triggered by spanning tree protocol STP IGMP snooping reacts to Layer 2 topology changes triggered by multiple spanning tree protocol MSTP by sending a general query on the interface that comes in the FWD state Important Points to Remember for IGMP Querier The IGMP snooping Querier supports version 2 You mus...

Page 681: ...ersion 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series legacy command Usage Information You must enter this command to enable IGMP snooping When you enable this from CONFIGURATION mode IGMP snooping enables on all VLAN interfaces except the default VLAN NOTE You must execute the ...

Page 682: ...lood This command controls the flooding behavior of unregistered multicast data packets C Series E Series S Series Z Series S4810 Syntax ip igmp snooping flood Defaults Enabled Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Introduced on the C Seris and S Series Version 7 7 1 0 Introduced on the E Series ...

Page 683: ...5 The default is 1000 milliseconds Defaults 1000 milliseconds Command Modes INTERFACE VLAN Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series legacy command Usage Information This last member query interval is also the interval between successive Group Specif...

Page 684: ...aults Not configured Command Modes INTERFACE VLAN conf if vl n Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series legacy command Usage Information FTOS provides the capability of statically configuring the interface to which a multicast router is attached To ...

Page 685: ...router Display multicast router interfaces C Series E Series S Series Z Series S4810 Syntax show ip igmp snooping mrouter vlan number Parameters vlan number Enter the keyword vlan followed by the vlan number The range is 1 to 4094 Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Se...

Page 686: ...Related Commands ip igmp snooping mrouter Use this command to configure a static connection to the multicast router show ip igmp groups use this IGMP command to view groups 686 ...

Page 687: ...e counters used in the show interfaces commands for all virtual router redundancy protocol VRRP groups virtual local area networks VLANs and physical interfaces or selected ones C Series E Series S Series Z Series S4810 Syntax clear counters interface vrrp ipv6 vrid vrf instance learning limit Parameters interface OPTIONAL Enter any of the following keywords and slot port or number to clear counte...

Page 688: ... characters maximum IPv6 VRRP groups are not supported learning limit OPTIONAL Enter the keywords learning limit to clear unknown source address SA drop counters when MAC learning limit is configured on the interface Defaults Without an interface specified the command clears all interface counters Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 5 1 0...

Page 689: ...by the slot port information For a 40 Gigabit Ethernet interface enter the keyword fortyGigE followed by the slot port information Defaults Without an interface specified the command clears all interface dampening counters Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 5 1 0 Added support for 4 port 40G line cards on ExaScale Version 8 3 7 0 Introdu...

Page 690: ...ing a long CX4 cable between the C Series and the S Series to avoid errors configure the cable using the cx4 cable length short command only NOTE The 15M CX4 active cable is not supported on the C Series and S series It is only supported for S2410 with active end on the device NOTE For information about using XFP ports with CX4 cables refer to your S Series hardware guide Example Unsuccessful FTOS...

Page 691: ...he default is 2500 max suppress time Enter the maximum number for which a route can be suppressed The default is four times the half life value The range is 1 to 86400 The default is 20 seconds Defaults Disabled Command Modes INTERFACE conf if Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Vers...

Page 692: ...ring up to 240 characters long Defaults none Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 7 4 1 0 Modified for E Series Revised from 78 to 240 characters Usage Information Important Points Spaces between characters are...

Page 693: ... feature are shut down If an SFM fails or you remove in an E300 system with two SFM the ports you configure with this feature are shut down All other ports are treated normally When you install or replace a second SFM all ports are booted up and treated as normally This feature does not take affect until a single SFM is active in the E300 system duplex Management Set the mode of the Management int...

Page 694: ...or a forwarding router speed Management interface sets the speed on the Management interface duplex 10 100 Interfaces Configure duplex mode on any physical interfaces where the speed is set to 10 100 C Series E Series S Series Z Series S4810 Syntax duplex half full To return to the default setting use the no duplex command Parameters half Enter the keyword half to set the physical interface to tra...

Page 695: ... when the standard deviation of traffic distribution on a member link exceeds a defined threshold S4810 Syntax ecmp group ecmp path interface interface monitoring enable To negate a command use the no command Parameters ecmp path Enter the path number for the LAG The range is 2 to 64 interface Enter the following keywords and slot port to add the interface to the LAG For a 1 Gigabit Ethernet inter...

Page 696: ...he default value on the send side tx off Enter the keywords tx off so that flow control frames are not sent from this port to the connected device when a higher rate of traffic is received threshold C Series and S Series only When you configure tx on you can set the threshold values for Number of flow control packet pointers 1 to 2047 default 75 Flow control buffer threshold in KB 1 to 2013 defaul...

Page 697: ...o Remember Do not enable tx pause when buffer carving is enabled For information and assistance consult Dell Force10 TAC Asymmetric flow control rx on tx off or rx off tx on setting for the interface port less than 100 Mb s speed is not permitted The following error is returned Can t configure Asymmetric flowcontrol when speed 1G config ignored The only configuration applicable to half duplex port...

Page 698: ...off off off on on off on on off on off off off on on off on on on off off off off on on off on on on on off off off on on off on on LocNegRx LocNegTx RemNegRx RemNegTx off off off off off off off off off off off off off off off off off off off off off off off off off on on off off off off off off off off off on off off on on on on on on on on on off off off off off off off off on on on on on on on...

Page 699: ...he slot port information Defaults Not configured Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 5 1 0 Added support for 4 port 40G line cards on ExaScale Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 4 1 0 Introduced Usage Information You cannot dele...

Page 700: ...ed on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 4 1 0 Introduced Example FTOS conf interface loopback 1655 FTOS conf if lo 1655 Related Commands interface configures a physical interface interface null configures a Null interface interface port channel configures a port channel inter...

Page 701: ... If your system has two RPMs installed use the show redundancy command to display which RPM is the Primary RPM Example FTOS conf interface managementethernet 0 0 FTOS conf if ma 0 0 Related Commands management route configures a static route that points to the Management interface or a forwarding router duplex Management clears the forwarding information base FIB entries on a specified line card s...

Page 702: ...ge command you can enter identical commands for a range of interface C Series E Series S Series Z Series Syntax interface range interface interface Parameters interface interface Enter the keywords interface range and one of the interfaces slot port port channel or VLAN number Select the range of interfaces for bulk configuration You can enter up to six comma separated ranges Spaces are not requir...

Page 703: ...n interface range interfaces appear in the order they are entered they are not sorted The command verifies that interfaces are present physical or configured logical Important Things to Remember Bulk configuration is created if at least one interface is valid Non existing interfaces are excluded from the bulk configuration with a warning message The interface range prompt includes interface types ...

Page 704: ... Range This example shows a single range bulk configuration FTOS config interface range gigabitethernet 5 1 23 FTOS config if range no shutdown FTOS config if range Example Multiple Range This example shows how to use commas to add different interface types to the range enabling all Gigabit Ethernet interfaces in the range 5 1 to 5 23 and both Ten Gigabit Ethernet interfaces 1 1 and 1 2 FTOS confi...

Page 705: ... keyword GigabitEthernet followed by the slot port information For a Port Channel interface enter the keywords port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a SONET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface ente...

Page 706: ...interface range macro name runs an interface range macro interface range macro name Run the interface range macro to automatically configure the pre defined range of interfaces C Series E Series S Series Z Series Syntax interface range macro name Parameters name Enter the name of an existing macro Defaults none Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Ve...

Page 707: ... Modes CONFIGURATION Command History Version 9 1 0 0 Introduced on the S4810 added support for OpenFlow Version 8 3 11 1 Introduced on the Z9000 Usage Information For more information about VLANs and the commands to configure them refer to the Virtual LAN VLAN Commands section of the Layer 2 chapter FTP TFTP and SNMP operations are not supported on a VLAN MAC ACLs are not supported in VLANs IP ACL...

Page 708: ...eturn to the default setting use the no ipg command Parameters 8 Enter the keyword 8 to set the IPG to 8 bytes Defaults 12 bytes Command Mode INTERFACE Command History Version 8 2 1 0 Support for 4093 VLANs on E Series ExaScale Prior releases supported 2094 Version 8 1 1 0 Introduced on E Series ExaScale pre Version 6 1 1 0 Introduced for E Series Usage Information For 1 Gigabit Ethernet interface...

Page 709: ...E Series S Series Z Series S4810 Syntax keepalive seconds To stop sending SONET keepalive packets use the no keepalive command Parameters seconds OPTIONAL For SONET interfaces with PPP encapsulation enabled enter the number of seconds between keepalive packets The range is 0 to 23767 The default is 10 seconds Defaults Enabled Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on t...

Page 710: ...face The interface will stay down until the link failure signal stops NOTE On TeraScale line cards LFS is always enabled by default link debounce timer Assign the debounce time for link change notification on this interface E Series Syntax link debounce milliseconds Parameters milliseconds Enter the time to delay link status change notification on this interface The range is 100 to 5000 ms The def...

Page 711: ...ethernet followed by the slot 0 1 and the port 0 For a SONET interface enter the keyword sonet followed by the slot port For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a 40 Gigabit Ethernet interface enter the keyword fortyGigE followed by the slot port information Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1...

Page 712: ...line card mode the previous line card in the chassis T Increase the screen refresh rate t Decrease the screen refresh rate q Return to the CLI prompt Example Single Interface systest 3 Monitor time 00 00 06 Refresh Intvl 2s Time 03 26 26 Interface Gi 0 3 Enabled Link is Up Linespeed is 1000 Mbit Traffic statistics Current Rate Delta Input bytes 9069828 43 Bps 86 Output bytes 606915800 43 Bps 86 In...

Page 713: ...3 Up 18182681434 43 6592378911 144 Gi 0 14 Up 61349 55 86281941 15 Gi 0 15 Up 59808 58 62060 27 Gi 0 16 Up 59889 1 61616 1 Gi 0 17 Up 0 0 14950126 81293 Gi 0 18 Up 0 0 0 0 Gi 0 19 Down 0 0 0 0 Gi 0 20 Up 62734 54 62766 18 Gi 0 21 Up 60198 9 200899 9 Gi 0 22 Up 17304741100 3157554 10102508511 1114221 Gi 0 23 Up 17304769659 3139507 7133354895 523329 m Change mode c Clear screen b Display bytes r Dis...

Page 714: ...value and the same IP MTU value The port channel link MTU and IP MTU must be less than or equal to the link MTU and IP MTU values configured on the channel members For example if the members have a link MTU of 2100 and an IP MTU 2000 the port channel s MTU values cannot be higher than 2100 for link MTU or 2000 bytes for IP MTU VLANs All members of a VLAN must have same IP MTU value Members can hav...

Page 715: ... 100Mbits The negotiation auto command provides a mode option for configuring an individual port to forced master forced slave after you enable auto negotiation NOTE The mode option is not available on non 10 100 1000 Base T Ethernet line cards If you do not use the mode option the default setting is slave If you do not configure forced master or forced slave on a port the port negotiates to eithe...

Page 716: ...bit Mode full duplex Master ARP type ARPA ARP Timeout 04 00 00 Last clearing of show interfaces counters 00 12 42 Queueing strategy fifo Input Statistics User Information Both sides of the link must have auto negotiation enabled or disabled for the link to come up The following details the possible speed and auto negotiation combinations for a line between two 10 100 1000 Base T Ethernet interface...

Page 717: ...n the S Series Version 7 5 1 0 Introduced on the C Series Usage Information The following describes the interface command shown in the Example below This example sets a port as hybrid makes the port a tagged member of VLAN 20 and an untagged member of VLAN 10 which becomes the native VLAN of the port The port will now accept untagged frames and classify them as VLAN 10 frames VLAN 20 tagged frames...

Page 718: ... FTOS conf if vl 20 Related Commands show interfaces switchport displays the configuration of switchport Layer 2 interfaces on the switch switchport places the interface in a Layer 2 mode vlan stack trunk specifies an interface as a trunk port to the Stackable VLAN network rate interval Configure the traffic sampling interval on the selected interface C Series E Series S Series Z Series Syntax rat...

Page 719: ...ces displays information on physical and virtual interfaces show config Display the interface configuration C Series E Series S Series Z Series S4810 Syntax show config Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0...

Page 720: ...w config interface GigabitEthernet 1 1 no ip address switchport no shutdown interface GigabitEthernet 1 2 no ip address switchport no shutdown FTOS conf if range gi 1 1 2 show interfaces Display information on a specific physical interface or virtual interface C Series E Series S Series Z Series S4810 Syntax show interfaces interface Parameters interface Enter one of the following keywords and slo...

Page 721: ...ommand History Version 9 1 0 0 Updated ManagementEthernet output to include two global IPv6 addresses on S4810 and Z9000 and added output example showing OpenFlow instance ID Version 8 3 12 1 Updated command output to support multiple IPv6 addresses on S4810 Version 8 3 11 4 Output expanded to support eSR4 optics in Z9000 Version 8 3 11 1 Introduced on the Z9000 Version 8 5 1 0 Added support for 4...

Page 722: ...trative and line protocol status Hardware is Interface hardware information assigned MAC address and current address Pluggable media present Present pluggable media wavelength type and rate The error scenarios are Wavelength Non qualified Dell Force10 ID is not present but wavelength information is available from XFP or SFP serial data Wavelength F10 unknown Dell Force10 ID is present but not able...

Page 723: ...f CRC overrun and discarded packets CRC packets with CRC FCS errors overrun number of packets discarded due to FIFO overrun conditions discarded the sum of runts giants CRC and overrun packets discarded without any processing Output Statistics Displays output statistics sent out of the interface including Number of packets bytes and underruns out of the interface Packet size and the number of thos...

Page 724: ... byte pkts 0 over 511 byte pkts 0 over 1023 byte pkts 0 Multicasts 0 Broadcasts 0 Unicasts 0 throttles 0 discarded 0 collisions 0 wreddrops Rate info interval 299 seconds Input 00 00 Mbits sec 0 packets sec 0 00 of line rate Output 00 00 Mbits sec 0 packets sec 0 00 of line rate Time since last interface status change 3d17h51m Usage Information On the C Series and S Series the interface counter ov...

Page 725: ... byte pkts 24 Multicasts 0 Broadcasts 857708 Unicasts 0 Vlans 0 throttles 0 discarded 0 collisions 4409143619 wredDrops Rate info interval 30 seconds Input 00 00 Mbits sec 0 packets sec 0 00 of line rate Output 00 00 Mbits sec 0 packets sec 0 00 of line rate Time since last interface status change 00 12 14 FTOS Example 1G SFP FTOS show interfaces gigabitethernet 2 0 GigabitEthernet 2 0 is up line ...

Page 726: ...0 01 e8 0b a9 4c Pluggable media not present Interface index is 503595208 Internet address is 10 11 201 5 16 Link local IPv6 address fe80 201 e8ff fe0b a94c 64 Global IPv6 address 2222 5 64 Virtual IP is not set Virtual IP IPv6 address is not set MTU 1554 bytes IP MTU 1500 bytes LineSpeed 10 Mbit Mode half duplex ARP type ARPA ARP Timeout 04 00 00 Last clearing of show interface counters 04 01 08 ...

Page 727: ...s change 00 05 12 Related Commands show interfaces configured displays any interface with a non default configuration show interfaces linecard displays information on all interfaces on a specific line card show interfaces phy show interfaces rate displays information of either rate limiting or rate policing on the interface show interfaces switchport displays Layer 2 information about the interfac...

Page 728: ...LineSpeed 1000 Mbit Mode full duplex Master ARP type ARPA ARP Timeout 04 00 00 Last clearing of show interfaces counters 00 12 42 Queueing strategy fifo Input Statistics 10 packets 10000 bytes 0 Vlans 0 64 byte pkts 0 over 64 byte pkts 0 over 127 byte pkts 0 over 255 byte pkts 10 over 511 byte pkts 0 over 1023 byte pkts 0 Multicasts 0 Broadcasts 0 runts 0 giants 0 throttles 0 CRC 0 overrun 0 disca...

Page 729: ...GigabitEthernet followed by the slot port information For a 40 Gigabit Ethernet interface enter the keyword fortyGigE followed by the slot port information summary OPTIONAL Enter the keyword summary to display the current summary of dampening data including the number of interfaces configured and the number of interfaces suppressed if any detail OPTIONAL Enter the keyword detail to display detaile...

Page 730: ...gabitEthernet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a 40 Gigabit Ethernet interface enter the keyword fortyGigE followed by the slot port information Command Modes EXEC EXEC Privilege Command History Version 8 5 1 0 Added support for 4 port 40G line cards on ExaScale Version 8 2 1 0 I...

Page 731: ...512 for ExaScale For a SONET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a 40 Gigabit Ethernet interface enter the keyword fortyGigE followed by the slot port information For VLAN interfaces enter the keyword vlan followed by a number from 1 to 4094 Command...

Page 732: ... down connected to Radius Server GigabitEthernet 4 22 NO admin down down connected to Web Server GigabitEthernet 4 23 NO admin down down connected to PC client TenGigabitEthernet 6 0 NO admin down down GigabitEthernet 8 0 YES up up GigabitEthernet 8 1 YES up up GigabitEthernet 8 2 YES up up GigabitEthernet 8 3 YES up up GigabitEthernet 8 4 YES up up GigabitEthernet 8 5 YES up up GigabitEthernet 8 ...

Page 733: ...ample FTOS show interfaces linecard 0 TenGigabitEthernet 0 0 is down line protocol is down Hardware is Force10Eth address is 00 01 e8 51 b2 d4 Current address is 00 01 e8 51 b2 d4 Pluggable media present XFP type is 10GBASE SR Medium is MultiRate Wavelength is 850 00nm XFP receive power reading is 2 3538 Interface index is 33883138 Internet address is not set MTU 1554 bytes IP MTU 1500 bytes LineS...

Page 734: ...e AutoNegotiation Advertise Displays the control words advertised by the local interface during negotiation Duplex is either half or full Asym and Sym Pause is the types of flow control supported by the local interface AutoNegotiation Remote Partner s Ability Displays the control words advertised by the remote interface during negotiation Duplex is either half or full Asym and Sym Pause is the typ...

Page 735: ...PowerDown False Isolate False DuplexMode Full Mode Status AutoNegComplete False RemoteFault False LinkStatus False JabberDetect False AutoNegotation Advertise 100MegFullDplx True 100MegHalfDplx True 10MegFullDplx False 10MegHalfDplx True Asym Pause False Sym Pause False AutoNegotiation Remote Partner s Ability 100MegFullDplx False 100MegHalfDplx False 10MegFullDplx False 10MegHalfDplx False Asym P...

Page 736: ...ics 0 packets 0 bytes 5144 64 byte pkts 0 over 64 byte pkts 0 over 127 byte pkts 0 over 255 byte pkts 0 over 511 byte pkts 0 over 1023 byte pkts 0 Multicasts 0 Broadcasts 0 runts 0 giants 0 throttles 0 CRC 0 overrun 0 discarded Output Statistics 0 packets 0 bytes 0 underruns 0 64 byte pkts 0 over 64 byte pkts 0 over 127 byte pkts 0 over 255 byte pkts 0 over 511 byte pkts 0 over 1023 byte pkts 0 Mu...

Page 737: ... OPTIONAL Enter the keyword linecard followed by the slot number For the C Series the range is 0 to 7 for C300 and 0 to 3 for C150 For the E Series the range is 0 to 13 on the E1200 0 to 6 on the E600 and 0 to 5 on the E300 Defaults none Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 5 1 0 Added support for 4 port 40G line cards on ExaScale Ver...

Page 738: ... enter the keywords port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For SONET interfaces enter the keyword sonet followed by the slot port information This keyword is only available on E Series and C Series For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet fol...

Page 739: ...below Items Description Name Displays the interface s type slot and port number 802 1QTagged Displays whether if the VLAN tagged True untagged False or hybrid Hybrid which supports both untagged and tagged VLANs by port 13 0 Vlan membership Lists the VLANs to which the interface is a member Starting with FTOS version 7 6 1 this field can display native VLAN membership by port 13 0 Example FTOS sho...

Page 740: ...ers gigabitethernet For a 10 100 1000 interface enter the keyword gigabitethernet followed by the slot port information tengigabitetherne t For a 10G interface enter the keyword tengigabitethernet followed by the slot port information fortyGigE For a 40G interface enter the keyword fortyGigE followed by the slot port information Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 In...

Page 741: ...SFP Bias Low Alarm threshold Factory defined setting Value can differ between SFP and SFP TX Power Low Alarm threshold Factory defined setting Value can differ between SFP and SFP RX Power Low Alarm threshold Factory defined setting Value can differ between SFP and SFP Temp High Warning threshold Factory defined setting Value can differ between SFP and SFP Voltage High Warning threshold Factory de...

Page 742: ...power or OMA This depends on the Rx Power measurement type displayed above If this crosses Rx power alarm warning thresholds the Rx power high alarm warning flag is set to true If it falls below the low alarm warning thresholds the Rx power low alarm warning flag is set to true Data Ready state Bar This field indicates that the transceiver has achieved power up and data is ready This is set to tru...

Page 743: ...an be either true or false depending on the Current voltage value displayed above Tx Bias High Warning Flag This can be either true or false depending on the Tx bias current value displayed above Tx Power High Warning Flag This can be either true or false depending on the Current Tx power value displayed above Rx Power High Warning Flag This can be either true or false depending on the Current Tx ...

Page 744: ...P 1 Bias Low Alarm threshold 1 000mA SFP 1 TX Power Low Alarm threshold 0 067mW SFP 1 RX Power Low Alarm threshold 0 010mW SFP 1 Temp High Warning threshold 90 000C SFP 1 Voltage High Warning threshold 3 700V SFP 1 Bias High Warning threshold 14 000mA SFP 1 TX Power High Warning threshold 0 631mW SFP 1 RX Power High Warning threshold 0 794mW SFP 1 Temp Low Warning threshold 20 000C SFP 1 Voltage L...

Page 745: ...uding hardware identification numbers and configured protocols show range Display all interfaces configured using the interface range command C Series E Series S Series Z Series Syntax show range Command Modes INTERFACE RANGE config if range Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 2 1 0 Added support for 4093 VLANs on E Series ExaScale Version 8 1 1 0 Introduced on the E...

Page 746: ...own To activate an interface use the no shutdown command Defaults The interface is disabled Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series legacy command Usage Information The shu...

Page 747: ... Z Series S4810 Syntax speed 10 100 1000 auto To return to the default setting use the no speed 10 100 1000 command Parameters 10 Enter the keyword 10 to set the interface s speed to 10 Mb s NOTE This interface speed is not supported on the LC EH GE 50P or the LC EJ GE 50P card If the command is entered for these interfaces an error message appears 100 Enter the keyword 100 to set the interface s ...

Page 748: ...ge that setting In FTOS the command speed 100 is an exact equivalent of speed auto 100 in IOS NOTE Starting with FTOS version 7 8 1 0 when you use a copper SFP2 module with catalog number GP SFP2 1T in the S25P model of the S Series you can manually set its speed with the speed command When you set the speed to 10 or 100 Mbps you can also use the duplex command Related Commands duplex 10 100 Inter...

Page 749: ...outer stack unit portmode Split a single 40G port into 4 10G ports on the S4810 or Z9000 S4810 Z Series Syntax stack unit stack unit port number portmode quad Parameters stack unit Enter the stack member unit identifier of the stack member to reset For the S4810 the range is 0 to 11 For the Z9000 the range is 0 to 7 number Enter the port number of the 40G port to be split For the S4810 enter one o...

Page 750: ...ckup configuration To remove a switchport backup interface enter the no switchport backup interface gigabit slot port tengigabit slot port fortyGigE slot port port channel number command Parameters backup interface Use this option to configure a redundant Layer 2 link without using Spanning Tree The keywords backup interface configures a backup port so that if the primary port fails the backup por...

Page 751: ...st first enter the switchport command For more information refer to the Configuring Redundant Links section in the Layer 2 chapter of the FTOS Configuration Guide Related Commands interface port channel creates a port channel interface show interfaces switchport displays information about switchport interfaces wanport Enable WAN mode on a TenGigabitEthernet interface E Series Syntax wanport To dis...

Page 752: ...nd the maximum members per port channel is 8 Because each port can be assigned to only one Port Channel and each Port Channel must have at least one port some of those nominally available Port Channels might have no function because they could have no members if there are not enough ports installed In the S Series those ports could be provided by stack members NOTE The FTOS implementation of LAG o...

Page 753: ...red on an interface if it is to be added to a Port Channel The mtu and ip mtu commands are only available when the chassis is in Jumbo mode Link MTU and IP MTU considerations for Port Channels are All members must have the same link MTU value and the same IP MTU value The Port Channel link MTU and IP MTU must be less than or equal to the link MTU and IP MTU values configured on the channel members...

Page 754: ...el creates a Port Channel interface shutdown disables enables the port channel group Group two LAGs in a supergroup fate sharing group or failover group C Series E Series S Series Z Series S4810 Syntax group group_number port channel number port channel number To remove an existing LAG supergroup use the no group group_number command Parameters group_number Enter an integer from 1 to 32 that uniqu...

Page 755: ...faces and can be either in Layer 2 mode by using the switchport command or Layer 3 mode by configuring an IP address You can add a Port Channel in Layer 2 mode to a VLAN The shutdown description and name commands are the only commands that you can configure on an interface while it is a member of a Port Channel To add a physical interface to a Port Channel the interface can only have the shutdown ...

Page 756: ...ber Parameters number Enter the number of links in a LAG that must be in oper up status The range is 1 to 16 The default is 1 Defaults 1 Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre ...

Page 757: ...own the other LAG is taken down automatically providing an alternate path to reroute traffic avoiding oversubscription on the other LAG You can use both static and dynamic LACP LAGs to configure failover groups For more information refer to the Port Channel chapter in the FTOS Configuration Guide Related Command group groups two LAGs in a supergroup fate sharing group show interfaces port channel ...

Page 758: ...brief OPTIONAL Enter the keyword brief to display only the port channel number the state of the port channel and the number of interfaces in the port channel Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Modified to display the LAG failover group status Versio...

Page 759: ... correctly because a VLAN tagged IP packet counts as both a VLAN packet and an IP packet 0 64 byte Displays the size of packets and the number of those packets entering that interface This information is displayed over two lines Received 0 Displays the type and number of errors or other specific packets received This information is displayed over three lines Output 0 Displays the type and number o...

Page 760: ...ommand shown in the Example below Field Description LAG Lists the port channel number Mode Lists the mode L3 for Layer 3 L2 for Layer 2 Status Displays the status of the port channel down if the port channel is disabled shutdown up if the port channel is enabled no shutdown Uptime Displays the age of the port channel in hours minutes seconds Ports Lists the interfaces assigned to this port channel...

Page 761: ...word FastEthernet followed by the slot port information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a 40 Gigabit Ethernet interface enter the keyword fortyGigE followed by the slot port information For a SONET interface en...

Page 762: ...s three entries Egress port for unfragmented packets In the event of fragmented packets the egress port of the first fragment In the event of fragmented packets the egress port of the subsequent fragments NOTE In the show port channel flow command output the egress port for an unknown unicast multicast or broadcast traffic is not displayed The Example below shows the show port channel flow outgoin...

Page 763: ...hort conditions of copper cables on 100 1000 Base T modules Important Points to Remember The interface and port must be enabled configured refer to the interface command before running TDR An error message is generated if you have not enabled the interface The interface on the far end device must be shut down before running TDR Because TDR is an intrusive test on an interface that is not establish...

Page 764: ...s Related Commands show tdr displays the results of the TDR test show tdr Display the TDR test results C Series E Series S Series S4810 Syntax show tdr interface Parameters interface Enter the keyword GigabitEthernet followed by the slot port information for the 100 1000 Ethernet interface Defaults none Command Modes EXEC Command History Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Intr...

Page 765: ... Commands tdr cable test runs the TDR test UDP Broadcast The user datagram protocol UDP broadcast feature is a software based method to forward low throughput not to exceed 200 pps IP UDP broadcast traffic arriving on a physical or VLAN interface Important Points to Remember This feature is available only on the E Series and S4810 platforms This feature applies only to E Series Layer 3 physical or...

Page 766: ...a UDP IP address for broadcast ip udp helper udp port enables the UDP broadcast feature on an interface show ip udp helper displays the configured UDP helper s on all interfaces ip udp broadcast address Configure an IP UDP address for broadcast E Series S4810 Syntax ip udp broadcast address address To delete the configuration use the no ip udp broadcast address address command Parameters address E...

Page 767: ...his option all UDP ports are considered by default Defaults none Command Modes INTERFACE config if Command History Version 8 3 7 0 Introduced on the S4810 Pre version 8 3 7 0 Introduced on the E Series ExaScale Usage Information If you configure the ip helper address command and ip udp helper udp port command the behavior is that the UDP broadcast traffic with port numbers 67 68 is unicast relayed...

Page 768: ... 7 0 Introduced on the E Series ExaScale Example FTOS show ip udp helper Port UDP port list Gi 10 0 656 658 Gi 10 1 All Related Commands debug ip udp helper enables debug and displays the debug information on a console ip udp broadcast address configures a UDP IP address for broadcast ip udp helper udp port enables the UDP broadcast feature on an interface either for all UDP ports or a specified l...

Page 769: ...following keywords and slot port or number information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For the Management interface enter the keyword ManagementEthernet followed by the slot port information The slot range is 0 to 1 and the port range is 0 For a Port Channel interface enter the keywords port channel followed by a number For...

Page 770: ...rs dynamic ARP entries from the ARP table show arp displays the ARP table arp backoff time Set the an exponential timer for resending unresolved ARPs Z Series S4810 Syntax arp backoff time seconds Parameters seconds Enter the number of seconds an ARP entry is black holed The range is 1 to 3600 The default is 30 Defaults 30 Command Mode CONFIGURATION Command History Version 8 3 11 1 Introduced on t...

Page 771: ...request for IP A B C D 2 At time t 1 FTOS receives an ARP request for IP A B C D 3 At time t 2 FTOS installs an ARP entry for A B C D only on RP2 Beginning with FTOS version 8 3 1 0 when a gratuitous ARP is received FTOS installs an ARP entry on all three CPUs arp retries Set the number of ARP retries in case the system does not receive an ARP reply in response to an ARP request C Series E Series ...

Page 772: ...History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series Related Commands show interfaces displays the ARP timeout value for all available interfaces clear arp cache Clear the dynamic...

Page 773: ... the keyword fortyGigE followed by the slot port information For a VLAN enter the keyword vlan followed by a number from 1 to 4094 ip ip address OPTIONAL Enter the keyword ip followed by the IP address of the ARP entry you wish to clear no refresh OPTIONAL Enter the keywords no refresh to delete the ARP entry from CAM Or use this option with interface or ip ip address to specify which dynamic ARP ...

Page 774: ... 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series clear ip fib linecard Clear all forwarding information base fib entries in the specified line card use this command with caution refer to Usage Information below C Series E Series Syntax clear ip fib linecard slot number vrf vrf instance Parameters slot number Enter th...

Page 775: ...mands show ip fib linecard shows FIB entries clear ip fib stack unit Clear all FIB entries in the specified stack unit use this command with caution refer to Usage Information below S Series Z Series Syntax clear ip fib stack unit unit number Parameters unit number Enter the number of the stack unit The range is 0 to 7 Command Modes EXEC Command History 9 0 0 0 Introduced on the Z9000 Usage Inform...

Page 776: ... Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 9 1 0 Introduced VRF on the E Series Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series Related Commands ip route assigns an IP route to the switch show ip route views the routing table show ip route summary views a...

Page 777: ...debug arp command Parameters interface OPTIONAL Enter the following keywords and slot port or number information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For the Management interface enter the keyword ManagementEthernet followed by the slot port information The slot range is 0 to 1 and the port range is 0 For a Port Channel interfac...

Page 778: ...rsion 7 5 1 0 Introduced on the C Series Version 6 3 1 0 Added the count option Usage Information Use the count option to stop packets from flooding the user terminal when debugging is turned on debug ip dhcp Enable debug information for dynamic host configuration protocol DHCP relay transactions and display the information on the console C Series E Series S Series Z Series S4810 Syntax debug ip d...

Page 779: ... REPLY Unicast received at interface 14 4 4 1 BOOTP Reply hops 0 XID 0xda4f9503 secs 0 hwaddr 00 60 CF 20 7B 8C giaddr 113 3 3 17 00 12 42 RELAY I BOOTREPLY Forwarded BOOTREPLY for 00 60 CF 20 7B 8C to 113 3 3 254 00 12 42 RELAY I PACKET BOOTP REQUEST Unicast received at interface 113 3 3 17 BOOTP Request hops 0 XID 0xda4f9503 secs 0 hwaddr 00 60 CF 20 7B 8C giaddr 0 0 0 0 00 12 42 RELAY I BOOTREQ...

Page 780: ...GigE followed by the slot port information For a VLAN enter the keyword vlan followed by a number from 1 to 4094 count value OPTIONAL Enter the keyword count followed by the count value The range is 1 to 65534 The default is Infinity Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 5 1 0 Added support for 4 port 40G line cards on ExaScale Version 8 3 ...

Page 781: ...thernet interface enter the keyword GigabitEthernet followed by the slot port information For the Management interface enter the keyword ManagementEthernet followed by the slot port information The slot range is 0 1 and the port range is 0 For a Port Channel interface enter the keywords port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range...

Page 782: ...ch line lists the status of the packet TCP src Displays the source and destination ports the sequence number the acknowledgement number and the window size of the packets in that TCP packets UDP src Displays the source and destination ports for the UDP packets ICMP type Displays the ICMP type and code IP Fragment States that it is a fragment and displays the unique number identifying the fragment ...

Page 783: ...lso not supported in the access group option The entire rule is skipped to compose the filter The access group option pertains to IP Protocol Number 0 to 255 Internet Control Message Protocol icmp but not the ICMP message type 0 255 Any Internet Protocol ip Transmission Control Protocol tcp but not on the rst syn or urg bits User Datagram Protocol udp In the case of ambiguous access control list r...

Page 784: ...e Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Usage Information You must be in INTERFACE mode before you add an IP address to an interface Assign an IP address to an interface prior to entering ROUTER OSPF mode ip directed broadcast Enables the interface to re...

Page 785: ...ntroduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Usage Information Configure the ip domain list command up to six times to configure a list of possible domain names If you configure both the ip domain name and ip domain list commands the software tries to resolve the name using the ip domain name command If the name is not res...

Page 786: ... specify one or more domain name servers with the ip name server command FTOS does not support sending DNS queries over a VLAN DNS queries are sent out all other interfaces including the Management port To view current bindings use the show hosts command Related Commands ip name server specifies a DNS server show hosts Views the current bindings ip domain name Configure one domain name for the swi...

Page 787: ... Commands ip domain list configures additional names ip fib download igp only Configure the E Series to download only IGP routes for example OSPF on to line cards When the command is configured or removed it clears the routing table similar to the clear ip route command and only IGP routes populate the table E Series Syntax ip fib download igp only small fib To return to default setting use the no...

Page 788: ...r IPv6 Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 9 1 0 Introduced VRF on the E Series Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series Usage Information You can add multiple DHCP servers by entering the ip helper ad...

Page 789: ...crementing of the hops field when boot requests are relayed to a DHCP server through FTOS If the incoming boot request already has a non zero hops field the message is relayed with the same value for hops However the message is discarded if the hops field exceeds 16 to comply with the relay agent behavior specified in RFC 1542 Related Commands ip helper address specifies the destination broadcast ...

Page 790: ...g count count To place no limit on the number of fragments allowed use the no ip max frag count command Parameters count Enter a number for the number of fragments allowed for re assembly The range is 2 to 256 Defaults No limit is set on number of fragments allowed Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8...

Page 791: ... difference between the link MTU and IP MTU the ip mtu command must be enough bytes to include for the Layer 2 header Link MTU and IP MTU considerations for Port Channels and VLANs are as follows Port Channels All members must have the same link MTU value and the same IP MTU value The Port Channel link MTU and IP MTU must be less than or equal to the link MTU and IP MTU values configured on the ch...

Page 792: ...d Parameters ipv4 address Enter the IPv4 address in dotted decimal format of the name server to be used ipv4 address2 ipv4 address6 OPTIONAL Enter up five more IPv4 addresses in dotted decimal format of name servers to be used Separate the addresses with a space Defaults No name servers are configured Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 ...

Page 793: ...he Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Related Commands show ip interface displays the interface routing status and configuration ip redirects Enable the interface to send ICMP redirect messages E Series S...

Page 794: ...e static route to the VRF instance destination Enter the IP address in dotted decimal format of the destination device mask Enter the mask in slash prefix formation x of the destination device s IP address ip address Enter the IP address in dotted decimal format of the forwarding router interface Enter the following keywords and slot port or number information For a 1 Gigabit Ethernet interface en...

Page 795: ...sion 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Added support for 4094 VLANs on the E Series ExaScale the prior limit was 2094 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 9 1 0 Introduced VRF on the E Series Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Usage Information Using the followin...

Page 796: ...S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series ip unreachables Enable the generation of internet control message protocol ICMP unreachable messages C Series E Series S Series Z Series S4810 Syntax ip unreachables To disable the generation of ICMP messages use the no ip unreachables command Defaults Disabled Command Modes INTERFACE Command History...

Page 797: ...TOS uses an IP 4 tuple IP SA IP DA Source Port and Destination Port to distribute IP traffic over members of a Port Channel as well as equal cost paths To designate another method to balance traffic over Port Channel members use the load balance command C Series S Series Z Series S4810 Syntax load balance ip selection dest ip source ip mac dest mac source dest mac source mac tcp udp ingress port e...

Page 798: ...o distribute traffic based on the following enable Takes the TCP UDP source and destination ports into consideration when doing hash computations By default this is enabled ingress port enable Enter the keywords to distribute traffic based on the following enable Takes the source port into consideration when doing hash computations By default this is disabled Defaults IP 4 tuple IP SA IP DA Source...

Page 799: ...nly the first 32 bits LSB of IP SA and IP DA are used for hash generation ip selection packet based Enter the keywords ip selection packet based to distribute IPV4 traffic based on the IP Identification field in the IPV4 header This option does not affect IPV6 traffic that is IPV6 traffic is not distributed when this command is executed NOTE Hash based load balancing on MPLS does not work when pac...

Page 800: ...ed IP 3 tuple MAC based ip selection packet based Packet based IPV4 No distribution IPV6 Packet based IPV4 MAC based ip selection packet based and mac MAC based Packet based IPV4 MAC based Related Commands ip address change the algorithm used to distribute traffic on an E Series chassis load balance hg Choose the traffic flow parameters to be used in the hash calculation while distributing the tra...

Page 801: ... port Use IPv4 L4 dest port field in hash calculation mac source mac source port id source module id dest mac dest port id dest module id vlan ethertype source dest mac To use MAC key fields in hash computation enter the keyword mac followed by one of the parameters source mac Use source mac field in hash calculation source port id Use src port id field in hash calculation source module id Use src...

Page 802: ...Enter the IPv6 address in the x x x x x format followed by the prefix length in the x format The range is 0 to 128 NOTE The notation specifies successive hexadecimal fields of zeros forwarding router address Enter an IP address dotted decimal format or an IPv6 address x x x x x format of a forwarding router managementethe rnet Enter the keyword managementethernet for the Management interface on th...

Page 803: ... one of the following keywords to view ARP entries on that CPU cp view ARP entries on the control processer rp1 view ARP entries on Routing Processor 1 rp2 view ARP entries on Routing Processor 2 interface interface OPTIONAL Enter the following keywords and slot port or number information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For...

Page 804: ...cards on ExaScale Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Added support for 4094 VLANs on the E Series ExaScale the prior limit was 2094 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 9 1 0 Introduced VRF on the E Series Version 7 8 1 0 Augmented to display local ARP entries learned from private VLANs PVLANs Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 ...

Page 805: ...92 2 1 246 1 00 00 c0 02 01 02 Gi 9 13 CP Internet 192 2 1 245 1 00 00 c0 02 01 02 Gi 9 13 CP Example Private VLAN NOTE In this example Line 1 shows community VLAN 200 in primary VLAN 10 in a PVLAN Line 2 shows primary VLAN 10 FTOS show arp Protocol Address Age min Hardware Address Interface VLAN CPU Internet 5 5 5 1 00 01 e8 43 96 5e Vl 10 pv 200 CP Internet 5 5 5 10 00 01 e8 44 99 55 Vl 10 CP In...

Page 806: ...ables disables Layer 3 communication in secondary VLANs switchport mode private vlan sets PVLAN mode of the selected port show arp retries Display the configured number of ARP retries C Series E Series S Series Z Series S4810 Syntax show arp retries Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 1 0 Introduced Related Commands arp retries set...

Page 807: ...ervice If DNS is not enabled the Name Address lookup is static mapping Name servers are Lists the name servers if configured Host Displays the host name assigned to the IP address Flags Classifies the entry as one of the following perm the entry was manually configured and will not time out temp the entry was learned and will time out after 72 hours of inactivity Also included in the flag is an in...

Page 808: ...number of the line card s port pipe The range is 0 to 1 ip address mask longer prefix OPTIONAL Enter the IP address and mask of a route to CAM entries for that route only Enter the keyword longer prefixes to view routes with a common prefix index index number OPTIONAL Enter the keyword index followed by the CAM index number The range depends on CAM size summary OPTIONAL Enter the keyword summary t...

Page 809: ...rt of a VLAN Mac Addr Displays the next hop router s MAC address Port Displays the egress interface Use the second half of the entry to determine the interface For example in the entry 17cl CP the CP is the pertinent portion CP control processor RP2 route processor 2 Gi Gigabit Ethernet interface So SONET interface Te 10 Gigabit Ethernet interface Example FTOS show ip cam linecard 13 port set 0 In...

Page 810: ...g mask The CAM size is adjusted by FTOS if the number of routes for the mask exceeds the initial allocation Example Summary FTOS show ip cam linecard 4 port set 0 summary Total Number of Routes in the CAM is 13 Total Number of Routes which can be entered in CAM is 131072 Prefix Len Current Use Initial Sz 32 7 37994 31 0 1312 30 0 3932 29 0 1312 28 0 1312 27 0 1312 26 0 1312 25 0 1312 24 6 40610 23...

Page 811: ...s which can be entered in to CAM Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 7 7 1 0 Added support for up to seven stack members Version 7 6 1 0 Introduced on the S Series Usage Information The following describes the show ip cam command shown in the Example below Field Description Destination Displays the destination route of the index EC Dis...

Page 812: ...ecard 0 port pipe 0 Initial Size Displays the CAM size allocated by FTOS for the corresponding mask The CAM size is adjusted by FTOS if the number of routes for the mask exceeds the initial allocation Example ECMP Group FTOS show ip cam stack unit 0 po 0 ecmp group detail Destination EC CG V C VId Mac Addr Port ECMP Group Index 1 1 1 2 0 0 1 0 0 00 01 e8 8a d6 58 0004 Te 0 3 2 1 1 2 0 0 1 0 0 00 0...

Page 813: ...al format A B C D You must enter the mask in slash prefix format X longer prefixes OPTIONAL Enter the keywords longer prefixes to view all routes with a common prefix summary OPTIONAL Enter the keyword summary to view the total number of prefixes in the FIB Command Modes EXEC EXEC Privilege Command History Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale ...

Page 814: ...via 100 10 10 10 So 2 8 100 10 10 10 00 01 e8 00 03 ff So 2 8 0 0 0 101 10 10 0 24 Direct So 2 9 0 0 0 0 00 00 00 00 00 00 RP2 0 11145 0 101 10 10 1 32 via 127 0 0 1 127 0 0 1 00 00 00 00 00 00 CP 0 3277 0 101 10 10 10 32 via 101 10 10 10 So 2 9 101 10 10 10 00 01 e8 01 62 32 So 2 9 0 1 0 FTOS Related Commands clear ip fib linecard clears the FIB entries on a specified line card show ip fib stack ...

Page 815: ...elow Field Description Destination Lists the destination IP address Gateway Displays either the word direct and an interface for a directly connected route or the remote IP address to be used to forward the traffic First Hop Displays the first hop IP address Mac Addr Displays the MAC address Port Displays the egress port information VId Displays the VLAN ID If no VLAN is assigned zero 0 is listed ...

Page 816: ...t followed by the slot port information For a 40 Gigabit Ethernet interface enter the keyword fortyGigE followed by the slot port information OPTIONAL Enter an in or out parameter in conjunction with the optional interface source ip address Enter the keywords source ip followed by the IP source address in IP address format destination ip address Enter the keywords destination ip followed by the IP...

Page 817: ...ort with the current trunk hash setting Example FTOS show ip flow interface Gi 1 8 189 1 1 1 63 0 0 1 protocol tcp source port 7898 destination port 8 flow 189 1 1 1 63 0 0 1 protocol 6 7868 8976 Ingress interface Gi 1 20 Egress interface Gi 1 14 to 1 7 1 2 CAM hit 103710 unfragmented packet Gi 1 10 to 1 2 1 2 CAM hit 103710 fragmented packet show ip interface View IP related information on all in...

Page 818: ... is assigned linecard slot number OPTIONAL Enter the keyword linecard followed by the number of the line card slot For the C Series the range is 0 7 For the E Series the range is 0 to 13 on a E1200 1200i 0 to 6 on a E600 E600i and 0 to 5 on a E300 NOTE This keyword is not available on the S Series configuration OPTIONAL Enter the keyword configuration to display the physical interfaces with non de...

Page 819: ...nGigabitEthernet 0 0 is down line protocol is down Internet address is not set IP MTU is 1500 bytes Inbound access list is not set Proxy ARP is enabled Split Horizon is enabled Poison Reverse is disabled ICMP redirects are not sent ICMP unreachables are not sent FTOS Usage Information The following describes the show ip interface brief command shown in the Example below Fields Description Interfac...

Page 820: ...the keyword all to view all IP addresses assigned to all Management interfaces on the switch connected OPTIONAL Enter the keyword connected to view only routes directly connected to the Management interface summary OPTIONAL Enter the keyword summary to view a table listing the number of active and non active routes and their sources static OPTIONAL Enter the keyword static to view non active route...

Page 821: ...t interface summary OPTIONAL Enter the keyword summary to view a table listing the number of active and non active routes and their sources static OPTIONAL Enter the keyword static to view non active routes also Command Modes EXEC Privilege Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 4 1 0 Introduced on the C and E Series Version 8 3 7 0 Introduced on the S4810 Example FTOS s...

Page 822: ...tion optimization enabled Capable of ROUTE_REFRESH For Address Family IPv4 Unicast BGP table version is 0 main routing table version 0 Distance external 20 internal 200 local 200 Neighbor s Address 20 20 20 2 Filter list in foo Route map in foo Weight 0 Address 5 6 Weight 0 FTOS show ip route View information including how they were learned about the IP routes on the switch C Series E Series Z Ser...

Page 823: ...OPTIONAL Specify that only OSPF routes with a certain process ID must be displayed routing tag OPTIONAL Specify that only ISIS routes with a certain routing tag must be displayed connected OPTIONAL Enter the keyword connected to view only the directly connected routes all OPTIONAL Enter the keyword all to view both active and non active routes static OPTIONAL Enter the keyword static to view only ...

Page 824: ...destination IP address Gateway Identifies whether the route is directly connected and on which interface the route is configured Dist Metric Identifies if the route has a specified distance or metric Last Change Identifies when the route was last changed or configured Example FTOS show ip route all Codes C connected S static R RIP B BGP IN internal BGP EX external BGP LO Locally Originated O OSPF ...

Page 825: ..._E600i show ip route static Destination Gateway Dist Metric Last Change S 0 0 0 0 0 via 10 10 91 9 Gi 1 2 1 0 3d2h FTOS show ip route list Display IP routes in an IP prefix list C Series E Series S Series Z Series S4810 Syntax show ip route list prefix list Parameters prefix list Enter the name of a configured prefix list Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduce...

Page 826: ...1 3d1h C 2 1 4 0 24 Direct Gi 4 43 0 0 3d1h Related Commands ip prefix list enters CONFIGURATION IP PREFIX LIST mode and configures a prefix list show ip prefix list summary displays a summary of the configured prefix lists show ip route summary View a table summarizing the IP routes in the switch C Series E Series S Series Z Series S4810 Syntax show ip route summary Command Modes EXEC EXEC Privil...

Page 827: ... route summary Route Source Active Routes Non active Routes connected 17 0 static 3 0 ospf 100 1368 2 Intra area 762 Inter area 1 External 1 600 External 2 5 Total 1388 2 Total 1388 active route s using 222440 bytes Total 2 non active route s using 128 bytes FTOS Related Commands show ip route displays information about the routes found in the switch show ip traffic View IP ICMP UDP TCP and ARP tr...

Page 828: ...chable security failures Counts the number of received unicast multicast packets that could not be forwarded due to route not found for unicast multicast ingress interfaces do not belong to the destination multicast group destination IP address belongs to reserved prefixes the host network is unreachable bad options Unrecognized IP option on a received packet Frags IP fragments received reassemble...

Page 829: ...istics Sent Proxy Object f10ArpProxySent OIDs 1 3 6 1 4 1 6027 3 3 5 2 5 Example FTOS show ip traffic Control Processor IP Traffic IP statistics Rcvd 23857 total 23829 local destination 0 format errors 0 checksum errors 0 bad hop count 0 unknown protocol 0 not a gateway 0 security failures 0 bad options Frags 0 reassembled 0 timeouts 0 too big 0 fragmented 0 couldn t fragment Bcast 28 received 0 s...

Page 830: ... 1 0 Introduced Usage Information The IPPTT table is used for looking up forwarding information for IP control traffic destined to the router For the listed control traffic types IPPTT contains the information for the following Which CPU to send the traffic CP RP1 or RP2 What QoS parameters to set Example FTOS show protocol termination table linecard 2 port set 0 Index Protocol Src Port Dst Port Q...

Page 831: ... tcp statistics View information on TCP traffic through the switch C Series E Series S Series Z Series S4810 Syntax show tcp statistics all cp rp1 rp2 Parameters all Enter the keyword all to view all TCP information cp Enter the keyword cp to view only TCP information from the Control Processor rp1 Enter the keyword rp1 to view only TCP statistics from Route Processor 1 rp2 Enter the keyword rp2 t...

Page 832: ...lose Displays the number of packet received after the TCP connection was closed 0 window probe packets Displays the number of window probe and update packets received 41 dup ack Displays the number of duplicate acknowledgement packets and acknowledgement packets with data received 10184 ack Displays the number of acknowledgement packets and bytes received Sent Displays the total number of TCP pack...

Page 833: ...ytes 7 out of order packets 0 bytes 0 packets 0 bytes with data after window 0 packets after close 0 window probe packets 41 window update packets 41 dup ack packets 0 ack packets with unsend data 10184 ack packets 12439508 bytes Sent 12007 Total 0 urgent packets 25 control packets including 24 retransmitted 11603 data packets 12439677 bytes 24 data packets 7638 bytes retransmitted 355 ack only pa...

Page 834: ...834 ...

Page 835: ... fib linecard slot stack unit unit number Parameters slot Enter the slot number to clear the FIB for a linecard unit number Enter the stack member number The rang is 0 to 7 for the Z9000 and 0 to 11 for the S4810 Command Modes EXEC Privilege Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 ...

Page 836: ...on the E Series ExaScale Version 7 8 1 0 Introduced on the C Series and S Series Version 7 4 1 0 Introduced on the E Series TeraScale clear ipv6 mld_host Clear the IPv6 MLD host counters and reset the elapsed time S4810 Syntax clear ipv6 mld_host Command Modes EXEC Command History Version 8 3 12 0 Introduced on the S4810 ipv6 address autoconfig Configure IPv6 address auto configuration for the man...

Page 837: ...al IPv6 address from that management interface IPv6 addresses on a single management interface cannot be members of the same subnet IPv6 secondary addresses on management interfaces across a platform must be members of the same subnet IPv6 secondary addresses on management interfaces should not match the virtual IP address and should not be in the same subnet as the virtual IP ipv6 address Configu...

Page 838: ...ement interfaces should not match the virtual IP address and should not be in the same subnet as the virtual IP Example FTOS conf interface gigabitethernet 10 0 FTOS conf if gi 10 0 ipv6 address X X X X X IPv6 address FTOS conf if gi 10 0 ipv6 address 2002 1 2 3 0 128 Prefix length in bits FTOS conf if gi 10 0 ipv6 address 2002 1 2 3 96 cr FTOS conf if gi 10 0 ipv6 address 2002 1 2 3 96 FTOS conf ...

Page 839: ...ue is already set for BGP or SSH the system defaults to the already configured value All packets on the same connection are considered part of the same flow by the system For new connections set the new flowlabel to zero ipv6 host Assign a name and IPv6 address to be used by the host to IPv6 address mapping table C Series E Series S Series Z Series S4810 Syntax ipv6 host name ipv6 address To remov...

Page 840: ...mand Parameters ipv6 address Enter the IPv6 address X X X X X of the name server to be used Note The notation specifics successive hexadecimal fields of zeros ipv6 address2 ipv6 address6 OPTIONAL Enter up five more IPv6 addresses in the x x x x x format of name servers to be used Separate the IPv6 addresses with a space Defaults none Command Modes CONFIGURATION Command History Version 9 0 0 0 Intr...

Page 841: ... C Series E Series S Series Z Series S4810 Syntax ipv6 nd prefix ipv6 prefix prefix length default no advertise no autoconfig no rtr address off link lifetime valid infinite preferred infinite Parameters ipv6 prefix Enter an IPv6 prefix prefix length Enter the prefix followed by the prefix length The length range is 0 to 128 default Enter the keyword default to set default parameters for all prefi...

Page 842: ... you can use the default keyword to use the default parameters for all prefixes If a prefix has been configured with lifetime parameter values the default values cannot be applied using the ipv6 nd prefix default no autoconfig command ipv6 route Establish a static IPv6 route C Series E Series S Series Z Series S4810 Syntax ipv6 route ipv6 address prefix length ipv6 address interface interface ipv6...

Page 843: ... router IPv6 address in the x x x x x format NOTE The notation specifies successive hexadecimal fields of zeros distance OPTIONAL Enter a number as the metric distance assigned to the route The range is 1 to 255 tag value OPTIONAL Enter the keyword tag followed by a tag value number The range is 1 to 4294967295 permanent OPTIONAL Enter the keyword permanent to specify that the route is not to be r...

Page 844: ...ace null Null interface port channel Port channel interface sonet Sonet interface tenGigabitethernet TenGigabit Ethernet interface vlan VLAN interface FTOS conf ipv6 route 55 0 64 gigabitethernet 9 0 1 255 Distance metric for this route X X X X X Forwarding router s address permanent Permanent route tag Set tag for this route FTOS conf ipv6 route 55 0 64 gigabitethernet 9 0 66 1 1 255 Distance met...

Page 845: ...al protocol adjacencies OSPFv3 and BGP4 are brought down and no new adjacencies are formed the IPv6 address family configuration under router bgp is deleted IPv6 Multicast traffic continues to flow unhindered show ipv6 cam linecard Displays the IPv6 CAM entries for the specified line card C Series E Series Syntax show ipv6 cam linecard slot number port set 0 1 summary index ipv6 address Parameters...

Page 846: ... neighbors commands to display statically configured addresses of IPv6 neighbors NOTE If a route has a mask greater than 64 no output is displayed Similarly if there is more than one ECMP object with a destination route that has a mask greater than 64 if the first 64 bits in the destination routes of the ECMP objects are the same only one route is installed in CAM even though multiple ECMP path en...

Page 847: ...xes and the total number prefixes which can be entered into the IPv6 CAM index OPTIONAL Enter the index in the IPv6 CAM ipv6 address Enter the IPv6 address in the x x x x x n format to display networks that have more specific prefixes The range is 0 to 128 NOTE The notation specifies successive hexadecimal fields of zeros Defaults none Command Modes EXEC EXEC Privilege Command History Version 9 0 ...

Page 848: ...ipv6 control plane icmp Displays the status of the icmp control plane setting for the error eate limit setting S4810 Syntax show ipv6 control plane icmp Default 100 Command Modes EXEC Command History Version 8 3 12 0 Introduced on the S4810 Related Commands ipv6 flowlabel zero Configure IPv6 address auto configuration for the management interface show ipv6 fib linecard View all forwarding informat...

Page 849: ...y OPTIONAL Enter the keyword summary to view a summary of entries in IPv6 cam ipv6 address Enter the IPv6 address in the x x x x x n format to display networks that have more specific prefixes The range is 0 to 128 NOTE The notation specifies successive hexadecimal fields of zeros Command Modes EXEC EXEC Privilege Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 3 7 0 Introduced o...

Page 850: ...engigabitethernet slot slot port fortyGigE slot slot port vlan vlan id Parameters interface OPTIONAL Enter the following keywords and slot port or number information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Loopback interface enter the keyword Loopback followed by a number from 0 to 16383 For the Null interface enter the keywo...

Page 851: ...bitethernet interface fortyGigE OPTIONAL View information for an IPv6 fortygigabitethernet interface vlan OPTIONAL View information for IPv6 VLANs Defaults none Command Modes EXEC EXEC Privilege Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 5 1 0 Added support for 4 port 40G line cards on ExaScale Version 8 4 2 1 Introduced on the S Serie...

Page 852: ...n 0 0 ManagementEthernet 0 0 is up line protocol is up IPV6 is enabled Link Local address fe80 201 e8ff fe8a e8f7 Global Unicast address es Actual address is 600 1 subnet is 600 64 Virtual IP IPv6 address is not set Global Anycast address es Joined Group address es IPv6 Basics 785 ff02 1 ff02 1 ff00 1 ff02 1 ff8a e8f7 ND MTU is 1500 ICMP redirects are not sent DAD is enabled number of DAD attempts...

Page 853: ...rts queries and unsolicited reports generated from joins or leaves that have been received or sent Leaves The number of Multicast leaves that have been sent MLDv1 queries The number of MLDv1 queries that have been received MLDv2 queries The number of MLDv2 queries that have been received Malformed Packets The number of MLDv1 and MLDv2 packets that do not match the requirement for a valid MLD packe...

Page 854: ...854 ...

Page 855: ...n the Standard Compliance chapter in the FTOS Configuration Guide NOTE The fundamental mechanisms of IS IS are the same between IPv4 and IPv6 Where there are differences between the two versions they are identified and clarified in this chapter Except where identified the information in this chapter applies to both protocol versions adjacency check Verify that the protocols supported field of the ...

Page 856: ...of the IP Prefix list are leaked Defaults level1 into level2 Level 1 to Level 2 leaking enabled Command Modes ROUTER ISIS for IPv4 CONFIGURATION ROUTER ISIS ADDRESS FAMILY IPV6 for IPv6 Command History Version 8 3 12 0 Introduced on the S4810 Version 7 5 1 0 Added IPv6 ISIS support Version 6 3 1 0 Version 6 3 1 0 Introduced Usage Information You cannot disable leaking from one level to another how...

Page 857: ...ink state database from receiving incorrect routing information from unauthorized routers The configured password injects into Level 1 LSPs CSNPs and PSNPs Related Commands domain password allows you to set the authentication password for a routing domain isis password allows you to configure an authentication password for an interface clear config Clear IS IS configurations that display under the...

Page 858: ...the S4810 clns host Define a name to network service mapping point NSAP that you use with commands that require NSAPs and system IDs E Series S4810 Syntax clns host name nsap Parameters name Enter an alphanumeric string to identify the name to NSAP mapping nsap Enter a specific NSAP address that is associated with the name parameter Defaults Not configured Command Modes ROUTER ISIS Command History...

Page 859: ...eceived on IS IS adjacencies E Series S4810 Syntax debug isis adj packets interface To turn off debugging use the no debug isis adj packets interface command Parameters interface OPTIONAL Identifies the interface type slot port as one of the following For a Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Port Channel interface enter the keyw...

Page 860: ...interface enter the keyword GigabitEthernet followed by the slot port information For a Port Channel interface enter the keywords port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a SONET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethe...

Page 861: ...and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a SONET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a VLAN enter the keyword vlan followed by a number from 1 to 4094 Command Modes EXEC Pr...

Page 862: ...For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a SONET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a VLAN enter the keyword vlan followed by a number from 1 to 4094 Comm...

Page 863: ... this command to redistribute routes into a routing domain the router becomes an autonomous system AS boundary router An AS boundary router does not always generate a default route into a routing domain The router still requires its own default route before it can generate one How a metric value assigned to a default route advertises depends on the metric style command configuration If the metric ...

Page 864: ...stance for learned routes E Series S4810 Syntax distance weight ip address mask prefix list To return to the default values use the no distance weight command Parameters weight The administrative distance value indicates the reliability of a routing information source The range is 1 to 255 A higher relative value indicates lower reliability Routes with smaller values are given preference The defau...

Page 865: ... routing updates interface OPTIONAL Identifies the interface type slot port as one of the following For a1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Port Channel interface enter the keywords port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 t...

Page 866: ...ting updates connected OPTIONAL Enter the keyword connected for directly connected routing process ospf process id OPTIONAL Enter the keyword ospf followed by the OSPF process ID number The range is 1 to 65535 bgp as number OPTIONAL Enter the BGP followed by the AS Number The range is 1 to 65535 rip OPTIONAL Enter the keyword rip for RIP routes static OPTIONAL Enter the keyword static for user con...

Page 867: ...URATION ROUTER ISIS ADDRESS FAMILY IPV6 for IPv6 Command History Version 8 3 12 0 Introduced on the S4810 Version 7 8 1 0 Added IPv6 ISIS support Version 6 3 1 0 Introduced Usage Information When you execute this command IS IS does not download the route to the routing table if the same route was redistributed into IS IS routing protocol on the same router domain password Set the authentication pa...

Page 868: ...ceful restart ietf To return to the default use the no graceful restart ietf command Parameters ietf Enter ietf to enable graceful restart on the IS IS router Defaults Graceful restart disabled Command Modes ROUTER ISIS Command History Version 8 3 12 0 Introduced on the S4810 Version 6 3 1 0 Introduced on the E Series Usage Information Every graceful restart enabled router s HELLO PDUs includes a ...

Page 869: ...equests are generated This wait time is the interval before the system sends a restart request an IIH with RR bit set in Restart TLV until the CSNP is received from the helping router E Series S4810 Syntax graceful restart t1 interval seconds retry times value To return to the default use the no graceful restart t1 command Parameters interval Enter the keyword interval to set the wait time The ran...

Page 870: ...UTER ISIS Command History Version 8 3 12 0 Introduced on the S4810 Version 8 3 1 0 Introduced on the E Series graceful restart t3 Configure the overall wait time before graceful restart completes E Series S4810 Syntax graceful restart t3 adjacency manual seconds To return to the default use the no graceful restart t3 command Parameters adjacency Enter the keyword adjacency so that the restarting r...

Page 871: ...mands graceful restart restart wait enables the graceful restart maximum wait time before a restarting peer comes up graceful restart restart wait Enable the graceful restart maximum wait time before a restarting peer comes up E Series S4810 Syntax NOTE Set the t3 timer to adjacency on the restarting router when implementing this command graceful restart restart wait seconds To return to the defau...

Page 872: ...Usage Information IS IS hellos are padded to the full maximum transmission unit MTU size Padding IS IS Hellos IIHS to the full MTU provides early error detection of large frame transmission problems or mismatched MTUs on adjacent interfaces Related Commands isis hello padding turns ON or OFF hello padding on an interface basis hostname dynamic Enables dynamic learning of hostnames from routers in ...

Page 873: ...he message A cycle of purging and regenerating LSPs can occur when a network link continues to deliver accurate LSPs even though there is a link causing data corruption This process could cause disruption to your system operation ip router isis Configure IS IS routing processes on an interface and attach an area tag name to the routing process E Series S4810 Syntax ip router isis tag To disable IS...

Page 874: ...ecified The tag name must be unique for all IP router processes for a given router Defaults Not configured Command Modes ROUTER ISIS Command History Version 8 3 12 0 Introduced on the S4810 Version 7 5 1 0 Introduced on the E Series Usage Information Configure a network entity title the net command to specify the area address and the router system ID Enable routing on one or more interfaces to est...

Page 875: ...eir interfaces are configured for Level 1 2 or Level 2 Level 1 adjacencies cannot be established on this interface Defaults level 1 2 Command Modes INTERFACE Command History Version 8 3 12 0 Introduced on the S4810 Usage Information Because the default establishes Level 1 and Level 2 adjacencies you do not need to configure this command Routers in an IS IS system must be configured as a Level 1 on...

Page 876: ...ted intermediate system To maintain database synchronization the designated routers send CSNPs You can configure Level 1 and Level 2 CSNP intervals independently isis hello interval Specify the length of time between hello packets sent E Series S4810 Syntax isis hello interval seconds level 1 level 2 To return to the default values use the no isis hello interval seconds level 1 level 2 command Par...

Page 877: ... 1 level 2 command Parameters multiplier Specifies an integer that sets the multiplier for the hello holding time Never configure a hello multiplier lower than the default 3 The range is 3 to 1000 The default is 3 level 1 OPTIONAL Select this value to configure the hello multiplier independently for Level 1 adjacencies This value is the default level 2 OPTONAL Select this value to configure the he...

Page 878: ...tion E Series S4810 Syntax isis ipv6 metric default metric level 1 level 2 To return to the default values use the no ipv6 isis metric default metric level 1 level 2 command Parameters default metric Metric assigned to the link and used to calculate the cost from each other router via the links in the network to other destinations You can configure this metric for Level 1 or Level 2 routing The ra...

Page 879: ...estinations You can configure this metric for Level 1 or Level 2 routing The range is 0 to 63 for narrow and transition metric styles and 0 to 16777215 for wide metric styles The default is 10 level 1 OPTIONAL Enter the keywords level 1 to configure the shortest path first SPF calculation for Level 1 intra area routing This is the default level 2 OPTIONAL Enter the keywords level 2 to configure th...

Page 880: ...ype OPTIONAL Enter 7 to encrypt the password using DES hmac md5 OPTIONAL Enter the keywords hmac md5 to encrypt the password using MD5 password Assign the interface authentication password level 1 OPTIONAL Independently configures the authentication password for Level 1 The router acts as a station router for Level 1 routing This is the default level 2 OPTIONAL Independently configures the authent...

Page 881: ... 0 to 127 The default is 64 level 1 OPTIONAL Specify the priority for Level 1 This is the default level 2 OPTIONAL Specify the priority for Level 2 Defaults value 64 level 1 if not otherwise specified Command Modes INTERFACE Command History Version 8 3 12 0 Introduced on the S4810 Usage Information You can configure priorities independently for Level 1 and Level 2 Priorities determine which router...

Page 882: ... and Level 2 routing separate Poorly planned use of this feature may cause configuration errors such as accidental area partitioning If you are configuring only one area in your network you do not need to run both Level 1 and Level 2 routing algorithms You can configure the IS type as Level 1 log adjacency changes Generate a log messages for adjacency state changes E Series S4810 Syntax log adjace...

Page 883: ...l seconds OPTIONAL Enter the wait interval in seconds between the first and second LSP generation The range is 0 to 120 seconds The default is 5 seconds Defaults Refer to Parameters Command Modes ROUTER ISIS Command History Version 8 3 12 0 Introduced on the S4810 Version 7 5 1 0 Added support for LSP Throttling Enhancement Usage Information LSP throttling slows down the frequency at which LSPs ar...

Page 884: ...ecause each device can generate a maximum of 255 LSPs consider carefully whether you should configure the lsp mtu command lsp refresh interval Set the link state PDU LSP refresh interval LSPs must be refreshed before they expire When the LSPs are not refreshed after a refresh interval they are kept in a database until their max lsp lifetime reaches zero and then LSPs is purged E Series S4810 Synta...

Page 885: ...x area addresses Configure manual area addresses E Series S4810 Syntax max area addresses number To return to the default values use the no max area addresses command Parameters number Set the maximum number of manual area addresses The range is 3 to 6 The default is 3 Defaults 3 addresses Command Modes ROUTER ISIS Command History Version 8 3 12 0 Introduced on the S4810 Version 7 5 1 0 Added supp...

Page 886: ...fied length of time If the value is higher the overhead is reduced on slower speed links Related Commands lsp refresh interval use this command to set the link state packet LSP refresh interval maximum paths Allows you to configure the maximum number of equal cost paths allowed in a routing table E Series S4810 Syntax maximum paths number To return to the default values use the no maximum paths co...

Page 887: ...215 level 1 Enables the metric style on Level 1 level 2 Enables the metric style on Level 2 Defaults narrow if no Level is specified Level 1 and Level 2 are configured Command Modes ROUTER ISIS Command History Version 8 3 12 0 Introduced on the S4810 Usage Information If you enter the metric style wide command the FTOS generates and accepts only new style TLVs The router uses less memory and other...

Page 888: ... entity title Specify the area address and system ID for an IS IS routing process The first 1 to 13 bytes identify the area address The next 6 bytes identify the system ID The last 1 byte is the selector byte always identified as zero zero 00 This argument can be applied to an address or a name Defaults Not configured Command Modes ROUTER ISIS Command History Version 8 3 12 0 Introduced on the S48...

Page 889: ... Not configured Command Modes ROUTER ISIS Command History Version 8 3 12 0 Introduced on the S4810 Usage Information Although the passive interface neither sends nor receives routing updates the network on that interface is still included in the IS IS updates sent using other interfaces redistribute Redistribute routes from one routing domain to another routing domain E Series S4810 Syntax redistr...

Page 890: ...DDRESS FAMILY IPV6 for IPv6 Command History Version 8 3 12 0 Introduced on the S4810 Version 7 5 1 0 Added support for IPv6 ISIS Version 6 3 1 0 Introduced Usage Information To redistribute a default route 0 0 0 0 0 configure the default information originate command Changing or disabling a keyword in this command does not affect the state of the other command keywords When an LSP with an internal...

Page 891: ...S IS Level 1 routes only level 1 2 OPTIONAL Routes are independently redistributed into IS IS Level 1 and Level 2 routes level 2 OPTIONAL Routes are independently redistributed into IS IS as Level 2 routes only This is the default metric metric value OPTIONAL The value used for the redistributed route Use a metric value that is consistent with the destination protocol The range is 0 to 16777215 Th...

Page 892: ...map isis to bgp redistribute ospf Redistribute routing information from an OSPF process E Series S4810 Syntax redistribute ospf process id level 1 level 1 2 level 2 match internal external metric metric value metric type external internal route map map name To return to the default values use the no redistribute ospf process id level 1 level 1 2 level 2 match internal external metric metric value ...

Page 893: ...ot specify a map name all routes are redistributed If you specify a keyword but fail to list route map tags no routes are imported Defaults Refer to Parameters Command Modes ROUTER ISIS for IPv4 CONFIGURATION ROUTER ISIS ADDRESS FAMILY IPV6 for IPv6 Command History Version 8 3 12 0 Introduced on the S4810 Version 7 5 1 0 Added support for IPv6 ISIS Version 6 3 1 0 Introduced Usage Information How ...

Page 894: ...g on one or more interfaces to establish adjacencies and establish dynamic routing You can configure only one IS IS routing process to perform Level 2 routing A level 1 2 designation performs Level 1 and Level 2 routing at the same time Related Commands ip router isis configures IS IS routing processes for IP on interfaces and attaches an area designator to the routing process net configures an IS...

Page 895: ...tax show config Command Modes ROUTER ISIS for IPv4 CONFIGURATION ROUTER ISIS ADDRESS FAMILY IPV6 for IPv6 Example Router Isis The bold section identifies that Multi Topology IS IS is enabled in Transition mode FTOS conf router_isis show config router isis clns host ISIS 49 0000 0001 F100 E120 0013 00 log adjacency changes net 49 0000 0001 F100 E120 0013 00 address family ipv6 unicast maximum paths...

Page 896: ... 1 Level 2 Link State Database Displays the IS IS link state database for Level 1 or Level 2 LSPID Displays the LSP identifier The first six octets are the System ID of the originating router The first six octets are the System ID of the originating router The next octet is the pseudonode ID If this byte is not zero the LSP describes system links If this byte is zero 0 the LSP describes the state ...

Page 897: ...se this system as a transit router when calculating routes Example The bold sections identify that Multi Topology IS IS is enabled FTOS show isis database IS IS Level 1 Link State Database LSPID LSP Seq Num LSP Checksum LSP Holdtime ATT P OL ISIS 00 00 0x00000006 0xCF43 580 0 0 0 IS IS Level 2 Link State Database LSPID LSP Seq Num LSP Checksum LSP Holdtime ATT P OL ISIS 00 00 0x00000006 0xCF43 580...

Page 898: ...w isis graceful restart detail Command Modes EXEC EXEC Privilege Command History Version 8 3 12 0 Introduced on the S4810 Version 8 3 1 0 Introduced on the E Series Example FTOS show isis graceful restart detail Configured Timer Value Graceful Restart Enabled T3 Timer Manual T3 Timeout Value 30 T2 Timeout Value 30 level 1 30 level 2 T1 Timeout Value 5 retry count 1 Adjacency wait time 30 Operation...

Page 899: ...and slot port or number information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For Loopback interface enter the keyword loopback followed by a number from zero 0 to 16383 For a Port Channel interface enter the keywords port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1...

Page 900: ...t Type Level 1 2 Interface Index 38371358 Local circuit ID 2 Level 1 Metric 10 Priority 64 Circuit ID systest 3 02 Hello Interval 10 Hello Multiplier 3 CSNP Interval 10 Number of active level 1 adjacencies 1 Level 2 Metric 10 Priority 64 Circuit ID systest 3 02 Hello Interval 10 Hello Multiplier 3 CSNP Interval 10 More show isis neighbors Display information about neighboring adjacent routers E Se...

Page 901: ... identifies a system in an area Interface The interface slot and port in which the router was discovered State The value providing status about the adjacency state The range is Up and Init Type This value displays the adjacency type Layer 2 Layer 2 or both Priority IS IS priority advertised by the neighbor The neighbor with highest priority becomes the designated router for the interface Uptime Di...

Page 902: ...13 IS Type level 1 2 Manual area address es 49 0000 0001 Routing for area address es 49 0000 0001 Interfaces supported by IS IS GigabitEthernet 1 0 IP IPv6 GigabitEthernet 1 1 IP IPv6 GigabitEthernet 1 10 IP IPv6 Loopback 0 IP IPv6 Redistributing Distance 115 Generate narrow metrics level 1 2 Accept narrow metrics level 1 2 Generate wide metrics none Accept wide metrics none Multi Topology Routing...

Page 903: ...EXEC Privilege Command History Version 8 3 12 0 Introduced on the S4810 Usage Information The following describes the show isis traffic command shown in the Example below Item Description Level 1 Level 2 Hellos sent rcvd Displays the number of Hello packets sent and received PTP Hellos sent rcvd Displays the number of point to point Hellos sent and received Level 1 Level 2 LSPs sourced new refresh...

Page 904: ...ons 389 IS IS LSP checksum errors received 0 IS IS LSP authentication failures 0 FTOS spf interval Specify the minimum interval between shortest path first SPF calculations E Series S4810 Syntax spf interval level l level 2 interval seconds initial_wait_interval seconds second_wait_interval seconds To restore default values use the no spf interval level l level 2 interval seconds initial_wait_inte...

Page 905: ... ROUTER ISIS mode for both IPv4 and IPv6 route computations SPF throttling slows down the frequency at which route calculations are performed during network instability Even though throttling route calculations slows down network convergence not throttling can result in a network not functioning as expected If network topology is unstable throttling slows down the scheduling of route calculations ...

Page 906: ...906 ...

Page 907: ...le impact to dynamic LACP states after an route processor module RPM failover on the E Series For more information refer to the Redundancy Protocol in the High Availability chapter clear lacp counters Clear Port Channel counters C Series E Series S Series Z Series S4810 Syntax clear lacp port channel number counters Parameters port channel number Enter a port channel number For the C Series and S ...

Page 908: ...terface in out OPTIONAL Enter the following keywords and slot port or number information For a 100 1000 Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a SONET interface enter the keyword sonet followed by the slot port information For a Ten Gigabi...

Page 909: ...ry Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 2 1 1 Introduced on the E Series Usage Information This command applies to dynamic port channel interfaces only When applied on a static port channel this command has no effect Related Commands show lacp displays the lacp configuration lacp port priority Config...

Page 910: ...1 Introduced on the E Series lacp system priority Configure the LACP system priority C Series E Series S Series Z Series S4810 Syntax lacp system priority priority value Parameters priority value Enter the port priority value The higher the value number the lower the priority The range is 1 to 65535 The default is 32768 Defaults 32768 Command Modes INTERFACE Command History Version 8 3 11 1 Introd...

Page 911: ...nformation below Defaults off Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 2 1 1 Introduced on the E Series Usage Information LACP Modes Mode Function active An interface is in an active negotiating state in this mode LACP runs on any link configured in the active sta...

Page 912: ...l groups show lacp Display the LACP matrix C Series E Series S Series Z Series S4810 Syntax show lacp port channel number sys id counters Parameters port channel number Enter a port channel number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale sys id OPTIONAL Enter the keywords sys id and the value that identifies ...

Page 913: ...ution disabled M Partner Defaulted N Partner Non defaulted O Receiver is in expired state P Receiver is not in expired state Port Gi 10 6 is enabled LACP is enabled and mode is lacp Actor Admin State ACEHJLMP Key 1 Priority 128 Oper State ACEGIKNP Key 1 Priority 128 Partner Admin State BDFHJLMP Key 0 Priority 0 Oper State BCEGIKNP Key 1 Priority 128 FTOS Example Sys id FTOS show lacp 1 sys id Acto...

Page 914: ...914 ...

Page 915: ...ddresses clear mac address table Clear the MAC address table of all MAC address learned dynamically C Series E Series S Series Z Series S4810 Syntax clear mac address table dynamic sticky address mac address all interface interface vlan vlan id Parameters dynamic Enter the keyword dynamic to specify dynamically learned MAC addresses sticky Enter the keyword sticky to specify sticky MAC addresses a...

Page 916: ...1 1 Introduced on the Z9000 Version 8 5 1 0 Added support for 4 port 40G line cards on ExaScale Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 1 1 1 Introduced on the E Series mac accounting destination Configure a destination counter for Layer 2 traffic E Series Syntax mac accounting destination mac address v...

Page 917: ...relearned To disable aging of the MAC address table enter 0 E Series range from CONFIGURATION mode 10 to 1000000 E Series range from INTERFACE VLAN mode 1 to 1000000 C Series and S Series range 10 to 1000000 Default 1800 seconds Defaults 1800 seconds Command Modes CONFIGURATION INTERFACE VLAN E Series only Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S...

Page 918: ...e keyword GigabitEthernet followed by the slot port information For a Port Channel interface enter the keywords port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a SONET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface ent...

Page 919: ...roduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series Example Unicast mac address table static 00 01 00 00 00 01 output Te 0 2 vlan 2 Example Multicast mac address table static 01 00 5E 01 00 01 multicast vlan 2 output range Te 0 2 Te 0 3 Related Commands show mac address table displays the MAC address table mac address table station move...

Page 920: ...Reduce the amount of time FTOS takes to detect aged entries and station moves E Series Syntax no mac address table station move time interval number Parameters time interval number Select the interval of the successive scans of the MAC address table that are used to detect a aged entries and station moves The range is 500 to 5000 ms Defaults 5000 ms Command Modes CONFIGURATION Command History Vers...

Page 921: ...S Configuration Guide mac cam fib partition Reapportion the amount of content addressable memory CAM available for MAC address learning forwarding information base FIB versus the amount available for MAC ACLs on a line card E Series Syntax mac cam fib partition 25 50 75 100 slot number To return to the default setting use the no mac cam fib partition command Parameters 25 Enter the keyword 25 to s...

Page 922: ... is 1 to 4094 dynamic OPTIONAL Enter the keyword dynamic to allow aging of MACs even though a learning limit is configured station move OPTIONAL Enter the keywords station move to allow a station move on learned MAC addresses Defaults On C Series the default behavior is no station move static On E Series the default behavior is station move static On S Series the default behavior is dynamic NOTE S...

Page 923: ... addresses learned reaches the limit set in the mac learning limit command IP protocols are affected For example VRRP sets multiple VRRP Masters and OSPF may not come up When a channel member is added to a port channel and there is not enough ACL CAM space the MAC limit functionality on that port channel is undefined When this occurs un configure the existing configuration first and then reapply t...

Page 924: ...ticky MAC addresses on the selected port Z Series S4810 Syntax mac learning limit mac address sticky To convert the sticky MAC addresses to dynamic MAC addresses use the no mac learning limit command Parameters mac address sticky Configures the dynamic MAC addresses as sticky on an interface Defaults none Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 ...

Page 925: ...down offending to shut down the offending interface and generate a syslog message shutdown original Enter the keywords shutdown original to shut down the original interface and generate a syslog message Defaults none Command Modes INTERFACE conf if interface slot port Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Introduced on the ...

Page 926: ...pe REQUIRED Enter the keywords port set followed by a Port Pipe number to select the Port Pipe for which to gather information The E Series range is 0 or 1 count REQUIRED Enter the keyword count to display CAM usage by interface type interface interface OPTIONAL Enter the keyword interface followed by the interface type slot and port information For a 1 Gigabit Ethernet interface enter the keyword...

Page 927: ... 0 to 4 port set port pipe REQUIRED Enter the keywords port set followed by a Port Pipe number to select the Port Pipe for which to gather information The range is 0 or 1 Command Modes EXEC EXEC Privilege Command History Version 7 6 1 0 Introduced on the C Series Usage Information Use this command to check various flags associated with each MAC address in the CAM The Example below shows informatio...

Page 928: ...ID 1 EVEN_PARITY 1 HIT DA 1 HITSA 1 output truncated Example Mac Address Table FTOS show mac address table VlanId Mac Address Type Interface State 4094 00 00 a0 00 00 00 Dynamic Gi 2 0 Active output truncated Example Cam Mac Linecard FTOS show cam mac linecard 2 port set 0 VlanId Mac Address Region Interface 0 ff ff ff ff ff ff STATIC 00001 4094 00 00 a0 00 00 00 DYNAMIC Gi 2 0 output truncated l ...

Page 929: ...ET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a 40 Gigabit Ethernet interface enter the keyword fortyGigE followed by the slot port information static OPTIONAL Enter the keyword static to display only those MAC address specifically configured on the switch...

Page 930: ...and the portions allocated for MAC addresses and for MAC ACLs S Series Syntax show cam mac stack unit unit_number port set port pipe count vlan vlan id interface interface Parameters stack unit unit_number REQUIRED Enter the keyword linecard followed by a stack member number to select the linecard for which to gather information The S Series range is 0 to 1 port set port pipe REQUIRED Enter the ke...

Page 931: ... S Series Z Series S4810 Syntax show mac address table dynamic static address mac address interface interface vlan vlan id count vlan vlan id interface interface type slot port Parameters dynamic OPTIONAL Enter the keyword dynamic to display only those MAC addresses learned dynamically by the switch Optionally you can also add one of these combinations address mac address interface interface or vl...

Page 932: ...he interface type followed by just a slot number vlan vlan id OPTIONAL Enter the keyword vlan followed by the VLAN ID to display the MAC address assigned to the VLAN The range is 1 to 4094 count OPTIONAL Enter the keyword count followed optionally by an interface or VLAN ID to display total or interface specific static addresses dynamic addresses and MAC addresses in use Command Modes EXEC EXEC Pr...

Page 933: ...erface State 999 00 00 00 00 00 19 Sticky Gi 0 1 Active 999 00 00 00 00 00 29 Dynamic Gi 0 2 Active FTOS Usage Information The following describes the show mac address table count command shown in the Example below Line Beginning With Description MAC Entries Displays the number of MAC entries learnt per VLAN Dynamic Address Lists the number of dynamically learned MAC addresses Static Address Lists...

Page 934: ... vlan option on the E Series Version 7 7 1 0 Introduced on the C Series and S Series pre Version 6 2 1 1 Introduced on the E Series Example FTOS show mac address table aging time Mac address table aging time 1800 FTOS Related Commands show mac address table displays the current MAC address configuration show mac accounting destination Display destination counters for Layer 2 traffic available on p...

Page 935: ...duced on the E Series Usage Information MAC Accounting information can be accessed using SNMP via the Force10 Monitor MIB For more information about enabling SNMP refer to the FTOS Configuration Guide NOTE Currently the Force10 MONITOR MIB does not return the MAC addresses in an increasing order using SNMP As a workaround you can use the C c option in snmpwalk or snmpbulkwalk to access the Force10...

Page 936: ...ays the total CAM size available NOTE A portion of the MAC CAM is used for system operations therefore adding the MAC FIB and MAC ACL is less than the MAC CAM MAC FIB Entries Displays the amount and percentage of CAM available for MAC addresses MAC ACL Entries Displays the amount and percentage of CAM available for MAC ACLs Example FTOS show mac cam Slot Type MAC CAM Size MAC FIB Entries MAC ACL E...

Page 937: ...or a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a 40 Gigabit Ethernet interface enter the keyword fortyGigE followed by the slot port information For a Port Channel interface enter the keywords port channel followed by a number For the C Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 f...

Page 938: ...ng limit interface gig 1 0 Interface Learning Dynamic Static Unknown SA Slot port Limit MAC count MAC count Drops Gi 1 0 10 0 0 0 Virtual LAN VLAN Commands The following commands configure and monitor virtual LANs VLANs VLANs are a virtual interface and use many of the same commands as physical interfaces You can configure an IP address and Layer 3 protocols on a VLAN called Inter VLAN routing FTP...

Page 939: ...d vlan id syntax Parameters vlan id Enter the VLAN ID number of the VLAN to become the new Default VLAN The range is 1 to 4094 The default is 1 Defaults The Default VLAN is VLAN 1 Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Versi...

Page 940: ...s all To return to the default disabled use the no enable vlan output counters command Defaults Disabled VLAN counters are disabled in hardware all linecards port pipes by default Command Modes CONFIGURATION Command History Version 8 1 1 2 Introduced on the E Series ExaScale E600i Version 8 1 1 0 Introduced on the E Series ExaScale E1200i Usage Information FTOS supports a command to enable viewing...

Page 941: ...status change 01 12 44 FTOS FTOS show interfaces vlan 1 Vlan 1 is down line protocol is down Address is 00 01 e8 13 a5 aa Current address is 00 01 e8 13 a5 aa Interface index is 1107787777 Internet address is not set MTU 1554 bytes IP MTU 1500 bytes LineSpeed 1000 Mbit ARP type ARPA ARP Timeout 04 00 00 Last clearing of show interface counters 01 36 01 Queueing strategy fifo Input Statistics 10000...

Page 942: ...riptive text string to the interface interface vlan configures a VLAN show vlan displays the current VLAN configurations on the switch show config Display the current configuration of the selected VLAN C Series E Series S Series Z Series S4810 Syntax show config Command Modes INTERFACE VLAN Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6...

Page 943: ...or the VLAN Only information on the VLAN named is displayed Command Modes EXEC EXEC Privilege Command History Version 9 1 0 0 Updated to support OpenFlow Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Augmented to display PVLAN data for the C Series and S Series and revised the output to include the Description field to display a user entered VLAN ...

Page 944: ... capitalized i for Internal untagged I capitalized I for Internal tagged v not capitalized v for VLT untagged V capitalized V for VLT tagged Ports Displays the type slot and port information Po port channel Gi gigabit ethernet Te ten gigabit ethernet Example FTOS show vlan Codes Default VLAN G GVRP VLANs P Primary C Community I Isolated Q U Untagged T Tagged O Openflow x Dot1x untagged X Dot1x tag...

Page 945: ...S show vlan id 41 Codes Default VLAN G GVRP VLANs Q U Untagged T Tagged x Dot1x untagged X Dot1x tagged G GVRP tagged M Vlan stack NUM Status Description Q Ports 41 Active T Gi 13 47 FTOS show vlan id 42 Codes Default VLAN G GVRP VLANs Q U Untagged T Tagged x Dot1x untagged X Dot1x tagged G GVRP tagged M Vlan stack NUM Status Description Q Ports 42 Active U Gi 13 47 FTOS Example Brief FTOS show vl...

Page 946: ...r the following keywords and slot port or number information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Port Channel interface enter the keywords port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a 10 Gigabit Et...

Page 947: ...he VLAN member interfaces C Series E Series S Series Z Series S4810 Syntax track ip interface To remove the tracking feature from the VLAN use the no track ip interface command Parameters interface Enter the following keywords and slot port or number information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Port Channel interface e...

Page 948: ...and configuration Related Commands interface vlan configures a VLAN tagged specifies which interfaces in a VLAN are tagged untagged Add a Layer 2 interface to a VLAN as an untagged interface C Series E Series S Series Z Series S4810 Syntax untagged interface To remove an untagged interface from a VLAN use the no untagged interface command Parameters interface Enter the following keywords and slot ...

Page 949: ...the Default VLAN enter INTERFACE mode and use the no switchport command Related Commands interface vlan configures a VLAN tagged specifies which interfaces in a VLAN are tagged Far End Failure Detection FEFD The Dell Force10 operating software FTOS supports far end failure detection FEFD on the Ethernet interfaces of the E Series Z Series and S4810 platforms The FEFD feature detects and reports fa...

Page 950: ...y the slot port information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a 40 Gigabit Ethernet interface enter the keyword fortyGigE followed by the slot port information Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 12 0 Introduced on the S4810 Legacy E Series command Related Comm...

Page 951: ...essive To disable FEFD globally use the no fefd global mode normal aggressive command Parameters normal OPTIONAL Enter the keywords mode normal to change the link state to unknown when a far end failure is detected by the software on that interface When the interface is placed in unknown state the software brings down the line protocol The default is Normal mode aggressive OPTIONAL Enter the keywo...

Page 952: ...eywords and slot port or number information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a SONET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a 1 Gigabit Ethernet interface enter the keyword G...

Page 953: ...abit Ethernet interface enter the keyword fortyGigE followed by the slot port information Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 12 0 Introduced on the S4810 Legacy E Series command Usage Information The following describes the show fefd command shown in the Example below Field Description Interface Displays the interfaces type and nu...

Page 954: ...hutdown Gi 5 1 Aggressive 10 Admin Shutdown Gi 5 2 Aggressive 10 Admin Shutdown Gi 5 3 Aggressive 10 Admin Shutdown Gi 5 4 Aggressive 10 Admin Shutdown Gi 5 5 Aggressive 10 Admin Shutdown Gi 5 6 Aggressive 10 Admin Shutdown Gi 5 7 Aggressive 10 Admin Shutdown Gi 5 8 Aggressive 10 Admin Shutdown Gi 5 9 Aggressive 10 Admin Shutdown Gi 5 10 NA NA Locally disabled Gi 5 11 Aggressive 10 Err disabled FT...

Page 955: ...e starting point for using LLDP is invoking LLDP with the protocol lldp command in either CONFIGURATION or INTERFACE mode The information distributed by LLDP is stored by its recipients in a standard management information base MIB You can access the information by a network management system through a management protocol such as simple network management protocol SNMP LLPD Commands The following ...

Page 956: ...col lldp Configuration enables LLDP globally debug lldp interface debugs LLDP show lldp neighbors displays the LLDP neighbors show running config lldp displays the LLDP running configuration advertise dot3 tlv Advertise dot3 TLVs Type Length Value C Series E Series S Series Z Series S4810 Syntax advertise dot3 tlv max frame size To remove advertised dot3 tlv use the no advertise dot3 tlv max frame...

Page 957: ...ertise the system capabilities TLVs to the LLDP peer system description Enter the keywords system description to advertise the system description TLVs to the LLDP peer system name Enter the keywords system name to advertise the system name TLVs to the LLDP peer Defaults No default values or behavior Command Modes CONFIGURATION conf lldp Command History Version 9 1 0 0 Modified to support managemen...

Page 958: ...dvertise the system description TLVs to the specified interface system name Enter the keywords system name to advertise the system name TLVs to the specified interface Defaults No default values or behavior Command Modes INTERFACE conf interface lldp Command History Version 9 1 0 0 Introduced on the Z9000 and S4810 clear lldp counters Clear LLDP transmitting and receiving counters for all physical...

Page 959: ...lear lldp neighbors interface Parameters interface Enter the following keywords and slot port or number information For a Fast Ethernet interface enter the keyword FastEthernet followed by the slot port information For a 1 Gigabit Ethernet interface enter the keyword gigabitEthernet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword tenGigabitEthernet follo...

Page 960: ...word gigabitEthernet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword tenGigabitEthernet followed by the slot port information For a 40 Gigabit Ethernet interface enter the keyword fortyGigE followed by the slot port information NOTE The FastEthernet option is not supported on the S Series all OPTIONAL Enter the keyword all to display information on all i...

Page 961: ...LLDP C Series E Series S Series Z Series S4810 Syntax disable To enable LLDP use the no disable command Defaults Enabled that is no disable Command Modes CONFIGURATION conf lldp and INTERFACE conf if interface lldp Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 7 1 0 Introduced on the S Series Version 7 6 1 0 Introduced on the C Series Ve...

Page 962: ...e Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 7 1 0 Introduced on the S Series Version 7 6 1 0 Introduced on the C Series Version 7 4 1 0 Introduced on the E Series mode Set LLDP to receive or transmit C Series E Series S Series Z Series S4810 Syntax mode tx rx To return to the default use the no mode tx rx command Parameters tx Enter the keyword tx to set the mode to transmit rx Enter...

Page 963: ...secutive misses before the LLDP declares the interface dead The range is 2 to 10 Defaults 4 x hello Command Modes CONFIGURATION conf lldp and INTERFACE conf if interface lldp Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 7 1 0 Introduced on the S Series Version 7 6 1 0 Introduced on the C Series Version 7 4 1 0 Introduced on the E Series...

Page 964: ... 1 Introduced on the Z9000 Version 7 7 1 0 Introduced on the S Series Version 7 6 1 0 Introduced on the C Series Version 7 4 1 0 Introduced on the E Series Usage Information Before LLDP can be configured on an interface it must be enabled globally from CONFIGURATION mode This command places you in LLDP mode on the interface it does not enable the protocol When you enter the LLDP protocol in the In...

Page 965: ...nagement IP addresses timers and LLDP tx and rx counters Defaults none Command Modes EXEC Privilege Command History Version 9 1 0 0 Modified output of detail parameter to display remote management IP addresses Version 8 3 11 1 Introduced on the Z9000 Version 8 5 1 0 Added support for 4 port 40G line cards on ExaScale Version 8 3 7 0 Introduced on the S4810 Version 7 7 1 0 Introduced on the S Serie...

Page 966: ...p statistics Total number of neighbors 300 Last table change time Mon Oct 02 16 00 52 2006 Number of Table Inserts 1621 Number of Table Deletes 200 Number of Table Drops 0 Number of Table Age Outs 400 FTOS show running config lldp Display the current global LLDP configuration C Series E Series S Series Z Series S4810 Syntax show running config lldp Defaults none Command Modes EXEC Privilege Comman...

Page 967: ...r the Telecommunications Industry Association TIA is 00 12 BB LLDP MED Endpoint Device any device that is on an IEEE 802 LAN network edge can communicate using IP and uses the LLDP MED framework LLDP MED Network Connectivity Device any device that provides access to an IEEE 802 LAN to an LLDP MED endpoint device and supports IEEE 802 1AB LLDP and TIA 1057 LLDP MED The Dell Force10 system is an LLD...

Page 968: ...LDP neighbors show running config lldp displays the LLDP running configuration advertise med guest voice signaling Configure the system to advertise a separate limited voice service for a guest user when the guest voice control packets use a separate network policy than the voice data C Series E Series S Series Z Series S4810 Syntax advertise med guest voice signaling vlan id layer2_priority DSCP_...

Page 969: ... default use the no advertise med location identification coordinate based value civic based value ecs elin value command Parameters coordinate based value Enter the keywords coordinate based followed by the coordinated based location in hexadecimal value of 16 bytes civic based value Enter the keywords civic based followed by the civic based location in hexadecimal format The range is 6 to 255 by...

Page 970: ...vertise the Extended Power via MDI TLV C Series S Series S4810 Syntax advertise med power via mdi To return to the default use the no advertise med power via mdi command Defaults unconfigured Command Modes CONFIGURATION conf lldp Command History Version 8 3 7 0 Introduced on the S4810 Version 7 7 1 0 Introduced on the S Series Version 7 6 1 0 Introduced on the C Series Usage Information Advertise ...

Page 971: ...rity tagged number Enter the keywords priority tagged followed the Layer 2 priority The range is 0 to 7 Defaults unconfigured Command Modes CONFIGURATION conf lldp Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 7 1 0 Introduced on the S Series Version 7 6 1 0 Introduced on the C Series and E Series Related Commands debug lldp interface de...

Page 972: ... 1 0 Introduced on the C Series and E Series Related Commands debug lldp interface debugs LLDP show lldp neighbors displays the LLDP neighbors show running config lldp displays the LLDP running configuration advertise med video conferencing Configure the system to advertise dedicated video conferencing and other similar appliances that support real time interactive video C Series E Series S Series...

Page 973: ...work policy than video data C Series E Series S Series Z Series S4810 Syntax advertise med video signaling vlan id layer2_priority DSCP_value priority tagged number To return to the default use the no advertise med video signaling vlan id layer2_priority DSCP_value priority tagged number command Parameters vlan id Enter the VLAN ID The range is 1 to 4094 layer2_priority Enter the Layer 2 priority ...

Page 974: ...rity tagged number command Parameters vlan id Enter the VLAN ID The range is 1 to 4094 layer2_priority Enter the Layer 2 priority C Series and E Series only The range is 0 to 7 DSCP_value Enter the DSCP value C Series and E Series only The range is 0 to 63 priority tagged number Enter the keywords priority tagged followed the Layer 2 priority The range is 0 to 7 Defaults unconfigured Command Modes...

Page 975: ...er the Layer 2 priority C Series and E Series only The range is 0 to 7 DSCP_value Enter the DSCP value C Series and E Series only The range is 0 to 63 priority tagged number Enter the keywords priority tagged followed the Layer 2 priority The range is 0 to 7 Defaults unconfigured Command Modes CONFIGURATION conf lldp Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduc...

Page 976: ...976 ...

Page 977: ... msdp peer peer address Parameters peer address Enter the peer address in a dotted decimal format A B C D Defaults Not configured Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 1 Introduced on the S4810 Version 6 2 1 1 Introduced clear ip msdp sa cache Clears the entire source active cache the source active entries of a particular multicast grou...

Page 978: ...ed or local source active entries E Series Z Series S4810 Syntax clear ip msdp sa cache group address rejected sa local Parameters group address Enter the group IP address in dotted decimal format A B C D rejected sa Enter the keyword rejected sa to clear the cache source active entries that are rejected because the RPF check failed an SA filter or limit is configured the RP or MSDP peer is unreac...

Page 979: ...cimal format A B C D pim Enter the keyword pim to debug advertisement from PIM Defaults Not configured Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 6 2 1 1 Introduced ip msdp cache rejected sa Enable a MSDP cache for the rejected source active entries E Series Z Series S4810 Syntax ip msdp cache rejected sa nu...

Page 980: ...eer address Enter the peer address in a dotted decimal format A B C D list name Enter the keywords list name and specify a standard access list that contains the RP address that should be treated as the default peer If no access list is specified then all SAs from the peer are accepted Defaults Not configured Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Vers...

Page 981: ... a string of up to 16 characters long for as the mesh group name peer address Enter the peer address in a dotted decimal format A B C D Defaults Not configured Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 6 2 1 1 Introduced Usage Information A MSDP mesh group is a mechanism for reducing SA flooding typically in...

Page 982: ...3 For a Port Channel interface enter the keywords port channel followed by a number For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a SONET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a 40 Gigabit Ethernet interface enter ...

Page 983: ...ollowed by a number For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a SONET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a 40 Gigabit Ethernet interface enter the keyword fortyGigE followed by the slot port information For ...

Page 984: ...ays the MSDP information ip msdp redistribute Filter local PIM SA entries in the SA cache SAs which are denied by the ACL will time out and not be refreshed Until they time out they continue to reside in the MSDP SA cache E Series Z Series S4810 Syntax ip msdp redistribute list acl name Parameters list acl name lEnter the name of an extended ACL that contains permitted SAs If you do not use this o...

Page 985: ... D access list name Enter the name of an extended ACL that contains permitted SAs If you do not use this option all local entries are blocked Defaults Not configured Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 7 1 0 Introduced on the E Series ip msdp sa limit Configure the upper limit of source active SA ent...

Page 986: ... such situation use the clear ip msdp sa cache command Related Commands ip msdp peer configures the MSDP peer clear ip msdp peer clears the MSDP peer show ip msdp displays the MSDP information ip msdp shutdown Administratively shut down a configured MSDP peer E Series Z Series S4810 Syntax ip msdp shutdown peer address Parameters peer address Enter the peer address in a dotted decimal format A B C...

Page 987: ... display the Source Active cache summary Enter the keyword summary to display a MSDP peer summary Defaults Not configured Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 6 2 1 1 Introduced Example FTOS show ip msdp peer 100 1 1 1 Peer Addr 100 1 1 1 Local Addr 100 1 1 2 639 Connect Source none State Establis...

Page 988: ...UpTime GroupAddr SourceAddr RPAddr LearnedFrom Reason 00 00 13 225 1 2 1 10 1 1 3 110 1 1 1 13 1 1 2 Rpf Fail 00 00 13 225 1 2 2 10 1 1 4 110 1 1 1 13 1 1 2 Rpf Fail 00 00 13 225 1 2 3 10 1 1 3 110 1 1 1 13 1 1 2 Rpf Fail 00 00 13 225 1 2 4 10 1 1 4 110 1 1 1 13 1 1 2 Rpf Fail 00 00 13 225 1 2 5 10 1 1 3 110 1 1 1 13 1 1 2 Rpf Fail 00 00 13 225 1 2 6 10 1 1 4 110 1 1 1 13 1 1 2 Rpf Fail 00 00 13 2...

Page 989: ...00 00 13 225 1 2 17 10 1 1 3 110 1 1 1 13 1 1 2 Rpf Fail 00 00 13 225 1 2 18 10 1 1 4 110 1 1 1 13 1 1 2 Rpf Fail 00 00 13 225 1 2 19 10 1 1 3 110 1 1 1 13 1 1 2 Rpf Fail FTOS 989 ...

Page 990: ...990 ...

Page 991: ...erface you want displayed Type slot port options are the following For a Fast Ethernet interface enter the keyword FastEthernet followed by the slot port information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Port Channel interface enter the keywords port channel followed by a number For the C Series and S Series the range is 1 ...

Page 992: ...OS debug spanning tree mstp bpdu gigabitethernet 2 0 in Receive in out Transmit out description Enter a description of the multiple spanning tree C Series E Series S Series Z Series S4810 Syntax description description To remove the description use the no description description command Parameters description Enter a description to identify the multiple spanning tree maximum 80 characters Defaults...

Page 993: ...NNING TREE mode forward delay The amount of time the interface waits in the Blocking State and the Learning State before transitioning to the Forwarding State C Series E Series S Series Z Series S4810 Syntax forward delay seconds To return to the default setting use the no forward delay command Parameters seconds Enter the number of seconds the interface waits in the Blocking State and the Learnin...

Page 994: ...of BPDUs The range is 1 to 10 The default is 2 seconds Defaults 2 seconds Command Modes MULTIPLE SPANNING TREE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 5 1 0 Introduced Related Commands forward delay the amount of time the interface waits in the Bl...

Page 995: ...g State before transitioning to the Forwarding State hello time changes the time interval between BPDUs max hops Configure the maximum hop count C Series E Series S Series Z Series Syntax max hops number To return to the default values use the no max hops command Parameters range Enter a number for the maximum hop count The range is 1 to 40 The default is 20 Defaults 20 hops Command Modes MULTIPLE...

Page 996: ...the MSTP iInstance The range is zero 0 to 63 vlan range Enter the keyword vlan followed by the identifier range value The range is 1 to 4094 bridge priority priority Enter the keywords bridge priority followed by a value in increments of 4096 as the bridge priority The range is zero 0 to 61440 Valid priority values are 0 4096 8192 12288 16384 20480 24576 28672 32768 36864 40960 45056 49152 53248 5...

Page 997: ... 1 0 Introduced Usage Information For two MSTP switches to be within the same MSTP region the switches must share the same region name including matching case Related Commands msti maps the VLAN s to an MST instance revision assigns the revision number to the MST configuration protocol spanning tree mstp Enter MULTIPLE SPANNING TREE mode to enable and configure the multiple spanning tree group C S...

Page 998: ...tiple spanning tree revision The revision number for the multiple spanning tree configuration C Series E Series S Series Z Series S4810 Syntax revision range To return to the default values use the no revision command Parameters range Enter the revision number for the MST configuration The range is 0 to 65535 The default is 0 Defaults 0 Command Modes MULTIPLE SPANNING TREE Command History Version ...

Page 999: ... Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 5 1 0 Introduced on the E Series Example FTOS conf mstp show config protocol spanning tree mstp no disable name CustomerSvc revision 2 MSTI 10 VLAN 101 105 max hops 5 FTOS conf mstp show spanning tree mst configuration View the multiple spanning tree configuration C Series E Ser...

Page 1000: ...ax show spanning tree msti instance number brief guard Parameters instance number Optional Enter the multiple spanning tree instance number The range is 0 to 63 brief Optional Enter the keyword brief to view a synopsis of the MST instance guard Optional Enter the keyword guard to display the type of guard enabled on an MSTP interface and the current port state Command Modes EXEC EXEC Privilege Com...

Page 1001: ...d bridge has priority 16384 address 0001 e800 0a 5c Designated port id is 128 88 designated path cost Number of transitions to forwarding state 4 BPDU Mrecords sent 19 received 1103 The port is not in the portfast mode Port 89 GigabitEthernet 2 7 is alternate Discarding Port path cost 0 Port priority 128 Port Identifier 128 89 Designated root has priority 16384 address 0001 e800 0a 5c Designated b...

Page 1002: ... LBK_INC Discarding Port path cost 20000 Port priority 128 Port Identifier 128 257 Designated root has priority 32768 address 0001 e801 6aa8 Designated bridge has priority 32768 address 0001 e801 6aa8 Designated port id is 128 257 designated path cost 0 Number of transitions to forwarding state 1 BPDU MRecords sent 21 received 9 The port is not in the Edge port mode Usage Information The following...

Page 1003: ... 1 0 Introduced on the C Series pre Version 6 2 1 0 Introduced on the E Series spanning tree msti Configure multiple spanning tree instance cost and priority for an interface C Series E Series S Series Z Series S4810 Syntax spanning tree msti instance cost cost priority priority Parameters msti instance Enter the keyword msti and the MST instance number The range is zero 0 to 63 cost cost OPTIONAL...

Page 1004: ...Series spanning tree mstp edge port Configures the interface as an MST edge port and optionally a Bridge Protocol Data Unit BPDU guard C Series E Series S Series Z Series Syntax spanning tree mstp edge port bpduguard shutdown on violation Parameters mstp edge port Enter the keyword mstp followed by the keywords edge port to configure the interface as a Multiple Spanning Tree edge port bpduguard OP...

Page 1005: ...ing every topology change notification C Series E Series S Series Z Series S4810 Syntax tc flush standard To disable use the no tc flush standard command Defaults Disabled Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 5 1 0 I...

Page 1006: ...1006 ...

Page 1007: ...he multicast commands are supported by FTOS on all E Series C Series S Series Z Series or S4810 Dell Force10 platforms This chapter contains the following sections IPv4 Multicast Commands IPv6 Multicast Commands 1007 ...

Page 1008: ...1008 ...

Page 1009: ...Enter to clear all multicast routes Command Modes EXEC Privilege Command History Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the C Series E Series legacy command Related Commands show ip pim tib shows the PIM tree information base ip mroute Assign a static mroute C Series E Series S Series Z Series S4810 Syntax ip mroute destination mask ip address null 0 bgp ospf process...

Page 1010: ...ed by the IP address in dotted decimal format of the RPF neighbor Enter the RIP IP address in dotted decimal format of the RPF neighbor static ip address OPTIONAL Enter the Static IP address in dotted decimal format of the RPF neighbor ip address OPTIONAL Enter the IP address in dotted decimal format of the RPF neighbor distance OPTIONAL Enter a number as the distance metric assigned to the mroute...

Page 1011: ...es range is 50000 the C Series range is 1 to 10000 and the S Series range is 1 to 2000 Defaults E Series Default 15000 C Series Default 4000 S Series Default 400 Command Modes CONFIGURATION Command History Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the C Series Version 7 6 1 0 Introduced on the E Series Usage Information This features allows you to limit the number of mu...

Page 1012: ...terface In INTERFACE mode enter the ip pim sparse mode command to enable IGMP and PIM on the interface Related Commands ip pim sparse mode enables IGMP and PIM on an interface mac flood list Provide an exception to the restrict flood configuration so that multicast frames within a specified MAC address range to be flooded on all ports in a VLAN E Series Syntax mac flood list mac address mask vlan ...

Page 1013: ...ess range specified using the mac flood list command are flooded according to the restrict flood command Related Commands restrict flooding prevents Layer 2 multicast traffic from being forwarded on ports below a specified speed mtrace Trace a multicast route from the source to the receiver E Series Syntax mtrace source address hostname destination address hostname group address Parameters source ...

Page 1014: ...rred over the unicast route queue backplane multicast Reallocate the amount of bandwidth dedicated to multicast traffic E Series Syntax queue backplane multicast bandwidth percentage percentage Parameters percentage Enter the percentage of backplane bandwidth to be dedicated to multicast traffic The range is 5 to 95 Defaults 80 of the scheduler weight is for unicast traffic and 20 is for multicast...

Page 1015: ...ify the traffic you want to be flooded using a MAC address range You may not use the unicast MAC addresses when specifying MAC address ranges do not overlap MAC addresses ranges when creating multiple mac flood list entries for the same VLAN Restricted Layer 2 flooding is not compatible with MAC accounting or VMANs Related Commands mac flood list floods multicast frames with specified MAC addresse...

Page 1016: ... A B C D to limit the information displayed to the multicast routes discovered by PIM SM snooping for a specified multicast group and source summary OPTIONAL Enter the keyword summary to view routes in a tabular format Command Modes EXEC EXEC Privilege Command History Version 8 4 1 1 Support for the keyword snooping and the optional vlan vlan id group address and source address parameters were add...

Page 1017: ...se path forwarding RPF information towards the source for S G entries and the RP for G entries Outgoing interface list Lists the interfaces that meet one of the following a directly connected member of the Group statically configured member of the Group received a G or S G Join message Example FTOS show ip mroute IP Multicast Routing Table 224 10 10 1 uptime 00 05 12 Incoming interface GigabitEthe...

Page 1018: ...examined and the route with shorter distance is the one the PIM selects for reach ability NOTE The default distance of mroutes is zero 0 and is CLI configurable on a per route basis Example FTOS show ip rpf RPF information for 10 10 10 9 RPF interface Gi 3 4 RPF neighbor 165 87 31 4 RPF route mask 10 10 10 9 255 255 255 255 RPF type unicast show queue backplane multicast Display the backplane band...

Page 1019: ... table To clear the PIM tib use the clear ip pim tib command E Series Syntax clear ipv6 mroute group address source address Parameters group address source address Enter multicast group address and source address if desired to clear information on a specific group Enter the addresses in the x x x x x format NOTE The notation specifies successive hexadecimal fields of zero Enter to clear all multic...

Page 1020: ... the CAM profile Multicast routes are stored in the IN V6 McastFib CAM region which has a fixed number of entries Any limit configured using the CLI is superseded by this hardware limit The opposite is also true the CAM might not be exhausted at the time the CLI configured route limit is reached ipv6 multicast routing Enable IPv6 multicast forwarding E Series Syntax ipv6 multicast routing To disab...

Page 1021: ... number of multicast entries on the system This number is the sum total of all the multicast entries on all line cards in the system On each line card the multicast module only installs the maximum possible number of entries depending on the configured CAM profile Use the IN L3 McastFib CAM partition to store multicast routes It is a separate hardware limit that exists per port pipe Any software c...

Page 1022: ...and History Version 7 4 1 0 Introduced Example FTOS show ipv6 mroute IP Multicast Routing Table 165 87 32 30 ff05 100 1 uptime 00 01 11 Incoming interface Vlan 200 Outgoing interface list GigabitEthernet 2 14 165 87 37 30 ff05 200 1 uptime 00 01 04 Incoming interface Port channel 200 Outgoing interface list Vlan 200 165 87 31 30 ff05 300 1 uptime 00 01 19 Incoming interface GigabitEthernet 2 14 Ou...

Page 1023: ... 2 routes using 1296 bytes of memory 2 groups 1 00 average sources per group Forwarding Counts Pkt Count Pkts per second Group ff05 300 1 Source count 1 Source 165 87 31 30 Forwarding 3993 0 Group ff05 3300 1 Source count 1 Source 165 87 31 30 Forwarding 3997 0 FTOS show ipv6 mroute mld Display the Multicast MLD information E Series Syntax show ipv6 mroute mld group address all vlan vlan id Parame...

Page 1024: ...ng interface list GigabitEthernet 2 15 GigabitEthernet 2 16 ff05 200 1 uptime 00 04 15 Incoming vlan Vlan 200 Outgoing interface list GigabitEthernet 2 15 GigabitEthernet 2 16 ff05 1100 1 uptime 00 04 18 Incoming vlan Vlan 200 Outgoing interface list GigabitEthernet 2 15 GigabitEthernet 2 16 FTOS show ipv6 mroute summary Display a summary of the multicast routing table E Series Syntax show ipv6 mr...

Page 1025: ...2 groups 12 routes 165 87 32 30 ff05 100 1 00 00 24 165 87 37 30 ff05 200 1 00 00 24 165 87 31 30 ff05 300 1 00 00 24 165 87 32 30 ff05 1100 1 00 00 21 165 87 37 30 ff05 2200 1 00 00 21 165 87 31 30 ff05 3300 1 00 00 21 165 87 32 20 ff3e 100 4000 1 00 00 41 FTOS 1025 ...

Page 1026: ...1026 ...

Page 1027: ...ayer address Next hop determination Neighbor unreachability detection NUD Determine that a neighbor is no longer reachable on the link Duplicate address detection DAD Allow a node to check whether a proposed address is already in use Redirect The router can inform a node about a better first hop NDP makes use of the following five ICMPv6 packet types in its implementation Router Solicitation Route...

Page 1028: ...ortyGigE followed by the slot port information For a VLAN enter the keyword vlan followed by the VLAN ID The range is 1 to 4094 Command Modes EXEC EXEC Privilege Command History Version 8 3 7 0 Introduced on the S4810 ipv6 nd managed config flag Set the managed address configuration flag in the IPv6 router advertisement E Series Syntax ipv6 nd managed config flag To clear the flag from the IPv6 ro...

Page 1029: ...es INTERFACE ipv6 nd mtu Configure an IPv6 neighbor discovery C Series E Series S Series Syntax ipv6 nd mtu number Parameters mtu number Set the MTU advertisement value in Routing Prefix Advertisement packets The range is 1280 to 9234 Defaults none Command Modes INTERFACE Command History Version 8 3 1 0 Introduced Usage Information The ip nd mtu command sets the value advertised to routers It does...

Page 1030: ...described in Thomson S and T Narten IPv6 Address Autoconfiguration RFC 2462 December 1998 ipv6 nd prefix Configure how IPv6 prefixes are advertised in the IPv6 router advertisements E Series Syntax ipv6 nd prefix ipv6 address prefix length default no advertise no autoconfig no rtr address off link Parameters ipv6 address prefix length Enter the IPv6 address in the x x x x x format followed by the ...

Page 1031: ... The description of router lifetime from RFC 2461 http tools ietf org html rfc2461 is Router Lifetime 16 bit unsigned integer The lifetime associated with the default router in units of seconds The maximum value corresponds to 18 2 hours A Lifetime of 0 indicates that the router is not a default router and SHOULD NOT appear on the default router list The Router Lifetime applies only to the router ...

Page 1032: ...missions on an interface E Series Syntax ipv6 nd suppress ra To enable the sending of IPv6 router advertisement transmissions on an interface use the no ipv6 nd suppress ra command Defaults Enabled Command Modes INTERFACE ipv6 neighbor Configure a static entry in the IPv6 neighbor discovery E Series S4810 Syntax ipv6 neighbor ipv6 address interface interface hardware_address To remove a static IPv...

Page 1033: ... on the S4810 show ipv6 neighbors Display IPv6 discovery information Entering the command without options shows all IPv6 neighbor addresses stored on the control processor CP E Series S4810 Syntax show ipv6 neighbors ipv6 address cpu rp1 ipv6 address rp2 ipv6 address interface interface Parameters ipv6 address Enter the IPv6 address of the neighbor in the x x x x x format NOTE The notation specifi...

Page 1034: ...ion 8 3 7 0 Introduced on the S4810 Example FTOS show ipv6 neighbors IPv6 Address Expires min HardwareAddress State Interface VLAN CPU fe80 201 e8ff fe17 5bc6 1439 00 01 e8 17 5b c6 STALE Gi 1 9 CP fe80 201 eff fe17 5bc7 1439 00 01 e8 17 5b c7 STALE Gi 1 10 CP fe80 201 e8ff fe17 5bc8 1439 00 01 e8 17 5b c8 STALE Gi 1 11 CP fe80 201 e8ff fe17 5caf 0 3 00 01 e8 17 5c af REACH Po 1 CP fe80 201 e8ff f...

Page 1035: ...PF calculations etc are the same for OSPFv2 and OSPFv3 OSPFv3 runs on a per link basis instead of on a per IP subnet basis This chapter is divided into 2 sections There is no overlap between the two sets of commands You cannot use an OSPFv2 command in the IPv6 OSPFv3 mode OSPFv2 Commands OSPFv3 Commands NOTE FTOS version 7 8 1 0 introduces Multi Process OSPF on IPv4 OSPFv2 only It is not supported...

Page 1036: ...st ip ospf dead interval ip ospf hello interval ip ospf message digest key ip ospf mtu ignore ip ospf network ip ospf priority ip ospf retransmit interval ip ospf transmit delay log adjacency changes max metric router lsa maximum paths mib binding network area passive interface redistribute redistribute bgp redistribute isis router id router ospf show config show ip ospf show ip ospf asbr show ip ...

Page 1037: ...outers at the edge of a stub area C Series E Series S Series Z Series S4810 Syntax area area id default cost cost To return default values use the no area area id default cost command Parameters area id Specify the OSPF area in dotted decimal format A B C D or enter a number from zero 0 to 65535 cost Specifies the stub area s advertised external route metric The range is zero 0 to 65535 Defaults c...

Page 1038: ...to the NSSA You should only use this command in a NSSA area border router ABR default information originate OPTIONAL Allows external routing information to be imported into the NSSA by using Type 7 default no summary OPTIONAL Specify that no summary LSAs should be sent into the NSSA Defaults Not configured Command Modes ROUTER OSPF Command History Version 8 3 11 1 Introduced on the Z9000 Version 8...

Page 1039: ...ed support for the Multi Process OSPF Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series Usage Information Only the routes within an area are summarized and that summary is advertised to other areas by the ABR External routes are not summarized Related Commands area stub creates a stub area router ospf enters ROUTER ...

Page 1040: ...lculated based on the reference bandwidth method C Series E Series S Series Z Series S4810 Syntax auto cost reference bandwidth ref bw To return to the default bandwidth or to assign cost based on the interface type use the no auto cost reference bandwidth command Parameters ref bw OPTIONAL Specify a reference bandwidth in megabits per second The range is 1 to 4294967 The default is 100 megabits p...

Page 1041: ...ear ip ospf statistics Clear the packet statistics in interfaces and neighbors C Series E Series S Series Z Series S4810 Syntax clear ip ospf process id statistics interface name neighbor router id Parameters process id Enter the OSPF Process ID to clear a specific process If no Process ID is entered all OSPF processes are cleared interface name OPTIONAL Enter the keyword interface followed by one...

Page 1042: ...ries Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series Related Commands show ip ospf statistics displays the OSPF statistics debug ip ospf Display debug information on OSPF Entering the debug ip ospf commands enables OSPF debugging for the first OSPF process C Series E Series S Series Z Series S4810 Syntax debug ip ospf process id bfd event packet spf databa...

Page 1043: ... on the C Series pre Version 6 1 1 1 Introduced on the E Series Usage Information The following describes the debug ip ospf command shown in the Example below Field Description 8 14 Displays the time stamp OSPF Displays the OSPF process ID instance ID v Displays the OSPF version FTOS supports version 2 only t Displays the type of packet sent 1 Hello packet 2 database description 3 link state reque...

Page 1044: ...SPF is set and router is able to forward IP multicast packets MC bit used by MOSPF is not set and router cannot forward IP multicast packets E router is able to accept AS External LSAs E router cannot accept AS External LSAs T router can support TOS T router cannot support TOS hi Displays the amount of time configured for the HELLO interval di Displays the amount of time configured for the DEAD in...

Page 1045: ...e for the route The range is 1 to 16777214 metric type type value OPTIONAL Enter the keywords metric type followed by an OSPF link state type of 1 or 2 for default routes The values are 1 Type 1 external route 2 Type 2 external route route map map name OPTIONAL Enter the keywords route map followed by the name of an established route map Defaults Disabled Command Modes ROUTER OSPF Command History ...

Page 1046: ... OSPF Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series Related Commands redistribute redistributes routes from other routing protocols into OSPF description Add a description about the selected OSPF configuration C Series E Series S Series Z Series S4810 Syntax description description To remove the OSPF description...

Page 1047: ...cify an administrative distance The range is 1 to 255 The default is 110 ip address OPTIONAL Enter a router ID in the dotted decimal format If you enter a router ID you must include the mask for that router address mask OPTIONAL Enter a mask in dotted decimal format or n format access list name OPTIONAL Enter the name of an IP standard access list up to 140 characters Defaults 110 Command Modes RO...

Page 1048: ...he keywords intra area followed by a number to specify a distance metric for all routes within an area The range is 1 to 255 The default is 110 Defaults external dist3 110 inter area dist2 110 intra area dist1 110 Command Modes ROUTER OSPF Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Added support for the Multi Process OSPF Versio...

Page 1049: ...t information For a VLAN enter the keyword vlan followed by a number from 1 to 4094 For a 40 Gigabit Ethernet interface enter the keyword fortyGigE followed by the slot port information Defaults Not configured Command Modes ROUTER OSPF Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Added support for the Multi Process OSPF Version 7 ...

Page 1050: ...nually configured routes are distributed Defaults Not configured Command Modes ROUTER OSPF Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Added support for the Multi Process OSPF Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series Usage Information The ...

Page 1051: ...1 to 4 Defaults none Command Modes ROUTER OSPF Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on all platforms Usage Information The higher this parameter is set the faster OSPF converge takes place NOTE The faster the convergence the more frequent the route calculations and updates This impacts CPU utilization and may im...

Page 1052: ...erhead by selectively flooding on a subset of the interfaces between two routers When you enable flood 2328 this command configures FTOS to flood LSAs on all interfaces graceful restart grace period Specifies the time duration in seconds that the router s neighbors will continue to advertise the router as fully adjacent regardless of the synchronization state during a graceful restart C Series E S...

Page 1053: ...rted on S Series Added support for Multi Process OSPF Version 7 7 1 0 Added Helper Role support on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series graceful restart mode Enable the graceful restart mode C Series E Series S Series Z Series S4810 Syntax graceful restart mode planned only unplanned only To disable graceful restart mode use the no ...

Page 1054: ...t OSPF routers are both helper and restart routers during a graceful restart Command Modes ROUTER OSPF Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 12 0 Introduced on the S4810 Version 7 8 1 0 Added support for Multi Process OSPF Added Restart and Helper roles support on the S Series Version 7 7 1 0 Added Helper Role support on the S Series Version 7 5 1 0 Introduced on the...

Page 1055: ...ip ospf authentication key command Parameters encryption type OPTIONAL Enter 7 to encrypt the key key Enter an eight character string Strings longer than eight characters are truncated Defaults Not configured Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced ...

Page 1056: ...he same cost Otherwise OSPF routes improperly Related Commands auto cost controls how the OSPF interface cost is calculated ip ospf dead interval Set the time interval since the last hello packet was received from a router After the interval elapses the neighboring routers declare the router dead C Series E Series S Series Z Series S4810 Syntax ip ospf dead interval seconds To return to the defaul...

Page 1057: ...d on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series Usage Information The time interval between the hello packets must be the same for routers in a network Related Commands ip ospf dead interval sets the time interval before a router is declared dead ip ospf messa...

Page 1058: ...sures that the neighbors learn the new key and communication is not disrupted by keeping the old key enabled After the reply is received and the new key is authenticated you must delete the old key Dell recommends keeping only one key per interface NOTE The MD5 secret is stored as plain text in the configuration file with service password encryption Write down or otherwise record the key You canno...

Page 1059: ...on 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Added support for Multi Process OSPF Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series ip ospf priority Set the priority of the interface to determine the designated router for the OSPF network C Series E Series S Series Z Series S4810 Syntax ip ospf priority number...

Page 1060: ...n retransmission The range is 1 to 3600 The default is 5 seconds This interval must be greater than the expected round trip time for a packet to travel between two routers Defaults 5 seconds Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pr...

Page 1061: ...n the C Series pre Version 6 1 1 1 Introduced on the E Series log adjacency changes Set FTOS to send a Syslog message about changes in the OSPF adjacency state C Series E Series S Series Z Series S4810 Syntax log adjacency changes To disable the Syslog messages use the no log adjacency changes command Defaults Disabled Command Modes ROUTER OSPF Command History Version 8 3 11 1 Introduced on the Z9...

Page 1062: ... it stops advertising the maximum cost in LSAs and advertises the router s currently configured OSPF cost Range 5 to 86400 seconds Defaults Not Configured Command Modes ROUTER OSPF Command History Version 9 1 0 0 Introduced on the S4810 and Z9000 Version 8 4 2 5 Introduced on C Series and E Series TeraScale Version 8 4 1 3 Introduced on E Series ExaScale Usage Information When you bring a new rout...

Page 1063: ... router lsas with maximum metric Time remaining 00 07 07 Condition On Startup while BGP is converging for 600 secs State Active SPF schedule delay 5 secs Hold time between two SPFs 10 secs Convergence Level 0 Min LSA origination 5 secs Min LSA arrival 1 secs Number of area in this router is 2 normal 2 stub 0 nssa 0 Area BACKBONE 0 Number of interface in this area is 1 SPF algorithm executed 3 time...

Page 1064: ...Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series mib binding Enable this OSPF process ID to manage the SNMP traps and process SNMP queries C Series E Series S Series Z Series S4810 Syntax mib binding To mib binding on this OSPF process use the no mib binding command Defaults none Command Modes ROUTER OSPF Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3...

Page 1065: ... a decimal value For example if you use an area ID of 0 0 0 1 it is converted to 1 Command Modes ROUTER OSPF Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced to all platforms Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series Usage Information...

Page 1066: ...y a number from 1 to 4094 For a 40 Gigabit Ethernet interface enter the keyword fortyGigE followed by the slot port information Command Modes ROUTER OSPF Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Added support for Multi Process OSPF Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 7 ...

Page 1067: ... everything and revert to the default behavior All previously marked passive interfaces are removed May update ABR status redistribute Redistribute information from another routing protocol throughout the OSPF process C Series E Series S Series Z Series S4810 Syntax redistribute connected rip static metric metric value metric type type value route map map name tag tag value To disable redistributi...

Page 1068: ...tion originate command Related Commands default information originate generates a default route into the OSPF routing domain redistribute bgp Redistribute BGP routing information throughout the OSPF instance C Series E Series S Series Z Series S4810 Syntax redistribute bgp as number metric metric value metric type type value tag tag value To disable redistribution use the no redistribute bgp as nu...

Page 1069: ...ughout the OSPF instance C Series E Series Z Series S4810 Syntax redistribute isis tag level 1 level 1 2 level 2 metric metric value metric type type value route map map name tag tag value To disable redistribution use the no redistribute isis tag level 1 level 1 2 level 2 metric metric value metric type type value route map map name tag tag value command Parameters tag OPTIONAL Enter the name of ...

Page 1070: ...eries pre Version 6 1 1 1 Introduced on the E Series Usage Information IS IS is not supported on the S Series platforms router id Use this command to configure a fixed router ID C Series E Series S Series Z Series S4810 Syntax router id ip address To remove the fixed router ID use the no router id ip address command Parameters ip address Enter the router ID in the IP address format Defaults none C...

Page 1071: ...S Series Z Series S4810 Syntax router ospf process id vrf vrf name To clear an OSPF instance use the no router ospf process id command Parameters process id Enter a number for the OSPF instance The range is 1 to 65535 vrf name Optional E Series Only Enter the VRF process identifier to tie the OSPF instance to the VRF All network commands under this OSPF instance are subsequently tied to the VRF in...

Page 1072: ... 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series Example FTOS conf router_ospf show config router ospf 3 passive interface FastEthernet 0 1 FTOS conf router_ospf show ip ospf Display information on the OSPF process configured on the switch C Series E Series S Series Z Series S4810 Syntax show ip ospf process id vrf vrf name Parameters process id Enter the OSPF Process...

Page 1073: ...Displays the delay and hold time configured for this process ID Convergence Level Min LSA Displays the intervals set for LSA transmission and acceptance Number of Displays the number and type of areas configured for this process ID Example FTOS show ip ospf 10 Routing Process ospf 10 with ID 1 1 1 1 Virtual router default vrf Supports only single TOS TOS0 routes SPF schedule delay 5 secs Hold time...

Page 1074: ...routes In OSPF external routes are calculated by adding the LSA cost to the cost of reaching the ASBR router If an external route does not have the correct cost use this command to determine if the path to the originating router is correct The display output is not sorted in any order NOTE ASBRs that are not in directly connected areas are also displayed You can determine if an ASBR is in a direct...

Page 1075: ...w Field Description Link ID Identifies the router ID ADV Router Identifies the advertising router s ID Age Displays the link state age Seq Identifies the link state sequence number This number allows you to identify old or duplicate link state advertisements Checksum Displays the Fletcher checksum of an LSA s complete contents Link count Displays the number of interfaces for that router Example FT...

Page 1076: ...process id database asbr summary link state id adv router ip address Parameters process id Enter the OSPF Process ID to show a specific process If no Process ID is entered command applies only to the first OSPF process link state id OPTIONAL Specify LSA ID in dotted decimal format The LSA ID value depends on the LSA type and it can be one of the following the network s IP address for Type 3 LSAs o...

Page 1077: ... Advertising Router Identifies the advertising router s ID Checksum Displays the Fletcher checksum of the an LSA s complete contents Length Displays the length in bytes of the LSA Network Mask Displays the network mask implemented on the area TOS Displays the Type of Service TOS options Option 0 is the only option Metric Displays the LSA metric Example FTOS show ip ospf 100 database asbr summary O...

Page 1078: ...ter s OSPF router ID for Type 1 LSAs or Type 4 LSAs the default destination 0 0 0 0 for Type 5 LSAs adv router ip address OPTIONAL Enter the keywords adv router and the ip address to display only the LSA information about that router Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Added support for M...

Page 1079: ...ork mask implemented on the area Metrics Type Displays the external type TOS Displays the Type of Service TOS options Option 0 is the only option Metric Displays the LSA metric Forward Address Identifies the address of the forwarding router Data traffic is forwarded to this router If the forwarding address is 0 0 0 0 data traffic is forwarded to the originating router External Route Tag Displays t...

Page 1080: ...ess ID is entered command applies only to the first OSPF process link state id OPTIONAL Specify LSA ID in dotted decimal format The LSA ID value depends on the LSA type and it can be one of the following the network s IP address for Type 3 LSAs or Type 5 LSAs the router s OSPF router ID for Type 1 LSAs or Type 4 LSAs the default destination 0 0 0 0 for Type 5 LSAs adv router ip address OPTIONAL En...

Page 1081: ...LSA s originating router Checksum Identifies the link state sequence number This number enables you to identify old or duplicate LSAs Length Displays the Fletcher checksum of an LSA s complete contents Network Mask Displays the length in bytes of the LSA Attached Router Identifies the IP address of routers attached to the network Example FTOS show ip ospf 1 data network OSPF Router with ID 20 20 2...

Page 1082: ... following the network s IP address for Type 3 LSAs or Type 5 LSAs the router s OSPF router ID for Type 1 LSAs or Type 4 LSAs the default destination 0 0 0 0 for Type 5 LSAs adv router ip address OPTIONAL Enter the keywords adv router and the ip address to display only the LSA information about that router Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 V...

Page 1083: ...ords adv router and the ip address to display only the LSA information about that router Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Added support for Multi Process OSPF Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E S...

Page 1084: ...a OSPF Router with ID 3 3 3 3 Process ID 1 Type 10 Opaque Link Area Area 0 LS age 1133 Options No TOS capability No DC E LS type Type 10 Opaque Link Area Link State ID 1 0 0 1 Advertising Router 10 16 1 160 LS Seq Number 0x80000416 Checksum 0x376 Length 28 Opaque Type 1 Opaque ID 1 Unable to display opaque data LS age 833 Options No TOS capability No DC E LS type Type 10 Opaque Link Area Link Stat...

Page 1085: ...ion 7 8 1 0 Added support for Multi Process OSPF Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series Related Commands show ip ospf database displays OSPF database information show ip ospf database opaque link Display the opaque link type 9 LSA information C Series E Series S Series Z Series S4810 Syntax show ip ospf p...

Page 1086: ...ries E Series S Series Z Series S4810 Syntax show ip ospf process id database router link state id adv router ip address Parameters process id Enter the OSPF Process ID to show a specific process If no Process ID is entered command applies only to the first OSPF process link state id OPTIONAL Specify LSA ID in dotted decimal format The LSA ID value depends on the LSA type and it can be one of the ...

Page 1087: ...whether the originating router can accept AS External LSAs LS Type Displays the LSA type Link State ID Displays the Link State ID Advertising Router Identifies the router ID of the LSA s originating router LS Seq Number Displays the link state sequence number This number detects duplicate or old LSAs Checksum Displays the Fletcher checksum of an LSA s complete contents Length Displays the length i...

Page 1088: ...ber of TOS metric 0 TOS 0 Metric 1 Link connected to a Transit Network Link ID Designated Router address 192 68 141 2 Link Data Router Interface address 192 68 141 2 Number of TOS metric 0 TOS 0 Metric 1 Link connected to a Transit Network Link ID Designated Router address 192 68 140 2 Link Data Router Interface address 192 68 140 2 Number of TOS metric 0 TOS 0 Metric 1 Link connected to a Stub Ne...

Page 1089: ...on 6 1 1 1 Introduced on the E Series Usage Information The following describes the show ip ospf process id database summary command shown in the Example below Item Description LS Age Displays the LSA age Options Displays the optional capabilities available on router The following options can be found in this item TOS capability or No TOS capability is displayed depending on whether the router can...

Page 1090: ...D 192 68 16 0 Advertising Router 192 168 17 1 LS Seq Number 0x80000054 Checksum 0xb5a2 Length 28 Network Mask 24 TOS 0 Metric 1 LS age 9 Options No TOS capability No DC E LS type Summary Network Link State ID 192 68 32 0 Advertising Router 1 1 1 10 LS Seq Number 0x80000016 Checksum 0x987c Length 28 Network Mask 24 TOS 0 Metric 1 LS age 7 Options No TOS capability No DC E LS type Summary Network Li...

Page 1091: ... 0 to 16383 For Port Channel groups enter the keywords port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale For a SONET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a VLAN ...

Page 1092: ...ime untill the next Hello packet is sent out this interface Neighbor Count This line displays the number of neighbors and adjacent neighbors Listed below this line are the details about each adjacent neighbor Example FTOS show ip ospf int GigabitEthernet 13 17 is up line protocol is up Internet Address 192 168 1 2 30 Area 0 0 0 1 Process ID 1 Router ID 192 168 253 2 Network Type BROADCAST Cost 1 T...

Page 1093: ...ommand applies only to the first OSPF process Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Added support for Multi Process OSPF Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series Usage Information The following describes ...

Page 1094: ...troduced on the S4810 Version 7 8 1 0 Added support for Multi Process OSPF Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series and E Series Usage Information This command is useful in isolating routing problems between the OSPF and the RTM For example if a route is missing from the RTM FIB but is visible from the display output of this command the problem is with ...

Page 1095: ...nnel groups enter the keywords port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale For a SONET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a VLAN enter the keyword vlan f...

Page 1096: ...r mark in the reception queue Hello Q The queue for transmission or reception for the hello packets LSR Q The queue for transmission or reception for the link state request packets Other Q The queue for transmission or reception for the link state acknowledgement database description and update packets The following describes the error definitions for the show ip ospf statistics process id global ...

Page 1097: ...q LSUpd LSAck RX 10 0 8 2 0 0 0 TX 10 0 10 0 0 0 0 OSPF Global Queue Length TxQ Len RxQ Len Tx Mark Rx Mark Hello Q 0 0 0 2 LSR Q 0 0 0 0 Other Q 0 0 0 0 Error packets Only for RX Intf Down 0 Non Dr 0 Self Org 0 Wrong Len 0 Invld Nbr 0 Nbr State 0 Auth Err 0 MD5 Err 0 Chksum 0 Version 0 AreaMis 0 Conf Issues 0 No Buffer 0 Seq No 0 Socket 0 Q OverFlow 0 Unkown Pkt 0 Error packets Only for TX Socket...

Page 1098: ...er 37 Transmit Timer 0 LSU Q Len 0 LSU Q Wmark 0 LSR Q Len 0 LSR Q Wmark 1 Related Commands clear ip ospf statistics clears the packet statistics in all interfaces and neighbors show ip ospf timers rate limit Show the LSA currently in the queue waiting for timers to expire Z Series S4810 Syntax show ip ospf process id timers rate limit Parameters process id Enter the OSPF Process ID to show a spec...

Page 1099: ... 0 Introduced on the C Series and E Series Usage Information Use this command to isolate problems with inter area and external routes In OSPF inter area and external routes are calculated by adding LSA cost to the cost of reaching the router If an inter area or external route is not of correct cost the display can determine if the path to the originating router is correct or not Example FTOS show ...

Page 1100: ...f the virtual link Transit area This line identifies the area through which the virtual link was created the interface used and the cost assigned to that link Transmit Delay This line displays the transmit delay assigned to the link and the State of the OSPF neighbor Timer intervals This line displays the timer values assigned to the virtual link The timers are Hello is hello interval Dead is dead...

Page 1101: ...e range is 0 to 4294967295 Defaults Not configured Command Modes ROUTER OSPF Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Added support for Multi Process OSPF Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series Usage Information The area range command...

Page 1102: ...ntroduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Added support for Multi Process OSPF Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series Usage Information Setting the delay and holdtime parameters to a low number enables the switch to switch to an alternate path quickly but requires more...

Page 1103: ... throttling exponential backoff is used when sending same LSA so that the interval is multiplied until the maximum time is reached For example if the start interval 5000 and hold interval 1000 and max interval 100 000 the LSA is sent at 5000 msec then 1000 msec then 2000 msec them 4000 until 100 000 msec is reached timers throttle lsa arrival Configure the LSA acceptance intervals Z Series S4810 S...

Page 1104: ...nable OSPFv3 area authentication area encryption clear ipv6 ospf process debug ipv6 ospf packet default information originate graceful restart grace period graceful restart mode ipv6 ospf area ipv6 ospf authentication ipv6 ospf cost ipv6 ospf dead interval ipv6 ospf encryption ipv6 ospf graceful restart helper reject ipv6 ospf hello interval ipv6 ospf priority ipv6 router ospf maximum paths passiv...

Page 1105: ...ry Version 9 1 0 0 Introduced on the S4810 and Z9000 Version 8 4 2 0 Introduced on the E Series TeraScale Usage Information Before you enable IPsec authentication on an OSPFv3 area you must first enable OSPFv3 globally on the router You must configure the same authentication policy same SPI and key on each interface in an OSPFv3 link An SPI number must be unique to one IPsec security policy authen...

Page 1106: ...p encryption algorithm Encryption algorithm used with ESP Valid values are 3DES DES AES CBC and NULL For AES CBC only the AES 128 and AES 192 ciphers are supported key encryption algorithm OPTIONAL Specifies if the key is encrypted Valid values 0 key is not encrypted or 7 key is encrypted key Text string used in encryption The required lengths of a non encrypted or encrypted key are 3DES 48 or 96 ...

Page 1107: ...tion However when you enable authentication on an area with the area authentication command you do not enable encryption at the same time If you have enabled IPsec authentication in an OSPFv3 area with the area authentication command you cannot use the area encryption command in the area at the same time The configuration of IPsec encryption on an interface level takes precedence over an area leve...

Page 1108: ...ion For a Port Channel interface enter the keyword port channel followed by a number C Series Z Series and S4810 Range 1 128 E Series 1 to 255 for TeraScale and 1 to 512 for ExaScale For a SONET interface enter the keyword sonet followed by the slot port information For a VLAN enter the keyword vlan followed by a number from 1 to 4094 Command Modes EXEC Privilege Command History Version 9 1 0 0 In...

Page 1109: ...e OSPF3 router ID Area ID Displays the Area ID Chksum Displays the OSPF3 checksum default information originate Configure the FTOS to generate a default external route into an OSPFv3 routing domain C Series E Series Z Series S4810 Syntax default information originate always metric metric value metric type type value route map map name To return to the default values use the no default information ...

Page 1110: ...he process The range is 40 to 1800 seconds Defaults OSPFv3 graceful restart is disabled and functions in a helper only role Command Modes ROUTER OSPFv3 Command History Version 9 1 0 0 Introduced on the S4810 and Z9000 Version 8 4 2 2 Introduced on the E Series TeraScale Usage Information By default OSPFv3 graceful restart is disabled and functions only in a helper role to help restarting neighbor ...

Page 1111: ...start supports planned only and or unplanned only restarts The default is support for both planned and unplanned restarts A planned restart occurs when you enter the redundancy force failover rpm command to force the primary RPM to switch to the backup RPM During a planned restart OSPF sends out a Type 11 Grace LSA before the system switches over to the backup RPM An unplanned restart occurs when ...

Page 1112: ...lgorithm 1 SHA 1 key encryption type OPTIONAL Specifies if the key is encrypted Valid values 0 key is not encrypted or 7 key is encrypted key Text string used in authentication For MD5 authentication the key must be 32 hex digits non encrypted or 64 hex digits encrypted For SHA 1 authentication the key must be 40 hex digits non encrypted or 80 hex digits encrypted Defaults Not configured Command M...

Page 1113: ... in authentication policies ipv6 ospf cost Explicitly specify the cost of sending a packet on an interface C Series E Series Z Series S4810 Syntax ipv6 ospf interface cost Parameters interface cost Enter a unsigned integer value expressed as the link state metric Range 1 to 65535 Defaults Default cost based on the bandwidth Command Modes INTERFACE Command History Version 9 1 0 0 Introduced on the ...

Page 1114: ...y default the dead interval is four times longer than the default hello interval Related Commands ipv6 ospf hello interval Specify the time interval between hello packets ipv6 ospf encryption Configure an IPsec encryption policy for OSPFv3 packets on an IPv6 interface E Series TeraScale Z Series S4810 Syntax ipv6 ospf encryption null ipsec spi number esp encryption algorithm key encryption type ke...

Page 1115: ...0 0 Introduced on the S4810 and Z9000 Version 8 4 2 0 Introduced on the E Series TeraScale Usage Information Before you enable IPsec encryption on an OSPFv3 interface you must first enable IPv6 unicast routing globally configure an IPv6 address and enable OSPFv3 on the interface and assign the interface to an area An SPI value must be unique to one IPsec security policy authentication or encryptio...

Page 1116: ...OSPFv3 router ignores the Grace LSAs that it receives from a restarting OSPFv3 neighbor The graceful restart role command is not supported in OSPFv3 When you enable the helper reject role on an interface you reconfigure an OSPFv3 router to function in a restarting only role ipv6 ospf hello interval Specify the time interval between the hello packets sent on the interface C Series E Series Z Series...

Page 1117: ...000 Version 7 8 1 0 Added support for the C Series Version 7 4 1 0 Introduced on the E Series Usage Information Setting a priority of 0 makes the router ineligible for election as a Designated Router or Backup Designated Router Use this command for interfaces connected to multi access networks not point to point networks ipv6 router ospf Enable OSPF for IPv6 router configuration C Series E Series ...

Page 1118: ...ulti Process OSPF Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series passive interface Disable suppress sending routing updates on an interface C Series E Series Z Series S4810 Syntax passive interface interface To enable sending routing updates on an interface use the no passive interface interface Parameters interf...

Page 1119: ...s prefix will continue to be advertised to other interfaces and updates from other routers on that interface continue to be received and processed OSPFv3 for IPv6 routing information is neither sent nor received through the specified router interface The specified interface address appears as a stub network in the OSPFv3 for IPv6 domain redistribute Redistribute into OSPFv3 C Series E Series Z Ser...

Page 1120: ... 0 Defaults Not configured Command Modes ROUTER OSPF for OSPFv2 ROUTER OSPFv3 for OSPFv3 Command History Version 9 1 0 0 Introduced support for OSPFv3 on the S4810 and Z9000 Version 7 8 1 0 Added support for the C Series Version 7 4 1 0 Introduced on the E Series Usage Information To redistribute the default route x x x x x configure the default information originate command Related Commands defau...

Page 1121: ...rocess show crypto ipsec policy Display the configuration of IPsec authentication and encryption policies E Series TeraScale Z Series S4810 Syntax show crypto ipsec policy name name Parameters name name OPTIONAL Displays configuration details about a specified policy Defaults No default behavior or values Command Modes EXEC EXEC Privilege Command History Version 9 1 0 0 Introduced on the S4810 and...

Page 1122: ...ipher Key bbdd96e6eb4828e2e27bc3f9ff541e43faa759c9ef5706ba10345a1039ba8f8 a Outbound ESP Cipher Key bbdd96e6eb4828e2e27bc3f9ff541e43faa759c9ef5706ba10345a1039ba8f8 a Transform set esp 128 aes esp sha1 hmac show crypto ipsec policy Command Fields Field Description Policy name Displays the name of an IPsec policy Policy refcount Number of interfaces on the router that use the policy Inbound ESP SPI ...

Page 1123: ...rt For a VLAN interface enter vlan vlan id Valid VLAN IDs 1 to 4094 Defaults No default behavior or values Command Modes EXEC EXEC Privilege Command History Version 9 1 0 0 Introduced on the S4810 and Z9000 Version 8 4 2 0 Introduced on the E Series TeraScale Usage Information The show crypto ipsec sa ipv6 command output displays security associations set up for OSPFv3 links in IPsec authenticatio...

Page 1124: ...mmand Fields Field Description Interface IPv6 interface Link local address IPv6 address of interface IPSecv6 policy name Name of the IPsec security policy applied to the interface inbound outbound ah Authentication policy applied to inbound or outbound traffic inbound outbound esp Encryption policy applied to inbound or outbound traffic spi Security policy index number used to identify the policy ...

Page 1125: ...s and Type 11 Grace LSAs on E Series TeraScale routers Version 7 8 1 0 Added support for C Series Usage Information The show crypto ipsec sa ipv6 command output displays security associations set up for OSPFv3 links in IPsec authentication and encryption policies on the router Related Commands show crypto ipsec policy Display the configuration of IPsec authentication and encryption policies Exampl...

Page 1126: ...er Area Rtr LSA Count 0 Group Mem LSA Count 0 Type 7 LSA count 0 Intra Area Pfx LSA Count 2 Intra Area TE LSA Count 2 Area 1 database summary Type Count Status Brd Rtr Count 1 AS Bdr Rtr Count 1 LSA count 8 Rtr LSA Count 1 Net LSA Count 0 Inter Area Pfx LSA Count 5 Inter Area Rtr LSA Count 0 Group Mem LSA Count 0 Type 7 LSA count 0 Intra Area Pfx LSA Count 2 Intra Area TE LSA Count 2 E1200 T2C2 sh...

Page 1127: ...d the slot port information For a VLAN enter the keyword vlan and a number from 1 to 4094 Defaults No default behavior or values Command Modes EXEC Command History Version 9 1 0 0 Added support for OSPFv3 on the S4810 and Z9000 Version 7 8 1 0 Added support for the C Series Version 7 4 1 0 Introduced on the E Series Example show ipv6 ospf interface command FTOS show ipv6 ospf interface gigabitethe...

Page 1128: ...tyGigE followed by the slot port information For a Port Channel interface enter the keyword port channel followed by a number C Series Z Series and S4810 Range 1 to 128 E Series Range 1 to 255 for TeraScale 1 to 512 for ExaScale For a VLAN enter the keyword vlan followed by the VLAN ID Range 1 to 4094 Defaults No default behavior or values Command Modes EXEC EXEC Privilege Command History Version ...

Page 1129: ...ular rendezvous point RP advertisement C Series E Series S Series Z Series S4810 Syntax clear ip pim rp mapping rp address Parameters rp address OPTIONAL Enter the RP address in dotted decimal format A B C D Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 8 1 ...

Page 1130: ...l to disable all debugging command Parameters bsr OPTIONAL Enter the keyword bsr to view PIM Candidate RP BSR activities events OPTIONAL Enter the keyword group to view PIM messages for a specific group group OPTIONAL Enter the keyword group to view PIM messages for a specific group packet in out OPTIONAL Enter the keyword packet to view PIM packets Enter one of the optional parameters in to view ...

Page 1131: ...filtering inbound and outbound PIM BSR messages per interface C Series E Series S Series Z Series S4810 Syntax ip pim bsr border To return to the default value use the no ip pim bsr border command Defaults Disabled Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 8 ...

Page 1132: ... Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a SONET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a VLAN enter the keyword vlan followed by a number from 1 to 4094 hash mask length OPTIONAL ...

Page 1133: ...er with the largest value assigned to an interface becomes the designated router If two interfaces contain the same designated router priority value the interface with the largest interface IP address becomes the designated router ip pim join filter Permit or deny PIM Join Prune messages on an interface using an extended IP access list This command prevents the PIM SM router from creating state ba...

Page 1134: ...cess list extended configure an access list based on IP addresses or protocols ip pim neighbor filter Configure this feature to prevent a router from participating in protocol independent multicast PIM C Series E Series S Series Z Series S4810 Syntax ip pim neighbor filter access list To remove the restriction use the no ip pim neighbor filter access list command Parameters access list Enter the n...

Page 1135: ...ntroduced on the E Series ExaScale Version 7 8 1 0 Introduced on the C Series for the port channels and the S Series ip pim register filter Use this feature to prevent a PIM source DR from sending register packets to an RP for the specified multicast source and group C Series E Series S Series Z Series S4810 Syntax ip pim register filter access list To return to the default use the no ip pim regis...

Page 1136: ...ess mask in dotted decimal format xx to assign that group address to the RP override Enter the keyword override to override the BSR updates with static RP The override takes effect immediately during enable disable NOTE This option is applicable to multicast group range Defaults Not configured Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Intr...

Page 1137: ...d by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a SONET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a VLAN enter the keyword vlan followed by a number from ...

Page 1138: ...bled globally using the ip multicast lag hashing command PIM is supported on the port channel interface Related Commands ip multicast lag hashing enables multicast globally ip pim sparse mode sg expiry timer Enable expiry timers globally for all sources or for a specific set of S G pairs defined by an access list C Series E Series S Series Z Series S4810 Syntax ip pim sparse mode sg expiry timer s...

Page 1139: ...he Bootstrap router C Series E Series S Series Z Series S4810 Syntax show ip pim bsr router Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 8 1 0 Introduced on the S Series Example E600 7 rpm0 show ip pim bsr router PIMv2 Bootstrap information This system...

Page 1140: ...Port Channel of the interfaces participating in PIM Ver Mode Displays the PIM version number and mode for each interface participating in PIM v2 PIM version 2 S PIM Sparse mode Nbr Count Displays the number of PIM neighbors discovered over this interface Query Intvl Displays the query interval for Router Query messages on that interface configured with ip pim query interval command DR Prio Display...

Page 1141: ...d Description Neighbor address Displays the IP address of the PIM neighbor Interface List the interface type with either slot port information or ID VLAN or Port Channel on which the PIM neighbor was found Uptime expires Displays the amount of time the neighbor has been up followed by the amount of time until the neighbor is removed from the multicast routing table that is until the neighbor hold ...

Page 1142: ...ivilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 12 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 8 1 0 Introduced on the S Series Example FTOS sh ip pim rp Group RP 224 2 197 115 165 87 20 4 224 2 217 146 165 87 20 4 224 3 3 3 165 87 20 4 225 1 2 1 165 87 20 4 225 1 2 2 165 87 20 4 229 1 2 1 165 87 20 4 229 1 2 2 165 87 20 4 FT...

Page 1143: ...ory Version 8 3 12 0 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 8 1 0 Introduced on the S Series Usage Information The following describes the show ip pim tib command shown in the Example below Field Description S G Displays the entry in the multicast PIM database uptime Displays the amount of time the entry has been in the PIM route table expires Display...

Page 1144: ...b PIM Multicast Routing Table Flags D Dense S Sparse C Connected L Local P Pruned R RP bit set F Register flag T SPT bit set J Join SPT M MSDP created entry A Candidate for MSDP Advertisement K Ack Pending State Timers Uptime Expires Interface state Interface next Hop State Mode 226 1 1 1 uptime 01 29 19 expires 00 00 52 RP 10 211 2 1 flags SCJ Incoming interface GigabitEthernet 4 23 RPF neighbor ...

Page 1145: ...10 211 1 2 Outgoing interface list GigabitEthernet 8 0 1145 ...

Page 1146: ...1146 ...

Page 1147: ...ced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 5 1 0 Introduced on the E Series Usage Information FTOS supports standard access lists for the SSM range You cannot use extended ACLs for configuring the SSM range If you configure an extended ACL and then used in the ip pim ssm range access list name configuration an error is reported However if you configure ip pim ssm rang...

Page 1148: ...play the non default groups added using the SSM range feature C Series E Series S Series Z Series Syntax show ip pim ssm range Defaults none Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 5 1 0 Introduced on ...

Page 1149: ...onitoring port should have no ip address and no shutdown as the only configuration FTOS permits a limited set of commands for monitoring ports display them using the command A monitoring port also may not be a member of a VLAN A monitoring port can monitor any physical port in the chassis Only one MG and one MD may be in a single port pipe A monitoring port can monitor more than one port More than...

Page 1150: ...s a monitoring session flow based enable Enable flow based monitoring E Series Syntax flow based enable To disable flow based monitoring use the no flow based enable command Defaults Disabled that is flow based monitoring is not applied Command Modes MONITOR SESSION conf mon sess session ID Command History Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 4 1 0 Introduced on the E Seri...

Page 1151: ...810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 7 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre 7 7 1 0 Introduced on the E Series Usage Information The monitor command is saved in the running configuration at Monitor Session mode level and can be restored after a chassis reload Example FTOS conf monitor session 60 FTOS conf mon sess 60 Related Com...

Page 1152: ...essions C Series E Series S Series Z Series Syntax show monitor session session ID To display monitoring information for all sessions use the show monitor session command Parameters session ID OPTIONAL Enter a session identification number The range 0 to 65535 Defaults none Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 1 1 0 Introduced on the ...

Page 1153: ... 3 11 1 Introduced on the S4810 Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 7 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 7 4 1 0 Introduced on the E Series Usage Information The monitoring command is saved in the running configuration at the Monitor Session mode level and can be restored after a chassis reload Example FTOS show running confi...

Page 1154: ...e slot port information For a 40 Gigabit Ethernet interface enter the keyword fortyGigE followed by the slot port information For a SONET interface enter the keyword sonet followed by the slot port information destination Enter the keyword destination to indicate the interface destination direction rx tx both Enter the keyword direction followed by one of the packet directional indicators rx to mo...

Page 1155: ... Introduced on the E Series Example FTOS conf mon sess 11 source gi 10 0 destination gi 10 47 direction rx FTOS conf mon sess 11 Usage Information NOTE You can only configure a SONET port can as a monitored port 1155 ...

Page 1156: ...1156 ...

Page 1157: ...miscuous ports Traffic received from an isolated port is forwarded only to promiscuous ports or trunk ports Community VLAN A community VLAN is a secondary VLAN of the primary VLAN Ports in a community VLAN can talk to each other Also all ports in a community VLAN can talk to all promiscuous ports in the primary VLAN and vice versa Devices on a community VLAN can communicate with each other using m...

Page 1158: ...dary VLAN NOTE Even after you disable ip local proxy arp use no ip local proxy arp in a secondary VLAN Layer 3 communication may happen between some secondary VLAN hosts until the address resolution protocol ARP timeout happens on those secondary VLAN hosts Defaults Layer 3 communication is disabled between secondary VLANs in a private VLAN Command Modes INTERFACE VLAN Command History Version 8 3 ...

Page 1159: ...o community or isolated even before associating it to a primary VLAN This secondary VLAN continues to work normally as a normal VLAN even though it is not associated to a primary VLAN A syslog message indicates this must not have a port in it when VLAN mode is being set Only ports and port channels configured as promiscuous host or PVLAN trunk ports as described above can be added to the PVLAN No ...

Page 1160: ...ion 7 8 1 0 Introduced on the C Series and S Series Usage Information The list of secondary VLANs can be Specified in comma delimited or hyphenated range format Specified with this command even before they have been created Amended by specifying the new secondary VLAN to be added to the list Related Commands private vlan mode sets the mode of the selected VLAN to community isolated or primary show...

Page 1161: ...Displays the type of VLAN in which the designated interface resides Interface Type Displays the PVLAN port type of the designated interface Status States whether the interface is operationally up or down Example All FTOS show interfaces private vlan Interface Vlan PVLAN Type Interface Type Status Gi 2 1 10 Primary Promiscuous Up Gi 2 2 100 Isolated Host Down Gi 2 3 10 Primary Trunk Up Gi 2 4 101 C...

Page 1162: ...ted PVLAN interface interface OPTIONAL Enter the keyword interface and an interface ID to display the PVLAN configuration of the designated interface Defaults none Command Modes EXEC EXEC Privilege Command History Version 7 8 1 0 Introduced on the C Series and S Series Usage Information Examples of all types of command output are shown below The first type of output is the result of not entering a...

Page 1163: ... Secondary Type Active Ports 10 primary Yes Gi 2 1 3 101 community Yes Gi 2 7 10 20 primary Yes Po 10 12 13 Gi 3 1 201 community No 202 community Yes Gi 3 11 12 Example Specific FTOS show vlan private vlan interface Gi 2 1 Primary Secondary Type Active Ports 10 primary Yes Gi 2 1 Usage Information If the VLAN ID is that of a primary VLAN the entire private VLAN output is displayed as shown below I...

Page 1164: ...s and S Series Usage Information The output of this command shown below displays the community and isolated VLAN IDs that are associated with each primary VLAN Example FTOS show vlan private vlan mapping Private Vlan Primary 100 Isolated 102 Community 101 Unknown 200 Related Commands private vlan mode sets the mode of the selected VLAN to community isolated or primary show interfaces private vlan ...

Page 1165: ... various PVLAN port types to port and port channel LAG interfaces is shown below Example FTOS conf FTOS conf interface GigabitEthernet 2 1 FTOS conf if gi 2 1 switchport mode private vlan promiscuous FTOS conf interface GigabitEthernet 2 2 FTOS conf if gi 2 2 switchport mode private vlan host FTOS conf interface GigabitEthernet 2 3 FTOS conf if gi 2 3 switchport mode private vlan trunk FTOS conf i...

Page 1166: ...1166 ...

Page 1167: ...description Enter a description of the PVST C Series E Series S Series Z Series S4810 Syntax description description To remove the description use the no description description command Parameters description Enter a description to identify the spanning tree 80 characters maximum Defaults none Command Modes SPANNING TREE PVST The prompt is config pvst Command History Version 8 3 11 1 Introduced on...

Page 1168: ...ystem ID to augment the Bridge ID with a VLAN ID so that PVST differentiate between BPDUs for each VLAN If for some reason on VLAN receives a BPDU meant for another VLAN PVST will then not detect a loop and both ports can remain in forwarding state C Series E Series S Series Z Series S4810 Syntax extend system id Defaults Disabled Command Modes PROTOCOL PVST Command History Version 8 3 11 1 Introd...

Page 1169: ...st enter SPANNING TREE mode on the switch protocol spanning tree pvst Enter the PVST mode to enable PVST on a device C Series E Series S Series Z Series S4810 Syntax protocol spanning tree pvst To disable PVST use the disable command Defaults none Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced ...

Page 1170: ...rface keywords along with the slot port information For a Fast Ethernet interface enter the keyword FastEthernet followed by the slot port information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Port Channel interface enter the keyword port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E...

Page 1171: ...oop or BPDU guard Example Brief FTOS show spanning tree pvst vlan 3 brief VLAN 3 Executing IEEE compatible Spanning Tree Protocol Root ID Priority 4096 Address 0001 e801 6aa8 Root Bridge hello time 2 max age 20 forward delay 15 Bridge ID Priority 16384 Address 0001 e805 e306 Configured hello time 2 max age 20 forward delay 15 Interface Designated Name PortID Prio Cost Sts Cost Bridge ID PortID Gi ...

Page 1172: ...0 The port is not in the Edge port mode Port 146 GigabitEthernet 1 16 is designated Forwarding Port path cost 20000 Port priority 128 Port Identifier 128 146 Designated root has priority 4096 address 0001 e805 e3 06 Designated bridge has priority 4096 address 0001 e805 e3 06 Designated port id is 128 146 designated path cost 0 Number of transitions to forwarding state 1 BPDU sent 1578 received 0 T...

Page 1173: ...e port with optional bridge port data unit BPDU guard port disablement if an error condition occurs port priority or cost for a VLAN range loop guard or root guard C Series E Series S Series Z Series S4810 Syntax spanning tree pvst edge port bpduguard shutdown on violation err disable vlan vlan range cost number priority value loopguard rootguard Parameters edge port Enter the keywords edge port t...

Page 1174: ...n a PVST port or port channel interface rootguard C S and E Series TeraScale only Enter the keyword rootguard to enable root guard on a PVST port or port channel interface Defaults Not configured Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 4 2 1 Introduced the loopguard and rootguard options on the E Series TeraScale C Series and S Series Version 8 3 ...

Page 1175: ... in a Blocking state and prevents traffic from flowing through it For example when Portfast BPDU guard and loop guard are both configured If a BPDU is received from a remote device BPDU guard places the port in an Err Disabled Blocking state and no traffic is forwarded on the port If no BPDU is received from a remote device loop guard places the port in a Loop Inconsistent Blocking state and no tr...

Page 1176: ...c flush standard Enable the MAC address flushing after receiving every topology change notification C Series E Series S Series Z Series S4810 Syntax tc flush standard To disable use the no tc flush standard command Defaults Disabled Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series...

Page 1177: ...oduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 2 1 1 Introduced Related Commands vlan forward delay changes the time interval before FTOS transitions to the Forwarding state vlan hello time change the time interval between BPDUs vlan max age changes the time interval before PVST refreshes show spanning tree pvst displays the PVST...

Page 1178: ...n max age changes the time interval before PVST refreshes show spanning tree pvst displays the PVST configuration vlan hello time Set the time interval between generation of PVST 7 BPDUs C Series E Series S Series Z Series S4810 Syntax vlan vlan range hello time seconds To return to the default value use the no vlan hello time command Parameters vlan vlan range Enter the keyword vlan followed by t...

Page 1179: ...vlan range Enter the keyword vlan followed by the VLAN number s The range is 1 to 4094 max age seconds Enter the keywords max age followed by the time interval in seconds that FTOS waits before refreshing configuration information The range is 6 to 40 seconds The default is 20 seconds Defaults 20 seconds Command Modes CONFIGURATION conf pvst Command History Version 8 3 11 1 Introduced on the Z9000...

Page 1180: ...1180 ...

Page 1181: ...the fields from MAC destination address to the CRC are used for forwarding and are included in these rate metering calculations You can optionally include overhead fields in rate metering calculations by enabling QoS Rate Adjustment C Series E Series S Series Z Series S4810 Syntax qos rate adjustment overhead bytes Parameters overhead bytes Include a specified number of bytes of packet overhead to...

Page 1182: ... interface C Series E Series S Series Z Series S4810 Syntax dot1p priority priority value To delete the IEEE 802 1p configuration on the interface use the no dot1p priority command Parameters priority value Enter a value from 0 to 7 dot1p Queue Number 0 2 1 0 2 1 3 3 4 4 5 5 6 6 7 7 For the C Series and S Series enter a value 0 2 4 or 6 dot1p Queue Number 0 1 1 0 2 0 3 1 4 2 5 2 6 3 7 3 Defaults n...

Page 1183: ...itted rate burst KB peak kbps peak rate burst KB vlan vlan id Parameters kbps Enter the keyword kbps to specify the rate limit in Kilobits per second Kbps On the E Series Force10 recommends using a value greater than or equal to 512 as lower values do not yield accurate results The range is 0 to 10000000 The default granularity is Megabits per second Mbps committed rate Enter the bandwidth in Mbps...

Page 1184: ...ure the rate police command After the rate police command is configured return to the other interfaces and re apply the rate limit configuration rate police Police the incoming traffic rate on the selected interface C Series E Series S Series Z Series S4810 Syntax rate police kbps committed rate burst KB peak kbps peak rate burst KB vlan vlan id Parameters kbps Enter the keyword kbps to specify th...

Page 1185: ...h physical interface you can configure three rate police commands specifying different VLANS E Series On one interface you can configure the rate limit or rate police command for a VLAN or you can configure the rate limit or the rate police command for the interface For each physical interface you can configure six rate police commands specifying different VLANS After configuring VLANs in the rate...

Page 1186: ...ries E Series and S Series Version 7 6 1 0 Introduced on the S Series and C Series pre Version 6 1 1 1 Introduced on the E Series Usage Information On 40 port 10G linecards if the traffic is shaped between 64 and 1000 Kbs for some values the shaped rate is much less than the value configured Do not use values in this range for 10G interfaces Related Commands rate shape shapes traffic output as par...

Page 1187: ... entry supersedes an INTERFACE mode entries C Series E Series S Series Z Series S4810 Syntax service class dynamic dot1p To return to the default setting use the no service class dynamic dot1p command Defaults All dot1p traffic is mapped to Queue 0 unless you enable the service class dynamic dot1p command The default mapping is as follows dot1p E Series Queue ID C Series Queue ID S Series Queue ID...

Page 1188: ... may apply this queuing strategy to all interfaces by entering this command from CONFIGURATION mode All dot1p traffic is mapped to Queue 0 unless you enble the service class dynamic dot1p command on an interface or globally Layer 2 or Layer 3 service policies supercede dot1p service classes show interfaces rate Display information of either rate limiting or rate policing on the interface E Series ...

Page 1189: ...itor 2 Traffic coming to class 2 Traffic monitor 3 Traffic coming to class 3 Traffic monitor 4 Traffic coming to class 4 Traffic monitor 5 Traffic coming to class 5 Traffic monitor 6 Traffic coming to class 6 Traffic monitor 7 Traffic coming to class 7 Total yellow Total number of packets that have exceeded the configured committed rate Total red Total number of packets that have exceeded the conf...

Page 1190: ...coming to class 2 Traffic monitor 3 Traffic coming to class 3 Traffic monitor 4 Traffic coming to class 4 Traffic monitor 5 Traffic coming to class 5 Traffic monitor 6 Traffic coming to class 6 Traffic monitor 7 Traffic coming to class 7 Total yellow Total number of packets that have exceeded the configured committed rate Total red Total number of packets that have exceeded the configured peak rat...

Page 1191: ...1 Introduced on the E Series Usage Information After you configure a unicast queue as strict priority that particular queue on the entire chassis is treated as a strict priority queue Traffic for a strict priority is scheduled before any other queues are serviced For example if you send 100 line rate traffic over the SP queue it starves all other queues on the ports on which this traffic is flowin...

Page 1192: ... unit of bandwidth percentage is 1 A bandwidth percentage of 0 is allowed and disables the scheduling of that class If the sum of the bandwidth percentages given to all eight classes exceeds 100 the bandwidth percentage automatically scales down to 100 Related Commands qos policy output creates a QoS output policy bandwidth weight Assign a priority weight to a queue C Series S Series Syntax bandwi...

Page 1193: ...eters match all Determines how packets are evaluated when multiple match criteria exist Enter the keywords match all to determine that the packets must meet all the match criteria in order to be considered a member of the class match any Determines how packets are evaluated when multiple match criteria exist Enter the keywords match any to determine that the packets must meet at least one of the m...

Page 1194: ...on for a class map based on the contents of the designated MAC ACL match mac dot1p configures a match criterion for a class map based on a dot1p value match mac vlan configures a match criterion for a class map based on VLAN ID service queue assigns a class map and QoS policy to different queues show qos class map views the current class map information clear qos statistics Clears Matched Packets ...

Page 1195: ...son and do not reflect a matching QoS entry in the CAM this command clears the matched byte and packet counters only Related Commands show qos statistics displays the QoS statistics description Add a description to the selected policy map or QoS policy C Series E Series S Series Z Series S4810 Syntax description description To remove the description use the no description description command Param...

Page 1196: ...atched traffic is marked with the DSCP value The range is 0 to 63 Defaults none Command Modes CLASS MAP CONFIGURATION config class map Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 7 1 0 Added the DSCP Marking option support on the S Series Version 7 6 1 0 Introduced on the S Series Version 7 5 1 ...

Page 1197: ... not supported on S Series Defaults none Command Modes CLASS MAP CONFIGURATION config class map Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 7 1 0 Added the keyword multicast Added the DSCP Marking option support on the S Series Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Added support for the D...

Page 1198: ...c NOTE This option is not supported on the C Series or S Series set ip dscp value OPTIONAL Enter the keywords set ip dscp followed by the IP DSCP value The matched traffic is marked with the DSCP value The range is 0 to 63 Defaults none Command Modes CLASS MAP CONFIGURATION config class map Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 7...

Page 1199: ...lass map based on the contents of the designated MAC ACL C Series E Series S Series Z Series S4810 Syntax match mac access group mac acl name Parameters mac acl name Enter a MAC ACL name Its contents is used as the match criteria in the class map Defaults none Command Modes CLASS MAP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Av...

Page 1200: ... for the DSCP Marking option pre Version 7 4 1 0 Introduced Usage Information You must enter the class map command in order to access this command After the class map is identified you can configure the match criteria Related Commands class map identifies the class map match mac vlan Configure a match criterion for a class map based on VLAN ID C Series E Series S Series Z Series S4810 Syntax match...

Page 1201: ...the S4810 Version 8 2 1 0 Policy name character limit increased from 16 to 32 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series Usage Information C Series and S Series Aggregate input output QoS policy applies to all the port ingoing outgoing traffic Aggregate input output QoS policy can coexist with per queue input...

Page 1202: ... scheduling and queuing configuration weighted random early detection WRED and Bandwidth 4 If the aggregate output QoS policy and per queue output QoS policy coexist the aggregate output QoS policy preempts a per queue output QoS policy on egress traffic conditioning rate limit In other words if a rate limit configuration exists in the aggregate output QoS policy the rate limit configurations in p...

Page 1203: ...cy input applies an input policy map to the selected interface policy map output Create an output policy map C Series E Series S Series Z Series S4810 Syntax policy map output policy map name To remove a policy map use the no policy map output policy map name command Parameters policy map name Enter the name for the policy map in character format 16 characters maximum Defaults none Command Modes C...

Page 1204: ...and History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Policy name character limit increased from 16 to 32 Version 7 6 1 0 Introduced on the C Series and S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced on the E Series Usage Information Use this command to specify the name of the input QoS policy After the inpu...

Page 1205: ... on the C Series and S Series pre Version 6 1 1 1 Introduced on the E Series Usage Information Use this command to specify the name of the output QoS policy After the output policy is specified rate limit bandwidth percentage and WRED can be defined This command enables Qos Policy Output Configuration mode conf qos policy out When changing a service queue configuration in a QoS policy map all QoS ...

Page 1206: ...ulticast linecard slot number port set number all wred profile name multicast bandwidth percentage command Parameters linecard number Enter the keyword linecard followed by the line card slot number For the E Series the range is 0 to 13 on a E1200 0 to 6 on a E600 E600i and 0 to 5 on a E300 port set number Enter the keywords port set followed by the line card s port pipe The range is 0 or 1 all En...

Page 1207: ...ast bandwidth option works only if the total unicast bandwidth is more than the multicast bandwidth If strict priority is applied along with multicast bandwidth the effect of strict priority is on all ports where unicast and multicast bandwidth are applied When multicast bandwidth is assigned along with unicast bandwidth first multicast bandwidth is reserved for that port then the remaining unicas...

Page 1208: ... multicast bandwidth option is not supported on queue ingress If you attempt to use the multicast bandwidth option the following reject error message is generated Error Bandwidth percent is not allowed for ingress multicast Related Commands show queue statistics ingress displays the ingress queue statistics rate limit Specify the rate limit functionality on outgoing traffic as part of the selected...

Page 1209: ... S Series Z Series S4810 Syntax rate police kbps committed rate burst KB peak kbps peak rate burst KB Parameters kbps Enter the keyword kbps to specify the rate limit in Kilobits per second Kbps On C Series and S Series make the following value a multiple of 64 On the E Series Force10 recommends using a value greater than or equal to 512 as lower values does not yield accurate results The range is...

Page 1210: ...eyword kbps to specify the rate limit in Kilobits per second Kbps On C Series and S Series make the following value a multiple of 64 The range is 0 to 10000000 The default granularity is Megabits per second Mbps rate Enter the outgoing rate in multiples of 10 Mbps The range is 10 to 10000 burst KB OPTIONAL Enter the burst size in KB The range is 0 to 10000 The default is 10 Defaults Burst size is ...

Page 1211: ...he interface use the no service policy input policy map name layer2 command Parameters policy map name Enter the name for the policy map in character format 16 characters maximum You can identify an existing policy map or name one that does not yet exist layer2 OPTIONAL Enter the keyword layer2 to specify a Layer 2 Class Map The default is Layer 3 Defaults Layer 3 Command Modes INTERFACE Command H...

Page 1212: ... To remove the output policy map from the interface use the no service policy output policy map name command Parameters policy map name Enter the name for the policy map in character format 16 characters maximum You can identify an existing policy map or name one that does not yet exist Defaults none Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 I...

Page 1213: ... OPTIONAL Enter the keywords qos policy followed by the QoS policy name assigned to the queue in text format 16 characters maximum This specifies the input QoS policy assigned to the queue under policy map input and output QoS policy under policy map output context Defaults none Command Modes CONFIGURATION conf policy map in and conf policy map out Command History Version 8 3 11 1 Introduced on th...

Page 1214: ...on the S4810 Version 8 2 1 0 Added mac dot1p on the C Series and S Series Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 7 4 1 0 E Series Only Added support for mac dot1p pre Version 6 1 1 1 Introduced on the E Series Usage Information C Series and S Series After the IP DSCP bit is set other QoS services can then operate on the bit settings E Series A...

Page 1215: ...TenGigabitEthernet followed by the slot port information summary OPTIONAL Enter the keyword summary to display only the total number of CAM entries Defaults none Command Modes EXEC Command History Version 7 4 1 0 Introduced on the E Series Example Interface FTOS show cam layer2 qos interface gigabitethernet 2 0 Cam Port Dot1p Proto SrcMac SrcMask DstMac DstMask Dot1p DSCP Queue Index Marking Marki...

Page 1216: ...o 5 on a E300 port set number Enter the keywords port set followed by the line card s port pipe The range is 0 or 1 interface interface Enter the keyword interface followed by one of the keywords below and slot port or number information For a Fast Ethernet interface enter the keyword FastEthernet followed by the slot port information For a Gigabit Ethernet interface enter the keyword GigabitEther...

Page 1217: ...am layer3 qos linecard 13 port set 0 Cam Port Dscp Proto Tcp Src Dst SrcIp DstIp DSCP Queue Index Flag Port Port Marking 24511 1 0 TCP 0x5 2 5 1 0 0 1 24 2 0 0 2 24 TRUST DSCP 24512 1 0 UDP 0x2 2 5 8 0 0 8 24 8 0 0 8 24 23 3 FTOS Example Without Trust FTOS sh cam layer3 qos interface gigabitethernet 2 1 Cam Port Dscp Proto Tcp Src Dst SrcIp DstIp DSCP Queue Index Flag Port Port Marking 23488 1 56 ...

Page 1218: ...he C Series pre Version 6 1 1 1 Introduced on the E Series Example FTOS show qos class map Class map match any CM Match ip access group ACL Related Commands class map identifies the class map show qos policy map View the QoS policy map information C Series E Series S Series Z Series S4810 Syntax show qos policy map summary interface detail interface Parameters summary interface To view a policy ma...

Page 1219: ...gabitEthernet followed by the slot port information For a SONET interface enter the keyword sonet followed by the slot port information For a Ten Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information Defaults none Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version...

Page 1220: ...ew the input QoS policy map details C Series E Series S Series Z Series S4810 Syntax show qos policy map input policy map name class class map name qos policy input qos policy name Parameters policy map name Enter the policy map name class class map name Enter the keyword class followed by the class map name qos policy input qos policy name Enter the keyword qos policy input followed by the QoS po...

Page 1221: ...ap1 Trust ipv6 diffserv Queue Class map name Qos policy name 0 c0 q0 1 c1 q1 2 c2 q2 3 c3 q3 4 c4 q4 5 c5 6 c6 q6 7 c7 q7 FTOS show qos policy map output View the output QoS policy map details C Series E Series S Series Z Series S4810 Syntax show qos policy map output policy map name qos policy output qos policy name Parameters policy map name Enter the policy map name qos policy output qos policy...

Page 1222: ...olicy details C Series E Series S Series Z Series S4810 Syntax show qos qos policy input qos policy name Parameters qos policy name Enter the QoS policy name Defaults none Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version...

Page 1223: ... Series Example FTOS show qos qos policy output Qos policy output qosOut Rate limit 50 50 peak 50 50 Wred yellow 1 Wred green 1 show qos statistics View QoS statistics C Series E Series S Series Z Series S4810 Syntax show qos statistics wred profile interface interface Parameters wred profile interface Platform E Series Only Enter the keywords wred profile and optionally one of the following keywo...

Page 1224: ...he slot port information For a Ten Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information Defaults none Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 7 1 1 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 1 Introduced o...

Page 1225: ...ts Matched Bytes 0 0 0 0 1 0 0 0 2 0 0 0 3 0 0 0 4 0 0 0 5 0 0 0 6 0 0 0 7 0 0 0 Interface Gi 0 1 Queue Queued Bytes Matched Pkts Matched Bytes 0 0 0 0 1 0 0 0 2 0 0 0 3 0 0 0 4 0 0 0 5 0 0 0 6 0 0 0 7 0 0 0 Usage Information The following describes the show qos statistics command Example below Field ED and EE Description Queue Queue Number Queued Bytes Snapshot of the byte count in that queue Mat...

Page 1226: ... bytes that matched the class map criteria NOTE When you configure trust matched byte counters are not incremented in this field Dropped Pkts The total of the number of packets dropped for green yellow and out of profile Usage Information The following describes the show qos statistics command Example below Field EF Description Queue Queue Number Queued Bytes Snapshot of the byte count in that que...

Page 1227: ...5 Out of Profile 0 7 Green WRED1 50474 Yellow WRED2 49522 Out of Profile 0 FTOS Usage Information The following describes the show qos statistics command Example below Field ED EE EF Description Queue Queue Number Drop statistic Drop statistics for green yellow and out of profile packets WRED name WRED profile name Dropped Pkts The number of packets dropped for green yellow and out of profile Rela...

Page 1228: ...Series E Series S Series Z Series S4810 Syntax test cam usage service policy input policy map linecard number port set portpipe number all Parameters policy map Enter the policy map name linecard number OPTIONAL Enter the keyword linecard followed by the line card slot number port set portpipe number Enter the keywords port set followed by the line card s port pipe number The range is 0 or 1 linec...

Page 1229: ...column free entries from the default rules space can not be used as a policy map for the classification rules Estimated CAM per Port Indicates the number of free CAM entries required for the classification rules to apply the input policy map on a single interface NOTE The CAM entries for the default rule are not included in this column a CAM entry for the default rule is always dedicated to a port...

Page 1230: ...hold number for the WRED profile The range is 1024 to 77824 KB Defaults none Command Modes CONFIGURATION config wred Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 8 0 Introduced on the S4810 pre Version 6 1 1 1 Introduced on the E Series Usage Information Use this command to configure the minimum and maximum threshold values for user defined profiles Additionally use this co...

Page 1231: ...e as a secondary option in case no match occurs against the configured class maps ipv6 diffserv On E Series only enter the keyword ipv6 diffserv to specify trust configuration of IPv6 DSCP Defaults none Command Modes CONFIGURATION conf policy map in Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 3 1 0 Added fallback to the E Series Versio...

Page 1232: ...7 011XXX AF3 Flash 3 1 16 31 010XXX AF2 Immediate 2 1 16 31 001XXX AF1 Priority 1 0 0 15 000XXX BE Best Effort Best Effort 0 0 0 15 wred Designate the WRED profile to yellow or green traffic E Series Z Series S4810 Syntax wred yellow green profile name To remove the WRED drop precedence use the no wred yellow green profile name command Parameters yellow green Enter the keyword yellow for yellow tr...

Page 1233: ...aults none Command Modes CONFIGURATION conf qos policy out Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Usage Information When you enable wred ecn and the number of packets in the queue is below the minimum threshold packets are transmitted per the usual WRED treatment When you enable wred ecn and the number of packets in the queue is between the...

Page 1234: ...mat 16 character maximum Or use one of the pre defined WRED profile names You can configure up to 26 WRED profiles plus the five pre defined profiles for a total of 31 WRED profiles Pre defined Profiles wred_drop wred ge_y wred_ge_g wred_teng_y wred_teng_g Defaults The five pre defined WRED profiles When you configure a new profile the minimum and maximum threshold defaults to predefined wred_ge_g...

Page 1235: ...ation of RIP is based on IETF RFCs 2453 and RFC 1058 For more information about configuring RIP refer to the FTOS Configuration Guide auto summary Restore the default behavior of automatic summarization of subnet routes into network routes This command applies only to RIP version 2 C Series E Series S Series Z Series S4810 Syntax auto summary To send sub prefix routing information use the no auto ...

Page 1236: ...e events interface packet interface trigger To turn off debugging output use the no debug ip rip command Parameters interface OPTIONAL Enter the interface type and ID as one of the following For a Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Port Channel interface enter the keywords port channel followed by a number For the C Series and S...

Page 1237: ... to debug only RIP trigger extensions Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 5 1 0 Added support for 4 port 40G line cards on ExaScale Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 6 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series default information originate Gener...

Page 1238: ... present in the switch routing table for the default information originate command to take effect default metric Change the default metric for routes Use this command with the redistribute command to ensure that all redistributed routes use the same metric value C Series E Series S Series Z Series S4810 Syntax default metric number To return the default metric to the original values use the no def...

Page 1239: ...characters maximum Defaults none Command Modes ROUTER RIP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 6 1 0 Introduced on the C Series pre Version 7 7 1 0 Introduced on the E Series Related Commands router rip enters ROUTER mode on the switch distance Assign a weight for prioritization to all ...

Page 1240: ...2 1 1 Introduced on the E Series Related Commands default metric assigns one distance metric to all routes learned using the redistribute command distribute list in Configure a filter for incoming routing updates C Series E Series S Series Z Series S4810 Syntax distribute list prefix list name in interface To delete the filter use the no distribute list prefix list name in command Parameters prefi...

Page 1241: ...ries Version 7 6 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series Related Commands ip prefix list enters PREFIX LIST mode and configures a prefix list distribute list out Configure a filter for outgoing routing updates C Series E Series S Series Z Series S4810 Syntax distribute list prefix list name out interface bgp connected isis ospf static To delete the filter use ...

Page 1242: ...This option is only available on E Series ospf OPTIONAL Enter the keyword ospf to filter all OSPF routes static OPTIONAL Enter the keyword static to filter manually configured routes Defaults Not configured Command Modes ROUTER RIP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 5 1 0 Added support for 4 port 40G line cards on ExaScale Version 8 3 7 0 Introduced on the S4810 Ver...

Page 1243: ...x ip rip receive version 1 2 To return to the default use the no ip rip receive version command Parameters 1 OPTIONAL Enter the number 1 for RIP version 1 2 OPTIONAL Enter the number 2 for RIP version 2 Defaults RIPv1 and RIPv2 Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version ...

Page 1244: ... 0 Introduced on the S Series Version 7 6 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series Usage Information To enable the interface to send both version of RIP packets use the ip rip send version 1 2 command Related Commands ip rip receive version sets the RIP version for the interface to receive traffic version sets the RIP version to be used for the switch software ...

Page 1245: ...e paths C Series E Series S Series Z Series S4810 Syntax maximum paths number To return to the default values use the no maximum paths commands Parameters number Enter the number of paths The range is 1 to 16 The default is 4 paths Defaults 4 Command Modes ROUTER RIP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S...

Page 1246: ...re Version 6 2 1 1 Introduced on the E Series Usage Information When a neighbor router is identified unicast data exchanges occur Multiple neighbor routers are possible Use the passive interface command in conjunction with the neighbor command to ensure that only specific interfaces are receiving and sending data Related Commands passive interface sets the interface to only listen to RIP broadcast...

Page 1247: ...fset interface command Parameters prefix list name Enter the name of an established Prefix list to determine which incoming routes will be modified offset Enter a number from zero 0 to 16 to be applied to the incoming route metric matching the access list specified If you set an offset value to zero 0 no action is taken interface OPTIONAL Enter the following keywords and slot port or number inform...

Page 1248: ...he offset metric is applied to an interface that value takes precedence over an offset value that is not extended to an interface Related Commands ip prefix list enters PREFIX LIST mode and configure a prefix list output delay Set the interpacket delay of successive packets to the same neighbor C Series E Series S Series Z Series S4810 Syntax output delay delay To return to the switch software def...

Page 1249: ...y a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a SONET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a 40 Gigabit Ethernet interface enter the keyword fortyGigE...

Page 1250: ...static command Parameters connected Enter the keyword connected to specify that information from active routes on interfaces is redistributed static Enter the keyword static to specify that information from static routes is redistributed Defaults Not configured Command Modes ROUTER RIP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 ...

Page 1251: ... Level 2 routes level 2 OPTIONAL Enter the keywords level 2 to redistribute only IS IS Level 2 routes metric metric value OPTIONAL Enter the keyword metric followed by a number as the metric value The range is 0 to 16 route map map name OPTIONAL Enter the keywords route map followed by the name of a configured route map Defaults Not configured Command Modes ROUTER RIP Command History Version 8 3 7...

Page 1252: ...L Enter the keyword metric followed by a number as the metric value The range is 0 to 16 route map map name OPTIONAL Enter the keywords route map followed by the name of a configured route map Defaults Not configured Command Modes ROUTER RIP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 6 1 0 In...

Page 1253: ...e show config Display the changes you made to the RIP configuration Default values are not shown C Series E Series S Series Z Series S4810 Syntax show config Command Modes ROUTER RIP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 6 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on ...

Page 1254: ...on 6 2 1 1 Introduced on the E Series Usage Information The following describes the show ip rip database command shown in the Example below Field Description Total number of routes in RIP database Displays the number of RIP routes stored in the RIP database 100 10 10 0 24 directly connected Lists the route s directly connected 150 100 0 0 redistributed Lists the routes learned through redistributi...

Page 1255: ...RIP configuration C Series E Series S Series Z Series S4810 Syntax show running config rip Defaults none Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 7 1 0 Introduced on the C Series Version 7 6 1 0 Introduced on the E Series Example show running config rip router r...

Page 1256: ... marked as unreachable but still sending RIP packets The holddown value should be at least three times the update timer value The range is zero 0 to 4294967295 The default is 180 seconds flush Enter the number of seconds to specify the time interval during which the route is advertised as unreachable When this interval expires the route is flushed from the routing table The flush value should be g...

Page 1257: ...n 2 Defaults The FTOS sends RIPv1 and receives RIPv1 and RIPv2 Command Modes ROUTER RIP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the S Series Version 7 6 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series Related Commands ip rip receive version sets the RIP version to be received on the...

Page 1258: ...1258 ...

Page 1259: ...3273 64bits Alarm Table RFC 2819 High Capacity Alarm Table 64bits RFC 3434 64bits Event Table RFC 2819 Log Table RFC 2819 FTOS RMON does not support the following statistics etherStatsCollisions etherHistoryCollisions etherHistoryUtilization NOTE Only SNMP GET GETNEXT access is supported Configure RMON using the RMON commands Collected data is lost during a chassis reboot rmon alarm Set an alarm o...

Page 1260: ...alue is the same as the alarmRisingEventIndex or alarmTable of the RMON MIB If there is no corresponding rising threshold event the value is zero falling threshold value event number Enter the keywords falling threshold followed by the value 32 bit the falling threshold alarm is either triggered or reset Then enter the event number to trigger when the falling threshold exceeds its limit This value...

Page 1261: ... the owner name to record the owner of the RMON group of statistics buckets number OPTIONAL Enter the keyword buckets followed the number of buckets for the RMON collection history group of statistics The bucket range is 1 to 1000 The default is 50 interval seconds OPTIONAL Enter the keyword interval followed the number of seconds in each polling cycle The range is 5 to 3600 seconds The default is...

Page 1262: ... on the C Series Version 6 1 1 0 Introduced on the E Series rmon event Add an event in the RMON event table C Series E Series S Series Z Series S4810 Syntax rmon event number log trap community description string owner name To disable RMON on an interface use the no rmon event number log trap community description string command Parameters number Assign an event number in integer format from 1 to ...

Page 1263: ...n the RMON alarm table variable The MIB object to monitor The variable must be in the SNMP OID format for example 1 3 6 1 2 1 1 3 The object type must be a 64 bit integer interval Time in seconds the alarm monitors the MIB variables this is the alarmSampleType in the RMON alarm table The range is 5 to 3600 seconds delta Enter the keyword delta to test the change between MIB variables This is the a...

Page 1264: ...TION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 1 1 0 Introduced on the E Series show rmon Display the RMON running status including the memory usage C Series E Series S Series Z Series S4810 Syntax show rmon Defaults none Command Modes EXEC Command ...

Page 1265: ...mand History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 1 1 0 Introduced on the E Series Example Index FTOS show rmon alarm 1 RMON alarm entry 1 sample Interval 5 object 1 3 6 1 2 1 1 3 sample type absolute value value 255161 alarm type rising or falling alarm risin...

Page 1266: ...ndex brief Parameters index OPTIONAL Enter the table index number to display just that entry brief OPTIONAL Enter the keyword brief to display the RMON event table in an easy to read format Defaults none Command Modes EXEC Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C S...

Page 1267: ...yntax show rmon hc alarm index brief Parameters index OPTIONAL Enter the table index number to display just that entry brief OPTIONAL Enter the keyword brief to display the RMON High Capacity alarm table in an easy to read format Defaults none Command Modes EXEC Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Seri...

Page 1268: ...D 1 1 3 6 1 2 1 1 3 2 1 3 6 1 2 1 1 3 3 1 3 6 1 2 1 1 3 4 1 3 6 1 2 1 1 3 5 1 3 6 1 2 1 1 3 FTOS show rmon history Display the contents of the RMON Ethernet history table C Series E Series S Series Z Series S4810 Syntax show rmon history index brief Parameters index OPTIONAL Enter the table index number to display just that entry brief OPTIONAL Enter the keyword brief to display the RMON Ethernet ...

Page 1269: ...ernet 3 1 FTOS show rmon log Display the contents of the RMON log table C Series E Series S Series Z Series S4810 Syntax show rmon log index brief Parameters index OPTIONAL Enter the table index number to display just that entry brief OPTIONAL Enter the keyword brief to display the RMON log table in an easy to read format Defaults none Command Modes EXEC Command History Version 8 3 11 1 Introduced...

Page 1270: ...ONAL Enter the keyword brief to display the RMON Ethernet statistics table in an easy to read format Defaults none Command Modes EXEC Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 1 1 0 Introduced on the E Series Example Index FTOS show rmon statistics ...

Page 1271: ...255 bytes packets overflow 0 HC 128 255 bytes packets 0 HC 256 511 bytes packets overflow 0 HC 256 511 bytes packets 0 HC 512 1023 bytes packets overflow 0 HC 512 1023 bytes packets 0 HC 1024 1518 bytes packets overflow 0 HC 1024 1518 bytes packets 0 FTOS Example Brief FTOS show rmon statistics br index ifIndex interface 6001 100974631 GigabitEthernet 2 0 6002 100974631 GigabitEthernet 2 0 6003 10...

Page 1272: ...1272 ...

Page 1273: ... for RSTP C Series E Series S Series Z Series S4810 Syntax bridge priority priority value To return to the default value use the no bridge priority command Parameters priority value Enter a number as the bridge priority value in increments of 4096 The range is 0 to 61440 The default is 32768 Defaults 32768 Command Modes CONFIGURATION RSTP conf rstp Command History Version 8 3 11 1 Introduced on th...

Page 1274: ...e slot port information For a Port Channel interface enter the keywords port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a SONET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet follow...

Page 1275: ...iption Enter a description to identify the rapid spanning tree 80 characters maximum Defaults none Command Modes SPANNING TREE The prompt is config rstp Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 pre 7 7 1 0 Introduced Related Commands protocol spanning tree rstp enters SPANNING TREE mode on the switch disable Disable RSTP globally on the syste...

Page 1276: ... Syntax forward delay seconds To return to the default setting use the no forward delay command Parameters seconds Enter the number of seconds that FTOS waits before transitioning RSTP to the forwarding state The range is 4 to 30 The default is 15 seconds Defaults 15 seconds Command Modes CONFIGURATION RSTP conf rstp Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduc...

Page 1277: ...Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 2 1 1 Introduced on the E Series Usage Information The hello time is encoded in BPDUs in increments of 1 256ths of a second The standard minimum hello time in seconds is 1 second which is encoded as 256 Millisecond hello times are encoded using values less than 256 the millisecond hello time equals x 10...

Page 1278: ...nsitions to the Forwarding state hello time changes the time interval between BPDUs protocol spanning tree rstp Enter RSTP mode to configure RSTP C Series E Series S Series Z Series S4810 Syntax protocol spanning tree rstp To exit RSTP mode use the exit command Defaults Not configured Command Modes CONFIGURATION RSTP conf rstp Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 ...

Page 1279: ...ries Version 7 5 1 0 Introduced on the C Series Version 6 2 1 1 Introduced on the E Series Example FTOS conf rstp show config protocol spanning tree rstp no disable bridge priority 16384 show spanning tree rstp Display the RSTP configuration C Series E Series S Series Z Series S4810 Syntax show spanning tree rstp brief guard Parameters brief OPTIONAL Enter the keyword brief to view a synopsis of t...

Page 1280: ...EE compatible Spanning Tree Protocol Root ID Priority 8192 Address 0001 e805 e306 Root Bridge hello time 4 max age 20 forward delay 15 Bridge ID Priority 16384 Address 0001 e801 6aa8 Configured hello time 2 max age 20 forward delay 15 Interface Designated Name PortID Prio Cost Sts Cost Bridge ID PortID Gi 4 0 128 418 128 20000 FWD 20000 16384 0001 e801 6aa8 128 418 Gi 4 1 128 419 128 20000 FWD 200...

Page 1281: ...0 is LBK_INC Discarding Port path cost 20000 Port priority 128 Port Identifier 128 257 Designated root has priority 32768 address 0001 e801 6aa8 Designated bridge has priority 32768 address 0001 e801 6aa8 Designated port id is 128 257 designated path cost 0 Number of transitions to forwarding state 1 BPDU sent 27 received 9 The port is not in the Edge port mode Example Guard FTOS show spanning tre...

Page 1282: ...Enter keyword priority followed by a value in increments of 16 as the priority The range is 0 to 240 The default is 128 loopguard C S and E Series TeraScale only Enter the keyword loopguard to enable loop guard on an RSTP port or port channel interface rootguard C S and E Series TeraScale only Enter the keyword rootguard to enable root guard on an RSTP port or port channel interface Defaults Not c...

Page 1283: ...locking state and prevents traffic from flowing through it For example when Portfast BPDU guard and loop guard are both configured If a BPDU is received from a remote device BPDU guard places the port in an Err Disabled Blocking state and no traffic is forwarded on the port If no BPDU is received from a remote device loop guard places the port in a Loop Inconsistent Blocking state and no traffic i...

Page 1284: ...timized flush mechanism for RSTP This helps in flushing MAC addresses only when necessary and less often allowing for faster convergence during topology changes However if a standards based flush mechanism is needed you can turn on this knob command to enable flushing MAC addresses after receiving every topology change notification 1284 ...

Page 1285: ...ccounting Commands AAA Accounting enables tracking of services that users are accessing and the amount of network resources being consumed by those services When you enable AAA Accounting the network server reports user activity to the TACACS security server in the form of accounting records Each accounting record is comprised of accounting AV pairs and is stored on the access control server As wi...

Page 1286: ...nly Enter the keywords stop only to instruct the TACACS security server to send a stop record accounting notice at the end of the requested user process tacacs Enter the keyword tacacs to use TACACS data for accounting FTOS currently only supports TACACS accounting Defaults none Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S...

Page 1287: ...C Series Version 6 3 1 0 Introduced on the E Series Usage Information FTOS issues accounting records for all users on the system including users whose username string due to protocol translation is NULL For example a user who comes on line with the aaa authentication login method list none command is applied Use the aaa accounting suppress command to prevent the accounting records from being gener...

Page 1288: ...3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 3 1 0 Introduced on the E Series Usage Information This command steps through all active sessions and then displays the accounting records for the active account functions Example FTOS show accounting Active accounted actions on tty2...

Page 1289: ...the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 3 1 0 Introduced on the E Series Related Commands aaa authorization commands sets the parameters that restrict or permit a user s access to EXEC and CONFIGURATION level commands aaa authorization exec sets the parameters that restrict or permit a user s access to EXEC level commands aaa author...

Page 1290: ... parameters that restrict or permit a user s access to EXEC level commands C Series E Series S Series Z Series S4810 Syntax aaa authorization config commands Disable authorization checking for CONFIGURATION level commands using the no aaa authorization config commands command Defaults Enabled when you configure aaa authorization commands command Command Modes CONFIGURATION Command History Version ...

Page 1291: ...ter the keyword none to apply no authorization Defaults none Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 1 1 0 Added support for RADIUS privilege level CONFIGURATION mode Change the access or privilege level of one or more ...

Page 1292: ...0 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Usage Information Use the enable password command to define a password for the level to which you are assigning privilege or access privilege level LINE mode Change the access level for users on the terminal lines C Series E ...

Page 1293: ...Enter the keyword default followed by the authentication methods to use as the default sequence of methods to be used for the Enable log in The default is default enable method list name Enter a text string up to 16 characters long to name the list of enabled authentication methods activated at log in method Enter one of the following methods enable use the password defined by the enable password ...

Page 1294: ... login authentication enables AAA login authentication on the terminal lines password creates a password radius server host specifies a RADIUS server host tacacs server host specifies a TACACS server host aaa authentication login Configure AAA Authentication method lists for user access to EXEC mode Enable log in C Series E Series S Series Z Series S4810 Syntax aaa authentication login method list...

Page 1295: ...applies the next method configured If users fail the first method listed no other methods are applied The only exception is the local method If the user s name is not listed in the local database the next method is applied If the correct user name password combination are not entered the user is not allowed access to the switch NOTE If authentication fails using the primary method FTOS employs the...

Page 1296: ...thod list to the designated terminal lines ip access list standard names or selects a standard access list to filter based on the IP address ip access list extended names or selects an extended access list based on the IP addresses or protocols enable password Change the password for the enable command C Series E Series S Series Z Series S4810 Syntax enable password level level encryption type pas...

Page 1297: ... the password To create a password with a regular expression in it you must use CNTL v prior to entering regular expression For example to create the password abcd e you type abcd CNTL v e When the password is created you do not use the CNTL v key combination and enter abcd e NOTE The question mark and the tilde are not supported characters Related Commands show running config views the current co...

Page 1298: ...ecret level level encryption type password To delete a password use the no enable secret encryption type password level level command Parameters level level OPTIONAL Enter the keyword level followed by a number as the level of access The range is 1 to 15 encryption type OPTIONAL Enter the number 5 or 0 as the encryption type Enter a 5 followed by a text string as the hidden password The text strin...

Page 1299: ...privilege level CONFIGURATION mode controls access to the command modes within the switch login authentication Apply an authentication method list to designated the terminal lines C Series E Series S Series Z Series S4810 Syntax login authentication method list name default To use the local user password database for login authentication use the no login authentication command Parameters method li...

Page 1300: ...xt 7 means that the password is encrypted and hidden password Enter a text string up to 32 characters long The first character of the password must be a letter You cannot use spaces in the password Defaults No password is configured Command Modes LINE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version ...

Page 1301: ...s max retry followed by the number of maximum password retries The range is 0 to 16 character restriction OPTIONAL Enter the keywords character restriction to indicate a character restriction for the password upper number OPTIONAL Enter the keyword upper followed the upper number The range is 0 to 31 lower number OPTIONAL Enter the keyword lower followed the lower number The range is 0 to 31 numer...

Page 1302: ...he passwords are encrypted you cannot return them to plain text unless you re configure them To remove an encrypted password use the no password password command To keep unauthorized people from viewing passwords in the switch configuration file use the service password encryption command This command encrypts the clear text passwords created for user name passwords authentication key passwords th...

Page 1303: ...ege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Usage Information The following describes the show user command shown in the Example below Field Description untitled Indicates with an asterisk which terminal line y...

Page 1304: ...nd History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Usage Information The software measures the period of inactivity defined in this command as the period between consecutive keystrokes For example if your password is password ...

Page 1305: ...le with the password option only 5 to indicate that a password encrypted using an MD5 hashing algorithm will follow This encryption type is available with the secret option only and is the default encryption type for this option password Enter a string up to 32 characters long privilege level Enter the keyword privilege followed by a number from zero 0 to 15 secret Enter the keyword secret followe...

Page 1306: ... 0 Introduced on the C Series pre Version 6 2 1 0 Introduced on the E Series ip radius source interface Specify an interface s IP address as the source IP address for RADIUS connections C Series E Series S Series Z Series S4810 Syntax ip radius source interface interface To delete a source interface use the no ip radius source interface command Parameters interface Enter the following keywords and...

Page 1307: ...ersion 8 5 1 0 Added support for 4 port 40G line cards on ExaScale Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 0 Introduced on the E Series radius server deadtime Configure a time interval during which non responsive RADIUS servers to authentication requests are skipped C Series E Series S Series Z ...

Page 1308: ...e range is zero 0 to 100 The default is 3 attempts timeout seconds OPTIONAL Enter the keyword timeout followed by the seconds the time interval the switch waits for a reply from the RADIUS server This parameter overwrites the radius server timeout command The range is 0 to 1000 The default is 5 seconds key encryption type key OPTIONAL Enter the keyword key followed by an optional encryption type a...

Page 1309: ... sets the database to be checked when a user logs in radius server key sets an authentication key for RADIUS communications radius server retransmit sets the number of times the RADIUS server attempts to send information radius server timeout sets the time interval before the RADIUS server times out radius server key Configure a key for all RADIUS communications between the switch and the RADIUS h...

Page 1310: ...e switch attempts to connect with the configured RADIUS host server before declaring the RADIUS host server unreachable C Series E Series S Series Z Series S4810 Syntax radius server retransmit retries To configure zero retransmit attempts use the no radius server retransmit command To return to the default setting use the radius server retransmit 3 command Parameters retries Enter a number of att...

Page 1311: ...GURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 0 Introduced on the E Series Related Commands radius server host configures a RADIUS host TACACS Commands FTOS supports TACACS as an alternate method for login authentication debug tacacs Vi...

Page 1312: ...er the keyword loopback followed by a number from zero 0 to 16838 For the Null interface enter the keywords null 0 For a Port Channel interface enter the keywords port channel followed by a number For the C Series and S Series the range is 1 to 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a SONET interface enter the keyword sonet followed by the slot port ...

Page 1313: ... number of seconds the switch waits for a reply from the TACACS server The range is 0 to 1000 The default is 10 seconds key key OPTIONAL Enter the keyword key followed by a string up to 42 characters long as the authentication key This authentication key must match the key specified in the tacacs server key for the TACACS daemon Defaults Not configured Command Modes CONFIGURATION Command History V...

Page 1314: ...rameters encryption type OPTIONAL Enter either zero 0 or 7 as the encryption type for the key entered The options are 0 is the default and means the key is not encrypted and stored as clear text 7 means that the key is encrypted and hidden key Enter a text string up to 42 characters long as the clear text password Leading spaces are ignored Defaults Not configured Command Modes CONFIGURATION Comma...

Page 1315: ...appropriate VLAN due to a configuration error Configuration errors create an entry in Syslog If 802 1X authorization is enabled and all information from the RADIUS server is valid the port is placed in the specified VLAN after authentication If port security is enabled on an 802 1X port with VLAN assignment the port is placed in the RADIUS server assigned VLAN If 802 1X is disabled on the port it ...

Page 1316: ...on failure VLAN for users and devices that fail 802 1X authentication C Series E Series S Series Z Series S4810 Syntax dot1x auth fail vlan vlan id max attempts number To delete the authentication failure VLAN use the no dot1x auth fail vlan vlan id max attempts number command Parameters vlan id Enter the VLAN Identifier The range is 1 to 4094 max attempts number OPTIONAL Enter the keywords max at...

Page 1317: ...server radius Defaults none Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the C Series and S Series Version 7 4 1 0 Introduced on the E Series dot1x guest vlan Configure a guest VLAN for limited access users or for devices that are not 802 1X capable C Series E Series S Series Z Series S481...

Page 1318: ...Commands dot1x auth fail vlan configures a VLAN for authentication failures dot1x reauthentication enables periodic re authentication show dot1x interface displays the 802 1X information on an interface dot1x mac auth bypass Enable MAC authentication bypass If 802 1X times out because the host did not respond to the Identity Request frame FTOS attempts to authenticate the host based on its MAC add...

Page 1319: ...ibly authorize a port auto Enter the keyword auto to authorize a port based on the 802 1X operation result force unauthorized Enter the keywords force unauthorized to forcibly de authorize a port Defaults none Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the C Series and S Series Version 7 4 1...

Page 1320: ...ntication use the no dot1x reauthentication command Parameters interval seconds Optional Enter the keyword interval followed by the interval time in seconds after which re authentication will be initiated The range is 1 to 31536000 1 year The default is3600 1 hour Defaults 3600 seconds 1 hour Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduce...

Page 1321: ... the no dot1x server timeout command Parameters seconds Enter a time out value in seconds The range is 1 to 300 where 300 is implementation dependant The default is 30 Defaults 30 seconds Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the C Series and S Series Version 7 4 1 0 Introduced on the E...

Page 1322: ...ansmitted The range is 1 to 31536000 1 year The default is 30 Defaults 30 seconds Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the C Series and S Series Version 7 4 1 0 Introduced on the E Series show dot1x interface Display the 802 1X information on an interface C Series E Series S Series Z S...

Page 1323: ...dot1x int Gi 2 32 802 1x information on Gi 2 32 Dot1x Status Enable Port Control AUTO Port Auth Status UNAUTHORIZED Re Authentication Disable Untagged VLAN id None Guest VLAN Enable Guest VLAN id 10 Auth Fail VLAN Enable Auth Fail VLAN id 11 Auth Fail Max Attempts 3 Tx Period 30 seconds Quiet Period 60 seconds ReAuth Max 2 Supplicant Timeout 30 seconds Server Timeout 30 seconds Re Auth Interval 36...

Page 1324: ...This option is not available in FIPS mode Defaults Key size 1024 if you enable FIPS mode the key size is 2048 Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 12 0 Added support for FIPS mode on the S4810 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 I...

Page 1325: ...story Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Usage Information Debug information includes details for key exchange authentication and established session for each connection ip scp topdir Identify a location for files used in...

Page 1326: ...imum retries to authenticate a user The range is 1 to 10 The default is 3 Defaults 3 Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Usage Information This command specifies the maximum numb...

Page 1327: ...ies S4810 Syntax ip ssh hostbased authentication enable To disable hostbased authentication for SSHv2 server use the no ip ssh hostbased authentication enable command Parameters enable Enter the keyword enable to enable hostbased authentication for SSHv2 server Defaults Disabled Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S...

Page 1328: ...ey The range is 512 to 869 The default is 768 Defaults Key size 768 Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Usage Information The server generated key is used for SSHv1 key exchange ...

Page 1329: ...Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Usage Information This command specifies the file to be used for the host based authentication The creates file overwrites the flash ADMIN_DIR ssh knownhosts file and deletes the user specified file Even though this is a ...

Page 1330: ...on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Example FTOS conf FTOS conf ip ssh rhostsfile flash shosts FTOS conf Usage Information This command specifies the rhost file to be used for host based authentication This creates file overwrites the flash ADMIN_DIR...

Page 1331: ... Introduced on the E Series Usage Information Enabling RSA authentication allows the user to login without being prompted for a password In addition the OpenSSH compatible SSHv2 RSA public key must be added to the list of authorized keys ip ssh rsa authentication my authorized keys device filename command Related Commands ip ssh rsa authentication EXEC adds keys for RSA authentication ip ssh rsa a...

Page 1332: ...rsa authentication Config enables RSA authentication ip ssh server Configure an SSH server C Series E Series S Series Z Series S4810 Syntax NOTE Some of the parameters in this command require licensing to access For more information contact your Dell Force10 representative ip ssh server enable port port number version 1 2 To disable SSH server functions use the no ip ssh server enable command Para...

Page 1333: ...ntact your Dell Force10 representative show crypto key mypubkey rsa rsa1 Parameters Key Enter the keyword key to display the host public key mypubkey Enter the keyword mypubkey to display the host public key rsa Enter the keyword rsa to display the host SSHv2 RSA public key rsa1 Enter the keyword rsa1 to display the host SSHv1 RSA public key NOTE If you enable FIPS mode this parameter is not avail...

Page 1334: ...nds crypto key generate generates the SSH keys show ip ssh Display information about established SSH sessions C Series E Series S Series Z Series S4810 Syntax NOTE Some of the parameters in this command require licensing to access For more information contact your Dell Force10 representative show ip ssh Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Vers...

Page 1335: ...ies Usage Information This command displays the contents of the flash ADMIN_DIRssh knownhosts file Example FTOS show ip ssh client pub keys poclab4 123 12 1 123 ssh rsa AAAAB3NzaC1yc2EAAAABIwAAAIEAox QQp8xYhzOxn07yh4VGPAoUfgKoieTHO9G4sNV ui DWEc3cgYAcU5Lai1MU2ODrzhCwyDNp05tKBU3tReG1 o8AxLi6 S4hyEMqHzkzBFNVqHzpQc Rs4p2urzV0F4pRKnaXdHf3Lk4D460HZRhhVrxqeNxPDpEnWIMPJi0 ds ashwani poclab4 FTOS Related ...

Page 1336: ...pen an SSH connection specifying the hostname username port number and version of the SSH client C Series E Series S Series Z Series S4810 Syntax NOTE Some of the parameters in this command require licensing to access For more information contact your Dell Force10 representative ssh hostname ipv4 address ipv6 address c encryption cipher l username m HMAC algorithm p port number v 1 2 Parameters ho...

Page 1337: ...followed by the SSH version 1 or 2 The default is the version from the protocol negotiation Defaults As above Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 12 0 Added support for the c and m parameters on the S4810 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Added IPv6 support Introduced on t...

Page 1338: ... Series Syntax clear ip dhcp snooping binding Defaults none Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 7 8 1 0 Introduced on the C Series and S Series Related Commands show ip dhcp snooping displays the contents of the DHCP binding table ip dhcp relay Enable Option 82 C Series S Series Z Series S4810 Syntax ip dhcp relay information option trust d...

Page 1339: ...DHCP binding table C Series S Series Z Series S4810 Syntax no ip dhcp snooping binding mac address vlan id vlan id ip ip address interface type slot port lease number Parameters mac address Enter the keyword mac followed by the MAC address of the host to which the server is leasing the IP address vlan id vlan id Enter the keywords vlan id followed by the VLAN to which the host belongs The range is...

Page 1340: ...8 1 0 Introduced on the C Series and S Series Related Commands show ip dhcp snooping displays the contents of the DHCP binding table ip dhcp snooping database Delay writing the binding table for a specified time C Series S Series Z Series S4810 Syntax ip dhcp snooping database write delay minutes Parameters minutes The range is 5 to 21600 Defaults none Command Modes CONFIGURATION Command History V...

Page 1341: ...faults Untrusted Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 8 1 0 Introduced on the C Series and S Series ip dhcp source address validation Enable IP Source Guard C Series S Series Z Series S4810 Syntax no ip dhcp source address validation Defaults Disabled Command Modes INTERFACE Command History Version 8 3 11...

Page 1342: ...ies in the binding table for the specified VLAN s NOTE Learning only happens if there is a trusted port in the VLAN Related Commands ip dhcp snooping trust configures an interface as trusted show ip dhcp snooping Display the contents of the DHCP binding table C Series S Series Z Series S4810 Syntax show ip dhcp snooping binding Defaults none Command Modes EXEC EXEC Privilege Command History Versio...

Page 1343: ... disable protocol packet tunneling through the 802 1q tunnel Rate limiting is required to protect against bridge protocol data units BPDU attacks A port channel including through link aggregation control protocol LACP can be configured as a VLAN Stack access or trunk port Address resolution protocol ARP packets work as expected across the tunnel Far end failure detection FEFD works the same as wit...

Page 1344: ...tgoing interfaces vlan vlan id Enter the keyword vlan followed by the VLAN ID The range is 1 to 4094 count value Enter the keyword count followed by the number of debug outputs The range is 1 to 100 Defaults Debug disabled Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 5 1 0 Added support for 4 port 40G line cards on ExaScale Version 8 3 7 0 Introdu...

Page 1345: ...ord mvrp to enable protocol tunneling for the Multiple VLAN Registration protocol MVRP oam E Series ExaScale only Enter the keyword oam to enable protocol tunneling for link layer Ethernet operations administration and maintenance functions Ethernet in the First Mile EFM OAM 802 3ah stp Enter the keyword stp to enable protocol tunneling on a spanning tree including STP MSTP RSTP and PVST Defaults ...

Page 1346: ...ies and S Series Version 7 4 1 0 Introduced Usage Information When you enable VLAN Stacking no protocol packets are tunneled Related Command show protocol tunnel displays tunneling information for all VLANs protocol tunnel enable Enable protocol tunneling globally on the system C Series E Series S Series Z Series S4810 Syntax protocol tunnel enable To disable protocol tunneling use the no protocol...

Page 1347: ...on the C Series E Series Terascale and E Series ExaScale Maximum rate limit on E Series reduced from 4000 to 3000 Version 7 4 1 0 Introduced Example FTOS FTOS conf FTOS conf protocol tunnel rate limit 1000 FTOS conf Related Commands show protocol tunnel displays tunneling information for all VLANs show running config displays the current configuration show protocol tunnel Display protocol tunnel i...

Page 1348: ... Rate Limit 75 frames second VLAN Protocols Interface 1000 STP PVST Gi 5 7 Gi 5 6 1001 LLDP GVRP Gi 5 7 Gi 5 6 1002 MMRP MVRP Gi 5 7 Gi 5 6 1003 LACP DOT1X Gi 5 7 Gi 5 6 1004 OAM PAUSE Gi 5 7 Gi 5 6 1005 E LMI Gi 5 7 Gi 5 6 Example Specific VLAN FTOS show protocol tunnel vlan 2 System Rate Limit 1000 Frames second Interface Vlan Protocol s Gi1 2 2 STP PVST FTOS Related Commands show running config...

Page 1349: ...s always zero sFlow sampling is done on a per port basis Community list and local preference fields are not filled up in the extended gateway element in the sFlow datagram The 802 1P source priority field is not filled up in the extended switch element in the sFlow datagram Only Destination and Destination Peer AS numbers are packed in the dst as path field in the extended gateway element If the p...

Page 1350: ...535 The default is 6343 max datagram size number OPTIONAL Enter the keyword max datagram size followed by the size number in bytes The range is 400 to 1500 The default is 1400 Defaults Not configured Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 4 2 3 Added support for IPv6 sFlow collectors and agents on the E series TeraScale C Series and S Series ...

Page 1351: ...mpted for an existing collector sflow enable Global Enable sFlow globally C Series E Series S Series Z Series S4810 Syntax sflow enable To disable sFlow use the no sflow enable command Defaults Disabled Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Introduced S Series Stacking Version 8 1 1 0 Introduced ...

Page 1352: ... 6 2 1 1 Introduced on the E Series Usage Information When you enable sFlow on an interface flow sampling is done on any traffic going out of the interface NOTE After a physical port is a member of a LAG it inherits the sFlow configuration from the LAG port Related Commands sflow enable Global turns sFlow on globally sflow extended gateway enable Enable packing information on an extended gateway E...

Page 1353: ...ver ECMP Example FTOS show sflow sFlow services are enabled Global default sampling rate 64 Global default counter polling interval 1000 Global extended information enabled gateway router switch 1 collectors configured Collector IP addr 20 20 20 2 Agent IP addr 10 11 201 7 UDP port 6343 1732336 UDP packets exported 0 UDP packets dropped 12510225 sFlow samples collected 0 sFlow samples dropped due ...

Page 1354: ...tended switch enable Enable packing information on a switch only C Series E Series S Series Z Series S4810 Syntax sflow extended switch enable To disable packing information use the no sflow extended switch enable command Parameters enable Enter the keyword enable to enable global extended information Defaults Disabled Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the ...

Page 1355: ...ange is 15 to 86400 seconds The default is 20 seconds Defaults 20 seconds Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Introduced on S Series Stacking Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 7 1 0 Introduced on the S Series Version 7 6 1 0 Introduced on the C Series Version 7 4 1 0...

Page 1356: ... S Series Stacking Version 8 1 1 0 Introduced on the E Series ExaScale Version 7 7 1 0 Introduced on the S Series Version 7 6 1 0 Introduced on the C Series Version 7 4 1 0 Introduced on the E Series Usage Information This command sets the counter polling interval for an interface Related Commands sflow polling interval Global globally sets the polling interval sflow sample rate Global Change the ...

Page 1357: ... with the previous and next power of 2 value Select one of these two packet numbers and re enter the command Related Commands sflow sample rate Interface changes the Interface sampling rate sflow sample rate Interface Change the Interface default sampling rate C Series E Series S Series Z Series S4810 Syntax sflow sample rate value To return to the default sampling rate use the no sflow sample rat...

Page 1358: ...sFlow configuration C Series E Series S Series Z Series S4810 Syntax show sflow interface Parameters interface OPTIONAL Enter the following keywords and slot port or number information For an 100 1000 Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information F...

Page 1359: ...collected 0 sFlow samples dropped due to sub sampling Linecard 1 Port set 0 H W sampling rate 8192 Gi 1 16 configured rate 8192 actual rate 8192 sub sampling rate 1 Gi 1 17 configured rate 16384 actual rate 16384 sub sampling rate 2 Linecard 3 Port set 1 H W sampling rate 16384 Gi 3 40 configured rate 16384 actual rate 16384 sub sampling rate 1 FTOS show sflow linecard Display the sFlow informatio...

Page 1360: ...duced on the E Series Usage Information The dropEvent counter sFlow samples dropped due to sub sampling shown in the Example below always displays a value of zero Example FTOS show sflow linecard 1 Linecard 1 Samples rcvd from h w 165 Samples dropped for sub sampling 0 Total UDP packets exported 0 UDP packets exported via RPM 77 UDP packets dropped FTOS 1360 ...

Page 1361: ... Remember Typically 5 second timeout and 3 second retry values on an SNMP server are sufficient for both LAN and WAN applications If you experience a timeout with these values the recommended best practice on Dell Force10 switches to accommodate their high port density is to increase the timeout and retry values on your SNMP server to the following SNMP Timeout greater than 3 seconds SNMP Retry co...

Page 1362: ...968 Get next PDUs 0 Set request PDUs 61727 SNMP packets output 0 Too big errors Maximum packet size 1500 9 No such name errors 0 Bad values errors 0 General errors 32649 Response PDUs 29078 Trap PDUs FTOS Related Commands snmp server community enables the SNMP and set community string show snmp engineID Display the identification of the local SNMP engine and all remote engines that are configured ...

Page 1363: ...istory Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series legacy command Usage Information The following Example displays a group named ngroup The ngroup has a security model of version 3 v3 with authentication auth the read and notify name is nview with no write view name s...

Page 1364: ...active Authentication Protocol None Privacy Protocol None FTOS snmp ifmib ifalias long Display the entire description string through the Interface MIB which would be truncated otherwise to 63 characters C Series E Series S Series Z Series Syntax snmp ifmib ifalias long Defaults Interface description truncated beyond 63 characters Command Modes CONFIGURATION Command History Version 8 3 11 1 Introdu...

Page 1365: ...curity name name ipv6 ipv6 access list name access list name security name name access list name ipv6 ipv6 access list name access list name security name name To remove access to a community use the no snmp server community community string ro rw security name name access list name ipv6 access list name access list name ipv6 access list name command Parameters community name Enter a text string u...

Page 1366: ...name The command options ipv6 security name and access list name are recursive In other words each option can in turn accept any of the three options as a sub option and each of those sub options can accept any of the three sub options as a sub option and so forth The second Example shows the creation of a standard IPv4 ACL called snmp ro acl and then assigning it to the SNMP community guest NOTE ...

Page 1367: ...egacy command snmp server enable traps Enable SNMP traps C Series E Series S Series Z Series S4810 Syntax snmp server enable traps notification type notification option To disable traps use the no snmp server enable traps notification type notification option command Parameters notification type Enter the type of notification from the list below bgp Notification of changes in the BGP process confi...

Page 1368: ...support for copy config and ecmp traps Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 4 1 0 Added support for VRRP traps Version 7 6 1 0 Added support for STP and xSTP traps Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series legacy command Usage Information FTOS supports up to 16 SNMP trap receivers For the cam utilization not...

Page 1369: ... remote device The range is 0 to 65535 The default is 162 Defaults As above Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series legacy command Usage Information Changing the value of the SNMP Engine ID has important side effects A u...

Page 1370: ...nity security name with ro permissions 1v2cwriteg maps to a community security name rw permissions 1 2c 3 OPTIONAL Enter the security model version number 1 2c or 3 1 is the least secure version 3 is the most secure of the security modes 2c allows transmission of informs and counter 64 which allows for integers twice the width of what is normally allowed The default is 1 auth OPTIONAL Enter the ke...

Page 1371: ...s legacy command Usage Information The following Example specifies the group named harig as a version 3 user requiring both authentication and encryption and read access limited to the read named rview NOTE The number of configurable groups is limited to 16 groups Example FTOS conf FTOS conf snmp server group harig 3 priv read rview FTOS Related Commands show snmp group displays the group name sec...

Page 1372: ...The default is version 1 auth OPTIONAL Enter the keyword auth to specify authentication of a packet without encryption noauth OPTIONAL Enter the keyword noauth to specify no authentication of a packet priv OPTIONAL Enter the keyword priv to specify both authentication and then scrambling of the packet community string Enter a text string up to 20 characters long as the name of the SNMP community N...

Page 1373: ... to enable multiple hosts you must issue a separate snmp server host command for each host You can specify multiple notification types in the command for each host When multiple snmp server host commands are given for the same host and type of notification trap or inform each succeeding command overwrites the previous command Only the last snmp server host command will be in effect For example if ...

Page 1374: ...mand Parameters text Enter an alpha numeric text string up to 55 characters long Defaults Not configured Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series legacy command snmp server packetsize Set the largest SNMP packet size perm...

Page 1375: ... For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Loopback interface enter the keyword loopback followed by a number from 0 to 16383 For a SONET interface enter the keyword sonet followed by the slot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a 40...

Page 1376: ...access list name access list name ipv6 access list name command Parameters name Enter the name of the user not to exceed 20 characters on the host that connects to the agent group_name Enter a text string up to 20 characters long as the name of the group The following groups are created for mapping to read write community security names defaults v1v2creadu maps to a community with ro permissions 1...

Page 1377: ...he agent Minimum 8 characters long access access list name Optional Enter the standard IPv4 access list name a string up to 16 characters long ipv6 access list name Optional Enter the keyword ipv6 followed by the IPv6 access list name a string up to 16 characters long access list name ipv6 access list name Optional Enter both an IPv4 and IPv6 access list name Defaults As above Command Modes CONFIG...

Page 1378: ...passwd Usage Information The following command configures a remote user named n3user with a v3 security model and a security level of authNOPriv Example FTOS conf FTOS conf snmp server user n3user ngroup remote 172 31 1 3 udp port 5009 3 auth md5 authpasswd Related Commands show snmp user displays the information configured on each SNMP user name snmp server view Configure an SNMPv3 view C Series ...

Page 1379: ...he SNMP running configuration snmp trap link status Enable the interface to send SNMP link traps which indicate whether the interface is up or down C Series E Series S Series Z Series Syntax snmp trap link status To disable sending link trap messages use the no snmp trap link status command Defaults Enabled Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 ...

Page 1380: ...d Commands show logging displays logging settings and system messages in the internal buffer default logging buffered Return to the default setting for messages logged to the internal buffer C Series E Series S Series Z Series Syntax default logging buffered Defaults size 40960 level 7 or debugging Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 7 6 1 0...

Page 1381: ...ted Commands logging console sets the logging console parameters default logging monitor Return to the default settings for messages logged to the terminal C Series E Series S Series Z Series Syntax default logging monitor Defaults level 7 or debugging Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introd...

Page 1382: ...re an IP address or host name of a Syslog server where logging messages are sent Multiple logging servers of both IPv4 and or IPv6 can be configured C Series E Series S Series Z Series Syntax logging ipv4 address ipv6 address hostname To disable logging use the no logging command Parameters ipv4 address ipv6 address Enter an IPv4 address A B C D or IPv6 address X X X X X address hostname Enter the...

Page 1383: ...ings notifications informational or debugging The default is 7 or debugging size OPTIONAL Indicate the size in bytes of the logging buffer The number of messages buffered depends on the size of each message The range is 40960 to 524288 The default is 40960 bytes Defaults level 7 size 40960 bytes Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 In...

Page 1384: ... on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series legacy command Related Commands clear logging clears the logging buffer default logging console returns the logging console parameters to the default setting show logging displays the logging setting and system messages in the internal buffer logging ...

Page 1385: ...The default is local7 Defaults local7 Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series legacy command Related Commands logging enables logging to a Syslog server logging on enables logging logging history Specify which messages a...

Page 1386: ...ommand the system messages logged to the history table are also sent to the SNMP network management station Related Commands show logging displays information logged to the history buffer logging history size Specify the number of messages stored in the FTOS logging history table C Series E Series S Series Z Series Syntax logging history size size To return to the default values use the no logging...

Page 1387: ...gs notifications informational or debugging The default is 7 or debugging Defaults 7 or debugging Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series legacy command Related Commands default logging monitor returns the logging monito...

Page 1388: ...ameters interface Enter the following keywords and slot port or number information For an 100 1000 Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For Loopback interfaces enter the keyword loopback followed by a number from zero 0 to 16383 For the mana...

Page 1389: ...onize unsolicited messages and FTOS output C Series E Series S Series Z Series Syntax logging synchronous level level all limit number of buffers To disable message synchronization use the no logging synchronous level level all limit number of buffers command Parameters all Enter the keyword all to ensure that all levels are printed asynchronously level level Enter the keyword level followed by a ...

Page 1390: ...logged to the Syslog server based the message severity C Series E Series S Series Z Series Syntax logging trap level To return to the default values use the default logging trap command To disable logging use the no logging trap command Parameters level Indicate a value from 0 to 7 or enter one of the following parameters emergencies alerts critical errors warnings notifications informational or d...

Page 1391: ...to view a table showing the number of messages per type and per slot Slots 7 and 8 represent RPMs Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series E Series legacy command Example Partial FTOS show logging Syslog logging enabled Cons...

Page 1392: ...CHANGE Session closed by neighbor 1 1 10 2 Hold time expired Oct 8 09 25 38 RPM1 RP1 BGP 5 ADJCHANGE Neighbor 192 200 14 7 Up Oct 8 09 26 25 RPM1 RP1 BGP 5 ADJCHANGE Connection with neighbor 1 1 11 2 closed Neighbor recycled Oct 8 09 26 25 RPM1 RP1 BGP 5 ADJCHANGE Connection with neighbor 1 1 14 2 closed Neighbor recycled More Example History FTOS show logging history Syslog History Table 1 maximu...

Page 1393: ... display messages on the monitor terminal C Series E Series S Series Z Series Syntax terminal monitor To return to default settings use the terminal no monitor command defaults Disabled Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Seri...

Page 1394: ...1394 ...

Page 1395: ...tate to up d AUTHENTICATION_FAIL SNMP AUTH SNMP 3 SNMP_AUTH_FAIL SNMP Authentication failed Request with invalid community string EGP_NEIGHBOR_LOSS SNMP NONE OSTATE_DOWN SNMP LINKDOWN IFM 1 OSTATE_DN changed interface state to down s IFM 5 CSTATE_DN Changed interface Physical state to down s OSTATE_UP SNMP LINKUP IFM 1 OSTATE_UP changed interface state to up s IFM 5 CSTATE_UP Changed interface Phy...

Page 1396: ...rd d is type s type s required CHM_CARD_PROBLEM ENVMON NONE CHM_ALARM_CUTOFF ENVMON NONE CHM_SFM_UP ENVMON NONE CHM_SFM_DOWN ENVMON NONE CHM_RPM_UP ENVMON NONE RAM 6 RPM_STATE RPM1 is in Active State RAM 6 RPM_STATE RPM0 is in Standby State CHM_RPM_DOWN ENVMON NONE CHMGR 2 RPM_DOWN RPM 0 down hard reset CHMGR 2 RPM_DOWN RPM 0 down card removed CHM_RPM_PRIMARY ENVMON NONE RAM 5 COLD_FAILOVER RPM Fa...

Page 1397: ...CHMGR 5 MAJOR_PS_CLR major alarm cleared sufficient power CHM_MIN_ALARM_PS ENVMON SUPPLY CHMGR 1 MINOR_PS Minor alarm power supply non redundant CHM_MIN_ALARM_PS_CLR ENVMON SUPPLY CHMGR 5 MINOR_PS_CLR Minor alarm cleared power supply redundant CHM_MIN_ALRM_TEMP ENVMON TEMP CHMGR 2 MINOR_TEMP Minor alarm chassis temperature CHM_MIN_ALRM_TEMP_CLR ENVMON TEMP CHMRG 5 MINOR_TEMP_CLR Minor alarm cleare...

Page 1398: ...NBAD_CLR ENVMON FAN For E1200 CHMGR 2 FAN_OK Minor alarm cleared all fans in fan tray d are good For E600 and E300 CHMGR 5 FANOK Minor alarm cleared all fans in fan tray are good TME_TASK_SUSPEND ENVMON NONE TME 2 TASK SUSPENDED SUSPENDED svce d inst d task s TME_TASK_TERM ENVMON NONE TME 2 ABNORMAL_TASK_TERMINATION CRASH task s s CHM_CPU_THRESHOLD ENVMON NONE CHMGR 5 CPU_THRESHOLD Cpu s usage abo...

Page 1399: ...AUTH vrid 1 on Gi 11 12 rcvd pkt with authentication failure VRRP_GO_MASTER PROTO NONE VRRP 6 VRRP_MASTER vrid d on s entering MASTER VRRP_PROTOCOL_ERROR PROTO NONE VRRP_PROTOERR VRRP protocol error on S BGP4_ESTABLISHED PROTO NONE TRAP 5 PEER_ESTABLISHED Neighbor a state s BGP4_BACKW_XSITION PROTO NONE TRAP 5 BACKWARD_STATE_TRANS Neighbor a state s 1399 ...

Page 1400: ...1400 ...

Page 1401: ...sed on the speed setting for the line card Do not apply per VLAN quality of service QoS on an interface that has storm control enabled either on an interface or globally When you enable broadcast storm control on an interface or globally on ingress and DSCP marking for a DSCP value 1 is configured for the data traffic the traffic goes to queue 1 instead of queue 0 Similarly if you enable unicast s...

Page 1402: ...ivilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 5 1 0 Added support for 4 port 40G line cards on ExaScale Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series Version 6 5 1 0 Introduced on the E Series Example E Series FTOS show storm control broadcast gigabitethernet 11 11 Broadcast storm control c...

Page 1403: ...ot port information For a 10 Gigabit Ethernet interface enter the keyword TenGigabitEthernet followed by the slot port information For a 40 Gigabit Ethernet interface enter the keyword fortyGigE followed by the slot port information Defaults none Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 5 1 0 Added support for 4 port 40G line cards on Exa...

Page 1404: ...rnet interface enter the keyword fortyGigE followed by the slot port information For a SONET interface enter the keyword sonet followed by the slot port information Fast Ethernet is not supported Defaults none Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 5 1 0 Added support for 4 port 40G line cards on ExaScale Version 8 3 7 0 Introduced on t...

Page 1405: ...er the percentage of broadcast traffic allowed in or out of the network Optionally you can designate a decimal value percentage for example 55 5 Percentage 0 to 100 0 blocks all related traffic 100 allows all traffic into the interface The decimal range is 1 to 9 wred profile name E Series Only Optionally Enter the keywords wred profile followed by the profile name to designate a wred profile pack...

Page 1406: ...roadcast traffic allowed in or out of the network Optionally you can designate a decimal value percentage for example 55 5 Percentage 0 to 100 0 blocks all related traffic 100 allows all traffic into the interface The decimal range is 1 to 9 wred profile name E Series Only Optionally Enter the keywords wred profile followed by the profile name to designate a wred profile packets_per_sec ond in C S...

Page 1407: ...ation Broadcast traffic all 0xFs should be counted against the broadcast storm control meter not against the multicast storm control meter It is possible however that some multicast control traffic may get dropped when storm control thresholds are exceeded storm control multicast Interface Configure the percentage of multicast traffic allowed on an C Series or S Series interface ingress only netwo...

Page 1408: ... value percentage for example 55 5 Percentage 0 to 100 0 blocks all related traffic 100 allows all traffic into the interface The decimal range is 1 to 9 wred profile name E Series Only Optionally Enter the keywords wred profile followed by the profile name to designate a wred profile packets_per_sec ond in C Series and S Series Only Enter the packets per second of broadcast traffic allowed into t...

Page 1409: ...ecimal value percentage for example 55 5 Percentage 0 to 100 0 blocks all related traffic 100 allows all traffic into the interface The decimal range is 1 to 9 wred profile name E Series Only Optionally Enter the keywords wred profile followed by the profile name to designate a wred profile packets_per_sec ond in C Series and S Series Only Enter the packets per second of broadcast traffic allowed ...

Page 1410: ...1410 ...

Page 1411: ...t value use the no bridge priority command Parameters priority value Enter a number as the bridge priority value The range is 0 to 65535 The default is 32768 primary Enter the keyword primary to designate the bridge as the root bridge secondary Enter the keyword secondary to designate the bridge as a secondary root bridge Defaults priority value 32768 Command Modes SPANNING TREE The prompt is conf...

Page 1412: ...duced on the C Series and S Series debug spanning tree Enable debugging of the spanning tree protocol and view information on the protocol C Series E Series S Series Z Series S4810 Syntax debug spanning tree stp id all bpdu config events exceptions general root protocol To disable debugging use the no debug spanning tree command Parameters stp id Enter zero 0 The switch supports one spanning tree ...

Page 1413: ...ion on BPDUs for the last interface specified Related Commands protocol spanning tree enters SPANNING TREE mode on the switch description Enter a description of the spanning tree C Series E Series S Series Z Series S4810 Syntax description description To remove the description from the spanning tree use the no description description command Parameters description Enter a description to identify t...

Page 1414: ...lated Commands protocol spanning tree enters SPANNING TREE mode on the switch forward delay The amount of time the interface waits in the Listening state and the Learning state before transitioning to the Forwarding state C Series E Series S Series Z Series S4810 Syntax forward delay seconds To return to the default setting use the no forward delay command Parameters seconds Enter the number of se...

Page 1415: ...ault value use the no hello time command Parameters seconds Enter a number as the time interval between transmission of BPDUs The range is 1 to 10 The default is 2 seconds Defaults 2 seconds Command Modes SPANNING TREE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 7 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Serie...

Page 1416: ...ersion 8 3 7 0 Introduced on the S4810 Version 7 7 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series Related Commands forward delay changes the wait time before STP transitions to the Forwarding state hello time changes the time interval between BPDUs protocol spanning tree Enter SPANNING TREE mode to enable and configure the s...

Page 1417: ...S config stp Related Commands disable disables spanning tree group 0 To enable spanning tree group 0 use the no disable command show config Display the current configuration for the mode Only non default values are displayed C Series E Series S Series Z Series S4810 Syntax show config Command Modes SPANNING TREE Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on...

Page 1418: ...et followed by the slot port information For a SONET interface enter the keyword sonet followed by the slot port information For a Port Channel interface enter the keywords port channel followed by a number For the C Series and S Series the range is 1 ti 128 For the E Series the range is 1 to 255 for TeraScale and 1 to 512 for ExaScale For a 10 Gigabit Ethernet interface enter the keyword TenGigab...

Page 1419: ... Timers Lists the values for the following bridge timers hold time topology change hello time max age and forward delay Times List the number of seconds since the last hello time topology change notification aging Port 1 Displays the Interface type slot port information and the status of the interface Disabled or Enabled Port path Displays the path cost priority and identifier for the interface De...

Page 1420: ...riority 8 Port Identifier 8 28 Designated root has priority 32768 address 0001 e800 0a56 Designated bridge has priority 32768 address 0001 e800 0a56 Designated port id is 8 28 designated path cost 0 Timers message age 0 forward_delay 0 hold 0 Number of transitions to forwarding state 1 BPDU sent 31 received 0 The port is not in the portfast mode FTOS Example Brief FTOS show span 0 brief Executing ...

Page 1421: ...face use the no spanning tree stp id cost cost loopguard rootguard portfast bpduguard shutdown on violation priority priority command Parameters stp id Enter the STP instance ID The range is 0 cost cost Enter the keyword cost followed by a number as the cost The range is 1 to 65535 The defaults are 100 Mb s Ethernet interface 19 1 Gigabit Ethernet interface 4 10 Gigabit Ethernet interface 2 Port C...

Page 1422: ... fact The port is in ERR_DISABLE mode yet appears in the show interface commands as enabled If you do not enable shutdown on violation BPDUs still are sent to the RPM CPU STP loop guard and root guard are supported on a port or port channel enabled in any Spanning Tree mode Spanning Tree Protocol STP Rapid Spanning Tree Protocol RSTP Multiple Spanning Tree Protocol MSTP and Per VLAN Spanning Tree ...

Page 1423: ...To display the type of STP guard Portfast BPDU root or loop guard enabled on a port enter the show spanning tree 0 command 1423 ...

Page 1424: ...1424 ...

Page 1425: ...ries S Series Z Series S4810 Syntax calendar set time month day year Parameters time Enter the time in hours minutes seconds For the hour variable use the 24 hour format for example 17 15 00 is 5 15 pm month Enter the name of one of the 12 months in English You can enter the name of a day to change the order of the display to time day month year day Enter the number of the day The range is 1 to 31...

Page 1426: ...alendar sets the hardware clock based on the software clock show clock displays the clock settings clock read calendar Set the software clock on the switch from the information set in hardware clock calendar C Series E Series S Series Z Series S4810 Syntax clock read calendar Defaults Not configured Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7...

Page 1427: ...The range is 1993 to 2035 Defaults Not configured Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Usage Information You can change the order of the month and day parameters to enter the time and date as time day month year You ca...

Page 1428: ... year The range is 1993 to 2035 start time Enter the time in hours minutes For the hour variable use the 24 hour format example 17 15 is 5 15 pm end day Enter the number of the day The range is 1 to 31 You can enter the name of a month to change the order of the display to time day month year end month Enter the name of one of the 12 months in English You can enter the name of a day to change the ...

Page 1429: ...gins and then enter values for start day through end time week number Enter a number from 1 to 4 as the number of the week in the month to start daylight saving time first Enter this keyword to start daylight saving time in the first week of the month last Enter this keyword to start daylight saving time in the last week of the month start day Enter the name of the day that you want daylight savin...

Page 1430: ... Series Version 7 5 1 0 Introduced on the C Series Version 7 4 1 0 Updated the start day and end day options to allow for using the three letter abbreviation of the weekday name pre Version 6 1 1 0 Introduced on the E Series Related Commands calendar set sets the hardware clock clock summer time date sets a date and time zone on which to convert the switch to daylight saving time on a one time bas...

Page 1431: ...ferentiator between UTC and your local timezone For example San Jose CA is the Pacific Timezone with a UTC offset of 8 clock update calendar Set the switch hardware clock based on the software clock C Series E Series S Series Z Series Syntax clock update calendar Defaults Not configured Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 7 6 1 0 Introduced...

Page 1432: ...e keyword authentication to display information on NTP authentication transactions events Enter the keyword events to display information on NTP events loopfilter Enter the keyword loopfilter to display information on NTP local clock frequency packets Enter the keyword packets to display information on NTP packets select Enter the keyword select to display information on the NTP clock selection sy...

Page 1433: ...o must configure an authentication key for NTP traffic using the ntp authentication key command Related Commands ntp authentication key configures the authentication key for NTP traffic ntp trusted key configures a key to authenticate ntp authentication key Specify a key for authenticating the NTP server C Series E Series S Series Z Series Syntax ntp authentication key number md5 0 7 key Parameter...

Page 1434: ...he authentication key that is different from previous FTOS versions beginning in version 8 2 1 0 FTOS uses DES encryption to store the key in the startup config when you enter the ntp authentication key command Therefore if your system boots with a startup configuration from an FTOS versions prior to 8 2 1 0 in which you have configured ntp authentication key the system cannot correctly decrypt th...

Page 1435: ...y Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series ntp multicast client Configure the switch to receive NTP information from the network via multicast E Series Z Series S4810 Syntax ntp multicast client multicast address To disable mul...

Page 1436: ...rsion number Parameters ipv4 address ipv6 address Enter an IPv4 address A B C D or IPv6 address X X X X X hostname Enter the hostname of the server key keyid OPTIONAL Enter the keyword key and a number as the NTP peer key The range is 1 to 4294967295 prefer OPTIONAL Enter the keyword prefer to indicate that this peer has priority over other servers version number OPTIONAL Enter the keyword version...

Page 1437: ...r information For an 100 1000 Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For Loopback interfaces enter the keyword loopback followed by a number from zero 0 to 16383 For a Port Channel interface enter the keyword lag followed by a number For the...

Page 1438: ...e range is 1 to 4294967295 Defaults Not configured Command Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Usage Information The number parameter in the ntp trusted key command must be the same number as the number parameter in the ntp au...

Page 1439: ...d Modes CONFIGURATION Command History Version 8 3 11 1 Introduced on the Z9000 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series show calendar Display the current date and time based on the switch hardware clock C Series E Series S Series Z Series S4810 Syntax show calendar Command Modes EXEC EXEC Privilege Command ...

Page 1440: ...oduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Example FTOS show clock 11 05 56 949 UTC Thu Oct 25 2001 FTOS Example Detail FTOS show clock detail 12 18 10 691 UTC Wed Jan 7 2009 Time source is RTC hardware Summer time starts 02 00 00 UTC Sun Mar 8 2009 ...

Page 1441: ...d to this peer means the peer was selected for possible synchronization means the peer is a candidate for selection means the peer is statically configured remote Displays the remote IP address of the NTP peer ref clock Displays the IP address of the remote peer s reference clock st Displays the peer s stratum that is the number of hops away from the external time source A 16 in this column means ...

Page 1442: ...es Z Series S4810 Syntax show ntp status Command Modes EXEC EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 1 1 0 Introduced on the E Series Usage Information The following describes the show ntp status command shown in the Example belo...

Page 1443: ...FTOS sh ntp status Clock is synchronized stratum 2 reference is 100 10 10 10 frequency is 32 000 ppm stability is 15 156 ppm precision is 4294967290 reference time is BC242FD5 C7C5C000 10 15 49 780 UTC Mon Jan 10 2000 clock offset is clock offset msec root delay is 0 01656 sec root dispersion is 0 39694 sec peer dispersion is peer dispersion msec peer mode is client FTOS Related Commands show ntp ...

Page 1444: ...1444 ...

Page 1445: ...is supported when all the members are only stackable VLAN trunk ports IP addresses on a stackable VLAN enabled VLAN is not supported if the VLAN contains stackable VLAN access ports This facility is provided for the simple network management protocol SNMP management over a stackable VLAN enabled VLAN containing only stackable VLAN trunk interfaces Layer 3 routing protocols on such a VLAN are not s...

Page 1446: ...d yellow Choose a color Green High priority packets that are the least preferred to be dropped Yellow Lower priority packets that are treated as best effort Red Lowest priority packets that are always dropped regardless of congestion status Defaults Disabled Packets with an unmapped DEI value are colored green Command Modes INTERFACE Command History Version 8 3 11 1 Introduced on the Z9000 Version...

Page 1447: ...d on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 3 1 0 Introduced on the C Series and S Series Usage Information You must first enable DEI for this configuration to take effect Related Commands dei enable enables DEI member Assign a stackable VLAN access or trunk port to a VLAN The VLAN must contain the vlan stack compatible command in its configuration C Series E Series S Series Z...

Page 1448: ...on the C Series and S Series E Series original Command Usage Information You must enable the stackable VLAN using the vlan stack compatible command on the VLAN prior to adding a member to the VLAN Related Commands vlan stack compatible enables stackable VLAN on a VLAN show interface dei honor Display the dei honor configuration C Series S Series Syntax show interface dei honor interface slot port ...

Page 1449: ... interface slot port Enter the interface type followed by the line card slot and port number linecard number port set number Enter linecard followed by the line card slot number then enter port set followed by the port pipe number Command Modes EXEC Privilege Command History Version 8 3 1 0 Introduced on the C Series and S Series Example FTOS show interface dei mark Default CFI DEI Marking 0 Inter...

Page 1450: ...d member ports ports ports listed here will be removed Do you want to continue y n If you enter y all non default configurations on any member ports of the current stack group is removed when the unit is rebooted vlan stack access Specify a Layer 2 port or port channel as an access port to the stackable VLAN network C Series E Series S Series Z Series S4810 Syntax vlan stack access To remove acces...

Page 1451: ...ommand History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 8 2 1 0 Introduced on the E Series ExaScale Version 7 6 1 0 Introduced on the C Series and S Series E Series original Command Usage Information You must remove the members prior to disabling the stackable VLAN feature To view the stackable VLANs use the show vlan command in EXEC Privilege mode S...

Page 1452: ...t1p value The range is 0 to 7 Defaults none Command Modes INTERFACE Command History Version 8 3 7 0 Introduced on the S4810 Version 8 3 1 0 Introduced on the C Series and S Series vlan stack protocol type Define the stackable VLAN tag protocol identifier TPID for the outer VLAN tag also called the VMAN tag If you do not configure this command FTOS assigns the value 0x9100 C Series E Series S Serie...

Page 1453: ...de On E Series TeraScale the two characters you enter in the CLI for number become the MSB as shown below Number Resulting TPID 1 0x0100 10 0x1000 More than two characaters Configuration rejected On E Series ExaScale C Series and S Series four characters you enter in the CLI for number are interpreted as shown below Number Resulting TPID 1 0x0001 10 0x0010 81 0x0081 8100 0x8100 Related Commands po...

Page 1454: ...ved using the no member interface command from all stackable VLAN enabled VLANs Starting with FTOS version 7 7 1 0 for E Series the VLAN Stack trunk port can transparently tunnel in a service provider environment customer originated xSTP control protocol PDUs Refer to Service Provider Bridging Starting with FTOS version 7 8 1 0 for C Series and S Series FTOS version 7 7 1 for E Series a VLAN Stack...

Page 1455: ...Default VLAN G GVRP VLANs Q U Untagged T Tagged x Dot1x untagged X Dot1x tagged G GVRP tagged M Vlan stack NUM Status Description Q Ports 1 Inactive 20 Active T Gi 0 42 100 Active M Gi 0 42 FTOS conf if vl 20 Example 2 FTOS config vlan stack protocol type 88A8 FTOS config interface gigabitethernet 3 10 FTOS conf if gi 3 10 no shutdown FTOS conf if gi 3 10 switchport FTOS conf if gi 3 10 vlan stack...

Page 1456: ...FTOS config interface vlan 40 FTOS conf if vlan tagged TenGi 8 0 FTOS conf if vlan exit FTOS config 1456 ...

Page 1457: ... Unit Id will not cause VLT peer ship to go down Also if the VLT peer ship is already established and the VLT Unit Id or System MAC are configured on both peers then changing the CLI configurations on the VLT Unit Id or System MAC will be rejected if any of the following become TRUE After making the CLI configuration change the VLT Unit Id becomes identical on both peers After making the CLI confi...

Page 1458: ...c Clear the VLT statistics for the MAC address arp Clear the VLT statistics for ARP igmp snoop Clear the VLT statistics for IGMP snooping stp Clear the VLT statistics for STP Command Modes EXEC Example VLT ARP Statistics ARP Tunnel Pkts sent 0 ARP Tunnel Pkts Rcvd 0 ARP sync Pkts Sent 0 ARP sync Pkts Rcvd 0 ARP Reg Request sent 19 ARP Reg Request rcvd 10 Command History Version 9 0 0 0 Introduced ...

Page 1459: ...elay the system from bringing up the VLT port for a brief period to allow IGMP Snooping and Layer 3 routing protocols to converge Use this feature after a VLT device is reloaded if the Peer VLT device was up at the time the VLTi link failed to the time when it was restored Related Commands show vlt statistics displays statistics on VLT operations lacp ungroup member independent Prevent possible lo...

Page 1460: ...el to ensure untagged packets that are sent by a VLT peer device reach the DHCP server located on the ToR To ungroup the VLT and port channel configurations use the no lacp ungroup member independent command on a VLT port channel depending on whether the port channel is VLT or non VLT Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 3 12 0 Added port channel parameter on the S4810...

Page 1461: ...t backup link Displays information on the backup link operation Z Series S4810 Syntax show vlt backup link Default Not configured Command Modes EXEC Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 3 8 0 Introduced on the S4810 Example FTOS_VLTpeer1 show vlt backup link VLT Backup Link Destination 10 11 200 18 Peer HeartBeat status Up HeartBeat Timer Interval 1 HeartBeat Timeout 3...

Page 1462: ...4 3c Remote System MAC address 00 01 e8 8b 15 20 Remote Sytem Version 5 1 Delay Restore timer 90 seconds show vlt counter Displays the counter information Z Series S4810 Syntax show vlt counter arp igmp snoop interface mac Parameters arp Enter the keyword arp to display the ARP counter information for the VLT igmp snoop Enter the keywords igmp snoop to display the igmp snooping counter information...

Page 1463: ...port channel 2 VLT Port ID 2 IGMP Counter IGMP MRouter Vlans count 0 IGMP Mcast Groups count 5 FTOS show vlt counter igmp snoop interface port channel 100 VLT Port ID 100 IGMP Counter IGMP MRouter Vlans count 1 IGMP Mcast Groups count 0 Ve show vlt detail Displays detailed status information about VLT domains currently configured on the switch Z Series S4810 Syntax show vlt detail Default Not conf...

Page 1464: ... bc System Role Priority 32768 Local System MAC address 00 01 e8 8a df bc Local System Role Priority 32768 FTOS_VLTpeer2 show vlt role VLT Role VLT Role Secondary System MAC address 00 01 e8 8a df bc System Role Priority 32768 Local System MAC address 00 01 e8 8a df e6 Local System Role Priority 32768 show vlt statistics Displays statistics on VLT operations Z Series S4810 Syntax show vlt statisti...

Page 1465: ...nt 927 ICL Hello s Received 910 Domain Mismatch Errors 0 Version Mismatch Errors 0 Config Mismatch Errors 0 VLT MAC Statistics L2 Info Pkts sent 6 L2 Mac sync Pkts Sent 0 L2 Info Pkts Rcvd 3 L2 Mac sync Pkts Rcvd 2 L2 Reg Request sent 1 L2 Reg Request rcvd 2 L2 Reg Response sent 1 L2 Reg Response rcvd 1 VLT Igmp Snooping Statistics IGMP Info Pkts sent 4 IGMP Info Pkts Rcvd 1 IGMP Reg Request sent ...

Page 1466: ... nn You must also reconfigure the same MAC address on the VLT peer switch unit id Explicitly configure the default unit ID of a VLT peer switch Z Series S4810 Syntax unit id 0 1 Parameters 0 1 Configure the default unit ID of a VLT peer switch Enter 0 for the first peer or enter 1 for the second peer Defaults Automatically assigned based on the MAC address of each VLT peer The peer with the lower ...

Page 1467: ...ION Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 3 8 0 Introduced on the S4810 Usage Information The VLT domain ID must be the same between the two VLT devices If the domain ID is not the same a syslog message is generated and VLT does not launch Related Commands show vlt uses the show vlt brief command to display the delay restore value vlt peer lag port channel Associate the...

Page 1468: ...Version 8 3 8 0 Introduced on the S4810 1468 ...

Page 1469: ...al Router Redundancy Protocol VRRP Virtual router redundancy protocol VRRP is supported by the Dell Force10 operating system FTOS on all Dell Force10 C Series E Series S Series Z Series or S4810 platforms 1469 ...

Page 1470: ...1470 ...

Page 1471: ...sion 6 2 1 1 Introduced on the E Series Usage Information Dell Force10 recommends keeping the default setting for this command If you do change the time interval between VRRP advertisements on one router you must change it on all routers authentication type Enable authentication of VRRP data exchanges C Series E Series S Series Z Series S4810 Syntax authentication type simple encryption type passw...

Page 1472: ...ys an encrypted text string for any of the encrypted typed used clear counters vrrp Clear the counters maintained on VRRP operations C Series E Series S Series Z Series S4810 Syntax clear counters vrrp vrrp id Parameters vrrp id OPTIONAL Enter the number of the VRRP group ID The range is 1 to 255 Command Modes EXEC Privilege Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 ...

Page 1473: ...t information For a VLAN interface enter the keyword vlan followed by the VLAN ID The VLAN ID range is from 1 to 4094 vrrp id OPTIONAL Enter a number from 1 to 255 as the VRRP group ID all Enter the keyword all to enable debugging of all VRRP groups database Enter the keyword database to enable configuration to change information interface Enter the keyword interface to enable interface state to i...

Page 1474: ...7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series disable Disable a VRRP group C Series E Series S Series Z Series S4810 Syntax disable To re enable a disabled VRRP group use the no disable command Defaults C and S Series default VRRP is enabled E Series default VRRP is disabled Command Modes VRRP Command History Version 8 ...

Page 1475: ...efaults zero 0 seconds Command Modes VRRP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series Usage Information If a switch is a MASTER and you change the hold timer you must disable and re enable VRRP for the new hold tim...

Page 1476: ...er is the OWNER The range is 1 to 255 The default is 100 Defaults 100 Command Modes VRRP Command History Version 8 3 11 1 Introduced on the Z9000 Version 8 3 7 0 Introduced on the S4810 Version 7 6 1 0 Introduced on the S Series Version 7 5 1 0 Introduced on the C Series pre Version 6 2 1 1 Introduced on the E Series Usage Information To guarantee that a VRRP group becomes MASTER configure the VRR...

Page 1477: ...the Virtual Router Identifier for the VRRP group to view only that group The range is 1 to 255 interface OPTIONAL Enter the following keywords and slot port or number information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For Port Channel interface types enter the keywords port channel followed by the number For the C Series and S Ser...

Page 1478: ...nterface Pre States whether preempt is enabled on the interface Y Preempt is enabled N Preempt is not enabled State Displays the operational state of the interface by using one of the following NA IF the interface is not available MASTER the interface associated with the MASTER router BACKUP the interface associated with the BACKUP router Master addr Displays the IP address of the MASTER router Vi...

Page 1479: ...ers for the following Adv rcvd displays the number of VRRP advertisements received on the interface Adv sent displays the number of VRRP advertisements sent on the interface Gratuitous ARP sent displays the number of gratuitous ARPs sent Virtual MAC address Displays the virtual MAC address of the VRRP group Virtual IP address Displays the virtual IP address of the VRRP router to which the interfac...

Page 1480: ...rity cost cost To disable monitoring use the no track interface command Parameters interface OPTIONAL Enter the following keywords and slot port or number information For a 1 Gigabit Ethernet interface enter the keyword GigabitEthernet followed by the slot port information For a Loopback interface enter the keyword loopback followed by a number from 0 to 16383 For Port Channel interface types ente...

Page 1481: ...eries Z Series S4810 Syntax virtual address ip address1 ip address12 To delete one or more virtual IP addresses use the no virtual address ip address1 ip address12 command Parameters ip address1 Enter an IP address of the virtual router in dotted decimal format The IP address must be on the same subnet as the interface s primary IP address ip address12 OPTIONAL Enter up to 11 additional IP address...

Page 1482: ... to 900 0 indicates no delay Defaults 0 Command Modes INTERFACE Command History Version 9 0 0 0 Introduced on the Z9000 Version 8 3 8 0 Introduced on the S4810 Usage Information This command applies to a single interface When used in conjunction with the vrrp delay reload CLI the later timer rules the VRRP enabling For example if vrrp delay reload is 600 and the vrrp delay minimum is 300 When the ...

Page 1483: ...r the delay timers to take effect Related Command vrrp delay minimum sets the delay time for VRRP initialization after a line card reboot vrrp group Assign a VRRP ID to an interface You can configure up to 12 VRRP groups per interface C Series E Series S Series Z Series S4810 Syntax vrrp group vrrp id Parameters vrrp id Enter a number as the group ID The range is 1 to 255 Defaults Not configured C...

Reviews:

No comments

Related manuals for Force10 Z9000

Brand: Barracuda Networks Pages: 2

Brand: Lauterbach Pages: 61

IES615-2D Series

Brand: 3onedata Pages: 3

Brand: 3One data Pages: 5

Brand: 3onedata Pages: 33

WS-650 lite Series

Brand: Laurell Pages: 84

Brand: Paradyne Pages: 112

Brand: Cambium Networks Pages: 215

Millennium P650

Brand: Matrox Pages: 54

Brand: TRENDnet Pages: 10

Brand: Leviton Pages: 4

Brand: Uniflair Pages: 24

Brand: National Instruments Pages: 56

Brand: iGateWeb.com Pages: 6

Brand: Axis Pages: 98

Brand: Global Sun Pages: 39

Brand: Juniper Pages: 420

Brand: Teridian Pages: 2

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands