Lenovo RackSwitch G8264CS, Cli Command Reference

Page 1: ...Lenovo RackSwitch G8264CS ISCLI Industry Standard CLI Command Reference for Lenovo Enterprise Network Operating System 8 4 ...

Page 2: ...nt that comes with the product Second Edition July 2017 Copyright Lenovo 2017 Portions Copyright IBM Corporation 2014 LIMITED AND RESTRICTED RIGHTS NOTICE If data or software is delivered pursuant a General Services Administration GSA contract use reproduction or disclosure is subject to restrictions set forth in Contract No GS 35F 05925 Lenovo and the Lenovo logo are trademarks of Lenovo in the U...

Page 3: ...ess Table Information 41 SNMPv3 Group Table Information 42 SNMPv3 Community Table Information 42 SNMPv3 Target Address Table Information 43 SNMPv3 Target Parameters Table Information 44 SNMPv3 Notify Table Information 44 SNMPv3 Dump Information 45 General System Information 46 Show Specific System Information 47 Show Recent Syslog Messages 48 User Status 49 LDAP Information 50 Layer 2 Information ...

Page 4: ...P Address List Information 91 Show All ARP Entry Information 92 Dynamic ARP Inspection Information 93 BGP Information 94 BGP Peer Information 95 BGP Group Information 96 BGP Summary Information 97 Dump BGP Information 97 OSPF Information 98 OSPF General Information 100 OSPF Interface Information 100 OSPF Loopback Information 101 OSPF Port Information 101 OSPF Information Route Codes 101 OSPF Datab...

Page 5: ...M Multicast Route Information 139 Quality of Service Information 140 802 1p Information 141 WRED and ECN Information 142 Access Control List Information 143 Access Control List Information 144 Access Control IPv6 List Information 146 RMON Information Commands 147 RMON History Information 148 RMON Alarm Information 149 RMON Event Information 150 Link Status Information 151 Port Information 152 Port...

Page 6: ...ion 187 Fabric Configuration Status Database Information 188 Fibre Channel Forwarding Information 188 NPV Traffic Information 189 Zone Status Information 189 FC Port Information 190 Information Dump 192 Chapter 3 Statistics Commands 193 Port Statistics 194 802 1X Authenticator Statistics 196 802 1X Authenticator Diagnostics 197 BootStrap Protocol Relay Statistics 200 Bridging Statistics 201 Ethern...

Page 7: ...tion Protocol Statistics 266 DHCP Statistics 267 DHCP Snooping Statistics 267 Management Processor Statistics 268 MP Packet Statistics Commands 270 MP Packet Statistics 271 Management Processor Packet Thread Statistics 275 Logged Packet Statistics 276 TCP Statistics 280 UDP Statistics 281 MP Specific Statistics 282 CPU Statistics 283 CPU Statistics History 284 QoS Statistics 285 Access Control Lis...

Page 8: ...Access Configuration 352 Custom Daylight Saving Time Configuration 355 sFlow Configuration 356 sFlow Port Configuration 357 Server Port Configuration 358 Port Configuration 359 Port Error Disable and Recovery Configuration 364 Port Link Flap Dampening Configuration 364 Port Link Configuration 365 Temporarily Disabling a Port 366 UniDirectional Link Detection Configuration 367 Port OAM Configuratio...

Page 9: ...428 Static FDB Configuration 429 ECP Configuration 431 LLDP Configuration 432 LLDP Port Configuration 433 LLDP Optional TLV configuration 434 Link Aggregation Group LAG Configuration 436 Link Aggregation Group LAG Hash Configuration 437 Layer 2 Link Aggregation Group LAG Hash 439 Layer 3 Link Aggregation Group LAG Hash 440 Virtual Link Aggregation Group vLAG Configuration 441 vLAG Health Check Con...

Page 10: ...figuration 494 OSPF MD5 Key Configuration 494 Open Shortest Path First Version 3 Configuration 495 OSPFv3 Area Index Configuration 497 OSPFv3 Summary Range Configuration 500 OSPFv3 AS External Range Configuration 501 OSPFv3 Interface Configuration 502 OSPFv3 over IPSec Configuration 505 OSPFv3 Virtual Link Configuration 507 OSPFv3 over IPSec for Virtual Link Configuration 508 OSPFv3 Host Entry Con...

Page 11: ... RP Static Configuration 564 PIM Interface Configuration 565 IPv6 Default Gateway Configuration 568 IPv6 Static Route Configuration 569 IPv6 Neighbor Discovery Cache Configuration 569 IPv6 Path MTU Configuration 570 IPv6 Neighbor Discovery Prefix Configuration 570 IPv6 Prefix Policy Table Configuration 572 IP Loopback Interface Configuration 573 DHCP Snooping 574 Converged Enhanced Ethernet Config...

Page 12: ...rations Level VRRP Commands 615 VMware Operations 616 VMware Distributed Virtual Switch Operations 618 VMware Distributed Port Group Operations 619 Edge Virtual Bridge Operations 620 Chapter 6 Boot Options 621 Scheduled Reboot of the Switch 622 Netboot Configuration 623 Security Policy Configuration 624 Configuring the Number of Spanning Tree Groups 626 Machine Type Model Configuration 627 QSFP Po...

Page 13: ...echnical assistance 681 Appendix C Notices 683 Trademarks 685 Important Notes 686 Recycling Information 687 Particulate Contamination 688 Telecommunication Regulatory Statement 689 Electronic Emission Notices 690 Federal Communications Commission FCC Statement 690 Industry Canada Class A Emission Compliance Statement 690 Avis de Conformité à la Réglementation dʹIndustrie Canada 690 Australia and N...

Page 14: ...14 G8264CS Command Reference for ENOS 8 4 Index 695 ...

Page 15: ...rred to as G8264CS throughout this document This guide lists each command together with the complete syntax and a functional description from the IS Command Line Interface ISCLI For documentation on installing the switches physically see the Lenovo Installation Guide for your RackSwitch G8264CS For details about configuration and operation of your G8264CS see the Lenovo RackSwitch G8264CS Applicat...

Page 16: ...his Book This book is intended for network installers and system administrators engaged in configuring and maintaining a network The administrator should be familiar with Ethernet concepts IP addressing Spanning Tree Protocol and SNMP configuration parameters ...

Page 17: ... which affect switch performance immediately but do not alter permanent switch configurations such as temporarily disabling ports The commands describe how to activate or deactivate optional software features Chapter 6 Boot Options describes the use of the primary and alternate switch images how to load a new software image and how to reset the software to factory defaults Chapter 7 Maintenance Co...

Page 18: ...bjects such as window names dialog box names and icons as well as user interface objects such as buttons and tabs italicized body text This italicized type indicates book titles special terms or words to be emphasized angle brackets Indicate a variable to enter based on the description inside the brackets Do not type the brackets when entering the command Example If the command syntax is ping IP a...

Page 19: ...ace ip or show interface ip 1 128 vertical line Separates choices for command keywords and arguments Enter only one of the choices Do not type the vertical line when entering the command Example If the command syntax is show portchannel 1 128 hash information you must enter show portchannel 1 128 or show portchannel hash or show portchannel information Table 1 Typographic Conventions continued Typ...

Page 20: ...20 G8264CS Command Reference for ENOS 8 4 ...

Page 21: ...be used effectively This guide describes the individual ISCLI commands available for the G8264CS The ISCLI provides a direct method for collecting switch information and performing switch configuration Using a basic terminal the ISCLI allows you to view information and statistics about the switch and to perform any necessary configuration This chapter explains how to access the Industry Standard C...

Page 22: ... terminal Each mode provides a specific set of commands The command set of a higher privilege mode is a superset of a lower privilege mode all lower privilege mode commands are accessible when using a higher privilege mode The following table lists the ISCLI command modes Table 2 ISCLI Command Modes Command Mode Prompt Command used to enter or exit User EXEC RS G8264CS Default mode entered automat...

Page 23: ... to Global Configuration mode end VLAN RS G8264CS config vlan Enter VLAN Configuration mode from Global Configuration mode vlan VLAN ID 1 4094 Exit to Global Configuration mode exit Exit to Privileged EXEC mode end Router OSPF RS G8264CS config router ospf Enter OSPF Configuration mode from Global Configuration mode router ospf Exit to Global Configuration mode exit Exit to Privileged EXEC mode en...

Page 24: ...nt Configuration mode from Global Configuration mode ip pim component 1 2 Exit to Global Configuration mode exit Exit to Privileged EXEC mode end IKEv2 Proposal RS G8264CS config ikev2 prop Enter IKEv2 Proposal Configuration mode from Global Configuration mode ikev2 proposal Exit to Global Configuration mode exit Exit to Privileged EXEC mode end MLD Configuration RS G8264CS config router mld Enter...

Page 25: ...CS config zone Enter Fibre Channel Zone Configuration mode from Global Configuration mode zone name 1 64 characters Exit to Global Configuration mode exit Exit to Privileged EXEC mode end FC Zoneset Configuration RS G8264CS config zoneset Enter Fibre Channel Zoneset Configuration mode from Global Configuration mode zoneset name 1 64 characters Exit to Global Configuration mode exit Exit to Privile...

Page 26: ...t from the command line interface and log out copy running config startup config Write configuration changes to non volatile flash memory logout Exit from the command line interface and log out traceroute Use this command to identify the route used for station to station connectivity across the network The format is as follows traceroute hostname IP address max hops 1 32 msec delay 1 4294967295 da...

Page 27: ...s optional msec delay Sets the number of milliseconds between attempts optional length Sets the ping request payload size optional source IP address Sets the IP source address for the IP packet optional ttl Sets the Time to live in the IP header tos Sets the Type of Service bits in the IP header dont fragment Sets the don t fragment bit in the IP header only for IPv4 addresses By default the manag...

Page 28: ... logical Telnet port or service number By default the management port is used To use a specific port use the following options data port data port management port mgt port Note The DNS parameters must be configured if specifying hostnames show history This command displays the last ten issued commands show who Displays a list of users who are currently logged in show line Displays a list of users ...

Page 29: ...nguish the command from the others in the same mode For example consider the following full command and a valid abbreviation or Tab Completion By entering the first letter of a command at any prompt and pressing Tab the ISCLI displays all available commands or options that begin with that letter Entering additional letters further refines the list of commands or options displayed If only one comma...

Page 30: ...ministrators can also make temporary operator level changes as well they must be aware of the interactions between temporary and permanent changes Access to switch functions is controlled through the use of unique surnames and passwords Once you are connected to the switch via local Telnet remote Telnet or SSH you are prompted to enter a password The default user names password for each access lev...

Page 31: ...ut By default the switch will disconnect your Telnet session after ten minutes of inactivity This function is controlled by the following command which can be set from 1 to 60 minutes or disabled when set to 0 system idle 0 60 Command mode Global Configuration ...

Page 32: ...32 G8264CS Command Reference for ENOS 8 4 ...

Page 33: ...or disabled Port description For details see page 151 Command mode All show interface trunk port alias or number Displays port status information including Port alias and number Whether the port uses VLAN Tagging or not Port VLAN ID PVID Port description VLAN membership FDB Learning status Flooding status For details see page 152 Command mode All show interface transceiver Displays the status of t...

Page 34: ...clude exclude section begin head 1 2000 last 1 2000 Displays the current syslog configuration followed by the most recent 2000 syslog messages messages displays the most recent 2000 syslog messages only severity displays syslog messages of the specified severity level reverse displays syslog messages starting with the most recent message displays syslog messages that match one of the following fil...

Page 35: ... address of management interface Hardware version and part number Software image file and version number Configuration name Log in banner if one is configured Internal temperatures Fan status Power supply status For details see page 46 Command mode All images total 18528 rw r r 1 root root 10038789 Jan 8 14 16 image1 rw r r 1 root root 8932087 Jan 7 20 16 image2 rw r r 1 root root 16 Jan 8 14 18 u...

Page 36: ...umber of lines per screen displayed in the CLI for the current session A value of 0 means paging is disabled Command mode All show line console length Displays the number of lines per screen displayed in the CLI by default for console sessions A value of 0 means paging is disabled Command mode All show line vty length Displays the number of lines per screen displayed in the CLI by default for Teln...

Page 37: ...Options Command Syntax and Usage show errdisable information Displays all Error Disable and Recovery information Command mode All show errdisable link flap information Displays ports that have been disabled due to excessive link flaps Command mode All show errdisable recovery Displays a list ports with their Error Recovery status Command mode All show errdisable timers Displays a list of active re...

Page 38: ...Displays View based Access Control information To view a sample see page 41 Command mode All show snmp server v3 community Displays information about the community table information To view a sample see page 42 Command mode All show snmp server v3 group Displays information about the group including the security model user name and group name To view a sample see page 42 Command mode All show snmp...

Page 39: ...privacy protocol show snmp server v3 user Displays User Security Model USM table information To view the table see page 39 Command mode All show snmp server v3 view Displays information about view subtrees mask and type of view To view a sample see page 40 Command mode All Table 9 SNMPv3 Information Options continued Command Syntax and Usage Engine ID 80 00 4F 4D 03 08 17 F4 8C E8 00 usmUser Table...

Page 40: ...show snmp server v3 view Command mode All View Name Subtree Mask Type iso 1 3 included v1v2only 1 3 included v1v2only 1 3 6 1 6 3 15 excluded v1v2only 1 3 6 1 6 3 16 excluded v1v2only 1 3 6 1 6 3 18 excluded Table 11 SNMPv3 View Table Information Parameters Field Description View Name Displays the name of the view Subtree Displays the MIB subtree as an OID string A view subtree is the set of all M...

Page 41: ...zed for the group when writing objects The notify view represents the set of object instances authorized for the group when sending a notification The following command displays SNMPv3 access information show snmp server v3 access Command mode All Group Name Model Level ReadV WriteV NotifyV v1v2grp snmpv1 noAuthNoPriv iso iso v1v2only admingrp usm authPriv iso iso iso Table 12 SNMPv3 Access Table ...

Page 42: ...minmd5 admingrp usm adminsha admingrp usm adminshaaes admingrp Table 13 SNMPv3 Group Table Information Parameters Field Description Sec Model Displays the security model used which is any one of USM SNMPv1 SNMPv2 and SNMPv3 User Name Displays the name for the group Group Name Displays the access name of the group Index Name User Name Tag trap1 public v1v2only v1v2trap Table 14 SNMPv3 Community Tab...

Page 43: ...Table Information Parameters Field Description Name Displays the locally arbitrary but unique identifier associated with this snmpTargetAddrEntry Transport Addr Displays the transport addresses Port Displays the SNMP UDP port number Taglist This column contains a list of tag values which are used to select target addresses for a particular SNMP message Params The value of this object identifies an...

Page 44: ...Displays the securityName which identifies the entry on whose behalf SNMP messages will be generated using this entry Sec Model Displays the security model used when generating SNMP messages using this entry The system may choose to return an inconsistentValue error if an attempt is made to set this variable to a value for a security model the system does not support Sec Level Displays the level o...

Page 45: ...ViewTreeFamily Table View Name Subtree Mask Type iso 1 included v1v2only 1 included v1v2only 1 3 6 1 6 3 15 excluded v1v2only 1 3 6 1 6 3 16 excluded v1v2only 1 3 6 1 6 3 18 excluded vacmSecurityToGroup Table All active SNMPv3 groups are listed below Sec Model User Name Group Name snmpv1 v1v2only v1v2grp usm adminmd5 admingrp usm adminsha admingrp usm adminshaaes admingrp snmpCommunity Table Index...

Page 46: ...ftware Version 8 4 1 0 FLASH image1 factory default configuration Boot kernel version 8 4 1 0 USB Boot disabled Temperature Mezzanine 32 C Temperature CPU Local 38 C Temperature Mother Top 31 C Temperature Mother Bottom 33 C Temperature Switch Asic Max 43 C Temperature FC Module Max 59 C System Warning at 86 C Shutdown at 95 C Set Point is 76 C Fan 1 Module 1 7468rpm 25pwm 9 Front To Back Fan 2 Mo...

Page 47: ...t number Log in banner if one is configured Internal temperatures Fan status Power supply status Show Specific System Information The following table lists commands used for displaying specific entries from the general system information screen Sample output for command show version brief Displays the software version number image file and configuration name Table 18 Specific System Information Op...

Page 48: ...rt severity 7 facility 0 host2 0 0 0 0 via MGT port severity2 7 facility2 0 console enabled severity level of console output 6 severity level of write to flash 7 syslogging all features Syslog source loopback interface not set Nov 2 5 49 53 172 25 254 19 INFO console System log cleared by user admin Nov 2 5 51 23 172 25 254 19 CRIT system Fan Mod 4 Removed Nov 2 5 54 27 172 25 254 19 CRIT system M...

Page 49: ...ccess user Command mode All except User EXEC This command displays the status of the configured usernames Usernames user enabled offline oper disabled offline admin Always Enabled online 1 session Current User ID table 1 name paul dis cos user password valid offline Current strong password settings strong password status disabled ...

Page 50: ... MGT port Current LDAP server null LDAP port 389 Retries 3 Timeout 5 LDAP server OFF Backdoor access disabled LDAP domain name LDAP user attribute uid Current LDAP settings LDAP server 1 10 10 43 55 389 via MGT port LDAP server 2 LDAPserver109 389 via DATA port LDAP server 3 null LDAP server 4 null LDAP Bind Mode Login Credentials LDAP Bind DN null Retries 3 Timeout 5 LDAP server OFF Backdoor acce...

Page 51: ...Displays Hot Links information For details see page 63 Command mode All show layer2 information Dumps all Layer 2 switch information available 10K lines or more depending on your configuration If you want to capture dump data to a file set your communication software on your workstation to capture session data prior to issuing the dump commands Command mode All show lldp information Displays Link ...

Page 52: ...e page 71 Command mode All show spanning tree blockedports Lists the ports blocked by each STP instance Command mode All show spanning tree mst configuration Displays the current MSTP settings Command mode All show spanning tree mst 0 32 information Displays Spanning Tree information for the specified instance 0 is used for CIST CIST bridge information includes Priority Hello interval Maximum age ...

Page 53: ... information Displays information about a specific Spanning Tree Group For details see page 72 Command mode All show vlag Displays vLAG Information For details see page 69 Command mode All show vlan Displays VLAN configuration information for all configured VLANs including VLAN Number VLAN Name Status Port membership of the VLAN For details see page 81 Command mode All Table 19 Layer 2 Information...

Page 54: ...none 2 force auth unauthorized initialize initialize none 3 force auth unauthorized initialize initialize none Table 20 802 1X Parameter Descriptions Parameter Description Port Displays each port s alias Auth Mode Displays the Access Control authorization mode for the port The Authorization mode can be one of the following force unauth auto force auth Auth Status Displays the current authorization...

Page 55: ...s the Backend Authorization State The Backend Authorization state can be one of the following initialize request response success fail timeout idle Assigned VLAN Displays corresponding VLAN associated with the port Table 20 802 1X Parameter Descriptions continued Parameter Description ...

Page 56: ...address Displays a single database entry by its MAC address You are prompted to enter the MAC address of the device Enter the MAC address using the format xx xx xx xx xx xx For example 08 00 20 12 34 56 You can also enter the MAC address using the format xxxxxxxxxxxx For example 080020123456 Command mode All show mac address table configured static Displays all configured static MAC entries in the...

Page 57: ...formation Options Command Syntax and Usage show mac address table multicast Displays all Multicast MAC entries in the FDB Command mode All show mac address table multicast address MAC address Displays a single multicast entry by its MAC address You are prompted to enter the MAC address of the device Enter the MAC address using the format xx xx xx xx xx xx For example 08 00 20 12 34 56 You can also...

Page 58: ...own UNK the MAC address has not yet been learned by the switch but has only been seen as a destination address When an address is in the unknown state no outbound port is indicated although ports which reference the address as a destination are listed under Reference ports Clearing Entries from the Forwarding Database To clear the entire FDB refer to Forwarding Database Maintenance on page 647 Mac...

Page 59: ...ion Command mode All show lacp aggregator aggregator ID Displays detailed information about the LACP aggregator Command mode All show lacp information Displays a summary of LACP information For details see page 60 Command mode All show lacp information state down off up Displays a summary of LACP information for the interfaces that are down off or up Command mode All show interface port port alias...

Page 60: ... with each port trunk This value represents the LACP Link Aggregation Group LAG number status Displays the status of LACP on the port up or down minlinks Displays the minimum number of active links in the LACP Link Aggregation Group LAG port mode adminkey operkey selected prio aggr trunk status minlinks 1 active 65535 65535 yes 32768 1 65 up 1 2 active 65535 65535 yes 32768 1 65 up 1 3 active 6553...

Page 61: ...er trigger information Displays a summary of Layer 2 Failover information For details see page 61 Command mode All show failover trigger trigger number information Displays detailed information about the selected Layer 2 Failover trigger Command mode All Failover On Trigger 1 Manual Monitor Enabled Trigger 1 limit 0 Monitor State Up Member Status 17 Operational Control State Auto Controlled Member...

Page 62: ...up LAG the port is aggregated If any of these conditions are not true the monitor port is considered to be failed A control port is considered to be operational if the monitor trigger state is Up Even if a port s link status is Down Spanning Tree status is Blocking and the LACP status is Not Aggregated from a teaming perspective the port status is Operational since the trigger is Up A control port...

Page 63: ...ng Hot Links status on or off Status of BPDU flood option Status of FDB send option Status and configuration of each Hot Links trigger Hot Links Info Trigger Current global Hot Links setting ON Hot Links BPDU flood disabled Hot Links FDB update disabled FDB update rate pps 200 Current Trigger 1 setting enabled name Trigger 1 preempt enabled fdelay 1 sec Active state None Master settings port 1 Bac...

Page 64: ...mber tlv evb Displays Edge Virtual Bridge EVB type length value TLV information for the specified port Command mode All show lldp receive Displays information about the LLDP receive state machine Command mode All show lldp remote device 1 256 detail Displays information received from LLDP capable devices For more information see page 65 Command mode All show lldp remote device port port alias or n...

Page 65: ...rt Index Remote Chassis ID Remote Port Remote System Name DMAC 1 1 00 00 c9 e5 47 e3 00 00 c9 e5 47 e3 NB 1 2 00 00 c9 e5 47 e3 00 00 c9 e5 47 e3 NnTB 2 3 00 90 fa 75 0e c5 00 90 fa 75 0e c5 NB 14 4 a8 97 dc d1 f8 00 60 NB 14 5 a8 97 dc d1 f8 00 60 NnTB 15 6 a8 97 dc d1 f8 00 80 NB 15 7 a8 97 dc d1 f8 00 80 NnTB 18 8 00 90 fa 3d 48 49 00 90 fa 3d 48 49 NB MGT 9 74 99 75 c5 08 00 6 G8052 54 NB Loca...

Page 66: ...directional TX RX loop neighbor mismatch Table 26 UDLD Information Options Command Syntax and Usage show udld Displays all UDLD information Command mode All show interface port port alias or number udld Displays UDLD information about the selected port Command mode All UDLD information on port 1 Port enable administrative configuration setting Enabled Port administrative mode normal Port enable op...

Page 67: ...e link is connected Table 27 802 1x Discovery Information Options Command Syntax and Usage show interface port port alias or number dot1x Displays 802 1x information about the selected port Command mode All show dot1x Displays all 802 1x information Command mode All show dot1x port alias or number Displays 802 1x information for specified port Command mode All Quiet Tx Max Supp Server ReAuth ReAut...

Page 68: ...ion about the selected port and the peer to which the link is connected Table 28 OAM Discovery Information Options Command Syntax and Usage show interface port port alias or number oam Displays OAM information about the selected port Command mode All show oam Displays all OAM information Command mode All OAM information on port 1 State enabled Mode active Link up Satisfied Yes Evaluating No Remote...

Page 69: ...nformation Command mode All show vlag information Displays all vLAG information Command mode All show vlag isl Displays vLAG Inter Switch Link ISL information Command mode All show vlag peer gateway Displays the current state of the vLAG peer gateway For details see page 70 Command mode All show vlag portchannel 1 64 Displays vLAG static Link Aggregation Group LAG information Command mode All show...

Page 70: ...is enabled on trunk 13 Protocol Static Current settings enabled ports 13 Current L2 trunk hash settings smac dmac Current L3 trunk hash settings sip dip Current ingress port hash disabled Current L4 port hash disabled Current FCoE trunk hash settings sid did Current peer gateway state disabled vLAG VRRP mode Active vLAG related VRRP information 1 vrid 1 local role master peer role backup 10 vrid 1...

Page 71: ...t Type 17 128 2000 FWD DESG 8001 34 40 b5 40 55 00 8011 P2P 18 128 2000 FWD DESG 8001 34 40 b5 40 55 00 8012 P2P 40 128 20000 FWD ROOT 8001 08 17 f4 a2 c6 1f 8028 P2P 41 128 20000 DISC ALTN 8001 08 17 f4 a2 c6 1f 80e9 P2P 51 128 2000 FWD DESG 8001 34 40 b5 40 55 00 8033 P2P 52 128 2000 FWD DESG 8001 34 40 b5 40 55 00 8034 P2P 53 128 2000 FWD DESG 8001 34 40 b5 40 55 00 8035 P2P 54 128 2000 FWD DES...

Page 72: ...0 FWD DESG 8000 00 25 03 49 29 00 8026 P2P MGT 0 0 FWD STP turned off for this port Automatic path cost Portchannel cost not the individual port cost Table 30 PVRST RSTP MSTP Port Parameter Descriptions Parameter Description Priority port The Port Priority parameter helps determine which bridge port becomes the designated port In a network topology that has multiple bridge ports connected to a sin...

Page 73: ...he priority in hexadecimal notation and MAC address of the Designated Bridge Designated Port The Designated Port field shows the port on the Designated Bridge to which this port is connected Type Type of link connected to the port and whether the port is an edge port Link type values are AUTO P2P or SHARED Table 30 PVRST RSTP MSTP Port Parameter Descriptions continued Parameter Description ...

Page 74: ... 8042 P2P 4 pc1 128 490 FWD ROOT 8001 a8 97 dc 03 d5 00 8042 P2P 11 128 2000 FWD DESG 8001 a8 97 dc d2 12 00 800b P2P 13 128 2000 FWD DESG 8001 a8 97 dc d2 12 00 800d P2P 14 128 2000 FWD DESG 8001 a8 97 dc d2 12 00 800e P2P 16 128 2000 FWD DESG 8001 a8 97 dc d2 12 00 8010 P2P Automatic path cost Portchannel cost not the individual port cost Table 31 RSTP MSTP PVRST Port Parameter Descriptions Para...

Page 75: ...d Bridge shows information about the bridge connected to each port if applicable Information includes the priority in hexadecimal notation and MAC address of the Designated Bridge Designated Port The port ID of the port on the Designated Bridge to which this port is connected Type Type of link connected to the port and whether the port is an edge port Link type values are AUTO P2P or SHARED Table ...

Page 76: ... parameter controls which bridge on the network will become the STP root bridge The lower the value the higher the priority Hello The hello time parameter specifies in seconds how often the bridge transmits a configuration bridge protocol data unit BPDU Any bridge that is not the root bridge uses the root bridge hello value MaxAge The maximum age parameter specifies in seconds the maximum time the...

Page 77: ...bridge priority and MAC address Path Cost The port path cost is used to help determine the designated port for a segment Hello The hello time parameter specifies in seconds how often the bridge transmits a configuration bridge protocol data unit BPDU Any bridge that is not the root bridge uses the root bridge hello value MaxAge The maximum age parameter specifies in seconds the maximum time the br...

Page 78: ...0000 a8 97 dc 88 c9 00 80e8 P2P Automatic path cost Portchannel cost not the individual port cost Table 34 CIST Parameter Descriptions Parameter Description CIST Root The CIST Root shows information about the root bridge for the Common Internal Spanning Tree CIST Values on this row of information refer to the CIST root CIST Regional Root The CIST Regional Root shows information about the root brid...

Page 79: ... port for a segment Generally speaking the faster the port the lower the path cost A setting of 0 indicates that the cost will be set to the appropriate default after the link speed has been auto negotiated State The state field shows the current state of the port The state field can be either Discarding DISC Learning LRN or Forwarding FWD Role The Role field shows the current role of this port in...

Page 80: ... show portchannel information Command mode All When LAGs are configured you can view the state of each port in the various LAGs Note If Spanning Tree Protocol on any port in the LAG is set to forwarding the remaining ports in the LAG will also be set to forwarding Trunk group 1 Enabled Protocol Static Port state 1 STG 1 forwarding 2 STG 1 forwarding ...

Page 81: ...e VLAN information type lists only the VLAN type for each private VLAN community isolated or primary Command mode All show vlan information Displays information about all VLANs including VLAN number and name VLAN statistics Port membership VLAN status enabled or disabled Protocol VLAN status Spanning Tree membership Private VLAN information Flooding settings VMAP configuration Command mode All sho...

Page 82: ...embership is represented in slot port format VLAN information includes VLAN Number VLAN Name Status Port membership of the VLAN Protocol VLAN information if available Private VLAN information if available VLAN Name Status Ports 1 Default VLAN ena 1 20 2 VLAN 2 dis 21 22 100 VLAN 100 ena empty 200 VLAN 200 ena empty 300 VLAN 300 ena empty 4095 Mgmt VLAN ena MGT Primary Secondary Type Ports 100 200 ...

Page 83: ...90 Command mode All show ip bgp Displays Border Gateway Protocol BGP information For details see page 97 Command mode All show ip bootp relay Displays the current parameters for the BOOTP Relay broadcast domain Command mode All show ip dhcp snooping Displays DHCP Snooping information For details see page 134 Command mode All show ip dns Displays the current Domain Name System settings Command mode...

Page 84: ...rk filter settings route map settings Command mode All show ipv6 interface interface number Displays IPv6 interface information For details see page 126 Command mode All show ip match address 1 256 Displays the current the Network Filter configuration Command mode All show ip mroute Displays the current IP multicast routes Command mode All show ipv6 mld Displays Multicast Listener Discovery MLD in...

Page 85: ...configuration Command mode All show ipv6 prefix Displays IPv6 Neighbor Discovery prefix information For details see page 114 Command mode All show ip rip Displays the current Routing Information Protocol RIP configuration For details see page 109 Command mode All show ip route Displays all routes configured on the switch For details see page 88 Command mode All show ipv6 route Displays IPv6 routin...

Page 86: ...ns see page 132 Command mode All show layer3 Dumps all Layer 3 switch information available 10K or more depending on your configuration If you want to capture dump data to a file set your communication software on your workstation to capture session data before issuing the dump commands Command mode All show layer3 igmp groups Displays the total number of IGMP groups that are registered on the swi...

Page 87: ...m Command mode All show ip route gateway IP address Displays routes to a single gateway Command mode All show ip route interface interface number Displays routes on a single interface Command mode All show ip route port port alias or number Displays routes on a single port Command mode All show ip route static Displays static routes configured on the switch Command mode All show ip route tag addre...

Page 88: ...0 0 0 0 0 0 0 0 multicast addr 255 255 255 255 255 255 255 255 255 255 255 255 broadcast broadcast Table 39 IP Routing Type Parameters Parameter Description indirect The next hop to the host or subnet destination will be forwarded through a router at the Gateway address direct Packets will be delivered to a destination host or subnet attached to the switch local Indicates a route to one of the swi...

Page 89: ... RIP ospf The address was learned by Open Shortest Path First OSPF bgp The address was learned via Border Gateway Protocol BGP broadcast Indicates a broadcast address martian The address belongs to a filtered group multicast Indicates a multicast address Table 40 IP Routing Tag Parameters continued Parameter Description ...

Page 90: ...conds since the ARP entry was learned For more information see page 92 Command mode All show ip arp data Displays all data ARP entries Command mode All show ip arp find IP address Displays a single ARP entry by IP address Command mode All show ip arp inspection Displays the current Dynamic ARP Inspection DAI configuration settings For details see page 93 Command mode All show ip arp interface port...

Page 91: ... static ARP entries Command mode All show ip arp vlan VLAN ID 1 4095 Displays the ARP entries on a single VLAN Command mode All Table 41 ARP Information Options continued Command Syntax and Usage IP address IP mask MAC address VLAN Pass Up 1 1 1 1 255 255 255 255 08 17 f4 62 64 00 1 2 2 2 2 255 255 255 255 08 17 f4 62 64 00 1 46 0 0 1 255 255 255 255 08 17 f4 62 64 00 4094 3 3 3 20 255 255 255 255...

Page 92: ...ARP entries Current ARP configuration rearp 5 No static ARP configured Total number data ARP entries 10 IP address Flags MAC address VLAN Age Port 1 1 1 4 P 74 99 75 74 c4 00 100 1 1 1 5 74 99 75 75 69 00 100 140 TRK64 1 1 1 10 P 00 00 5e 00 01 01 100 2 2 2 4 P 74 99 75 74 c4 00 200 2 2 2 5 74 99 75 75 69 00 200 141 TRK64 2 2 2 6 74 99 75 08 99 00 200 140 TRK1 2 2 2 10 P 00 00 5e 00 01 01 200 3 3 ...

Page 93: ...Inspection Information Options Command Syntax and Usage show ip arp inspection Displays the current DAI configuration settings Command mode All show ip arp inspection interfaces port alias or number Displays the current DAI configuration settings for the selected interfaces Command mode All show ip arp inspection vlan VLAN ID 1 4094 Displays the current DAI configuration settings for the selected ...

Page 94: ...nd mode All show ip bgp neighbor advertised routes Displays all BGP advertised routes to all neighbors Command mode All show ip bgp neighbor 1 96 advertised routes Displays all BGP advertised routes to a specific peer Command mode All show ip bgp neighbor group Displays BGP group information See page 96 for a sample output Command mode All show ip bgp neighbor information Displays BGP peer informa...

Page 95: ... See page 97 for a sample output Command mode All Table 44 BGP Peer Information Options continued Command Syntax and Usage BGP Peer Information Static Peers 1 3 5 0 3 version 4 TTL 255 TTL Security hops 0 Remote AS 10000 Local AS 10000 Link type IBGP Remote router ID 3 3 3 3 Local router ID 5 5 5 5 next hop self disabled RR client disabled BGP status established Old status established Total receiv...

Page 96: ...f this group 97 192 168 128 4 Group 1 toG82642007 TTL 1 Remote AS 200 Local AS 100 Link type EBGP Remote router ID 2 2 1 2 Local router ID 1 1 1 2 Configured Version 4 Negotiated Version 4 Total path attribute out 0 In Total Messages 74 Out Total Messages 74 In Updates 0 Out Updates 0 Established Time 01 12 36 MinAdvTime 00 01 00 Configured holdtime 00 03 00 Negotiated holdtime 00 03 00 Configured...

Page 97: ...rk IPv4 mask longer_prefix Command mode All The IPv4 network and mask options restrict the output to a specific network in the BGP routing table BGP Peer Summary Information Peer V AS MsgRcvd MsgSent Up Down State 1 205 178 23 142 4 142 113 121 00 00 28 established 2 205 178 15 148 0 148 0 0 never connect Status codes valid best multipath i internal Origin codes i IGP e EGP incomplete Network Mask...

Page 98: ...e All show ip ospf area range 1 16 Displays the current OSPF summary range settings Command mode All show ip ospf area virtual link 1 3 Displays the current OSPF virtual link settings Command mode All show ip ospf area virtual link information Displays information about all the configured virtual links Command mode All show ip ospf general information Displays general OSPF information See page 100...

Page 99: ...F information for all ports or a particular port For details see page 101 Command mode All show ip ospf neighbor Displays the status of all the current neighbors Command mode All show ip ospf redistribute Displays the current OSPF redistribute settings Command mode All show ip ospf routes Displays OSPF routing table See page 101 for a sample output Command mode All show ip ospf summary range 0 5 D...

Page 100: ... is 1 16 new lsa received and 34 lsa originated from this router Total number of entries in the LSDB 10 Database checksum sum 0x0 Total neighbors are 1 of which 2 are INIT state 2 are EXCH state 2 are FULL state Number of areas is 2 of which 3 transit 0 nssa Area Id 0 0 0 0 Authentication none Import ASExtern yes Number of times SPF ran 8 Area Border Router count 2 AS Boundary Router count 0 LSA c...

Page 101: ...nated Router ID 0 0 0 0 Ip Address 0 0 0 0 Timer intervals Hello 10 Dead 40 Wait 40 Retransmit 5 Transit delay 1 Neighbor count is 0 If Events 1 Authentication type none Ip Address 10 241 39 82 Area 0 0 0 0 Admin Status UP Router ID 1 1 1 1 State Waiting Priority 1 Designated Router ID 0 0 0 0 Ip Address 0 0 0 0 Backup Designated Router ID 0 0 0 0 Ip Address 0 0 0 0 Timer intervals Hello 10 Dead 4...

Page 102: ...LSAs The usage of this command is as follows asbr summary advertising router 20 1 1 1 displays ASBR summary LSAs having the advertising router 20 1 1 1 asbr summary link state id 10 1 1 1 displays ASBR summary LSAs having the link state ID 10 1 1 1 asbr summary self displays the self advertised ASBR summary LSAs asbr summary with no parameters displays all the ASBR summary LSAs Command mode All sh...

Page 103: ... of the LSAs Command mode All show ip ospf database router advertising router router ID IP address link state id link state ID IP address self Displays the router type 1 LSAs with detailed information of each field of the LSAs Command mode All show ip ospf database self Displays all the self advertised LSAs No parameters are required Command mode All show ip ospf database summary advertising route...

Page 104: ...mation Displays OSPFv3 summary ranges Command mode All show ipv6 ospf area virtual link 1 3 Displays the current OSPFv3 virtual link settings Command mode All show ipv6 ospf area virtual link information Displays information about all the configured virtual links Command mode All show ipv6 ospf border routers Displays OSPFv3 routes to an ABR or ASBR Command mode All show ipv6 ospf host 1 128 Displ...

Page 105: ...3 redistribution information to be applied to routes learned from the route table Command mode All show ipv6 ospf request list nbr router ID IP address Displays the OSPFv3 request list If no router ID is supplied it displays the information about all the current neighbors Command mode All show ipv6 ospf retrans list nbr router ID IP address Displays the OSPFv3 retransmission list If no router ID i...

Page 106: ...dary Router Redistributing External Routes from connected metric 10 metric type asExtType1 no tag set Number of Areas in this router 1 Area 0 0 0 0 Number of interfaces in this area is 1 Number of Area Scope Lsa 7 Checksum Sum 0x28512 Number of Indication Lsa 0 SPF algorithm executed 2 times Ospfv3 Interface Information Interface Id 1 Instance Id 0 Area Id 0 0 0 0 Local Address fe80 222 ff fe7d 5d...

Page 107: ... information If no parameter is supplied it displays condensed information Command mode All show ipv6 ospf database intra prefix detail hex Displays Intra Area Prefix LSAs database information If no parameter is supplied it displays condensed information Command mode All show ipv6 ospf database link detail hex Displays Link LSAs database information If no parameter is supplied it displays condense...

Page 108: ... ipv6 ospf routes Command mode All Dest NextHp Cost Rt Type Area Prefix Length IfIndex 3ffe 10 0 0 0 fe80 290 69ff 30 interArea 0 0 0 0 80 fe90 b4bf vlan1 3ffe 20 0 0 0 fe80 290 69ff 20 interArea 0 0 0 0 80 fe90 b4bf vlan1 3ffe 30 0 0 0 vlan2 10 intraArea 0 0 0 0 80 3ffe 60 0 0 6 fe80 211 22ff 10 interArea 0 0 0 0 128 fe33 4426 vlan2 ...

Page 109: ... Displays the current RIP configuration Command mode All show ip rip interface IP interface number port port alias or number Displays the current RIP interface configuration For more information see page 110 Command mode All show ip rip redistribute Displays the current RIP route redistribute configuration Command mode All show ip rip routes Displays RIP routes For more information see page 110 Co...

Page 110: ... routes RIP Interface Information The following command displays RIP user information show ip rip interface interface number Command mode All IP Routing 30 1 1 0 24 directly connected 3 0 0 0 8 via 30 1 1 11 metric 4 4 0 0 0 16 via 30 1 1 11 metric 16 10 0 0 0 8 via 30 1 1 2 metric 3 20 0 0 0 8 via 30 1 1 2 metric 2 RIP USER CONFIGURATION RIP ON update 30 RIP on Interface 49 101 1 1 10 enabled ver...

Page 111: ...tination IPv6 address Command mode All show ipv6 route gateway IPv6 gateway address Displays routes to a single gateway Command mode All show ipv6 route interface interface number Displays routes on a single interface Command mode All show ipv6 route static Displays the current static route configuration Command mode All show ipv6 route summary Displays a summary of IPv6 routing information includ...

Page 112: ...ute Command mode All Note that the first number inside the brackets represents the metric and the second number represents the preference for the route IPv6 Routing Table 3 entries Codes C Connected S Static O OSPF M Management Gateway S 0 1 20 via 2001 2 3 4 1 Interface 2 C 2001 2 3 4 64 1 1 via Interface 2 C fe80 20f 6aff feec f701 128 1 1 ...

Page 113: ...re information see page 113 Command mode All show ipv6 neighbors find IPv6 address Displays a single IPv6 Neighbor Cache entry by IP address Command mode All show ipv6 neighbors interface port port alias or number Displays IPv6 Neighbor Cache entries on a single port Command mode All show ipv6 neighbors static Displays static IPv6 Neighbor Cache entries Command mode All show ipv6 neighbors vlan VL...

Page 114: ...ormation includes information about all configured prefixes The following command displays IPv6 Neighbor Discovery prefix information for an interface show ipv6 prefix interface interface number Command mode All Codes A Address P Prefix Advertisement D Default N Not Advertised L On link Flag is set A Autonomous Flag is set AD 10 64 LA Valid lifetime 2592000 Preferred lifetime 604800 P 20 64 LA Val...

Page 115: ...ation shows the status of each ECMP route configured on the switch Current ecmp static routes Destination Mask Gateway If GW Status 10 10 1 1 255 255 255 255 100 10 1 1 1 up 200 20 2 2 1 down 10 20 2 2 255 255 255 255 10 233 3 3 1 up 10 20 2 2 255 255 255 255 10 234 4 4 1 up 10 20 2 2 255 255 255 255 10 235 5 5 1 up ECMP health check ping interval 1 ECMP health check retries number 3 ECMP Hash Mec...

Page 116: ...address Displays a single IGMP multicast group by its IP address Command mode All show ip igmp groups detail IP address Displays details about an IGMP multicast group including source and timer information Command mode All show ip igmp groups interface port port alias or number Displays all IGMP multicast groups on a single port Command mode All show ip igmp groups portchannel 1 128 Displays all I...

Page 117: ... for the specified VLAN Command mode All show ip igmp profile 1 16 Displays information about the current IGMP filter Command mode All show ip igmp querier port port alias or number Displays IGMP Querier information for a particular port Command mode All show ip igmp querier vlan VLAN ID 1 4094 Displays IGMP Querier information for a particular VLAN For details see page 118 Command mode All show i...

Page 118: ...onds Querier election type IPv4 or MAC and address Query interval Querier startup interval Maximum query response interval Querier robustness value IGMP version number Current IGMP Querier information IGMP Querier information for vlan 1 Other IGMP querier none Switch querier enabled current state Querier Switch querier type Ipv4 address 1 1 1 1 Switch querier general query interval 125 secs Switch...

Page 119: ...er is connected IGMP version Mrouter expiration Maximum query response time Querier s Robustness Variable QRV Querier s Query Interval Code QQIC Total entries 5 Total IGMP groups 2 Note The Total IGMP groups number is computed as the number of unique Group Vlan entries Note Local groups 224 0 0 x are not snooped and will not appear Source Group VLAN Port Version Mode Expires Fwd 10 1 1 1 232 1 1 1...

Page 120: ...P source address IGMP group address VLAN and port Type of IPMC group Expiration timer value Total number of displayed ipmc groups 4 Legend possible values in Type column SH static host DR dynamic registered SP static primary DU dynamic unregistered SB static backup M mrouter O other Source Group Vlan Port Type Timeleft 232 0 0 1 1 DU 6 sec 232 0 0 2 1 DU 6 sec 232 0 0 3 1 DU 6 sec 232 0 0 4 1 DU 6...

Page 121: ...cified IPv6 address Command mode All show ipv6 mld groups interface port port alias or number Displays MLD groups on a single interface port Command mode All show ipv6 mld groups portchannel 1 128 Displays groups on a single port channel Command mode All show ipv6 mld groups vlan VLAN ID 1 4094 Displays groups on a single VLAN Command mode All show ipv6 mld interface 1 126 Displays information for...

Page 122: ...n Source Displays the link local address of the reporter Port Vlan Displays the port vlan on which the general query is received Interface Displays the interface number on which the general query is received QRV Displays the Querier s robustness variable value QQIC Displays the Querier s query interval code MaximumResponse Delay Displays the configured maximum query response time Version Displays ...

Page 123: ...ax and Usage show ip vrrp Displays the current VRRP parameters Command mode All show ip vrrp group Displays the current configuration information for the virtual router group Command mode All show ip vrrp group track Displays the current configuration for priority tracking for the virtual router Command mode All show ip vrrp information Displays VRRP information For details see page 124 Command mo...

Page 124: ...ter identifies virtual routers which are not owned by this device Priority value During the election process the virtual router with the highest priority becomes master Activity status master identifies the elected master virtual router backup identifies that the virtual router is in backup mode init identifies that the virtual router is waiting for a startup event For example once it receives a s...

Page 125: ...Pv4 interface address and subnet mask IPv6 address and prefix VLAN assignment Status up down or disabled Interface information 1 IP4 192 168 49 50 255 255 255 0 192 168 49 255 vlan 1 DOWN 2 IP6 3003 0 0 0 0 0 0 5 64 vlan 2 up fe80 213 aff fe4f 7c02 128 IP4 192 168 50 50 255 255 255 0 192 168 50 255 vlan 4095 up Routed Port Interface Information Loopback interface information lo1 192 168 48 48 255 ...

Page 126: ...Status of ICMP redirects Status of Neighbor Discovery ND Duplicate Address Detection DAD Status of Neighbor Discovery router advertisements Interface information 2 IP6 2001 0 0 0 225 3ff febb bb15 64 vlan 1 up fe80 225 3ff febb bb15 Link local address fe80 225 3ff febb bb15 Global unicast address es 2001 225 3ff febb bb15 64 Anycast address es Not Configured Joined group address es ff02 1 ff02 2 f...

Page 127: ...tries in the Path MTU cache The PMTU field indicates the maximum packet size in octets that can successfully traverse the path from the switch to the destination node It is equal to the minimum link MTU of all the links in the path to the destination node Path MTU Discovery info Max Cache Entry Number 10 Current Cache Entry Number 2 Cache Timeout Interval 10 minutes Destination Address Since PMTU ...

Page 128: ...address 0 0 0 0 Server 2 address 0 0 0 0 Server 3 address 0 0 0 0 Server 4 address 0 0 0 0 Server 5 address 0 0 0 0 Current BOOTP relay option 82 settings OFF Current BOOTP relay option 82 policy Replace Current DHCP Snooping settings Off DHCP Snooping is configured on the following VLANs empty Insertion of option 82 information is Disable Interface Trusted Rate limit pps 1 No none 2 No none 3 No ...

Page 129: ...s VLAN number and operational status Default gateway information Metric for selecting which configured gateway to use gateway number IP address and health status BootP relay settings IP forwarding settings including the forwarding status of directed broadcasts and the status of ICMP re directs Network filter settings if applicable Route map settings if applicable ...

Page 130: ...l show ikev2 ca cert Displays the CA certificate Command mode All show ikev2 host cert Displays the host certificate Command mode All show ikev2 identity Displays IKEv2 identity information Command mode All show ikev2 preshare key Displays the IKEv2 preshare key Command mode All show ikev2 proposal Displays the IKEv2 proposal Command mode All show ikev2 retransmit interval Displays the IKEv2 retra...

Page 131: ...and the Diffie Hellman DH group which determines the strength of the key used in the key exchange process Higher DH group numbers are more secure but require additional time to compute the key The local preshare key Whether IKEv2 is using IPv4 or IPv6 addresses as the ID type Security Association Database SAD entries if applicable IKEv2 retransmit time 20 IKEv2 cookie notification disable IKEv2 au...

Page 132: ...information Command mode All show ipsec manual policy 1 10 Displays manual policy information See page 133 for sample output Command mode All show ipsec sa Displays all security association information Command mode All show ipsec spd Displays all security policy information Command mode All show ipsec traffic selector 1 10 Displays IPsec traffic selector information Command mode All show ipsec tra...

Page 133: ...nd SPI ESP inbound encryption key ESP inbound authentication key ESP outbound SPI ESP outbound encryption key ESP outbound authentication key The interface to which this manual policy has been applied IPsec manual policy 1 IP Address 2002 0 0 0 0 0 0 151 Associated transform ID 1 Associated traffic selector ID 1 IN ESP SPI 9900 IN ESP encryption KEY 3456789abcdef012 IN ESP authentication KEY 23456...

Page 134: ...Snooping is configured on the following VLANs empty Insertion of option 82 information is Disable Interface Trusted Rate limit pps 1 No none 5 No none 6 No none 7 No none 8 No none 9 No none 10 No none 11 No none 12 No none 13 No none 14 No none 15 No none Mac Address IP Address Lease seconds Type VLAN Interface 00 00 01 00 02 01 10 0 0 1 1600 dynamic 100 port 1 02 1c 5f d1 18 9c 210 38 197 63 863...

Page 135: ...rface information To view sample output see page 136 Command mode All show ip pim mroute Displays information about PIM multicast routes For more information about displaying PIM multicast route information see page 138 Command mode All show ip pim neighbor interface number port port alias or number Displays PIM neighbor information To view sample output see page 137 Command mode All show ip pim n...

Page 136: ...IM Interface Information The following command displays information about PIM interfaces show ip pim interface Command mode All PIM interface information includes the following for each PIM interface IP address Name and ID Version and mode Neighbor count Query interval Designated Router address Designated Router priority value PIM Component Information Component Id 1 PIM Mode sparse PIM Version 2 ...

Page 137: ...me and ID of interface used to reach the PIM neighbor Up time the time since this neighbor became the neighbor of the local router Expiry Time the minimum time remaining before this PIM neighbor expires Version number Designated Router priority and mode Component ID Override interval LAN delay interval Neighbour IfName Idx Uptime Expiry Ver DRPri Mode CompId Override Lan Address Interval Delay 40 ...

Page 138: ...outes of each type Command mode All show ip pim mroute flags s r w Displays PIM multicast routes based on the selected entry flags Enter flags in any combination s Shortest Path Tree SPT bit r Rendezvous Point Tree RPT bit w Wildcard bit Command mode All show ip pim mroute group multicast group IP address Displays PIM multicast routes for the selected multicast group Command mode All show ip pim m...

Page 139: ... Flags S SPT Bit W Wild Card Bit R RPT Bit Timers Uptime Expires 8 8 8 111 224 2 2 100 00 42 03 00 01 11 Incoming Interface net44 RPF nbr 44 44 44 1 Route Flags S Outgoing InterfaceList net17 Forwarding Sparse 00 42 03 224 2 2 100 00 45 15 RP 88 88 88 2 Incoming Interface net5 RPF nbr 5 5 5 2 Route Flags WR Outgoing InterfaceList net17 Forwarding Sparse 00 45 15 Total number of G entries 1 Total n...

Page 140: ...igured for each reserved packet queue Command mode All show qos protocol packet control information protocol Displays of mapping of protocol packet types to each packet queue number The status indicates whether the protocol is running or not running Command mode All show qos random detect Displays WRED and ECN information For details see page 142 Command mode All show qos transmit queue Displays t...

Page 141: ...1 1 2 2 2 3 3 2 3 4 4 5 5 5 7 6 6 15 7 7 0 Current priority to Multicast COS queue information Priority mcCOSq Weight 0 8 2 1 8 2 2 9 5 3 9 5 4 10 7 5 10 7 6 11 15 7 11 15 Current port priority information Port Priority COSq Weight 1 0 0 1 2 0 0 1 3 0 0 1 4 0 0 1 5 0 0 1 9 0 0 1 13 0 0 1 64 0 0 1 MGT 0 0 1 Table 61 802 1p Priority to COS Queue Parameter Descriptions Parameter Description Priority ...

Page 142: ...tions Parameter Description Port Displays the port alias Priority Displays the 802 1p Priority level COSq Displays the Class of Service queue Weight Displays the scheduling weight Current wred and ecn configuration Global ECN Disable Global WRED Disable WRED TcpMinThr TcpMaxThr TcpDrate NonTcpMinThr NonTcpMaxThr NonTcpDrate TQ0 Dis 0 0 0 0 0 0 TQ1 Dis 0 0 0 0 0 0 TQ2 Dis 0 0 0 0 0 0 TQ3 Dis 0 0 0 ...

Page 143: ...trol group 1 256 Displays ACL group information Command mode All show access control list 1 256 Displays ACL list information For details see page 144 Command mode All show access control list6 1 128 Displays IPv6 ACL list information For details see page 146 Command mode All show access control log Displays the current ACL log parameters Command mode All show access control vmap 1 128 Displays VM...

Page 144: ...e specified ACL Command mode All show access control list 1 256 log Displays the current IPv4 ACL log state Command mode All show access control list 1 256 meter Displays the current metering parameters for the specified ACL Command mode All show access control list 1 256 mirror Displays the current port mirroring parameters for the specified ACL Command mode All show access control list 1 256 pac...

Page 145: ...et committed rate 64 Set max burst size 32 Re Mark Set use of TOS precedence to disabled Packet Format Ethernet format None Tagging format Any IP format None Actions Deny Statistics enabled Mirror Target Configuration Mirror target destination port Egress port for mirror target 4 Filter 1 profile route map 16 IPv4 Protocol 17 Actions Permit dscp 22 Statistics enabled Installed on Port 16 Table 65 ...

Page 146: ... IPv6 Access Control List Information Commands Command Syntax and Usage show access control list6 1 128 Displays the current ACL parameters Command mode All show access control list6 1 128 ipv6 Displays the current IPv6 parameters for the specified ACL Command mode All show access control list6 1 128 log Displays the current IPv6 ACL log state Command mode All show access control list6 1 128 meter...

Page 147: ... Options Command Syntax and Usage show rmon Displays all RMON information Command mode All show rmon alarm 1 65535 Displays RMON Alarm information For details see page 149 Command mode All show rmon event 1 65535 Displays RMON Event information For details see page 150 Command mode All show rmon history 1 65535 Displays RMON History information For details see page 148 Command mode All ...

Page 148: ... 2 2 1 1 20 30 5 5 4 1 3 6 1 2 1 2 2 1 1 19 30 5 5 5 1 3 6 1 2 1 2 2 1 1 24 1800 5 5 Index Owner 1 dan Table 68 RMON History Parameter Descriptions Parameter Description Index Displays the index number that identifies each history instance IFOID Displays the MIB Object Identifier Interval Displays the time interval for each sampling bucket Rbnum Displays the number of requested buckets which is th...

Page 149: ...ing thresholds Sample Displays the method of sampling the selected variable and calculating the value to be compared against the thresholds as follows abs absolute value the value of the selected variable is compared directly with the thresholds at the end of the sampling interval delta delta value the value of the selected variable at the last sample is subtracted from the current value and the d...

Page 150: ...pe Last Sent Description 1 both 0D 0H 1M 20S Event_1 2 none 0D 0H 0M 0S Event_2 3 log 0D 0H 0M 0S Event_3 4 trap 0D 0H 0M 0S Event_4 5 both 0D 0H 0M 0S Log and trap event for Link Down 10 both 0D 0H 0M 0S Log and trap event for Link Up 11 both 0D 0H 0M 0S Send log and trap for icmpInMsg 15 both 0D 0H 0M 0S Send log and trap for icmpInEchos Index Owner 1 dan Table 70 RMON Event Parameter Descriptio...

Page 151: ...about each port on the G8264CS including Port alias or port number Port description Port speed and Duplex mode half full or any Flow control for transmit and receive no yes or both Link status up down or disabled Alias Port Speed Duplex Flow Ctrl Link Description TX RX 1 1 10000 full no no down 1 60 60 10000 full no no down 60 61 61 10000 full no no up 61 62 62 10000 full no no up 62 63 63 10000 f...

Page 152: ...ingress VLAN tagging or not Whether the port uses PVID Native VLAN tagging or not Port VLAN ID PVID Port description VLAN membership Alias Port Tag RMON Lrn Fld PVID DESCRIPTION VLAN s Trk NVLAN 1 1 n d e e 1 1 2 2 n d e e 1 1 3 3 n d e e 1 1 4 4 n d e e 1 1 5 5 n d e e 1 1 9 9 n d e e 1 1 13 13 n d e e 1 1 14 14 n d e e 1 1 15 15 n d e e 1 1 16 16 n d e e 1 1 17 17 n d e e 1 1 18 18 n d e e 1 1 1...

Page 153: ...S QS CBL 3M Accepted 7 Q10G 2 C Down UnEqQD 3 0m BLADE NETWORK BN QS QS CBL 3M Accepted 8 Q10G 2 D Down UnEqQD 3 0m BLADE NETWORK BN QS QS CBL 3M Accepted 9 Q10G 3 A LINK UnEqQD 5 0m IBM Amphenol 00D5814 N13692 Accepted 10 Q10G 3 B LINK UnEqQD 5 0m IBM Amphenol 00D5814 N13692 Accepted 11 Q10G 3 C LINK UnEqQD 5 0m IBM Amphenol 00D5814 N13692 Accepted 12 Q10G 3 D LINK UnEqQD 5 0m IBM Amphenol 00D581...

Page 154: ...transceiver information show interface port port alias or number transceiver details Command mode All Port TX Link TXFlt Volts DegsC TXuW RXuW Transceiver Approve 3 Q10G 1 C Ena LINK N A N A N A N A N A PasQD 1 0m Approved BLADE NETWORK Part BN QS QS CBL 1M Date 110925 S N 3548Y350VT19P8EM ...

Page 155: ...s Virtual Machine information for the selected port For a sample output see page 158 Note The selected port must be a server port Command mode All show virt portchannel 1 128 Displays Virtual Machine information for the selected portchannel For a sample output see page 158 Command mode All show virt vm v r Displays all Virtual Machine information v displays verbose information r rescans data cente...

Page 156: ...include displays parameters matching the specified expression exclude displays parameters not matching the specified expression section displays parameters matching the specified section begin displays parameters beginning from the first parameter that matches the specified expression For a sample output see page 160 Command mode All show virt vmprofile profile name Displays the current VM Profile...

Page 157: ... Current VMware specific settings ESX ESXi to vCenter heartbeat UDP port number 902 Current VM profiles None VM group 1 current configuration Current VM group s secure mode Disabled Current Group Ports 13 17 Current Group vPorts empty VLAN 2 VLAN Tagging Disabled Current GROUP VMAP Config is empty VM group 2 current configuration empty VM MAC OUI Vendor Name 00 50 56 VMware 00 0c 29 VMware 00 05 6...

Page 158: ...fic portchannel show virt portchannel 1 128 Command mode All IP Address VMAC Address Index Port VM Group Profile Check status 3 3 3 2 00 50 56 a5 32 f7 0 23 40 40 31 1 00 50 56 a5 4e 9f 1 23 30 test30 Number of entries 2 IP Address VMAC Address Index Port VM Group Profile Check status 5 5 5 2 00 50 56 a5 17 07 2 ST 5 0 0 0 0 00 50 56 a5 4b 03 4 ST 5 5 5 5 3 00 50 56 af 20 6f 3 ST 5 Number of entri...

Page 159: ...mand displays VM Check information show virt vmcheck Command mode All IP Address VMAC Address Index Port VM Group Profile Check Status 127 31 46 50 00 50 56 4e 62 f5 4 3 127 31 46 10 00 50 56 4f f2 85 2 4 127 31 46 51 00 50 56 72 ec 86 1 3 127 31 46 11 00 50 56 7c 1c ca 3 4 127 31 46 25 00 50 56 9c 00 c8 5 4 127 31 46 15 00 50 56 9c 21 2f 0 4 127 31 46 35 00 50 56 9c 29 29 6 3 Number of entries 7 ...

Page 160: ...mmand mode All VM Profile Information The following command displays VM Profile parameters show virt vmprofile Command mode All VM group 1 current configuration Current VM group s secure mode Disabled Current Group Ports 13 17 Current Group vPorts empty VLAN 2 Tagging Trunk mode Disabled Current GROUP VMAP Config is empty Bandwidth Profile for VM 00 50 56 a5 32 f7 is enabled TX Rate 1024 Burst 204...

Page 161: ...list of VMware hosts For a sample output see page 162 Command mode All show virt vmware showhost host UUID host IP address host name Displays detailed information about a specific VMware host For a sample output see page 163 Command mode All show virt vmware showvm VM UUID VM IP address VM name Displays detailed information about a specific Virtual Machine VM For a sample output see page 164 Comma...

Page 162: ...he following UUID associated with the VMware host Name or IP address of the VMware host Current Settings Hello Disabled Hello timer 23 seconds Hello ports 13 Hello address 10 36 30 1 UUID Name s IP Address 80a42681 d0e5 5910 a0bf bd23bd3f7803 127 12 41 30 3c2e063c 153c dd11 8b32 a78dd1909a69 127 12 46 10 64f1fe30 143c dd11 84f2 a8ba2cd7ae40 127 12 44 50 c818938e 143c dd11 9f7a d8defa4b83bf 127 12 ...

Page 163: ... d8 vmnic3 vSwitch1 00 00 c9 da f5 dc vusb0 None 5e f3 fc 4f f0 e7 Port Groups and their vSwitches on the host Lenovo_test vSwitch0 VM Network vSwitch0 Management Network vSwitch0 Lenovo_Default vSwitch1 Lenovo_test30 vSwitch1 Lenovo_test40 vSwitch1 VM Network 2 vSwitch1 Lenovo_test50 vSwitch1 Lenovo_unu vSwitch1 Detailed information about host and VM interfaces on this hypervisor MAC Address 5c f...

Page 164: ...ot Available VM IP Address 3 3 3 2 VM UUID 422547ad 0ef7 5992 1184 63aa9030377e Current VM Host 10 241 32 131 vSwitch vSwitch1 Port Group Lenovo_Default VLAN ID 0 Rescanning data center Please wait UUID Name s IP Address 42312c26 2a75 c05b eed2 6d837ac46fdd SNSC 4225801c dfdb 061d 65e4 4e4860d6fbcf arch2_06 42253440 6de7 7416 8a29 fb462114ead0 arch2_05 422f49df bf88 e4d5 6cee 047a626029aa arch2_4_...

Page 165: ...on about each vNIC The all option displays information about all the vNICs For a sample output see page 166 Command mode All show vnic vnicgroup 1 32 Displays information about each vNIC Group including Status enabled or disabled VLAN assigned to the vNIC Group Uplink Failover status enabled or disabled Link status for each vNIC up down or disabled Port link status for each port associated with th...

Page 166: ...llocated to the vNIC vNIC type default or FCoE MAC address of the vNIC if applicable Link status up down or disabled Current Settings for vNIC Feature State On vNICs 11 1 Enabled Max Bandwidth increments of 100Mbps 25 vNIC Group 32 Enabled VLAN 32 vNICs 11 1 Ports empty Uplink Port 20 Uplink failover Enabled vNIC vNICGroup Vlan MaxBandwidth Type MACAddress Link 1 1 10 10 25 default none down 50 2 ...

Page 167: ...udes the following for each vNIC Group Status enabled or disabled VLAN assigned to the vNIC Group Uplink Failover status enabled or disabled Link status for each vNIC up down or disabled Port link status for each port associated with the vNIC Group up down or disabled vNIC Group 1 enabled VLAN 3001 Failover enabled vNIC Link 1 1 up 7 1 up 8 1 down 9 1 up 10 1 up Port Link 2 up UplinkPort Link 10 u...

Page 168: ... profile ports Displays all EVB profile parameters including ports Command mode All show virt evb vdp tlv Displays all active Virtual Station Interface VSI Discovery and Configuration Protocol VDP type length values TLVs Command mode All show virt evb vdp vm Displays all associated Virtual Machines VMs For a sample output see page 170 Command mode All show virt evb vsidb VSI database number 1 Disp...

Page 169: ...000 TxBurst 64 RxRate 10000000 RxBurst 64 ACL Index 1 SRC MAC 00 00 00 00 00 00 SRC MAC MASK 00 00 00 00 00 00 DST MAC ff ff ff ff ff ff DST MAC MASK ff ff ff ff ff ff VLAN 0 0x000 Ether Type 0x0800 IPv4 SRC IP 0 0 0 0 SRC IP MASK 0 0 0 0 DST IP 0 0 0 0 DST IP MASK 0 0 0 0 TOS 0 0x00 ACL Action deny ACL Index 2 SRC MAC 00 00 00 00 00 00 SRC MAC MASK 00 00 00 00 00 00 DST MAC ff ff ff ff ff ff DST ...

Page 170: ...Ether Type 0x0800 IPv4 SRC IP 0 0 0 0 SRC IP MASK 0 0 0 0 DST IP 0 0 0 0 DST IP MASK 0 0 0 0 TOS 0 0x00 ACL Action deny ACL Index 2 SRC MAC 00 00 00 00 00 00 SRC MAC MASK 00 00 00 00 00 00 DST MAC ff ff ff ff ff ff DST MAC MASK ff ff ff ff ff ff VLAN 0 0x000 Ether Type 0x0000 ACL Action permit Total number of VM Association entries 2 TypeId MAC Vlan Port TxACL RxEntry ACLs 9 00 50 56 95 30 ec 50 1...

Page 171: ...the current global ETS or PFC parameters information displays global information priority group displays the current global Priority Group parameters Command mode All show cee information Displays all CEE information Command mode All show cee information dcbx port port alias or number Displays all DCBX information for the specified port or range of ports Command mode All show cee information pfc p...

Page 172: ...how cee information dcbx port port alias or number control Displays information about the DCBX Control state machine for the specified port or range of ports For details see page 173 Command mode All show cee information dcbx port port alias or number ets Displays information about the DCBX ETS state machine for the specified port or range of ports For details see page 176 Command mode All show ce...

Page 173: ...ber that changes each time a DCBX parameter in one or more DCB feature TLVs changes Sequence number of the most recent DCB feature TLV that has been acknowledged DCBX Port Control State machine Info Alias Port OperStatus OperVer MaxVer SeqNo AckNo 1 1 enabled 0 0 2 0 2 2 enabled 0 0 0 0 3 3 enabled 0 0 0 0 4 4 enabled 0 0 2 0 5 5 enabled 0 0 0 0 9 9 enabled 0 0 0 0 13 13 enabled 0 0 0 0 14 14 enab...

Page 174: ... 1 No disabled No 4 4 ETS enabled No Yes 0 0 No 1 No disabled No 4 4 PFC enabled No Yes 0 0 No 1 No disabled No 4 4 AppProt disabled No Yes 0 0 No 1 No disabled No 5 5 ETS enabled No Yes 0 0 No 1 No disabled No 5 5 PFC enabled No Yes 0 0 No 1 No disabled No 5 5 AppProt disabled No Yes 0 0 No 1 No disabled No Table 77 DCBX Feature Information Fields Parameter Description Alias Displays each port s ...

Page 175: ...Information Commands 175 OperMode Operating status negotiated with the peer device enabled or disabled Syncd Synchronization status between this port and the peer Yes or No Table 77 DCBX Feature Information Fields Parameter Description ...

Page 176: ... PGID0 2 2 4 PGID2 PGID0 PGID0 2 2 5 PGID2 PGID0 PGID0 2 2 6 PGID2 PGID0 PGID0 2 2 7 PGID2 PGID0 PGID0 DCBX Port Priority Group Bandwidth Allocation Table Alias Port PrioGrp BwDes BwOper BwPeer 2 2 0 10 10 50 2 2 1 50 50 50 2 2 2 40 40 0 Table 78 DCBX Feature Information Fields Parameter Description DCBX Port Priority Group Priority Allocation Table Alias Displays each port s alias Port Displays e...

Page 177: ... s alias Port Displays each port s number PrioGrp Displays each port s priority group BwDes Bandwidth allocation configured on this switch BwOper Bandwidth allocation negotiated with the peer operating bandwidth BwPeer Bandwidth allocation configured on the peer Table 78 DCBX Feature Information Fields continued Parameter Description ...

Page 178: ...bleDesr Status configured on this switch EnableOper Status negotiated with the peer operating status EnablePeer Status configured on the peer DCBX Port Priority Flow Control Table Alias Port Priority EnableDesr EnableOper EnablePeer 2 2 0 disabled disabled disabled 2 2 1 disabled disabled disabled 2 2 2 disabled disabled disabled 2 2 3 enabled disabled disabled 2 2 4 disabled disabled disabled 2 2...

Page 179: ...nabled 2 2 1 disabled disabled disabled 2 2 2 disabled disabled disabled 2 2 3 enabled enabled enabled 2 2 4 disabled disabled disabled 2 2 5 disabled disabled disabled 2 2 6 disabled disabled disabled 2 2 7 disabled disabled disabled FIP Snooping Priority Information Protocol ID 0x8914 Selector Field 0 Organizationally Unique ID 0x1b21 Alias Port Priority EnableDesr EnableOper EnablePeer 2 2 0 en...

Page 180: ...col ID Identifies the supported Application Protocol Selector Field Specifies the Application Protocol type as follows 0 Ethernet Type 1 TCP socket ID Organizationally Unique ID DCBX TLV identifier Alias Port alias Port Port number Priority 802 1p value EnableDesr Status configured on this switch EnableOper Status negotiated with the peer operating status EnablePeer Status configured on the peer ...

Page 181: ...owing Number of Class of Service queues COSq configured 802 1p mapping to Priority Groups and Class of Service queues Bandwidth allocated to each Priority Group Table 80 ETS Information Options Command Syntax and Usage show cee global ets information Displays global ETS information Command mode All Global ETS information Number of COSq 8 Mapping of 802 1p Priority to Priority Groups Priority PGID ...

Page 182: ...ptions Command Syntax and Usage show cee port port alias or number pfc Displays PFC information Command mode All show cee port port alias or number pfc information Displays PFC information Command mode All show cee port port alias or number pfc priority 0 7 Displays PFC information Command mode All PFC information for Port 1 PFC ON Priority State Description 0 Dis 1 Dis 2 Dis 3 Ena 4 Dis 5 Dis 6 D...

Page 183: ...mode All show fcoe fips fcoe Displays FCoE connections learned detected Command mode All show fcoe fips information Displays FIP Snooping information for all ports Command mode All show fcoe fips port port alias or number information Displays FIP Snooping FIPS information for the specified port or ports including a list of current FIPS ACLs Command mode All show fcoe fips vlans Displays VLAN infor...

Page 184: ...rt has been configured to automatically detect FCF It has currently detected to have 0 FCF connecting to it FIPS ACLs configured on this port SMAC 00 c0 dd 13 9b 6f action deny SMAC 00 c0 dd 13 9b 70 action deny SMAC 00 c0 dd 13 9b 6d action deny SMAC 00 c0 dd 13 9b 6e action deny DMAC 00 c0 dd 13 9b 6f ethertype 0x8914 action permit DMAC 00 c0 dd 13 9b 70 ethertype 0x8914 action permit DMAC 00 c0...

Page 185: ...de All show fcns database Displays FC name server database information For details see page 187 Command mode All show fdmi database Displays fibre channel management interface database information Command mode All show fcs database Displays fabric configuration status database information For details see page 188 Command mode All show fcoe database Displays Fibre Channel over Ethernet database inf...

Page 186: ...ame zone name Displays information for the specified FC zone Command mode All show zoneset Lists all FC zonesets Command mode All show zoneset name zoneset name Displays information for the specified FC zoneset Command mode All show zoneset active Displays the currently active FC zoneset Command mode All show interface fc information Displays FC port information For details see page 190 Command mo...

Page 187: ... lsdb Display the link state db information of the FC fabric Command mode All Table 83 Fibre Channel Information Commands Command Syntax and Usage Port FCID Port WWN Node WWN 1 010c00 20 00 00 11 0d 64 f5 00 20 00 00 11 0d 64 f5 00 2 010c01 20 01 00 11 0d 64 f4 00 20 01 00 11 0d 64 f4 00 Total number of entries 2 FCID TYPE PWWN 010100 N 20 02 00 11 0d 8a 10 00 010400 N 20 3a 00 80 e5 2d 1a 30 010c...

Page 188: ...rwarding show fcf Command mode All Fabric Name 10 00 74 99 75 22 48 00 Switch Domain Id 1 Switch Mgmt Id 010000 Switch WWN 10 00 74 99 75 22 48 00 Switch Ports Port PWWN 55 20 02 74 99 75 22 48 00 63 00 00 00 00 00 00 00 00 64 00 00 00 00 00 00 00 00 FCF 1 in VLAN 1002 NPV Gw FC MAP 0x0efc00 Priority 128 FKA Adv 8 FC Port 55 60 63 64 FCF 2 in VLAN 1003 NPV Gw FC MAP 0x0efc01 Priority 128 FKA Adv 8...

Page 189: ... npv traffic mapping Command mode All Zone Status Information The following command displays status information about FC zones show zone status Command mode All VLAN Source Ports NP Uplink Dest Ports 1002 55 60 63 64 1003 56 59 Default Zone Permit FC Zoning Limits MAX ZONES per ZONESET 64 MAX MEMBERS per ZONE 20 MAX ZONESETS 4 MAX ZONES 200 MAX ALIASES 200 MAX MEMBERS 1000 ...

Page 190: ...ggedIn Eth Eth Inactive Unknown 61 61 Down Downed NotLoggedIn Eth Eth Inactive Unknown 62 62 Down Downed NotLoggedIn Eth Eth Inactive Unknown 63 63 Down Downed NotLoggedIn Eth Eth Inactive Unknown 64 64 Online Downed NotLoggedIn Eth Eth Inactive Unknown Table 84 Fibre Channel Port Information Descriptions Parameter Description Alias Port alias Port Port number Admin State Configured state of the p...

Page 191: ...LinkSpeed Auto LinkState Inactive LoginStatus NotLoggedIn OperationalState Offline RunningType Unkn Port Number 54 AdminState Online ConfigType F EPortIsolationReason NotApplicable LinkSpeed Auto LinkState Inactive LoginStatus NotLoggedIn OperationalState Offline RunningType Unkn Port Number 55 AdminState Online ConfigType Eth EPortIsolationReason NotApplicable LinkSpeed 10000 LinkState Inactive L...

Page 192: ...nd mode All Use the dump command to dump all switch information available 10K or more depending on your configuration This data is useful for tuning and debugging switch performance If you want to capture dump data to a file set your communication software on your workstation to capture session data prior to issuing the dump commands ...

Page 193: ...ion data prior to issuing the dump command For details see page 295 Command mode All show layer3 counters Displays Layer 3 statistics Command mode All show ntp counters Displays Network Time Protocol NTP Statistics See page 293 for a sample output and a description of NTP Statistics Command mode All show snmp server counters Displays SNMP statistics See page 289 for sample output Command mode All ...

Page 194: ...ueue number 0 7 drop Displays the total number of packets and bytes either successfully transmitted or dropped for each queue of the specified ports queue number filters the output to the specified queue number drop lists only the queues with dropped traffic non zero counters for dropped packets bytes counters See page 212 for sample output Command mode All show interface port port alias or number...

Page 195: ...atistics for the port Command mode All show interface port port alias or number rmon counters Displays Remote Monitoring RMON statistics for the port See page 209 for sample output Command mode All show ip bootp relay counters interface port alias or number Displays BOOTP relay statistics for the port See page 200 for sample output Command mode All clear counters Clears statistics for all ports Co...

Page 196: ... Port Statistics Description eapolFramesRx Total number of EAPOL frames received eapolFramesTx Total number of EAPOL frames transmitted eapolStartFramesRx Total number of EAPOL Start frames received eapolLogoffFramesRx Total number of EAPOL Logoff frames received eapolRespIdFramesRx Total number of EAPOL Response Identity frames received eapolRespFramesRx Total number of Response frames received e...

Page 197: ...sponses 923 backendAccessChallenges 460 backendOtherRequestsToSupplicant 460 backendNonNakResponsesFromSupplicant 460 backendAuthSuccesses 5 backendAuthFails 458 Table 88 802 1X Authenticator Diagnostics of a Port Statistics Description authEntersConnecting Total number of times that the state machine transitions to the CONNECTING state from any other state authEapLogoffsWhileConnecting Total numb...

Page 198: ...uthenticating Total number of times that the state machine transitions from AUTHENTICATING to ABORTING as a result of an EAPOL Logoff message being received from the Supplicant authReauthsWhileAuthenticated Total number of times that the state machine transitions from AUTHENTICATED to CONNECTING as a result of a re authentication request authEapStartsWhileAuthenticated Total number of times that t...

Page 199: ...Supplicant Total number of times that the state machine receives a response from the Supplicant to an initial EAP Request and the response is something other than EAP NAK Indicates that the Supplicant can respond to the Authenticator s chosen EAP method backendAuthSuccesses Total number of times that the state machine receives an Accept message from the Authentication Server Indicates that the Sup...

Page 200: ...nterface port alias or number Command mode All BOOTP Relay statistics for port 1 Requests received from client 0 Requests relayed to server 0 Requests relayed with option 82 0 Requests dropped due to relay not allowed 0 no server or unreachable server 0 packet or processing errors 0 Replies received from server 0 Replies relayed to client 0 Replies dropped due to packet or processing errors 0 ...

Page 201: ...r of frames that have been transmitted by this port to its segment Note that a frame transmitted on the interface corresponding to this port is only counted by this object if and only if it is for a protocol being processed by the local bridging function including bridge management frames dot1PortInDiscards Count of valid frames received which were discarded that is filtered by the Forwarding Proc...

Page 202: ... in length and do not pass the Frame Check Sequence FCS check The count represented by an instance of this object is incremented when the alignmentError status is returned by the MAC service to the Logical Link Control LLC or other MAC user Received frames for which multiple error conditions obtained are according to the conventions of IEEE 802 3 Layer Management counted exclusively according to t...

Page 203: ...ed on a particular interface later than 512 bit times into the transmission of a packet Five hundred and twelve bit times corresponds to 51 2 microseconds on a 10 Mbit s system A late collision included in a count represented by an instance of this object is also considered as a generic collision for purposes of other collision related statistics dot3StatsExcessive Collisions A count of frames for...

Page 204: ...sented to the LLC dot3StatsInternalMac ReceiveErrors A count of frames for which reception on a particular interface fails due to an internal MAC sub layer receive error A frame is only counted by an instance of this object if it is not counted by the corresponding instance of either the dot3StatsFrameTooLongs object the dot3StatsAlignmentErrors object or the dot3StatsFCSErrors object The precise ...

Page 205: ... Table 91 Interface Statistics of a Port Statistics Description ifInOctets The total number of octets received on the interface including framing characters ifInUcastPkts The number of packets delivered by this sub layer to a higher sub layer which were not addressed to a multicast or broadcast address at this sub layer ifInBroadcastPkts The number of packets delivered by this sub layer to a highe...

Page 206: ... level protocols requested to be transmitted and which were addressed toa broadcast address at this sub layer including those that were discarded or not sent This object is a 64 bit version of ifOutBroadcastPkts ifOutMulticastPkts The total number of packets that higher level protocols requested to be transmitted and which were addressed to a multicast address at this sub layer including those tha...

Page 207: ...low control or because the Common Buffer Pool is full for example insufficient packet buffering HOL blocking Dis cards Discarded because of the Head Of Line HOL blocking mechanism Low priority packets are placed in a sepa rate queue and can be discarded while applications or the TCP protocol determine whether a retransmission is necessary HOL blocking forces transmission to stop until the overload...

Page 208: ...ble 92 Interface Protocol Statistics of a Port Statistics Description ipInReceives The total number of input datagrams received from interfaces including those received in error ipInHeaderErrors The number of input datagrams discarded because the IP address in their IP headerʹs destination field was not a valid address to be received at this entity the switch ipInDiscards The number of input IP da...

Page 209: ...atsPkts65to127Octets 0 etherStatsPkts128to255Octets 0 etherStatsPkts256to511Octets 1 etherStatsPkts512to1023Octets 0 etherStatsPkts1024to1518Octets 0 Table 94 RMON Statistics of a Port Statistics Description etherStatsDropEvents The total number of packets received that were dropped because of system resource constraints etherStatsOctets The total number of octets of data including those in bad pa...

Page 210: ...Frame Check Sequence FCS with an integral number of octets FCS Error or a bad FCS with a non integral number of octets Alignment Error etherStatsJabbers The total number of packets received that were longer than 1518 octets excluding framing bits but including FCS octets and had either a bad Frame Check Sequence FCS with an integral number of octets FCS Error or a bad FCS with a non integral numbe...

Page 211: ... that were greater than 255 octets in length excluding framing bits but including FCS octets etherStatsPkts512to1023 Octets The total number of packets including bad packets received that were greater than 511 octets in length excluding framing bits but including FCS octets etherStatsPkts1024to1518 Octets The total number of packets including bad packets received that were greater than 1023 octets...

Page 212: ...e 1 Tx Packets 0 Dropped Packets 0 Tx Bytes 0 Dropped Bytes 0 QoS Queue 2 Tx Packets 0 Dropped Packets 0 Tx Bytes 0 Dropped Bytes 0 QoS Queue 3 Tx Packets 0 Dropped Packets 0 Tx Bytes 0 Dropped Bytes 0 QoS Queue 7 Tx Packets 900 Dropped Packets 0 Tx Bytes 64320 Dropped Bytes 0 Table 95 QoS Queue Counter Based Statistics of a Port Statistics Description Tx Packets Total number of successfully trans...

Page 213: ...ckets 0 Dropped Packets 0 Tx Bytes 0 Dropped Bytes 0 QoS Queue 2 Tx Packets 0 Dropped Packets 0 Tx Bytes 0 Dropped Bytes 0 QoS Queue 3 Tx Packets 0 Dropped Packets 0 Tx Bytes 0 Dropped Bytes 0 QoS Queue 7 Tx Packets 0 Dropped Packets 0 Tx Bytes 0 Dropped Bytes 0 Table 96 QoS Queue Rate Based Statistics of a Port Statistics Description Tx Packets Number of successfully transmitted packets per secon...

Page 214: ... Bytes 0 Dropped Bytes 0 QoS Queue 9 Tx Packets 0 Dropped Packets 0 Tx Bytes 0 Dropped Bytes 0 QoS Queue 10 Tx Packets 0 Dropped Packets 0 Tx Bytes 0 Dropped Bytes 0 QoS Queue 11 Tx Packets 0 Dropped Packets 0 Tx Bytes 0 Dropped Bytes 0 Table 97 Multicast QoS Queue Counter Based Statistics of a Port Statistics Description Tx Packets Total number of successfully transmitted packets for the multicas...

Page 215: ...opped Bytes 0 QoS Queue 9 Tx Packets 0 Dropped Packets 0 Tx Bytes 0 Dropped Bytes 0 QoS Queue 10 Tx Packets 0 Dropped Packets 0 Tx Bytes 0 Dropped Bytes 0 QoS Queue 11 Tx Packets 0 Dropped Packets 0 Tx Bytes 0 Dropped Bytes 0 Table 98 Multicast QoS Queue Rate Based Statistics of a Port Statistics Description Tx Packets Number of successfully transmitted packets per second for the multicast QoS que...

Page 216: ...Aggregation Group LAG statistics Table 99 LAG Statistics Commands Command Syntax and Usage show interface portchannel 1 128 interface counters Displays interface statistics for the LAG Command mode All clear interface portchannel 1 128 counters Clears all the statistics on the selected LAG Command mode Privileged EXEC ...

Page 217: ...or sample output Command mode All show mac address table counters Displays FDB statistics See page 220 for sample output Command mode All show mac address table counters all Displays all FDB statistics for all FDB entries Command mode All show mac address table counters interface port port alias or number Displays FDB statistics for a particular port Command mode All show mac address table counter...

Page 218: ... sample output Command mode All show spanning tree statistics stp 1 128 Displays STP statistics for the specified Spanning Tree Group STG See page 224 for sample output Command mode All show vlag statistics Displays all vLAG statistics See page 226 for sample output Command mode All clear hotlinks Clears all Hot Links statistics Command mode Privileged EXEC clear interface port port alias or numbe...

Page 219: ...cs Commands 219 clear spanning tree statistics Clears all STP statistics Command mode Privileged EXEC clear vlag statistics Clears all vLAG statistics Command mode Privileged EXEC Table 100 Layer 2 Statistics Commands Command Syntax and Usage ...

Page 220: ...ries finds and unsuccessful searches show mac address table counters Command mode All FDB statistics are described in the following table FDB statistics current 83 hiwat 855 Table 101 Forwarding Database Statistics Statistic Description current Current number of entries in the Forwarding Database hiwat Highest number of entries recorded at any given time in the Forwarding Database ...

Page 221: ...ansmitted 0 Table 102 LACP Statistics Statistic Description Valid LACPDUs received Total number of valid LACP data units received Valid Marker PDUs received Total number of valid LACP marker data units received Valid Marker Rsp PDUs received Total number of valid LACP marker response data units received Unknown version TLV type Total number of LACP data units with an unknown version or type length...

Page 222: ...s Trigger 1 statistics Trigger Name Trigger 1 Master active 0 Backup active 0 FDB update 0 failed 0 Table 103 Hotlinks Statistics Statistic Description Master active Total number of times the Master interface transitioned to the Active state Backup active Total number of times the Backup interface transitioned to the Active state FDB update Total number of FDB update requests sent failed Total num...

Page 223: ...rors 0 Frames Discarded 0 TLVs Unrecognized 0 Neighbors Aged Out 0 Table 104 LLDP port Statistics Statistic Description Frames Transmitted Total number of LLDP frames transmitted Frames Received Total number of LLDP frames received Frames Received in Errors Total number of LLDP frames that had errors Frames Discarded Total number of LLDP frames discarded TLVs Unrecognized Total number of unrecogni...

Page 224: ...420530 11 35 54 7 20 2016 24 240073 423000 199662 11 35 53 7 20 2016 420528 11 35 54 7 20 2016 Spanning tree group 23 Port RxBpdu TxBpdu RxTCN LastTCNRx TxTCN LastTCNTx 11 39 211499 5 14 01 02 7 15 2016 101 2 11 41 7 20 2016 12 36 211499 2 13 53 06 7 15 2016 104 2 11 41 7 20 2016 13 36 211497 2 13 53 06 7 15 2016 104 2 11 41 7 20 2016 14 36 211481 2 13 53 06 7 15 2016 104 2 11 41 7 20 2016 15 36 2...

Page 225: ... Data Units OAMPDU transmitted and received Total number of unsupported OAM Protocol Data Units OAMPDU transmitted and received Local faults detected Remote faults detected OAM statistics on port 1 Information OAMPDU Tx 0 Information OAMPDU Rx 0 Unsupported OAMPDU Tx 0 Unsupported OAMPDU Tx 0 Local faults 0 Link fault records 0 Critical events 0 Dying gasps Remote faults 0 Link fault records 0 Cri...

Page 226: ...e page 227 for sample output Command mode All clear vlag statistics Clears all vLAG statistics Command mode Privileged EXEC vLAG PDU sent Role Election 10 System Info 7 Peer Instance Enable 624 Peer Instance Disable 52 FDB Dynamic Add 166079 FDB Dynamic Del 33856 FDB Inactive Add 0 FDB Inactive Del 0 Health Check 4665 ISL Hello 2126 Other 0 Unknown 0 vLAG PDU received Role Election 11 System Info ...

Page 227: ...Us sent received for enabling peer instance Peer Instance Disable Total number of vLAG PDUs sent received for disabling peer instance FDB Dynamic Add Total number of vLAG PDUs sent received for addition of FDB dynamic entry FDB Dynamic Del Total number of vLAG PDUs sent received for deletion of FDB dynamic entry FDB Inactive Add Total number of vLAG PDUs sent received for addition of FDB inactive ...

Page 228: ...e output Command mode All show ipv6 counters Displays Internet Protocol version 6 IPv6 statistics See page 235 for sample output Command mode All show ip dhcp snooping counters Displays Dynamic Host Control Protocol DHCP Snooping statistics Command mode All show ip dns counters Displays Domain Name System DNS statistics See page 243 for sample output Command mode All show ip icmp counters Displays...

Page 229: ...ent Multicast PIM statistics for all configured PIM interfaces See page 265 for sample output Command mode All show ip pim interface 1 126 loopback 1 5 port port alias or number counters Displays PIM statistics for the selected interface Command mode All show ip pim mroute count Displays statistics of various multicast entry types Command mode All show ip policy statistics Displays statistics for ...

Page 230: ...ancy Protocol VRRP See page 264 for sample output Command mode All show layer3 counters Dumps all Layer 3 statistics Use this command to gather data for tuning and debugging switch performance If you want to capture dump data to a file set your communication software on your workstation to capture session data prior to issuing the dump command Command mode All clear ip arp counters Clears Address ...

Page 231: ...ics only for a specific VLAN Command mode Privileged EXEC clear ipv6 mld counters Clears MLD statistics Command mode Privileged EXEC clear ipv6 neighbors counters Clears all IPv6 Neighbor Cache statistics from switch memory Command mode Privileged EXEC clear ip ospf counters Clears Open Shortest Path First OSPF statistics Command mode Privileged EXEC clear ipv6 ospf counters Clears Open Shortest P...

Page 232: ...route statistics Command mode Privileged EXEC clear ip slp counters Clears SLP statistics Command mode Privileged EXEC clear ip tcp counters Clears Transmission Control Protocol TCP statistics Command mode Privileged EXEC clear ip udp counters Clears User Datagram Protocol UDP statistics Command mode Privileged EXEC clear ip vrrp counters Clears VRRP statistics Command mode Privileged EXEC Table 1...

Page 233: ...drErrors The number of input datagrams discarded because the IP address in their IP headerʹs destination field was not a valid address to be received at this entity the switch This count includes invalid addresses for example 0 0 0 0 and addresses of unsupported Classes for example Class E For entities which are not IP Gateways and therefore do not forward datagrams this counter includes datagrams...

Page 234: ...was encountered to prevent their transmission to their destination but which were discarded for example for lack of buffer space Note that this counter would include datagrams counted in ipForwDatagrams if any such packets met this discretionary discard criterion ipDefaultTTL The default value inserted into the Time To Live TTL field of the IP header of datagrams originated at this entity the swit...

Page 235: ...rmProbs 0 PktTooBigMsg 9 ICMPEchoReq 10 ICMPEchoReps 0 RouterSols 0 RouterAdv 5 NeighSols 9 NeighAdv 0 Redirects 0 AdminProhib 0 ICMPBadCode Sent 19 ICMPMsgs 0 ICMPErrMsgs 0 DstUnReach 0 TimeExcds 0 ParmProbs 0 PktTooBigs 10 EchoReq 9 EchoReply 0 RouterSols 0 RouterAdv 11 NeighSols 5 NeighborAdv 0 RedirectMsgs 0 AdminProhibMsgs UDP statistics Received 0 UDPDgrams 0 UDPNoPorts 0 UDPErrPkts Sent 0 U...

Page 236: ...r example for lack of buffer space Note that this counter does not include any datagrams discarded while awaiting re assembly Delivers Number of datagrams successfully delivered to IP user protocols including ICMP OutRequests Number of IP datagrams which local IP user protocols including ICMP supplied to IP in requests for transmission OutDiscards Number of output IP datagrams for which no problem...

Page 237: ...ntRedirects The number of Redirect messages sent Table 110 ICMP Statistics Statistic Description Received ICMPPkts Number of ICMP messages which the entity the switch received ICMPErrPkt Number of ICMP messages which the entity the switch received but determined as having ICMP specific errors bad ICMP checksums bad length and so forth DestUnreach Number of ICMP Destination Unreachable messages rec...

Page 238: ...at contribute to this counterʹs value DstUnReach Number of ICMP Destination Unreachable messages sent TimeExcds Number of ICMP Time Exceeded messages sent ParmProbs Number of ICMP Parameter Problem messages sent PktTooBigs The number of ICMP Packet Too Big messages sent by the interface EchoReq Number of ICMP Echo request messages sent EchoReply Number of ICMP Echo Reply messages sent RouterSols N...

Page 239: ...ms Number of UDP datagrams received by the switch UDPNoPorts Number of received UDP datagrams for which there was no application at the destination port UDPErrPkts Number of received UDP datagrams that could not be delivered for reasons other than the lack of an application at the destination port Sent UDPDgrams Number of UDP datagrams sent from this entity the switch ...

Page 240: ...of routes with ECMP paths 0 Table 112 IPv4 Route Statistics Statistics Description Current total outstanding routes Total number of outstanding routes in the route table Highest number ever recorded Highest number of routes ever recorded in the route table Current static routes Total number of static routes in the route table Current RIP routes Total number of RIP routes in the route table Current...

Page 241: ... ECMP statistics Maximum number of ECMP routes 600 Max ECMP paths allowed for one route 5 Number of routes with ECMP paths 0 Table 113 IPv6 Route Statistics Statistics Description ipv6RoutesCur Total number of outstanding routes in the route table ipv6RoutesHighWater Highest number of routes ever recorded in the route table ipv6RoutesMax Maximum number of routes that are supported Maximum number o...

Page 242: ...ection statistics vlan VLAN ID 1 4094 Command mode All Mgmt ARP statistics arpEntriesCur 1 arpEntriesHighWater 2 Data ARP statistics arpEntriesCur 1 arpEntriesHighWater 1 arpEntriesMax 16383 Table 114 ARP Statistics Statistic Description arpEntriesCur The total number of outstanding ARP entries in the ARP table arpEntriesHighWater The highest number of ARP entries ever recorded in the ARP table ar...

Page 243: ...ble describes the DNS statistics DNS statistics dnsInRequests 0 dnsOutRequests 0 dnsBadRequests 0 Table 115 DNS Statistics Statistics Description dnsInRequests The total number of DNS response packets that have been received dnsOutRequests The total number of DNS response packets that have been transmitted dnsBadRequests The total number of DNS request packets received that were dropped ...

Page 244: ...P Statistics Statistic Description icmpInMsgs The total number of ICMP messages which the entity the switch received Note that this counter includes all those counted by icmpInErrors icmpInErrors The number of ICMP messages which the entity the switch received but determined as having ICMP specific errors bad ICMP checksums bad length and so forth icmpInDestUnreachs The number of ICMP Destination ...

Page 245: ... no types of errors that contribute to this counterʹs value icmpOutDestUnreachs The number of ICMP Destination Unreachable messages sent icmpOutTimeExcds The number of ICMP Time Exceeded messages sent icmpOutParmProbs The number of ICMP Parameter Problem messages sent icmpOutSrcQuenchs The number of ICMP Source Quench buffer almost full stop sending data messages sent icmpOutRedirects The number o...

Page 246: ...m used to determine the retransmission timeout In particular when the timeout algorithm is rsre 3 an object of this type has the semantics of the LBOUND quantity described in RFC 793 tcpRtoMax The maximum value permitted by a TCP implementation for the retransmission timeout measured in milliseconds More refined semantics for objects of this type depend upon the algorithm used to determine the ret...

Page 247: ...ror This count includes segments received on currently established connections tcpOutSegs The total number of segments sent including those on current connections but excluding those containing only retransmitted octets tcpRetransSegs The total number of segments retransmitted that is the number of TCP segments transmitted containing one or more previously transmitted octets tcpInErrs The total nu...

Page 248: ...78077 Table 118 UDP Statistics Statistic Description udpInDatagrams The total number of UDP datagrams delivered to the switch udpOutDatagrams The total number of UDP datagrams sent from this entity the switch udpInErrors The number of received UDP datagrams that could not be delivered for reasons other than the lack of an application at the destination port udpNoPorts The total number of received ...

Page 249: ...llos 0 Table 119 IGMP Statistics Statistic Description rxIgmpValidPkts Total number of valid IGMP packets received rxIgmpInvalidPkts Total number of invalid packets received rxIgmpGenQueries Total number of General Membership Query packets received rxIgmpGrpSpecificQueries Total number of Membership Query packets received from specific groups rxIgmpGroupSrcSpecificQueries Total number of Group Sou...

Page 250: ...rceListChangeRecords Total number of Source List Change records received rxIgmpV3FilterChangeRecords Total number of Filter Change records received txIgmpGenQueries Total number of General Membership Query packets transmitted rxPimHellos Total number of PIM hellos received Table 119 IGMP Statistics continued Statistic Description ...

Page 251: ... Displays MLD statistics See page 252 for sample output Command mode All show ipv6 mld groups counters Displays total number of MLD entries Command mode All show ipv6 mld interface counters Displays total number of MLD entries Command mode All show ipv6 mld interface 1 126 counters Displays total number of MLD entries on the interface Command mode All clear ipv6 mld counters Clears MLD counters Co...

Page 252: ... Sent xErrors General Query 0 1067 0 MAS Query 0 0 0 MASSQ Query 0 0 0 MLDv1 Report 0 0 0 MLDv1 Done 0 0 0 MLDv2 Report 1069 1084 0 INC CSRs v2 1 0 0 EXC CSRs v2 2134 1093 0 TO_INC FMCRs v2 1 0 0 TO_EXC FMCRs v2 0 15 0 ALLOW SLCRs v2 0 0 0 BLOCK SLCRs v2 0 0 0 MLD interface packet statistics for interface 2 MLD msg type Received Sent xErrors MLD interface packet statistics for interface 3 MLD msg ...

Page 253: ...Number of packets sent by a multicast listener in response to MLDv1 query Listener Done v1 v2 Number of packets sent by a host when it wants to stop receiving multicast traffic Listener Report v2 Number of packets sent by a multicast listener in response to MLDv2 query MLDv2 INC mode CSRs Number of current state records with include filter mode MLDv2 EXC mode CSRs Number of current state records w...

Page 254: ...OSPF statistics See page 255 for sample output Command mode All show ip ospf area 0 5 counters Displays OSPF statistics for all areas or a specified area Command mode All show ip ospf interface interface number port port alias or number counters Displays OSPF statistics for all interfaces or a specified interface Command mode All clear ip ospf counters Clears OSPF statistics Command mode Privilege...

Page 255: ...hello 2 hello 4 start 0 down 2 n2way 2 loop 0 adjoint ok 2 unloop 0 negotiation done 2 wait timer 2 exchange done 2 backup 0 bad requests 0 nbr change 5 bad sequence 0 loading done 2 n1way 0 rst_ad 0 down 1 Timers kickoff hello 514 retransmit 1028 lsa lock 0 lsa ack 0 dbage 0 summary 0 ase export 0 Table 123 OSPF General Statistics Statistic Description Rx Tx Stats Rx Pkts The sum total of all OSP...

Page 256: ...ets transmitted on all OSPF areas and interfaces Nbr Change Stats hello The sum total of all Hello packets received from neighbors on all OSPF areas and interfaces Start The sum total number of neighbors in this state that is an indication that Hello packets should now be sent to the neighbor at intervals of HelloInterval seconds across all OSPF areas and interfaces n2way The sum total number of b...

Page 257: ... The sum total number of times the Neighbor adjacency has been reset across all OPSF areas and interfaces down The total number of Neighboring routers down that is in the initial state of a neighbor conversation across all OSPF areas and interfaces Intf Change Stats hello The sum total number of Hello packets sent on all interfaces and areas down The sum total number of interfaces down in all OSPF...

Page 258: ...The sum total number of times the Link State Advertisement LSA lock timer has been fired across all OSPF areas and interfaces lsa ack The sum total number of times the LSA Ack timer has been fired across all OSPF areas and interfaces dbage The total number of times the data base age Dbage has been fired summary The total number of times the Summary timer has been fired ase export The total number ...

Page 259: ...isplays OSPFv3 statistics See page 260 for sample output Command mode All show ipv6 ospf area area index 0 2 counters Displays OSPFv3 statistics for all areas or a specified area Command mode All show ipv6 ospf interface interface number counters Displays OSPFv3 statistics for all interfaces or a specified interface Command mode All clear ipv6 ospf counters Clears OSPFv3 statistics Command mode Pr...

Page 260: ... 180 0 Errors rx on pasv intf 0 rx but ospf off 0 rx on intf not up 0 rx version mismatch 0 rx rtr id is zero 0 rx with our rtr id 0 instance id mismatch 0 area mismatch 0 dest addr mismatch 0 bad checksum 0 no associated nbr 0 bad packet type 0 hello mismatch 0 options mismatch 0 dead mismatch 0 bad nbma ptomp nbr 0 Nbr change stats Intf change Stats down 0 down 5 attempt 0 loop 0 init 1 waiting ...

Page 261: ... no associated interface has been found Rx database The sum total of all Database Description packets received on all OSPFv3 interfaces Tx database The sum total of all Database Description packets transmitted on all OSPFv3 interfaces Discarded database The sum total of all Database Description packets discarded Rx ls requests The sum total of all Link State Request packets received on all OSPFv3 ...

Page 262: ...otal number of neighbors in this state that is in an adjacencyʹs final state having transmitted a full sequence of Database Description packets across all OSPFv3 interfaces loading done The total number of link state updates received for all out of date portions of the database across all OSPFv3 interfaces full The total number of transitions into full state of neighboring routers across all OSPFv...

Page 263: ...times the wait timer has been fired which causes an interface to exit waiting state across all OPSFv3 interfaces poll The total number of times the timer whose firing causes hellos to be sent to inactive NBMA and Demand Circuit neighbors has been fired across all OPSFv3 interfaces nbr probe The total number of times the neighbor probe timer has been fired across all OPSFv3 interfaces Number of LSA...

Page 264: ...adAdvers 0 vrrpOutAdvers 0 vrrpOutGratuitousARPs 0 vrrpBadVersion 0 vrrpBadVrid 0 vrrpBadAddress 0 vrrpBadData 0 vrrpBadPassword 0 vrrpBadInterval 0 Table 126 VRRP Statistics Statistics Description vrrpInAdvers The total number of valid VRRP advertisements that have been received vrrpBadAdvers The total number of VRRP advertisements received that were dropped vrrpOutAdvers The total number of VRRP...

Page 265: ...ber of Join Prune messages transmitted or received Assert Tx Rx Number of Assert messages transmitted or received Register Tx Rx Number of Register messages transmitted or received Null Reg Tx Rx Number of NULL register messages received RegStop Tx Rx Number of Register Stop messages transmitted or received CandRPAdv Tx Rx Number of Candidate RP Advertisements transmitted or received BSR Tx Rx Num...

Page 266: ...d mode All RIP ALL STATS INFORMATION RIP packets received 12 RIP packets sent 75 RIP request received 0 RIP response recevied 12 RIP request sent 3 RIP reponse sent 72 RIP route timeout 0 RIP bad size packet received 0 RIP bad version received 0 RIP bad zeros received 0 RIP bad src port received 0 RIP bad src IP received 0 RIP packets from self received 0 ...

Page 267: ...ng Statistics count all DHCP packets processed by DHCP snooping Table 128 DHCP Statistics Options Command Syntax and Usage show ip dhcp snooping counters Displays DHCP Snooping statistics Command mode All clear ip dhcp snooping counters Clears DHCP Snooping statistics Command mode Privileged EXEC DHCP Snooping statistics Received Request packets 2 Received Reply packets 2 Recevied Invalid packets ...

Page 268: ...mode All show mp tcp block show processes tcp block Displays all TCP control blocks that are in use To view a sample output and a description of the stats see page 280 Command mode All show mp thread show processes thread Displays thread statistics Command mode All show mp udp block show processes udp block Displays all UDP control blocks that are in use To view a sample output see page 281 Comman...

Page 269: ... show processes cpu history Displays a history of CPU use statistics To view a sample output see page 284 Command mode All clear mp counters Clears all MP statistics Command mode All Table 129 Management Processor Statistics Options Command Syntax and Usage ...

Page 270: ...er of logs 1 1000 both displays a list of the most recent packets received or sent by the CPU rx displays a log of the most recent packets received by the CPU tx displays a log of the most recent packets sent by the CPU Command mode All show mp packet logs all rx tx all displays a log of all packets received or sent by the CPU rx displays a log of packets received by the CPU tx displays a log of p...

Page 271: ...289149 BPDUs 34 178404 Cisco packets 0 0 ARP Requests 100419 1 ARP Replies 4988 0 LACP packets 0 0 IPv4 packets 100394 86826 ICMP Requests 0 77321 ICMP Replies 77315 0 IGMP packets 0 0 PIM packets 0 0 VRRP packets 0 0 TCP packets 84 174 FTP 0 0 HTTP 0 0 SSH 0 0 TACACS 0 0 TELNET 84 174 TCP other 0 0 UDP packets 17666 9331 DHCP 13510 5175 NTP 3 3 PTP 0 0 RADIUS 0 0 SNMP 4153 4153 TFTP 0 0 UDP other...

Page 272: ...tics current 0 max 3072 hi watermark 12 Table 131 Packet Statistics Statistics Description Packets received by CPU Total packets Total number of packets received BPDUs Total number of spanning tree Bridge Protocol Data Units received Cisco packets Total number of UniDirectional Link Detection UDLD packets and Cisco Discovery Protocol CDP packets received ARP packets Total number of Address Resolut...

Page 273: ...nd which only high priority small packets are allowed hi watermark The highest number of packet allocation with size less than 128 bytes from the packet buffer pool by the TCP IP protocol stack hi water time Time stamp that indicates when the hi watermark was reached medium packet buffers current Total number of packet allocations with size between 128 to 1536 bytes from the packet buffer pool by ...

Page 274: ...es from the packet buffer pool by the TCP IP protocol stack pkt_hdr statistics current Total number of packet allocations with more than 1536 bytes from the packet buffer pool by the TCP IP protocol stack max Maximum number of packet allocations with more than 1536 bytes from the packet buffer pool by the TCP IP protocol stack hi watermark The highest number of packet allocation with more than 153...

Page 275: ...ffer Statistics thid name headers smalls mediums jumbos 1 STEM 0 0 0 0 2 STP 0 0 0 0 3 MFDB 0 0 0 0 4 TND 0 0 0 0 5 CONS 0 0 0 0 6 TNET 0 0 0 0 7 TNET 0 0 0 0 8 TNET 0 0 0 0 9 TNET 0 0 0 0 10 LOG 0 0 0 0 11 TRAP 0 0 0 0 12 NTP 0 0 0 0 13 RMON 0 0 0 0 16 IP 0 0 0 0 17 RIP 0 0 0 0 18 AGR 0 0 0 0 19 EPI 0 0 0 0 20 PORT 0 0 0 0 75 IGMP 0 0 0 0 76 ICMP 0 0 0 0 77 STPM 0 0 0 0 78 ARP 0 0 0 0 79 VMFD 0 0...

Page 276: ...x bgp Displays only BGP packets logged Command mode All show mp packet parse rx tx bpdu Displays only BPDUs logged Command mode All show mp packet parse rx tx cisco Displays only Cisco packets BPDU CDP UDLD logged Command mode All show mp packet parse rx tx dhcp Displays only DHCP packets logged Command mode All show mp packet parse rx tx ecp Displays only ECP packets logged Command mode All show ...

Page 277: ...splays only IPv6 packets logged Command mode All show mp packet parse rx tx lacp Displays only LACP PDUs logged Command mode All show mp packet parse rx tx lldp Displays only LLDP PDUs logged Command mode All show mp packet parse rx tx mac MAC address Displays only logged packets with the specified MAC address Command mode All show mp packet parse rx tx mgmtsock Displays only packets logged from m...

Page 278: ...et parse rx tx rarp Displays only Reverse ARP packets Command mode All show mp packet parse rx tx raw Displays raw packet buffer in addition to headers Command mode All show mp packet parse rx tx rip Displays only RIP packets logged Command mode All show mp packet parse rx tx snmp Displays only SNMP packets logged Command mode All show mp packet parse rx tx ssh Displays only SSH packets logged Com...

Page 279: ... TFTP packets logged Command mode All show mp packet parse rx tx udp Displays only UDP packets logged Command mode All show mp packet parse rx tx udpother Displays only UDP other port packets logged Command mode All show mp packet parse rx tx vlan VLAN ID 1 4095 Displays only logged packets with the specified VLAN Command mode All show mp packet parse rx tx vrrp Displays only VRRP packets logged C...

Page 280: ...7 0 0 1 23 listen up 53ee4c58 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 23 listen 53ee4ae8 0 0 0 0 0 0 0 0 0 23 listen Mgmt Ports Active Internet connections servers and established Proto Recv Q Send Q Local Address Foreign Address State tcp 0 0 127 0 0 1 5000 LISTEN tcp 0 0 10 241 31 135 http LISTEN tcp 0 0 10 241 31 135 telnet LISTEN tcp 0 0 127 0 0 1 680 127 0 0 1 5500 ESTABLISHED tcp 0 0 127 0 0 1 500...

Page 281: ...MP UDP statistics show mp udp block Command mode All Data Ports All UDP allocated control blocks 68 listen 161 listen Mgmt Ports Active Internet connections servers and established Proto Recv Q Send Q Local Address Foreign Address State udp 0 0 10 241 31 135 snmp 0 0 0 0 0 10 241 31 135 161 accept MGT up ...

Page 282: ...0 0 1 idle 10 LOG 1912 8192 4071659 2857 3972888 0 3 idle 11 TRAP 808 8192 42286 150352 21 0 3 idle 12 NTP 72 8192 4 1 0 0 1 idle 13 RMON 232 8192 562055 81607 60 0 1 idle 16 IP 2552 32768 4906570 1180443 398 0 2 idle 17 RIP 792 32768 89 132 0 0 2 idle 18 AGR 4568 131072 49017 8168 32 0 1 idle 19 EPI 840 32768 143250 3859 87 0 1 idle 20 PORT 2440 24576 139925 40817 1561 0 1 idle 70 ECPR 72 16384 1...

Page 283: ...hread Thread Utilization Status ID Name 1sec 5sec 1Min 5Min 1 STEM 0 00 0 00 0 00 0 00 idle 2 STP 0 00 0 00 0 00 0 00 idle 3 MFDB 0 00 0 00 0 00 0 00 idle 4 TND 0 00 0 00 0 00 0 00 idle 5 CONS 0 14 0 04 0 00 0 00 running 6 TNET 0 00 0 00 0 00 0 00 idle Table 134 CPU Statistics Statistics Description Thread ID The thread ID number Thread Name The name of the thread 1sec The percent of CPU use over ...

Page 284: ... show processes cpu history Command mode All CPU Utilization History 40 LACP 8 at 12 41 07 Mon Jul 6 2015 75 ARP 32 at 12 41 08 Mon Jul 6 2015 75 ARP 48 at 12 41 13 Mon Jul 6 2015 54 PROX 62 at 13 52 06 Mon Jul 6 2015 54 PROX 63 at 15 03 43 Mon Jul 6 2015 54 PROX 64 at 4 02 46 Wed Jul 8 2015 54 PROX 65 at 3 54 27 Thu Jul 9 2015 ...

Page 285: ...pdu Cisco STP packets dest unknown packets with destination not yet learned dhcp DHCP packets ecp ECP packets fips FIPS packets icmp ICMP packets icmp6 ICMP6 packets igmp IGMP packets ipv4 miscellaneous IPv4 packets with IP options and TTL exception ipv6 nd IPv6 Neighbor Discovery packets lacp LACP packets lldp LLDP packets ospf OSPF packets ospf3 OSPF3 Packets pim PIM packets rip RIP packets syst...

Page 286: ...rotocol packet control protocol counters packet type Clears packet queue statistics for the selected packet type Command mode Privileged EXEC clear qos protocol packet control queue counters packet queue number 0 47 Clears packet queue statistics for the selected queue Command mode Privileged EXEC Table 135 QoS Statistics Commands Command Syntax and Usage ...

Page 287: ...s for a specific ACL Command mode All show access control meter 1 127 counters Displays ACL meter statistics Command mode All show access control vmap 1 128 counters Displays VLAN Map statistics for the selected VMAP For a sample display see page 288 Command mode All clear access control list 1 256 all counters Clears ACL statistics Command mode Privileged EXEC clear access control list6 1 128 all...

Page 288: ...ion displays ACL statistics show access control counters Command mode All VMAP Statistics The following command displays VLAN Map statistics show access control vmap 1 128 counters Command mode All Hits for ACL 1 26057515 Hits for ACL 2 26057497 Hits for VMAP 1 57515 ...

Page 289: ...snmpOutNoSuchNames 1 snmpOutBadValues 0 snmpOutReadOnlys 0 snmpOutGenErrs 1 snmpOutGetRequests 0 snmpOutGetNexts 0 snmpOutSetRequests 0 snmpOutGetResponses 150093 snmpOutTraps 4 snmpSilentDrops 0 snmpProxyDrops 0 Table 137 SNMP Statistics Statistic Description snmpInPkts The total number of Messages delivered to the SNMP entity from the transport service snmpInBadVersions The total number of SNMP ...

Page 290: ...tity to the transport service snmpInBadTypes The total number of SNMP Messages which failed ASN parsing snmpInTooBigs The total number of SNMP Protocol Data Units PDUs which were delivered to the SNMP protocol entity and for which the value of the error status field is too big snmpInNoSuchNames The total number of SNMP Protocol Data Units PDUs which were delivered to the SNMP protocol entity and f...

Page 291: ...essed by the SNMP protocol entity snmpInSetRequests The total number of SNMP Set Request Protocol Data Units PDUs which have been accepted and processed by the SNMP protocol entity snmpInGetResponses The total number of SNMP Get Response Protocol Data Units PDUs which have been accepted and processed by the SNMP protocol entity snmpInTraps The total number of SNMP Trap Protocol Data Units PDUs whi...

Page 292: ...y the SNMP protocol entity snmpOutTraps The total number of SNMP Trap Protocol Data Units PDUs which have been generated by the SNMP protocol entity snmpSilentDrops The total number of GetRequest PDUs GetNextRequest PDUs GetBulkRequest PDUs SetRequest PDUs and InformRequest PDUs delivered to the OSPFSNMPv2 entity which were silently dropped because the size of a reply containing an alternate Respo...

Page 293: ... 2012 Current system time 8 05 21 Thu Nov 29 2012 Table 138 NTP Statistics Field Description Primary Server Requests Sent The total number of NTP requests the switch sent to the primary NTP server to synchronize time Responses Received The total number of NTP responses received from the primary NTP server Updates The total number of times the switch updated its time based on the NTP responses rece...

Page 294: ... Current system time The switch system time when the following command was issued show ntp counters address ref clock st when s offset s 12 200 151 18 198 72 72 10 3 35316 2 synced unsynced Table 139 NTP Associations Field Description address Peer address ref clock Peer reference clock address st Peer stratum when s Time in seconds since the latest NTP packet was received from the peer offset s Of...

Page 295: ... show counters Use the dump command to dump all switch statistics 40K or more depending on your configuration This data can be used to tune or debug switch performance If you want to capture dump data to a file set your communication software on your workstation to capture session data prior to issuing the dump command ...

Page 296: ...296 G8264CS Command Reference for ENOS 8 4 ...

Page 297: ...ctive config data port mgt port Restores the active configuration from a file on the specified TFTP server For example copy tftp 10 72 97 135 directory config txt active config mgt port Command mode Privileged EXEC copy backup config running config Copy the backup configuration to the current running configuration Command mode Privileged EXEC copy backup config TFTP server filepath data port mgt p...

Page 298: ...ctory config txt mgt port Command mode Privileged EXEC copy TFTP server filepath running config data port mgt port Restores the current running configuration from a file on the specified TFTP server For example copy tftp 10 72 97 135 directory config txt running config mgt port Command mode Privileged EXEC copy ftp tftp sftp running config data port mgt port Restores current configuration from a F...

Page 299: ...age from the specified location to another specified location Note This command is applicable only to configuration files or NOS images Command mode Privileged EXEC write memory Copy the current running configuration from switch memory to the active config partition Command mode Privileged EXEC show running config Dumps current configuration to a script file For details see page 609 Command mode P...

Page 300: ...mple port status might differ from run time information that you view using the Information commands The Information commands display current run time information of switch parameters Saving the Configuration You must save configuration settings to flash memory so the G8264CS reloads the settings after a reboot Note If you do not save the changes they will be lost the next time the system is reboo...

Page 301: ...nd privacy protocols and algorithms of the device are compliant with NIST SP 800 131A with non complaint protocols and algorithms disabled Note This setting is applied only after a reboot during which the device will be reset to default factory configuration By default this setting is disabled Command mode Global configuration easyconnect Allows to apply a series of customizable and predefined con...

Page 302: ... mode Global configuration line vty length 0 300 Sets the default number of lines per screen displayed for Telnet and SSH sessions A value of 0 disables paging The default value is 28 Command mode Global configuration no line vty Sets line vty length to the default value of 28 Command mode Global configuration no prompting Enables or disables CLI confirmation prompts By default this settings is en...

Page 303: ...les or disables Dynamic Host Control Protocol for setting the IP address on interface 1 When enabled the IP address obtained from the DHCP server overrides the static IP address The default setting is enabled hostname enables or disables hostname option support syslog enables or disables log server option support Command mode Global configuration system idle 0 60 Sets the idle timeout for CLI sess...

Page 304: ...tch continues to function after a crash of the main processor using the last known Layer 2 3 information The default setting is enabled Command mode Global configuration no system server ports port port alias or number Adds or removes the specified port to the list of server ports For more details see page 358 Command mode Global configuration no system service led enable Enables on or disables of...

Page 305: ... Disables CLI confirmation prompts for the current session The switch will choose the default answer By default CLI confirmation prompts are enabled if they are not configured differently by using the prompting command Note When using this command any settings configured through the prompting command will be temporarily disregarded for the duration of the current session Command mode All no termin...

Page 306: ...sion tls10 TLS version 1 0 tls11 TLS version 1 1 tls12 TLS version 1 2 Command mode Global configuration show boot strict Displays the current security strict mode status Command mode Global configuration show system Displays the current system parameters Command mode All Table 141 System Configuration Options continued Command Syntax and Usage ...

Page 307: ... Options Command Syntax and Usage no errdisable recovery Globally enables or disables automatic error recovery for error disabled ports The default setting is disabled Note Each port must have error recovery enabled to participate in automatic error recovery Command mode Global configuration errdisable timeout 30 86400 Configures the error recovery timeout in seconds After the timer expires the sw...

Page 308: ... has elapsed Table 143 Link Flap Dampening Configuration Options Command Syntax and Usage no errdisable link flap enable Enables or disables Link Flap Dampening Command mode Global configuration errdisable link flap max flaps 1 100 Configures the maximum number of link flaps allowed in the configured time period The default value is 5 Command mode Global configuration errdisable link flap time 5 5...

Page 309: ...mmand mode Global configuration logging console severity 0 7 This option sets the severity level of syslog messages delivered via the console telnet and SSH The system displays only messages with the selected severity level and above For example if you set the console severity to 2 only messages with severity level of 1 and 2 are displayed The default is 7 which means log all severity levels Comma...

Page 310: ... disable syslog on all available features by using the option all or enable disable specific features such as vlans stg or ssh For a complete list of features see page 312 Command mode Global configuration no logging pdrop enable Enables or disables packet drop logging By default the switch generates these messages once every 2 minutes Command mode Global configuration logging pdrop interval 0 30 ...

Page 311: ...owed by the most recent 2000 syslog messages messages displays the most recent 2000 syslog messages only severity displays syslog messages of the specified severity level reverse displays syslog messages starting with the most recent message displays syslog messages that match one of the following filters include displays syslog messages that match the specified expression exclude displays syslog ...

Page 312: ... Links logging igmp group IGMP group logging igmp mrouter IGMP mrouter logging igmp querier IGMP querier logging ip Internet Protocol version 4 logging ipv6 Internet Protocol version 6 logging lacp Link Aggregation Control Protocol logging link System Port Link logging lldp LLDP logging management Management logging mld MLD logging ntp Network Time Protocol logging ospf OSPF logging ospfv3 OSPF ve...

Page 313: ... Copyright Lenovo 2017 Chapter 4 Configuration Commands 313 vm Virtual Machine logging vnic VNIC logging vrrp Virtual Router Redundancy Protocol logging web Web logging ...

Page 314: ...ssh maxauthattempts Resets the maximum number of SSH authentication attempts to its default value of 2 Command mode Global configuration ssh port TCP port number 1 65535 Sets the SSH server port number The default port number is 22 Command mode Global configuration no ssh port Resets the SSH server port to the default port number 22 Command mode Global configuration ssh public key index 1 100 addu...

Page 315: ... keys index Displays a specific SSH public key username Displays all the SSH public keys of a particular user Command mode All clear ssh clienthostkey address SFTP server IP address all Clears stored SFTP SSH host key configuration address Clears a specific SFTP SSH host key all Clears all SFTP SSH host keys Command mode Privileged EXEC clear ssh clientpubkey all index 1 100 username user name Cle...

Page 316: ...ode Global configuration default radius server port Resets the RADIUS server port to the default UDP port 1645 Command mode Global configuration radius server primary host IP address key 1 32 characters Sets the primary RADIUS server address and the shared secret between the switch and the RADIUS server s Command mode Global configuration radius server primary host data port mgt port Defines the p...

Page 317: ...ode Global configuration no radius server secure backdoor Enables or disables the RADIUS back door using secure password for telnet SSH HTTP HTTPS This command does not apply when backdoor is enabled Command mode Global configuration radius server timeout 1 10 Sets the amount of time in seconds before a RADIUS server authentication attempt is considered to have failed The default is 3 seconds Comm...

Page 318: ...upports full packet encryption as opposed to password only in authentication requests It supports de coupled authentication authorization and accounting Table 147 TACACS Server Configuration Options Command Syntax and Usage no tacacs server accounting enable Enables or disables TACACS accounting Command mode Global configuration tacacs server attempts 1 10 Sets the number of failed login attempts ...

Page 319: ... enabled each user must add a configured TACACS server hostname to the username for example username hostname during login This command allows the following options restricted Only the username is sent to the specified TACACS server no truncate The entire login string is sent to the TACACS server Command mode Global configuration no tacacs server directed request Disables TACACS directed request C...

Page 320: ...port to use to send TACACS server requests Select the port to use for data transfer Command mode Global configuration no tacacs server primary host key Deletes the primary TACACS server The key option only removes the shared secret between the switch and the TACACS server Command mode Global configuration no tacacs server privilege mapping Enables or disables TACACS privilege level mapping The def...

Page 321: ...en TACACS servers are unresponsive is to use the back door via the console port The default is disabled Command mode Global configuration tacacs server timeout 4 15 Sets the amount of time in seconds before a TACACS server authentication attempt is considered to have failed The default is 5 seconds Command mode Global configuration tacacs server user mapping 0 15 user oper admin Maps a TACACS auth...

Page 322: ...put Command mode Global configuration secondary password Configures the password for the secondary TACACS server The CLI will prompt you for input Command mode Global configuration show tacacs server Displays current TACACS configuration parameters Command mode All Table 147 TACACS Server Configuration Options continued Command Syntax and Usage ...

Page 323: ... group 1 128 characters Configures a customized LDAP group search attribute where the group membership information of the user is stored The default value is memberOf Note This option is available only in LDAP enhanced mode Command mode Global configuration no ldap server attribute group Resets the LDAP group search attribute to its default value of memberOf Note This option is available only in L...

Page 324: ...P or HTTPS access The default setting is disabled Note To obtain the LDAP back door password for your G8264CS contact your Service and Support line Command mode Global configuration ldap server basedn 1 128 characters Configure the Distinguished Name DN of the LDAP server The DN consists of a sequence of different Relative Distinguished Names RDN connected by commas An RDN is an attribute that has...

Page 325: ...ap server binddn dn 1 64 characters key 1 32 characters Configures a customized distinguished name DN and password This creates a set of pre configured credentials that can be used for authentication when sending a bind request to the LDAP server Note The credentials configured through this command are used only when the switch bind mode is set to pre config If the bind mode is set to login any cr...

Page 326: ... is 389 Note The IP address and port number of a LDAP server must be non zero Note This option is available only in LDAP enhanced mode Command mode Global configuration no ldap server host LDAP server number 1 4 Removes the specified external LDAP server Note This option is available only in LDAP enhanced mode Command mode Global configuration ldap server port UDP port number 1 65000 Enter the num...

Page 327: ...onfigures LDAP to not encrypt LDAP credentials DN and password when sending a bind request to the LDAP server The default security mode is clear clear text Note This option is available only in LDAP enhanced mode Command mode Global configuration ldap server security ldaps Configures LDAP to encrypt LDAP credentials DN and password using Secure LDAP LDAPS when sending a bind request to the LDAP se...

Page 328: ... and the LDAP client both compare the other s CA root certificate against their own If both certificates match the authentication succeeds If either certificate does not match the authentication fails Note This option is available only in LDAP enhanced mode Command mode Global configuration no ldap server srv Enables or disables the switch to look up LDAP server information by retrieving a Service...

Page 329: ...le c England uid user ID For example uid 329800735698586629295641978511506172918 no ldap server ipv6 secondary host Deletes the secondary LDAP server Note This option is available only in LDAP legacy mode Command mode Global configuration ldap server timeout 4 15 Sets the amount of time in seconds before a LDAP server authentication attempt is considered to have failed The default is 5 seconds Com...

Page 330: ...hich you want to synchronize the switch clock Command mode Global configuration ntp ipv6 primary server IPv6 address data port mgt port Prompts for the IPv6 address of the primary NTP server to which you want to synchronize the switch clock Command mode Global configuration no ntp ipv6 primary server Deletes the IPv6 primary NTP server Command mode Global configuration ntp ipv6 secondary server da...

Page 331: ...conds Command mode Global configuration no ntp offset Resets the NTP offset to the default 300 seconds value Command mode Global configuration ntp secondary server data port mgt port Prompts for the port of the secondary NTP server to which you want to synchronize the switch clock Command mode Global configuration ntp secondary server hostname or IP address data port mgt port Prompts for the IP ad...

Page 332: ...or disables informational logs for NTP synchronization failures Default setting is enabled Command mode Global configuration show ntp Displays the current NTP service settings Command mode All Table 149 NTP Server Configuration Options continued Command Syntax and Usage ...

Page 333: ...ement objects to retrieve or to modify SNMP parameters that can be modified include System name System location System contact Use of the SNMP system authentication trap function Read community string Write community string Trap community strings Table 150 System SNMP Options Command Syntax and Usage no snmp server authentication trap enable Enables or disables the use of the system authentication...

Page 334: ...ers Configures the name for the system The name can have a maximum of 64 characters Command mode Global configuration no snmp server name Deletes the name of the system Command mode Global configuration snmp server read community 1 32 characters Configures the SNMP read community string The read community string controls SNMP get access to the switch It can have a maximum of 32 characters The defa...

Page 335: ...onfiguration snmp server write community 1 32 characters Configures the SNMP write community string The write community string controls SNMP set access to the switch It can have a maximum of 32 characters The default write community string is private Command mode Global configuration no snmp server write community additional 1 32 characters Adds or removes an additional SNMP write community string...

Page 336: ...ependent SNMP message parameters To view command options see page 342 Command mode Global configuration snmp server group 1 17 A group maps the user name to the access group names and their access rights needed to access SNMP management objects A group defines the access rights assigned to all names that belong to a particular group To view command options see page 341 Command mode Global configur...

Page 337: ...eral sets of SNMP parameters To view command options see page 344 Command mode Global configuration snmp server user 1 17 This command allows you to create a user security model USM entry for an authorized user You can also configure this entry through SNMP To view command options see page 338 Command mode Global configuration snmp server view 1 128 This command allows you to create different MIB ...

Page 338: ... during validation This command allows you to create or change your password for authentication Command mode Global configuration snmp server user 1 17 name 1 32 characters This command allows you to configure a string that represents the name of the user This is the login name that you need in order to access the switch Command mode Global configuration snmp server user 1 17 privacy protocol des ...

Page 339: ...iew subtrees Command mode Global configuration snmp server view 1 128 name 1 32 characters This command defines the name for a family of view subtrees Command mode Global configuration snmp server view 1 128 tree 1 63 characters This command defines MIB tree which when combined with the corresponding mask defines a family of view subtrees Command mode Global configuration snmp server view 1 128 ty...

Page 340: ...t both with authentication and using a privacy protocol Command mode Global configuration snmp server access 1 32 name 1 32 characters Defines the name of the group Command mode Global configuration snmp server access 1 32 notify view 1 32 characters Defines a notify view name that allows you notify access to the MIB view Command mode Global configuration snmp server access 1 32 read view 1 32 cha...

Page 341: ...mp server group 1 17 group name 1 32 characters The name for the access group as defined in the following command snmp server access 1 32 name 1 32 characters on page 338 Command mode Global configuration snmp server group 1 17 security usm snmpv1 snmpv2 Defines the security model Command mode Global configuration snmp server group 1 17 user name 1 32 characters Sets the user name as defined in th...

Page 342: ... 1 16 name 1 32 characters Defines the user name as defined in the following command snmp server user 1 17 name 1 32 characters on page 338 Command string Global configuration snmp server community 1 16 tag 1 255 characters Allows you to configure a tag This tag specifies a set of transport endpoints to which a command responder application sends an SNMP trap Command mode Global configuration snmp...

Page 343: ...address 1 16 name 1 32 characters address transport IP address Configures a transport IPv4 address that can be used in the generation of SNMP traps Command mode Global configuration snmp server target address 1 16 name 1 32 characters address6 transport IPv6 address Configures a transport IPv6 address that can be used in the generation of SNMP traps IPv6 addresses are not displayed in the configur...

Page 344: ... Parameters Table Configuration Options Command Syntax and Usage snmp server target parameters 1 16 level noAuthNoPriv authNoPriv authPriv Allows you to select the level of security to be used when generating the SNMP messages using this entry noAuthNoPriv means that the SNMP message will be sent without authentication and without using a privacy protocol authNoPriv means that the SNMP message wil...

Page 345: ...s the targetParamsTable entry Command mode Global configuration show snmp server v3 target parameters 1 16 Displays the current targetParamsTable configuration Command mode All Table 158 Target Parameters Table Configuration Options continued Command Syntax and Usage Table 159 Notify Table Options Command Syntax and Usage snmp server notify 1 16 name 1 32 characters Defines a locally arbitrary but...

Page 346: ...80 Command mode Global configuration access snmp read only read write Enables read only write read SNMP access Command mode Global configuration no access snmp Disables SNMP access Command mode Global configuration no access telnet enable Enables or disables Telnet access The default setting is enabled Command mode Global configuration access telnet port TCP port number 1 65535 Sets an optional Te...

Page 347: ...anagement Network Configuration Options Command Syntax and Usage no access management network mgmt network IPv4 address mgmt network IPv4 netmask Adds or removes a defined network through which switch access is allowed via Telnet SNMP or the Lenovo N OS browser based interface A range of IPv4 addresses is produced when used with a network mask address Specify an IPv4 address and mask address in do...

Page 348: ...ration causes the Firewall Load Balancing health checks to fail and creates a Network Down state on the network Command mode Global configuration no access management network6 mgmt network IPv6 address IPv6 prefix length snmp ro snmp rw Adds or removes a defined IPv6 network through which SNMP read only or SNMP read write switch access is allowed Command mode Global configuration no access managem...

Page 349: ...change both the user and administrator passwords This command will prompt for required information current admin password new password up to 64 characters and confirmation of the new password Access includes oper functions Note You cannot disable the administrator password Command Mode Global configuration access user eject user name session id session ID Ejects the specified user from the G8264CS...

Page 350: ...responding session ID from the G8264CS Command mode Privileged EXEC Table 162 User Access Control Configuration Options Command Syntax and Usage Table 163 User ID Configuration Options Command Syntax and Usage no access user 1 20 enable Enables or disables the user ID Command mode Global configuration access user 1 20 level user operator administrator Sets the Class of Service to define the user s...

Page 351: ...gin counters for all users or for a specific user Command mode Global configuration no access user strong password enable Enables or disables Strong Password requirement Command mode Global configuration access user strong password expiry 1 365 Configures the number of days allowed before the password must be changed The default value is 60 days Command mode Global configuration access user strong...

Page 352: ...x and Usage no access https enable Enables or disables BBI access Web access using HTTPS Command mode Global configuration access https generate certificate Allows you to generate a certificate to connect to the SSL to be used during the key exchange A default certificate is created when HTTPS is enabled for the first time The user can create a new certificate defining the information that they wa...

Page 353: ...th parties Command mode Global configuration access https save certificate Allows the client or the Web browser to accept the certificate and save the certificate to Flash to be used when the switch is rebooted Command mode Global configuration access https delete certificate Deletes the current certificate from the flash memory Command mode Global configuration access https port TCP port number 1...

Page 354: ... public key data port mgt port Enables you to import a client public key using TFTP SFTP Command mode Global configuration copy tftp public key address hostname or server IP address filename server filename data port mgt port Enables you to import a client public key using TFTP Command mode Global configuration copy cert request tftp ftp sftp address hostname or server IP address filename server f...

Page 355: ...tom dst enable Enables or disables the Custom Daylight Saving Time settings Command mode Global configuration system custom dst start rule WDDMMhh Configures the start date for custom DST as follows WDMMhh W week 0 5 where 0 means use the calendar date D day of the week 01 07 where 01 is Monday MM month 1 12 hh hour 0 23 Note Week 5 is always considered to be the last week of the month Command mod...

Page 356: ...d mode Global configuration sflow port UDP port number 1 65000 Configures the UDP port for the sFlow server The default value is 6343 Command mode Global configuration default sflow port Resets the sFlow server port to the default port number 6343 Command mode Global configuration sflow server IP address data port mgt port Defines the sFlow server address and interface port Command mode Global con...

Page 357: ... sflow polling 5 60 Configures the sFlow polling interval in seconds The default setting is disabled Command mode Interface port no sflow polling Disables sFlow polling interval Command mode Interface port sflow sampling 256 65536 Configures the sFlow sampling rate in packets per sample The default setting is disabled Command mode Interface port no sflow sampling Disables sFlow sampling rate Comma...

Page 358: ... be uplink ports VMready learns Virtual Machine information only from server ports Table 169 Server Port Configuration Options Command Syntax and Usage no system server ports port port alias or number Adds or removes one or more ports to the list of server ports Command mode Global configuration show system server ports Displays the current server port configuration Command mode All ...

Page 359: ...o avoid Spanning Tree loops on ports configured as edge ports Command mode Interface port Interface portchannel description 1 64 characters Sets a description for the port The assigned port description appears next to the port number on some information and statistics screens The default is set to the port number Command mode Interface port Interface portchannel no description Removes the interfac...

Page 360: ...ess Notification With MAC Address Notification enabled the switch generates a syslog message when a MAC address is added or removed from the MAC address table Command mode Interface port Interface portchannel port channel min links 1 16 Set the minimum number of links for the LACP LAG to which this port belongs If the specified minimum number of ports are not available the Link Aggregation Group L...

Page 361: ... portchannel switchport mode access trunk private vlan Configures the port s trunking mode access allows association to a single VLAN trunk automatically adds the port to all created VLANs To configure a specific allowed VLAN range for the port use the command switchport trunk allowed vlan private vlan allows association to a private VLAN Default mode is access Note When switching from access to t...

Page 362: ... exist it will not be created and enabled automatically If a new VLAN is created and it is part of the allowed VLAN range the port will also be added to that VLAN remove eliminates the VLAN range from the current configuration If the Native VLAN is in the specified range the smallest available VLAN from the remaining range will become the new Native VLAN If the remaining range does not have any ex...

Page 363: ... default setting is disabled Command mode Interface port Interface portchannel no vlan dot1q tag native Disables or enables VLAN tag persistence When disabled the VLAN tag is removed at egress from packets whose VLAN tag matches the port PVID Native vlan The default setting is disabled Note In global configuration mode this is an operational command used to set the VLAN tag persistence on all port...

Page 364: ...Syntax and Usage no errdisable recovery Enables or disables automatic error recovery for the port The default setting is enabled Note Error recovery must be enabled globally before port level commands become active Command mode Interface port Interface portchannel show interface port port alias or number errdisable Displays the specified port s Error Disable parameters Command mode All Table 172 P...

Page 365: ...mand mode Interface port Interface portchannel duplex full half auto Sets the operating mode The choices include Auto negotiation default Half duplex Full duplex Note Data ports are fixed at full duplex Command mode Interface port Interface portchannel flowcontrol receive send on off Turns flow control receiving or transmiting on or off Command mode Interface port Interface portchannel no flowcont...

Page 366: ...llowing command at any prompt Because this configuration sets a temporary state for the port you do not need to use a save operation The port state will revert to its original configuration when the RackSwitch G8264CS is rebooted See the Operations Commands on page 613 for other operations level commands RS G8264CS config interface port port alias or number shutdown ...

Page 367: ... Configures the UDLD mode for the selected port as follows Normal Detect unidirectional links that have mis connected interfaces The port is disabled if UDLD determines that the port is mis connected Use the no form to select normal operation Aggressive In addition to the normal mode the aggressive mode disables the port if the neighbor stops sending UDLD probes for 7 seconds Command mode Interfac...

Page 368: ...rt OAM Configuration Options Command Syntax and Usage no oam Enables or disables OAM discovery on the current port Command mode Interface port no oam passive Enables or disables OAM discovery passive mode In passive mode the current port allows its peer link to initiate OAM discovery If OAM determines that the port is in an anomalous condition the port is disabled Command mode Interface port show ...

Page 369: ...wo Command mode Interface port Interface portchannel no access control list 1 256 Adds or removes the specified ACL to the port You can add multiple ACLs to a port but the total number of precedence levels allowed is two Command mode Interface port Interface portchannel no access control list6 1 128 Adds or removes the specified IPv6 ACL to the port You can add multiple ACLs to a port but the tota...

Page 370: ...or disables Random Detection and avoidance Command mode Interface port no random detect ecn enable Enables or disables Explicit Congestion Notification ECN When ECN is on the switch marks the ECN bit of the packet if applicable instead of dropping the packet ECN aware devices are notified of the congestion and those devices can take corrective actions Note ECN functions only on TCP traffic Command...

Page 371: ...x and Usage no random detect transmit queue 0 7 enable Enables or disables the WRED transmit queue configuration Command mode Interface port random detect transmit queue 0 7 tcp min threshold 1 100 max threshold 1 100 drop rate 1 100 Configures the WRED thresholds for TCP traffic Command mode Interface port no random detect transmit queue 0 7 tcp Clears the WRED configuration for TCP traffic Comma...

Page 372: ...r the 802 1p priority value followed by the Class of Service queue that handles the matching traffic Command mode Global configuration default qos transmit queue mapping Resets the 802 1p packet priority mapping to its default values Command mode Global configuration qos transmit queue multicast mapping priority 0 7 COSq number 8 11 Maps the 802 1p priority to the multicast Class of Service queue ...

Page 373: ...q Enter the multicast queue number followed by the scheduling weight Command mode Global configuration default qos transmit queue multicast weight Resets the weights of multicast Class of Service queues to their default values Command mode Global configuration show qos transmit queue Displays the current 802 1p parameters Command mode All Table 179 802 1p Configuration Options Command Syntax and U...

Page 374: ...oint value to an 802 1p priority value Enter the DSCP value followed by the corresponding 802 1p value Command mode Global configuration qos dscp dscp mapping DSCP 0 63 new DSCP 0 63 Maps the initial DiffServ Code Point DSCP value to a new value Enter the DSCP value of incoming packets followed by the new value Command mode Global configuration no qos dscp re marking Globally enables or disables D...

Page 375: ...tion cri packets critical packets of applications arp bcast ARP broadcast packets arp ucast ARP unicast reply packets bgp BGP packets bpdu Spanning Tree Protocol packets cisco bpdu Cisco STP packets dest unknown packets with destination not yet learned dhcp DHCP packets ecp ECP packets fips FIPS packets icmp ICMP packets icmp6 ICMP6 packets igmp IGMP packets ipv4 miscellaneous IPv4 packets with IP...

Page 376: ...7 Clears the packet rate configured for the selected packet queue Command mode Global configuration show qos protocol packet control information protocol Displays of mapping of protocol packet types to each packet queue number The status indicates whether the protocol is running or not running Command mode All show qos protocol packet control information queue Displays the packet rate configured f...

Page 377: ...rameters For port WRED commands see Port WRED Configuration on page 370 Table 182 WRED Configuration Options Command Syntax and Usage no qos random detect ecn enable Enables or disables Explicit Congestion Notification ECN When ECN is on the switch marks the ECN bit of the packet if applicable instead of dropping the packet ECN aware devices are notified of the congestion and those devices can tak...

Page 378: ...ansmit queue 0 7 non tcp min threshold min threshold 1 100 max threshold max threshold 1 100 drop rate drop rate 1 100 Configures the WRED thresholds for non TCP traffic Command mode Global configuration qos random detect transmit queue 0 7 tcp min threshold min threshold 1 100 max threshold max threshold 1 100 drop rate drop rate 1 100 Configures the WRED thresholds for TCP traffic Command mode G...

Page 379: ...ess control group 1 256 Configures an ACL Group To view command options see page 398 Command mode Global configuration access control list 1 256 Configures an Access Control List To view command options see page 380 Command mode Global configuration access control list6 1 128 Configures an IPv6 Access Control List To view command options see page 390 Command mode Global configuration access contro...

Page 380: ...packets Command mode Global configuration no access control list 1 256 egress port Disables the ACL to function on egress packets Command mode Global configuration no access control list 1 256 log Enables or disables logging for the Access Control List Note Enabling the LOG feature neutralizes ACL deny filter actions for Telnet and SSH traffic that is addressed to the switchʹs Layer 3 interfaces C...

Page 381: ...mirror Displays the current port mirroring parameters for the ACL Command mode All Table 187 Ethernet Filtering Configuration Options Command Syntax and Usage access control list 1 256 ethernet destination mac address MAC address MAC mask Defines the destination MAC address for this ACL Command mode Global configuration no access control list 1 256 ethernet destination mac address Removes the dest...

Page 382: ... 1 256 ethernet vlan VLAN ID 1 4094 VLAN mask Defines a VLAN number and mask for this ACL Command mode Global configuration no access control list 1 256 ethernet vlan Removes VLAN number and mask for this ACL Command mode Global configuration default access control list 1 256 ethernet Resets Ethernet parameters for the ACL to their default values Command mode Global configuration no access control...

Page 383: ...cified protocol matches this filter Specify the protocol number Listed below are some of the well known protocols Number Name 1 icmp 2 igmp 6 tcp 17 udp 89 ospf 112 vrrp Command mode Global configuration no access control list 1 256 ipv4 protocol Deletes the configured IP protocol for the specified ACL Command mode Global configuration access control list 1 256 ipv4 source ip address IP address IP...

Page 384: ...nd mode All Table 188 IP version 4 Filtering Configuration Options Command Syntax and Usage Table 189 TCP UDP Filtering Configuration Options Command Syntax and Usage access control list 1 256 tcp udp source port 1 65535 mask 0xFFFF Defines a source port for the ACL If defined traffic with the specified TCP or UDP source port will match this ACL Specify the port number Listed here are some of the ...

Page 385: ...specified ACL Command mode Global configuration access control list 1 256 tcp udp flags value 0x0 0x3f mask 0x0 0x3f Defines a TCP UDP flag for the ACL Command mode Global configuration no access control list 1 256 tcp udp flags Disables the configured TCP UDP flag for the specified ACL Command mode Global configuration default access control list 1 256 tcp udp Resets the TCP UDP parameters for th...

Page 386: ...v4 ipv6 Defines the IP format for the ACL Command mode Global configuration access control list 1 256 packet format tagging any none tagged Defines the tagging format for the ACL Command mode Global configuration no access control list 1 256 packet format ethernet ip tagging Deletes the selected format for the specified ACL Command mode Global configuration default access control list 1 256 packet...

Page 387: ...e must be a multiple of 64 Command mode Global configuration no access control list 1 256 meter enable Enables or disables ACL Metering Command mode Global configuration access control list 1 256 meter maximum burst size 32 4096 Configures the maximum burst size in kilobits Enter one of the following values for mbsize 32 64 128 256 512 1024 2048 4096 Command mode Global configuration default acces...

Page 388: ...s Command Syntax and Usage access control list 1 256 re mark dot1p 0 7 Re marks the 802 1p value The value is the priority bits information in the packet structure Command mode Global configuration no access control list 1 256 re mark dot1p Disables the use of 802 1p priority for in profile traffic Command mode Global configuration access control list 1 256 re mark in profile dscp 0 63 Re marks th...

Page 389: ... commands Table 194 ACL Re Marking Out of Profile Options Command Syntax and Usage access control list 1 256 re mark out profile dscp 0 63 Re marks the DSCP value on out of profile packets for the ACL Command mode Global configuration no access control list 1 256 re mark out profile Disables re marking on out of profile traffic Command mode Global configuration ...

Page 390: ...rt port alias or number Configures the ACL to function on egress packets Command mode Global configuration no access control list6 1 128 egress port port Disables the ACL to function on egress packets Command mode Global configuration no access control list6 1 128 log Enables or disables Access Control List logging Command mode Global configuration no access control list6 1 128 statistics Enables ...

Page 391: ...control list6 1 128 ipv6 flow label Deletes the configured flow label for the specified ACL Command mode Global configuration access control list6 1 128 ipv6 next header 0 255 Defines the next header value for the ACL If defined traffic with this next header value will match this ACL Command mode Global configuration no access control list6 1 128 ipv6 next header Deletes the configured next header...

Page 392: ...e All Table 196 IP version 6 Filtering Options Command Syntax and Usage Table 197 IPv6 ACL TCP UDP Filtering Options Command Syntax and Usage access control list6 1 128 tcp udp source port source port number 1 65535 mask 0xFFFF Defines a source port for the ACL If defined traffic with the specified TCP or UDP source port will match this ACL Specify the port number Listed here are some of the well ...

Page 393: ...ation port for the specified ACL Command mode Global configuration access control list6 1 128 tcp udp flags value 0x0 0x3f mask 0x0 0x3f Defines a TCP UDP flag for the ACL Command mode Global configuration no access control list6 1 128 tcp udp flags Deletes the configured TCP UDP flag for the specified ACL Command mode Global configuration default access control list6 1 128 tcp udp Resets the TCP ...

Page 394: ...ptions Command Syntax and Usage access control list6 1 128 re mark dot1p 0 7 Re marks the 802 1p value The value is the priority bits information in the packet structure Command mode Global configuration no access control6 list6 1 128 re mark dot1p Disables the use of 802 1p priority for in profile traffic Command mode Global configuration access control list6 1 128 re mark in profile dscp 0 63 Re...

Page 395: ...f Profile Options Command Syntax and Usage access control list6 1 128 re mark out profile dscp 0 63 Re marks the DSCP value on out of profile packets for the ACL Command mode Global configuration no access control list6 1 128 re mark out profile Disables re marking on out of profile traffic Command mode Global configuration show access control list6 1 128 re mark Displays current re mark parameter...

Page 396: ...lobits per second The committed rate must be a multiple of 64 Command mode Global configuration no access control list6 1 128 meter enable Enables or disables ACL Metering Command mode Global configuration access control list6 1 128 meter maximum burst size 32 4096 Configures the maximum burst size in kilobits Enter one of the following values for mbsize 32 64 128 256 512 1024 2048 4096 Command mo...

Page 397: ...IPv6 Access Control List logging Command mode Global configuration access control log interval 5 600 Sets the filter log displaying interval in seconds The default setting is 300 seconds Command mode Global configuration access control log rate limit 1 1000 Sets the filter log queue rate limit in packets per second pps The default settings is 10 pps Command mode Global configuration default access...

Page 398: ...Table 203 ACL Group Configuration Commands Command Syntax and Usage no access control group 1 256 list 1 256 Adds or removes the selected IPv4 ACL to the ACL group Command mode Global configuration no access control group 1 256 list6 1 128 Adds or removes the selected IPv6 ACL to the ACL group Command mode Global configuration show access control group 1 256 Displays the current ACL group paramete...

Page 399: ...se to permit pass deny drop packets Command mode Global configuration no access control macl 1 128 enable Enables or disables the management ACL Command mode Global configuration no access control macl 1 128 statistics Enables or disables the statistics collection for the MACL Command mode Global configuration show access control macl 1 128 Displays the current MACL parameters Command mode All Tab...

Page 400: ...ess control macl 1 128 ipv4 source ip address IP address IP mask Defines a source IP address for the MACL If defined traffic with this source IP address will match this MACL Specify an IP address in dotted decimal notation Command mode Global configuration no access control macl 1 128 ipv4 source ip address Deletes the configured source IP address for the specified MACL Command mode Global configu...

Page 401: ...al configuration no access control macl 1 128 tcp udp source port Deletes the configured source port for the specified MACL Command mode Global configuration access control macl 1 128 tcp udp destination port 1 65535 mask 0xFFFF Defines a destination port for the MACL If defined traffic with the specified TCP or UDP destination port will match this MACL Specify the port number just as with source ...

Page 402: ...ntrol vmap 1 128 action permit deny set priority 0 7 Configures a filter action for packets that match the VMAP definitions You can choose to permit pass or deny drop packets or set the 802 1p priority level Command mode Global configuration access control vmap 1 128 egress port port alias or number Configures the VMAP to function on egress packets Command mode Global configuration no access contr...

Page 403: ...urce MAC address for the specified VMAP Command mode Global configuration access control vmap 1 128 ethernet vlan VLAN ID 1 4094 VLAN mask Defines a VLAN number and mask for the VMAP Command mode Global configuration no access control vmap 1 128 ethernet vlan Removes the VLAN number and mask for the specified VMAP Command mode Global configuration default access control vmap 1 128 ethernet Resets ...

Page 404: ...ed on source IP address Command mode Global configuration access control vmap 1 128 ipv4 type of service 0 255 Enables filtering of VMAP statistics collection based on type of service Command mode Global configuration no access control vmap 1 128 ipv4 type of service Disables filtering of VMAP statistics collection based on type of service Command mode Global configuration default access control v...

Page 405: ...mat ethernet ethernet type2 llc snap Sets to filter the specified ethernet packet format type Command mode Global configuration access control vmap 1 128 packet format ip ipv4 ipv6 Sets to filter the specified IP packet format type Command mode Global configuration access control vmap 1 128 packet format tagging any none tagged Sets to filter the based on packet tagging The options are any Filter ...

Page 406: ...profile dscp Disables the use of DSCP for in profile traffic Command mode Global configuration no access control vmap 1 128 re mark use tos precedence Enables or disables the use of the TOS precedence for in profile traffic Command mode Global configuration default access control vmap 1 128 re mark Resets the VMAP re mark parameters to their default values Command mode Global configuration no acce...

Page 407: ...es Command mode Global configuration no access control vmap 1 128 tcp udp Removes TCP UDP filtering for this ACL Command mode Global configuration default access control vmap 1 128 Resets the VMAP parameters to their default values Command mode Global configuration no access control vmap 1 128 Deletes the specified VMAP Command mode Global configuration show access control vmap 1 128 Displays the ...

Page 408: ... show port mirroring Displays current settings of the mirrored and monitoring ports Command mode All Table 209 Port Based Port Mirroring Configuration Options Command Syntax and Usage port mirroring monitor port port alias or number mirroring port port alias or number in out both Adds the port to be mirrored This command also allows you to enter the direction of the traffic It is necessary to spec...

Page 409: ...X Global Configuration on page 410 802 1X Guest VLAN Configuration on page 412 802 1X Port Configuration on page 413 Table 210 Layer 2 Configuration Commands Command Syntax and Usage vlan VLAN ID 1 4094 Enter VLAN configuration mode If the specified VLAN s doesn t exist it will be created To view command options see page 455 Command mode Global configuration show layer2 Displays current Layer 2 pa...

Page 410: ...uthorized by the RADIUS server force authorized the port is authorized unconditionally allowing all traffic The default value is force authorized Command mode Global configuration dot1x quiet time 0 65535 Sets the time in seconds the authenticator waits before transmitting an EAP Request Identity frame to the supplicant client after an authentication failure in the previous round of authentication...

Page 411: ...om the supplicant client before retransmitting the EAP Request packet from the authentication server The default value is 30 seconds Command mode Global configuration dot1x transmit interval 1 65535 Sets the time in seconds the authenticator waits for an EAP Response Identity frame from the supplicant client before retransmitting an EAP Request Identity frame The default value is 30 seconds Comman...

Page 412: ...ble 213 802 1X Guest VLAN Configuration Options Command Syntax and Usage no dot1x guest vlan enable Enables or disables the 802 1X Guest VLAN Command mode Global configuration dot1x guest vlan vlan VLAN ID 1 4094 Configures the Guest VLAN number Command mode Global configuration no dot1x guest vlan vlan Removes the Guest VLAN number Command mode Global configuration show dot1x Displays current 802...

Page 413: ...thorized until it is successfully authorized by the RADIUS server force authorized the port is authorized unconditionally allowing all traffic force unauthorized the port is unauthorized unconditionally The default value is force authorized Command mode Interface port dot1x quiet time 0 65535 Sets the time in seconds the authenticator waits before transmitting an EAP Request Identity frame to the ...

Page 414: ...icant client before retransmitting the EAP Request packet from the authentication server The default value is 30 seconds Command mode Interface port dot1x transmit interval 1 65535 Sets the time in seconds the authenticator waits for an EAP Response Identity frame from the supplicant client before retransmitting an EAP Request Identity frame The default value is 30 seconds Command mode Interface p...

Page 415: ...DU is received Command mode Global configuration spanning tree mode disable mst pvrst rstp Selects and enables Multiple Spanning Tree mode mst Per VLAN Rapid Spanning Tree mode pvrst or Rapid Spanning Tree mode rstp The default mode is PVRST When you select the disable option the switch globally turns Spanning Tree off All ports are placed into forwarding state Any BPDU s received are flooded Comm...

Page 416: ...nnected to the port as follows auto Configures the port to detect the link type and automatically match its settings p2p Configures the port for Point To Point protocol shared Configures the port to connect to a shared medium usually a hub The default link type is auto Command mode Interface port Interface portchannel no spanning tree portfast Enables or disables this port as portfast or edge port...

Page 417: ...g time You can also see the following port specific STG information Port alias and priority Cost State Command mode All show spanning tree root Displays the Spanning Tree configuration on the root bridge for each STP instance For details see page 77 Command mode All show spanning tree blockedports Lists the ports blocked by each STP instance Command mode All show spanning tree vlan VLAN ID 1 4094 ...

Page 418: ... root bridge To make this switch the root bridge configure the bridge priority lower than all other switches and bridges on your network The lower the value the higher the bridge priority The range is 0 to 65535 in steps of 4096 0 4096 8192 12288 and the default value is 32768 Command mode Global configuration no spanning tree mst 0 32 priority Resets the bridge priority for the specified MSTP ins...

Page 419: ...mmand mode MST configuration name 1 32 characters Configures a name for the MSTP region All devices within an MSTP region must have the same region name Command mode MST configuration no name Clears the name of the MSTP region Command mode MST configuration revision 0 65535 Configures a revision number for the MSTP region The revision is used as a numerical identifier for the region All devices wi...

Page 420: ... cost is used to help determine the designated port for a segment Port path cost is based on the port speed and is calculated as follows 1Gbps 20000 10Gbps 2000 The default value of 0 zero indicates that the default path cost will be computed for an auto negotiated link speed Command mode Interface port Interface portchannel no spanning tree mst 0 32 enable Enables or disables the specified MSTP i...

Page 421: ...rotocol data unit BPDU Any bridge that is not the root bridge uses the root bridge Hello value The range is 1 to 10 seconds and the default is 2 seconds Command mode Interface port Interface portchannel show interface port port alias or number spanning tree mstp cist Displays the current CIST port configuration Command mode All Table 217 MSTP Port Configuration Options continued Command Syntax and...

Page 422: ...e of 128 Note The switch needs to be reloaded for the configuration to take effect Command mode Global configuration no spanning tree stp 1 256 enable Globally enables or disables Spanning Tree Protocol STG is turned on by default Command mode Global configuration spanning tree stp 1 256 vlan VLAN ID 1 4094 Associates a VLAN with a Spanning Tree Group and requires a VLAN ID as a parameter If the V...

Page 423: ...m number of available STGs after the switch reloads For a sample output see page 626 Command mode All show spanning tree stp 1 256 Displays current Spanning Tree Protocol parameters for the specified Spanning Tree Group See page 71 for details about the information parameter Command mode All Table 218 RSTP PVRST Configuration Options continued Command Syntax and Usage ...

Page 424: ...ration no spanning tree stp 1 256 bridge forward delay Resets the bridge forward delay parameter to its default value of 15 seconds Command mode Global configuration spanning tree stp 1 256 bridge hello time 1 10 Configures the bridge Hello time The Hello time specifies how often the bridge transmits a configuration bridge protocol data unit BPDU Any bridge that is not the root bridge uses the roo...

Page 425: ... other switches and bridges on your network The lower the value the higher the bridge priority Enter the value in multiples of 4096 Non multiples are automatically rounded up to the closest valid priority The default value is 32768 Command mode Global configuration no spanning tree stp 1 256 bridge priority Resets the bridge priority to its default value of 32768 Command mode Global configuration ...

Page 426: ...he default value of 0 zero indicates that the default path cost will be computed for an auto negotiated link speed Command mode Interface port Interface portchannel spanning tree stp 1 256 priority 0 240 Configures the port priority The port priority helps determine which bridge port becomes the designated port In a network topology that has multiple bridge ports connected to a single segment the ...

Page 427: ...65535 Configures the aging value for FDB entries in seconds The default value is 300 seconds Command mode Global configuration mac address table multicast Configures multicast FDB entries For command options see page 428 Command mode Global configuration mac address table static Configures static FDB entries For command options see page 429 Command mode Global configuration show mac address table ...

Page 428: ...king on ports that are not to receive multicast packets interface port port alias or number flood blocking Use the following commands to configure static Multicast MAC entries in the Forwarding Database FDB Table 222 Static Multicast MAC Configuration Options Command Syntax and Usage no mac address table multicast MAC address VLAN ID 1 4094 port alias or number Adds or removes a static multicast e...

Page 429: ...onfiguration Options Command Syntax and Usage Table 223 FDB Configuration Options Command Syntax and Usage no mac address table static MAC address port port alias or number Adds or removes a permanent FDB entry Enter the MAC address using the following format xx xx xx xx xx xx For example 08 00 20 12 34 56 You can also enter the MAC address as follows xxxxxxxxxxxx For example 080020123456 Command ...

Page 430: ...tries that use the specified vlan Command mode Global configuration no mac address table static all interface port port alias or number portchannel 1 64 adminkey 1 65535 Deletes all permanent FBD entries that use the specified port Link Aggregation Group LAG or LACP admin key Command mode Global configuration show mac address table Display current FDB configuration Command mode All Table 223 FDB C...

Page 431: ...0 9000 Configures ECP retransmit interval in milliseconds The default value is 1000 miliseconds Command mode Global configuration default ecp retransmit interval Resets the ECP retransmit interval to the default 1000 milliseconds Command mode Global configuration show ecp channels retransmit interval upper layer protocols Displays settings for the ECP retransmit interval or for all ECP channels or...

Page 432: ...the message transmission interval in seconds The default value is 30 seconds Command mode Global configuration no lldp refresh interval Resets the message transmission interval to its default value of 30 seconds Command mode Global configuration lldp reinit delay 1 10 Configures the re initialization delay interval in seconds The re initialization delay allows the port LLDP information to stabiliz...

Page 433: ... mode Global configuration show lldp port port alias or number Display current LLDP configuration Command mode All Table 225 LLDP Configuration Options continued Command Syntax and Usage Table 226 LLDP Port Options Command Syntax and Usage lldp admin status tx_only rx_only tx_rx Configures the LLDP transmission type for the port as follows Transmit only Receive only Transmit and receive The defaul...

Page 434: ...rmation type Command mode Interface port no lldp tlv linkaggr Enables or disables the Link Aggregation information type Command mode Interface port no lldp tlv macphy Enables or disables the MAC Phy Configuration information type Command mode Interface port no lldp tlv mgmtaddr Enables or disables the Management Address information type Command mode Interface port no lldp tlv portdesc Enables or d...

Page 435: ...es information type Command mode Interface port no lldp tlv sysdescr Enables or disables the System Description information type Command mode Interface port no lldp tlv sysname Enables or disables the System Name information type Command mode Interface port no lldp tlv vlanname Enables or disables the VLAN Name information type Command mode Interface port show interface port port alias or number l...

Page 436: ...l ports in a LAG with the same properties speed duplex flow control STG VLAN and so on Aggregation from non Lenovo devices must comply with Cisco EtherChannel technology By default each LAG is empty and disabled Table 228 LAG Configuration Options Command Syntax and Usage no portchannel 1 64 enable Enables or disables the current LAG Command mode Global configuration portchannel 1 64 port port ali...

Page 437: ...cntag id Command mode Global configuration no portchannel thash fcoe destination id Enables or disables FCoE LAG hashing on the destination id Command mode Global configuration no portchannel thash fcoe fabric id Enables or disables FCoE LAG hashing on the fabric id Command mode Global configuration no portchannel thash fcoe originator id Enables or disables FCoE LAG hashing on the originator id C...

Page 438: ...or disables use of Layer 4 service ports TCP UDP and so on to compute the hash value The default setting is disabled Command mode Global configuration show portchannel hash Display current LAG hash configuration Command mode All Table 229 LAG Hash Options Command Syntax and Usage ...

Page 439: ...rameters for the switch Table 230 Layer 2 LAG Hash Options Command Syntax and Usage portchannel thash l2thash l2 destination mac address Enables Layer 2 LAG hashing on the destination MAC Command mode Global configuration portchannel thash l2thash l2 source mac address Enables Layer 2 LAG hashing on the source MAC Command mode Global configuration portchannel thash l2thash l2 source destination ma...

Page 440: ...h l3 destination ip address Enables Layer 3 LAG hashing on the destination IP address Command mode Global configuration portchannel thash l3thash l3 source ip address Enables Layer 3 LAG hashing on the source IP address Command mode Global configuration portchannel thash l3thash l3 source destination ip Enables Layer 3 LAG hashing on both the source and the destination IP address Command mode Glob...

Page 441: ...ation no vlag auto recovery Sets the auto recovery timer to the default 300 seconds duration Command mode Global configuration no vlag enable Enables or disables vLAG globally Command mode Global configuration no vlag peer gateway Enables or disables the forwarding of packets intended for the switch s vLAG peer If a packet is received by the switch but has the MAC address of its vLAG peer it will ...

Page 442: ...vLAG peer ID Command mode Global configuration no vlag tier id Resets the vLAG peer ID to its default value of 0 Command mode Global configuration no vlag vrrp active Enables or disables vLAG VRRP active mode Note If active mode is disabled the switch will be in passive mode In active mode Layer 3 traffic is forwarded in all vLAG related VRRP domains In passive mode Layer 3 traffic is forwarded in...

Page 443: ... 3 Command mode Global configuration no vlag hlthchk keepalive attempts Resets the number of vLAG keep alive attempts to the default value of 3 Command mode Global configuration vlag hlthchk keepalive interval 2 300 Sets in seconds the time between vLAG keep alive attempts The default value is 5 seconds Command mode Global configuration no vlag hlthchk keepalive interval Resets the time between vL...

Page 444: ...LACP Link Aggregation Groups LAGs formed with this admin key will be included in the ISL Command mode Global configuration no vlag isl adminkey Disables vLAG Inter Switch Link ISL for LACP admin keys Command mode Global configuration vlag isl portchannel 1 64 Enables vLAG Inter Switch Link ISL on the selected LAG Command mode Global configuration no vlag isl portchannel Disables vLAG Inter Switch ...

Page 445: ...meout value of long If your G8264CS s CPU utilization rate remains at 100 for periods of 90 seconds or more consider using static Link Aggregation Groups LAGs instead of LACP Command mode Global configuration default lacp timeout Resets the timeout period before invalidating LACP data from a remote partner to its default value of long Command mode Global configuration default lacp Resets the LACP ...

Page 446: ...me admin key and oper key operational state generated internally can form a LACP LAG group Command mode Interface port Interface portchannel default lacp key Resets the LACP admin key of the port to the default value Command mode Interface port Interface portchannel lacp mode off active passive Set the LACP mode for this port as follows off turns LACP off for this port You can use this port to man...

Page 447: ...s anymore Command mode Interface port Interface portchannel default lacp suspend individual Resets the LACP state of the port to its default value Command mode Interface port Interface portchannel default lacp Resets the LACP port configuration to its default values Command mode Interface port Interface portchannel port channel min links 1 16 Set the minimum number of links for the LACP LAG to whi...

Page 448: ...on show failover trigger Displays current Layer 2 Failover parameters Command mode All Table 238 Failover Trigger Configuration Options Command Syntax and Usage no failover trigger 1 8 enable Enables or disables the Failover trigger Command mode Global configuration failover trigger 1 8 limit 0 1024 Configures the minimum number of operational links allowed within each trigger before the trigger i...

Page 449: ...ual Monitor Port configuration LACP Link Aggregation Groups LAGs formed with this admin key will be included in the Manual Monitor Port configuration Command mode Global configuration no failover trigger 1 8 mmon monitor member port alias or number Adds or removes the selected port to the Manual Monitor Port configuration Command mode Global configuration no failover trigger 1 8 mmon monitor portc...

Page 450: ...r Control configuration LACP Link Aggregation Groups LAGs formed with this admin key will be included in the Manual Monitor Control configuration Command mode Global configuration no failover trigger 1 8 mmon control member port alias or number Adds or removes the selected port to the Manual Monitor Control configuration Command mode Global configuration no failover trigger 1 8 mmon control portch...

Page 451: ...ree group that is globally turned off This feature can prevent unintentional loop scenarios for example if two uplinks come up at the same time The default setting is disabled Command mode Global configuration no hotlinks enable Globally enables or disables Hot Links Command mode Global configuration no hotlinks fdb update Enables or disables FDB Update which allows the switch to send FDB and MAC ...

Page 452: ...l configuration hotlinks trigger 1 25 name 1 32 characters Defines a name for the Hot Links trigger Command mode Global configuration no hotlinks trigger 1 25 name Removes the name of the specified Hot Links trigger Command mode Global configuration no hotlinks trigger 1 25 preemption Enables or disables pre emption which allows the Master interface to transition to the Active state whenever it be...

Page 453: ... all LACP admin keys on the Master interface Command mode Global configuration hotlinks trigger 1 25 master port port alias or number Adds the selected port to the Hot Links Master interface Command mode Global configuration no hotlinks trigger 1 25 master port Clears all ports added to the Hot Links Master interface Command mode Global configuration hotlinks trigger 1 25 master portchannel 1 64 A...

Page 454: ... LACP admin keys on the Hot Links Backup interface Command mode Global configuration hotlinks trigger 1 25 backup port port alias or number Adds the selected port to the Hot Links Backup interface Command mode Global configuration no hotlinks trigger 1 25 backup port Clears all ports added to the Hot Links Backup interface Command mode Global configuration hotlinks trigger 1 25 backup portchannel ...

Page 455: ...e specified VLAN s doesn t exist it will be created Command mode Global configuration name 1 32 characters Assigns a name to the VLAN or changes the existing name The default VLAN name is the first one Command mode VLAN no name Removes the assigned name from the current VLAN Command mode VLAN protocol vlan protocol number 1 8 Configures the Protocol based VLAN PVLAN For command options see page 45...

Page 456: ...P is applied to the entire VLAN Command mode VLAN no vlan VLAN ID 1 4094 Deletes the specified VLAN Command mode Global configuration show vlan information Displays the current VLAN configuration Command mode All Table 245 VLAN Configuration Options Command Syntax and Usage Table 246 Protocol VLAN Configuration Options Command Syntax and Usage no protocol vlan protocol number 1 8 enable Enables or...

Page 457: ...2 SNA 802 2 snaEther2 IBM SNA Service on Ethernet vinesEther2 Banyan VINES xnsEther2 XNS Compatibility Command mode VLAN no protocol vlan protocol number 1 8 tag pvlan port alias or number Adds or removes a port that will be tagged by the selected protocol on this VLAN Command mode VLAN no protocol vlan protocol number 1 8 Deletes the selected protocol configuration from the VLAN Command mode VLAN...

Page 458: ...ity Enables or disables the VLAN type as a community VLAN Community VLANs carry upstream traffic from host ports A Private VLAN may have multiple community VLANs Command mode VLAN no private vlan isolated Enables or disables the VLAN type as an isolated VLAN The isolated VLAN carries unidirectional traffic from host ports A Private VLAN may have only one isolated VLAN Command mode VLAN no private ...

Page 459: ...ommand mode VLAN no cpu Enables or disables the switch to forward unregistered IP multicast traffic to the MP which adds an entry in the IPMC table as follows If no Mrouter is present drop subsequent packets with same IPMC If a Mrouter is present forward subsequent packets to the Mrouter s on the ingress VLAN The default setting is enabled Note If both flood and cpu are disabled the switch drops a...

Page 460: ...figuration ip router id IP address Sets the router ID Command mode Global configuration no ip router id Removes the router ID Command mode Global configuration route map 1 64 Enters IP Route Map mode To view command options see page 476 Command mode Global configuration router bgp Enters Border Gateway Protocol BGP configuration mode To view command options see page 512 Command mode Global configu...

Page 461: ...ip information Displays all IP information Command mode All show layer3 Dumps all Layer 3 switch information available 10K or more depending on your configuration If you want to capture dump data to a file set your communication software on your workstation to capture session data before issuing the dump commands Command mode All Table 249 Layer 3 Configuration Commands continued Command Syntax an...

Page 462: ...sk IP netmask Configures the IP subnet address mask for the interface using dotted decimal notation Command mode Interface IP ipv6 address IPv6 address IPv6 prefix length anycast enable Configures the IPv6 address of the switch interface using hexadecimal format with colons The anycast option configures the IPv6 address as an IPv6 anycast address The enable option also enables the IP interface Com...

Page 463: ...The default setting is enabled Command mode Interface IP vlan VLAN ID 1 4094 Configures the VLAN number for this interface Each interface can belong to one VLAN IPv4 Each VLAN can contain multiple IPv4 interfaces IPv6 Each VLAN can contain only one IPv6 interface Note Assigning VLANs only applies to in band management IP interfaces 1 and 2 Default is VLAN 1 if not configured Command mode Interface...

Page 464: ...licate address detection attempts to the default value of 1 Command mode Interface IP ipv6 nd hops limit 0 255 Configures the Router Advertisement hop limit The default value is 64 hops Command mode Interface IP no ipv6 nd hops limit Resets the IPv6 Router Advertisement hop limit to its default value of 64 hops Command mode Interface IP no ipv6 nd managed config Enables or disables the managed add...

Page 465: ...esets the IPv6 Router Advertisement minimum interval to its default value of 198 seconds Command mode Interface IP ipv6 nd ra lifetime 0 9000 Configures the IPv6 Router Advertisement lifetime interval The RA lifetime interval must be greater than or equal to the RA maximum interval advint The default value is 1800 seconds Command mode Interface IP no ipv6 nd ra lifetime Resets the IPv6 Router Adve...

Page 466: ...d Command mode Interface IP no ipv6 nd retransmit time Resets the Router Advertisement re transmit timer to its default value of 1 second Command mode Interface IP no ipv6 nd suppress ra Enables or disables IPv6 Router Advertisements on the interface The default setting is disabled suppress Router Advertisements Command mode Interface IP Table 251 IPv6 Neighbor Discovery Configuration Options cont...

Page 467: ...lt setting is disabled Note The arp option does not apply to management gateways Command mode Global configuration no ip gateway 1 4 enable Enables or disables the gateway for use Command mode Global configuration ip gateway 1 4 interval 0 60 The switch pings the default gateway to verify that it s up This command sets the time between health checks The range is from 0 to 60 seconds and the defaul...

Page 468: ...ion address of the route to remove must be specified using dotted decimal notation Command mode Global configuration ip route ecmphash dipsip sip Configures ECMP hashing parameters You may choose one or more of the following parameters dipsip Destination IP and source IP address sip Source IP address Command mode Global configuration no ip route healthcheck Enables or disables static route health ...

Page 469: ...way Command mode Global configuration no ip route interface IP interface number Clears all IP static routes that use the specified IP interface Command mode Global configuration no ip route port port alias or number Clears all IP static routes that use the specified port Command mode Global configuration show ip route static Displays the current IP static routes Command mode All Table 253 IPv4 Sta...

Page 470: ...r port of the route must be specified Command mode Global configuration no ip mroute IP address VLAN ID 1 4094 portchannel 1 64 primary backup host virtual router ID Adds or removes a static multicast route The destination address VLAN and member Link Aggregation Group LAG of the route must be specified Command mode Global configuration no ip mroute IP address VLAN ID 1 4094 adminkey 1 65535 prima...

Page 471: ...nd to ARP requests Static ARPs can also be configured on some gateways as a protection against malicious ARP Cache corruption and possible DOS attacks Table 255 ARP Configuration Options Command Syntax and Usage ip arp rearp 2 120 Defines re ARP period in minutes for entries in the switch arp table When ARP entries reach this value the switch will re ARP for the address to attempt to refresh the A...

Page 472: ...r number vlan VLAN ID 1 4094 Deletes all static ARP entries or just the ARP entries that use a specific IP interface port or vlan Command mode Global configuration show ip arp static Displays current static ARP configuration Command mode All Table 256 ARP Static Configuration Options Command Syntax and Usage ...

Page 473: ...ons Command Syntax and Usage no ip arp inspection vlan VLAN ID 1 4094 Enables or disables DAI on the selected VLANs Command mode Global configuration no ip arp inspection trust Configures the current port to be a DAI trusted port On a DAI trusted port all ARP packets skip the security check The default settings is untrusted Note Configuring trusted interfaces as being untrusted can result in a los...

Page 474: ... Global configuration no ip routing directed broadcasts Enables or disables forwarding directed broadcasts The default setting is disabled Command mode Global configuration no ip routing icmp6 redirect Enables or disables IPv6 ICMP re directs The default setting is disabled Command mode Global configuration no ip routing no icmp redirect Enables or disables ICMP re directs The default setting is d...

Page 475: ...ask for this filter to define the range of IP addresses that will be accepted by the peer when the filter is enabled The default address is 0 0 0 0 0 0 0 0 Command mode Global configuration no ip match address 1 256 enable Enables or disables the Network Filter configuration Command mode Global configuration no ip match address 1 256 Deletes the Network Filter configuration Command mode Global con...

Page 476: ...ion see page 480 Command mode Route map as path preference 1 65535 Sets the AS path preference of the matched route You can configure up to 32 path preferences Command mode Route map no as path preference Removes the AS path preference of the current route map Command mode Route map no enable Enables or disables the route map Command mode Route map local preference 0 4294967294 Sets the local pref...

Page 477: ...dence of the route map The smaller the value the higher the precedence The default value is 10 Command mode Route map set community community string none Sets the BGP community attribute Enter up to 32 communities strings using the format aa nn For example 12 34 Valid strings are from 0 0 to 65535 65535 The none option removes the community attribute from prefix that passed the route map Command m...

Page 478: ...OS 8 4 no route map 1 64 Deletes the route map Command mode Global configuration show route map 1 64 Displays the current route configuration Command mode All Table 260 Routing Map Configuration Options continued Command Syntax and Usage ...

Page 479: ...ute map no access list 1 32 enable Enables or disables the access list Command mode Route map no access list 1 32 match address 1 256 Sets the network filter number See Network Filter Configuration on page 475 for details Command mode Route map access list 1 32 metric 1 4294967294 Sets the metric value in the AS External ASE LSA Command mode Route map no access list 1 32 metric Removes the current...

Page 480: ...s or denies Autonomous System filter action Command mode Route map as path list 1 8 as path 1 65535 Sets the Autonomous System filter s path number Command mode Route map no as path list 1 8 enable Enables or disables the Autonomous System filter Command mode Route map no as path list 1 8 Deletes the Autonomous System filter Command mode Route map show route map 1 64 as path list 1 8 Displays the ...

Page 481: ...p Enter Router RIP configuration mode Command mode Global configuration no enable Globally enables or disables RIP Command mode Router RIP no redistribute ebgp eospf fixed ibgp ospf static Configures RIP route distribution To view command options see page 484 Command mode Router RIP timers update 1 120 Configures the time interval for sending for RIP table updates in seconds The default value is 3...

Page 482: ...entication type password password Configures the authentication type The default is none Command mode Interface IP no ip rip authentication type Removes the authentication type Command mode Interface IP ip rip default action listen supply both When enabled the switch accepts RIP default routes from other routers but gives them lower priority than configured default gateways The default value is no...

Page 483: ...or disables split horizon The default value is enabled Command mode Interface IP no ip rip supply When enabled the switch supplies routes to other routers The default value is enabled Command mode Interface IP no ip rip triggered Enables or disables Triggered Updates Triggered Updates are used to speed convergence When enabled Triggered Updates force a router to send update messages immediately ev...

Page 484: ... comma To add or remove all 64 route maps type all The routes of the redistribution protocol matched by the route maps in the route redistribution list will be redistributed Command mode Router RIP redistribute fixed static ospf eospf ebgp ibgp export metric number 1 15 Exports the routes of this protocol in which the metric and metric type are specified Command mode Router RIP no redistribute fix...

Page 485: ...page 491 to view command options Command mode Router OSPF default information 1 16777214 AS external metric type 1 2 Sets one default route among multiple choices in an area Command mode Router OSPF no default information Removes the default route information Command mode Router OSPF no enable Enables or disables OSPF on the G8264CS Command mode Router OSPF host 1 128 Configures OSPF for the host ...

Page 486: ...ent OSPF configuration settings Command mode All Table 266 OSPF Configuration Options continued Command Syntax and Usage Table 267 Area Index Configuration Options Command Syntax and Usage area 0 5 area id IP address Defines the IP address of the OSPF area number Command mode Router OSPF area 0 5 authentication type password md5 Sets the authentication type password authenticates simple passwords ...

Page 487: ... type of area For example when a virtual link has to be established with the backbone the area type must be defined as transit transit area allows area summary information to be exchanged between routing devices Any area that is not a stub area or NSSA is considered to be transit area stub area is an area where external routing information is not distributed Typically a stub area is connected to o...

Page 488: ...the IP address mask for the range Command mode Router OSPF area range 1 16 area 0 5 Displays the area index used by the G8264CS Command mode Router OSPF no area range 1 16 enable Enables or disables the OSPF summary range Command mode Router OSPF no area range 1 16 hide Hides or shows the OSPF summary range Command mode Router OSPF no area range 1 16 Deletes the OSPF summary range Command mode Rou...

Page 489: ...the health parameters of a hello packet in seconds or milliseconds before declaring a silent router to be down Command mode Interface IP no ip ospf enable Enables or disables the OSPF interface Command mode Interface IP ip ospf hello interval 1 65535 ip ospf hello interval 50 65535 ms Configures the interval in seconds or milliseconds between the hello packets for the interfaces Command mode Inter...

Page 490: ...264CS s OSPF interfaces A priority value of 255 is the highest and 1 is the lowest A priority value of 0 specifies that the interface cannot be used as Designated Router DR or Backup Designated Router BDR Command mode Interface IP ip ospf retransmit interval 1 3600 Configures the retransmit interval in seconds Command mode Interface IP ip ospf transit delay 1 3600 Configures the transit delay in s...

Page 491: ...bles or disables OSPF virtual link Command mode Router OSPF area virtual link 1 3 hello interval 1 65535 area virtual link 1 3 hello interval 50 65535 ms Configures the authentication parameters of a hello packet in seconds or milliseconds The default value is 10 seconds Command mode Router OSPF area virtual link 1 3 key password Configures the password up to eight characters for each virtual link...

Page 492: ...erval in seconds The default value is 5 seconds Command mode Router OSPF area virtual link 1 3 transit delay 1 3600 Configures the delay in transit in seconds The default value is 1 second Command mode Router OSPF no area virtual link 1 3 Deletes OSPF virtual link Command mode Router OSPF show ip ospf area virtual link 1 3 Displays the current OSPF virtual link settings Command mode All Table 270 ...

Page 493: ... the base IP address for the host entry Command mode Router OSPF host 1 128 area 0 5 Configures the area index of the host Command mode Router OSPF host 1 128 cost 1 65535 Configures the cost value of the host Command mode Router OSPF no host 1 128 enable Enables or disables the OSPF host entry Command mode Router OSPF no host 1 128 Deletes OSPF host entry Command mode Router OSPF show ip ospf hos...

Page 494: ... OSPF redistribute fixed static rip ebgp ibgp export metric 1 16777214 AS external metric type 1 2 Exports the routes of this protocol as external OSPF AS external LSAs in which the metric and metric type are specified Command mode Router OSPF no redistribute fixed static rip ebgp ibgp export Stops exporting the routes of the protocol Command mode Router OSPF show ip ospf redistribute Displays the...

Page 495: ...e as follows Standard Cisco IBM The default setting is standard Command mode Router OSPF3 no abr type Resets the Area Border Router ABR type to its default value standard Command mode Router OSPF3 as external lsdb limit LSDB limit 0 2147483647 1 for no limit Sets the link state database limit The default value is 1 Command mode Router OSPF3 no enable Enables or disables OSPFv3 on the switch Comman...

Page 496: ...be used as Designated Router or Backup Designated Router The default value is 1 Command mode Router OSPF3 no neighbor 1 256 enable Enables or disables the specified neighbor Command mode Router OSPF3 no neighbor 1 256 Deletes the neighbor entry Command mode Router OSPF3 no nssaAsbrDfRtTrans Enables or disables setting of the P bit in the default Type 7 LSA generated by an NSSA internal ASBR The de...

Page 497: ...e current OSPF configuration settings Command mode All Table 274 OSPFv3 Configuration Options continued Command Syntax and Usage Table 275 OSPFv3 Area Index Configuration Options Command Syntax and Usage area 0 2 area id IP address Defines the IP address of the OSPFv3 area number Command mode Router OSPF3 area 0 2 default metric metric value 1 16777215 Configures the cost for the default summary r...

Page 498: ...ummary Defines the type of area For example when a virtual link has to be established with the backbone the area type must be defined as transit transit allows area summary information to be exchanged between routing devices Any area that is not a stub area or NSSA is considered to be transit area stub is an area where external routing information is not distributed Typically a stub area is connec...

Page 499: ...ommands 499 no area 0 2 Deletes the OSPF area Command mode Router OSPF3 show ipv6 ospf areas area 0 2 Displays the current OSPFv3 area configuration Command mode All Table 275 OSPFv3 Area Index Configuration Options continued Command Syntax and Usage ...

Page 500: ...res the area index used by the switch Command mode Router OSPF3 no area range 1 16 enable Enables or disables the OSPFv3 summary range Command mode Router OSPF3 no area range 1 16 hide Hides or shows the OSPFv3 summary range Command mode Router OSPF3 area range 1 16 lsa type summary Type7 Configures the LSA type as follows Summary LSA Type7 LSA Command mode Router OSPF3 area range 1 16 tag 0 42949...

Page 501: ... 0 aggregated Type 5 LSAs are generated For other area IDs aggregated Type 7 LSAs are generated in the NSSA area not advertise If the area ID is 0 0 0 0 Type 5 LSAs are not generated while all NSSA LSAs within the range are cleared and aggregated Type 7 LSAs are generated for all NSSAs For other area IDs aggregated Type 7 LSAs are not generated in the NSSA area Command mode Router OSPF3 summary pr...

Page 502: ...erface IP no ipv6 ospf cost Removes the metric value for sending a packet on the interface Command mode Interface IP ipv6 ospf dead interval 1 65535 Configures the time period in seconds for which the router waits for hello packet from the neighbor before declaring this neighbor down Command mode Interface IP no ipv6 ospf dead interval Resets the dead interval for hello packets to its default valu...

Page 503: ...ables or disables the passive setting on the interface On a passive interface OSPFv3 protocol packets are suppressed Command mode Interface IP ipv6 ospf poll interval 0 4294967295 Configures the poll interval in seconds for neighbors in NBMA networks The default value is 120 seconds Command mode Interface IP no ipv6 ospf poll interval Configures the poll interval in seconds for neighbors in NBMA a...

Page 504: ...Interface IP ipv6 ospf transmit delay 1 1800 Configures the estimated time in seconds taken to transmit LS update packet over this interface Command mode Interface IP no ipv6 ospf transmit delay Resets the estimated time taken to transmit LS update packet over the current interface to its default value Command mode Interface IP no ipv6 ospf Deletes OSPFv3 from interface Command mode Interface IP s...

Page 505: ...al Configures the Security Parameters Index SPI algorithm and authentication key for the Authentication Header AH The algorithms supported are MD5 hexadecimal key length is 32 SHA1 hexadecimal key length is 40 Command mode Interface IP no ipv6 ospf authentication ipsec spi 256 4294967295 Disables the specified Authentication Header AH SPI Command mode Interface IP ipv6 ospf authentication ipsec de...

Page 506: ...rithms supported are md5 hexadecimal key length is 32 sha1 hexadecimal key length is 40 none means ESP with no authentication Note If the encryption algorithm is null the authentication algorithm must be either MD5 or SHA1 If an encryption algorithm is specified 3DES or AES CBC the authentication algorithm can be none Command mode Interface IP no ipv6 ospf encryption ipsec spi 256 4294967295 Disab...

Page 507: ...dicated interval in seconds between the hello packets that the router sends on the interface Command mode Router OSPF3 area virtual link 1 3 neighbor router NBR router ID IP address Configures the router ID of the virtual neighbor The default setting is 0 0 0 0 Command mode Router OSPF3 area virtual link 1 3 retransmit interval 1 1800 Configures the interval in seconds between link state advertise...

Page 508: ...Header AH to its default values Command mode Router OSPF3 area virtual link 1 3 encryption ipsec enable Enables OSPFv3 IPsec encryption Command mode Router OSPF3 area virtual link 1 3 encryption ipsec spi 256 4294967295 esp 3des aes cbc null encryption key hexadecimal md5 sha1 none authentication key hexadecimal Configures the Security Parameters Index SPI encryption algorithm authentication algor...

Page 509: ...and mode All Table 281 Layer 3 IPsec Configuration Options continued Command Syntax and Usage Table 282 OSPFv3 Host Entry Configuration Options Command Syntax and Usage host 1 128 address IPv6 address prefix length 1 128 Configures the base IPv6 address and the subnet prefix length for the host entry Command mode Router OSPF3 host 1 128 area 0 2 Configures the area index of the host Command mode R...

Page 510: ...t config 1 128 metric type asExttype1 asExttype2 Configures the metric type applied to the route before it is advertised into the OSPFv3 domain Command mode Router OSPF3 redist config 1 128 metric value 1 16777215 Configures the route metric value applied to the route before it is advertised into the OSPFv3 domain Command mode Router OSPF3 redist config 1 128 tag 0 4294967295 Configures the route ...

Page 511: ...ibute connected static export metric value 1 16777215 metric type 1 2 tag 0 4294967295 Exports the routes of this protocol as external OSPFv3 AS external LSAs in which the metric metric type and route tag are specified Command mode Router OSPF3 no redistribute connected static export Stops exporting the routes of the protocol Command mode Router OSPF3 show ipv6 ospf Displays the current OSPFv3 rou...

Page 512: ...s enable you to configure the switch to receive routes and to advertise static routes fixed routes and virtual server IP addresses with other internal and external routers BGP is turned off by default Note Fixed routes are subnet routes There is one fixed route per IP interface Table 285 Border Gateway Protocol Options Command Syntax and Usage router bgp Enter Router BGP configuration mode Command...

Page 513: ... route if you are using eBGP or use the local preference if you are using iBGP Command mode Router BGP maximum paths ibgp 1 32 Set maximum paths allowed for an external route ibgp will set the maximum paths allowed for an internal route By default BGP will install only one path to the IP routing table Command mode Router BGP no maximum paths ibgp Resets the maximum paths allowed for an external ro...

Page 514: ...r Gateway Protocol Options continued Command Syntax and Usage Table 286 BGP Peer Configuration Options Command Syntax and Usage neighbor 1 96 advertisement interval 1 65535 Sets time in seconds between advertisements The default value is 60 seconds Command mode Router BGP no neighbor 1 96 next hop self Enables or disables enforcing the use the router s own IP address as next hop attribute when sen...

Page 515: ...bor 1 96 route map in out 1 64 Adds route map into in route or out route map list Command mode Router BGP no neighbor 1 96 route map in out 1 64 all Removes all route maps or a specific route map from in route or out route map list Command mode Router BGP neighbor 1 96 route origination interval 1 65535 Sets the minimum time between route originations in seconds The default value is 15 seconds Com...

Page 516: ...s which allow BGP peers to talk across a routed network The default number is set at 1 Note The TTL value is significant only to eBGP peers for iBGP peers the TTL value in the IP packets is always 255 regardless of the configured value Command mode Router BGP no neighbor 1 96 time to live Disables the TTL feature Command mode Router BGP neighbor 1 96 timers hold time 0 3 65535 Sets the period of t...

Page 517: ...eer Command mode Router BGP no neighbor 1 96 Deletes this peer configuration Command mode Router BGP show ip bgp neighbor 1 96 Displays the current BGP peer configuration Command mode All Table 286 BGP Peer Configuration Options continued Command Syntax and Usage Table 287 BGP Aggregation Configuration Options Command Syntax and Usage aggregate address 1 16 IP address IP netmask Defines the starti...

Page 518: ...er If the routes are learned from default gateway configuration you have to enable static routes since the routes from default gateway are static routes Similarly if the routes are learned from a certain routing protocol you have to enable that protocol Command mode Router BGP no neighbor 1 96 redistribute default action Disables the default route action configuration Command mode Router BGP neigh...

Page 519: ...t value is 60 seconds Command mode Router BGP neighbor group 1 8 listen limit group limit 1 96 Sets the maximum number of BGP dynamic peers Command mode Router BGP neighbor group 1 8 listen range IPv4 address IPv4 subnet mask Defines the range of IP addresses that will be accepted for the group Command mode Router BGP neighbor group 1 8 name 1 32 characters Sets the name for the group Command mode...

Page 520: ...t Command mode Router BGP neighbor group 1 8 route origination interval min orig time 1 65535 Sets the minimum time between route originations in seconds The default value is 15 seconds Command mode Router BGP no neighbor group 1 8 route reflector client Enables or disables the group as a route reflector client Configuring route reflector clients implicitly sets up the local router as a route refl...

Page 521: ...red value Command mode Router BGP no neighbor group 1 8 time to live 1 255 Disables the TTL feature Command mode Router BGP neighbor group 1 8 timers hold time hold time 0 3 65535 Sets the period of time in seconds that will elapse before the peering group session is torn down because the switch hasn t received a keep alive message from the peer The default value is 180 seconds Command mode Router...

Page 522: ...group 1 8 Deletes this peering group configuration Command mode Router BGP show ip bgp neighbor group 1 8 Displays the current peering group configuration Command mode All Table 289 BGP Peering Group Configuration Options continued Command Syntax and Usage ...

Page 523: ...eer If the routes are learned from default gateway configuration you have to enable static routes since the routes from default gateway are static routes Similarly if the routes are learned from a certain routing protocol you have to enable that protocol Command mode Router BGP no neighbor group 1 8 redistribute default action Disables the default route action configuration Command mode Router BGP...

Page 524: ...bal Configuration Commands Command Syntax and Usage ipv6 mld Enter MLD global configuration mode Command mode Global configuration no enable Globally enables or disables MLD Command mode MLD Configuration default Resets MLD parameters to their default values Command mode MLD Configuration show ipv6 mld Displays the current MLD configuration parameters Command mode All ...

Page 525: ...val in seconds The default value is 1 second Command mode Interface IP no ipv6 mld llistnr Resets the Last Listener query interval to its default value of 1 second Command mode Interface IP ipv6 mld qintrval 2 65535 Configures the interval for MLD Query Reports in seconds The default value is 125 seconds Command mode Interface IP no ipv6 mld qintrval Resets the interval for MLD Query Reports to it...

Page 526: ... mld robust Resets the MLD Robustness variable to its default value of 2 Command mode Interface IP ipv6 mld version 1 2 Defines the MLD protocol version number The default value is 1 Command mode Interface IP no ipv6 mld version Resets the MLD protocol version number to its default value of 1 Command mode Interface IP ipv6 mld default Resets MLD parameters for the selected interface to their defau...

Page 527: ...iguration on page 531 IGMP Static Multicast Router Configuration on page 532 IGMP Filtering Configuration on page 533 IGMP Advanced Configuration on page 535 IGMP Querier Configuration on page 536 Table 293 IGMP Configuration Options Command Syntax and Usage no ip igmp aggregate Enables or disables IGMP Membership Report aggregation Command mode Global configuration no ip igmp enable Globally enab...

Page 528: ...ation no ip igmp snoop mrouter timeout 1 600 Configures the timeout value for IGMP Membership Queries mrouter Once the timeout value is reached the switch removes the multicast router from its IGMP table if the proper conditions are met The range is from 1 to 600 seconds The default is 255 seconds Command mode Global configuration no ip igmp snoop source ip IP address Configures the source IP addr...

Page 529: ... igmp snoop igmpv3 sources 1 64 Configures the maximum number of IGMP multicast sources to snoop from within the group record Use this command to limit the number of IGMP sources to provide more refined control The default value is 8 Command mode Global configuration no ip igmp snoop igmpv3 sources Resets the maximum number of IGMP multicast sources to snoop from within the group record to its def...

Page 530: ...obal configuration ip igmp relay report 0 150 Configures the interval between unsolicited Join reports sent by the switch in seconds The default value is 10 Command mode Global configuration ip igmp relay vlan VLAN ID 1 4094 Adds the VLAN or range of VLANs to the list of IGMP Relay VLANs Command mode Global configuration no ip igmp relay vlan VLAN ID 1 4094 all Removes all VLANs or just the specif...

Page 531: ...uration no ip igmp relay mrouter 1 2 enable Enables or disables the multicast router Command mode Global configuration ip igmp relay mrouter 1 2 interval 1 60 Configures the time interval between ping attempts to the upstream Mrouters in seconds The default value is 2 Command mode Global configuration ip igmp relay mrouter 1 2 retry 1 120 Configures the number of failed ping attempts required befo...

Page 532: ...ation Options Command Syntax and Usage ip igmp mrouter port port alias or number VLAN ID 1 4094 version 1 3 Selects a port VLAN combination on which the static multicast router is connected and configures the IGMP version of the multicast router Command mode Global configuration no ip igmp mrouter port port alias or number VLAN ID 1 4094 version 1 3 all Removes all static multicast routers or a sp...

Page 533: ...w ip igmp filtering Displays the current IGMP Filtering parameters Command mode All Table 300 IGMP Filter Definition Options Command Syntax and Usage ip igmp profile 1 16 action allow deny Allows or denies multicast traffic for the IP multicast addresses specified The default action is deny Command mode Global configuration no ip igmp profile 1 16 enable Enables or disables this IGMP filter Comman...

Page 534: ...ilter Port Configuration Options Command Syntax and Usage no ip igmp filtering Enables or disables IGMP filtering on this port Command mode Interface port no ip igmp profile 1 16 Adds or removes an IGMP filter to this port Command mode Interface port show interface port port alias or number igmp filtering Displays the current IGMP filter parameters for this port Command mode All ...

Page 535: ...nfiguration ip igmp query interval 1 600 Sets the IGMP router query interval in seconds The default value is 125 seconds Command mode Global configuration no ip igmp query interval Resets the IGMP router query interval to its default value of 125 seconds Command mode Global configuration ip igmp robust 1 10 Configures the IGMP Robustness variable which allows you to tune the switch for expected pa...

Page 536: ...disables IGMP Querier Command mode Global configuration ip igmp querier vlan VLAN ID 1 4094 election type ipv4 mac Sets the IGMP Querier election criteria as IP address or Mac address The default setting is ipv4 Command mode Global configuration no ip igmp querier vlan VLAN ID 1 4094 election type Resets the IGMP Querier election criteria to its default value ipv4 Command mode Global configuration...

Page 537: ...lt value is 2 Command mode Global configuration no ip igmp querier vlan VLAN ID 1 4094 robustness Resets the IGMP Robustness variable to its default value of 2 Command mode Global configuration ip igmp querier vlan VLAN ID 1 4094 source ip IP address Configures the IGMP source IP address for the selected VLAN Command mode Global configuration no ip igmp querier vlan VLAN ID 1 4094 source ip Remove...

Page 538: ...4 version v1 v2 v3 Configures the IGMP version The default version is v3 Command mode Global configuration no ip igmp querier vlan VLAN ID 1 4094 version Resets the IGMP version to its default value of v3 Command mode Global configuration no ip igmp querier vlan VLAN ID 1 4094 Deletes the IGMP Querier configuration for the specified VLAN Command mode Global configuration show ip igmp querier Displ...

Page 539: ...eout value in case a packet is not received by the peer and needs to be retransmitted The default value is 20 seconds Command mode Global configuration show ikev2 Displays the current IKEv2 settings Command mode All Table 305 IKEv2 Preshare Key Options Command Syntax and Usage ikev2 preshare key local 1 256 characters Configures the local preshare key The default value is ibm123 Command mode Globa...

Page 540: ...e but require additional time to compute the key Table 306 IKEv2 Proposal Options Command Syntax and Usage ikev2 proposal Enter IKEv2 proposal mode Command mode Global configuration encryption 3des aes cbc Configures IKEv2 encryption mode The default value is 3des Command mode IKEv2 proposal group 24 Configures the DH group The default group is 2 Command mode IKEv2 proposal integrity sha1 Configur...

Page 541: ...plied IPv6 address as identification Command mode Global configuration ikev2 identity local fqdn 1 32 characters Configures the switch to use the fully qualified domain name such as example com as identification Command mode Global configuration ikev2 identity local email 1 32 characters Configures the switch to use the supplied email address such as xyz example com as identification Command mode ...

Page 542: ... Syntax and Usage ipsec transform set 1 10 ah sha1 esp 3des esp aes cbc esp null esp sha1 Sets the AH or ESP authentication encryption or integrity algorithm The available algorithms are as follows ah sha1 esp 3des esp aes cbc esp null esp sha1 Command mode Global configuration ipsec transform set 1 10 transport ah sha1 esp 3des esp aes cbc esp null esp sha1 Sets transport mode and the AH or ESP a...

Page 543: ...de All Table 309 IPsec Transform Set Options continued Command Syntax and Usage Table 310 IPsec Traffic Selector Options Command Syntax and Usage ipsec traffic selector 1 10 permit deny any icmp ICMPv6 type 0 255 tcp IPV6 address any Sets the traffic selector to permit or deny the specified type of traffic Command mode Global configuration no ipsec traffic selector 1 10 Resets the specified traffi...

Page 544: ...dress Command mode IPsec dynamic policy pfs enable disable Enables or disables perfect forward security Command mode IPsec dynamic policy sa lifetime 120 86400 Sets the IPsec SA lifetime in seconds The default value is 86400 seconds Command mode IPsec dynamic policy traffic selector 1 10 Sets the traffic selector for the IPsec policy Command mode IPsec dynamic policy transform set 1 10 Sets the tr...

Page 545: ...party device key lengths are fixed to 20 characters for SHA1 Command mode IPsec manual policy in esp auth key cipher key key code hexadecimal Sets the inbound Encapsulating Security Payload ESP authenticator key or cipher key Note For manual policies when peering with a third party device key lengths are fixed to 8 characters for DES and to 24 characters for 3DES and AES CBC encryption Command mod...

Page 546: ... and AES CBC encryption Command mode IPsec manual policy out esp spi 256 4294967295 Sets the outbound Encapsulating Security Payload ESP Security Parameter Index SPI Note For manual policies when peering with a third party device key lengths are fixed to 20 characters for SHA1 Command mode IPsec manual policy peer IPv6 address Sets the remote peer IP address Command mode IPsec manual policy traffi...

Page 547: ...v4 address data port mgt port You are prompted to set the IPv4 address for your primary DNS server using dotted decimal notation Command mode Global configuration no ip dns primary server Removes the IPv4 primary DNS server Command mode Global configuration ip dns secondary server IPv4 address data port mgt port You are prompted to set the IPv4 address for your secondary DNS server using dotted de...

Page 548: ...condary will be used instead Command mode Global configuration no ip dns ipv6 secondary server Removes the IPv6 secondary DNS server Command mode Global configuration ip dns ipv6 request version ipv4 ipv6 Sets the protocol used for the first request to the DNS server as follows IPv4 IPv6 Command mode Global configuration show ip dns Displays the current Domain Name System settings Command mode All...

Page 549: ...les BOOTP relay Command mode Global configuration ip bootp relay server 1 5 address IP address Sets the IP address of the selected global BOOTP server Command mode Global configuration no ip bootp relay server 1 5 Removes the specified BOOTP server Command mode Global configuration Table 315 BOOTP Relay Broadcast Domain Configuration Options Command Syntax and Usage no ip bootp relay bcast domain ...

Page 550: ...lay Broadcast Domain Configuration Options continued Command Syntax and Usage Table 316 Option 82 Configuration Options Command Syntax and Usage no ip bootp relay information enable Enables or disables BOOTP Option 82 Command mode Global configuration ip bootp relay information policy keep drop replace Configures the DHCP re forwarding policy as follows keep Retains requests that contain relay inf...

Page 551: ...o Enterprise Network Operating System 8 4 Table 317 Virtual Router Redundancy Protocol Options Command Syntax and Usage router vrrp Enter Router VRRP configuration mode Command mode Global configuration no enable Globally enables or disables VRRP on this switch Command mode Router VRRP group Configures VRRP virtual routers groups To view command options see page 557 Command mode Router VRRP holdof...

Page 552: ...er 1 128 Configures virtual routers for the switch To view command options see page 553 Command mode Router VRRP show ip vrrp Displays the current VRRP parameters Command mode All Table 317 Virtual Router Redundancy Protocol Options Command Syntax and Usage ...

Page 553: ...ables this virtual router Command mode Router VRRP no virtual router 1 128 fast advertise Enables or disables Fast Advertisements When enabled the VRRP master advertisements interval is calculated in units of centiseconds instead of seconds For example if adver is set to 1 and fadver is enabled master advertisements are sent every 10 miliseconds When you disable fast advertisement the advertisemen...

Page 554: ...will automatically be set to 255 highest When priority tracking is used this base priority value can be modified according to a number of performance and operational criteria The priority value can be any integer between 1 and 254 The default value is 100 Command mode Router VRRP virtual router 1 128 timers advertise 1 255 Defines the time interval between VRRP master advertisements This can be an...

Page 555: ... virtual router The VRID for standard virtual routers where the virtual router IP address is not the same as any virtual server can be any integer between 1 and 128 The default value is 1 Note All VRID values must be unique within the VLAN to which the virtual router s IP interface belongs Command mode Router VRRP no virtual router 1 128 Deletes this virtual router from the switch configuration Co...

Page 556: ...interfaces When enabled the priority for this virtual router will be increased for each other IP interface active on this switch An IP interface is considered active when there is at least one active port on the same VLAN This helps elect the virtual routers with the most available routes as the master This command is disabled by default Command mode Router VRRP no virtual router 1 128 track ports...

Page 557: ... default is 1 Command mode Router VRRP no group enable Enables or disables the virtual router group Command mode Router VRRP no group fast advertise Enables or disables Fast Advertisements When enabled the VRRP master advertisements interval is calculated in units of centiseconds instead of seconds For example if adver is set to 1 and fadver is enabled master advertisements are sent every 10 milis...

Page 558: ...uter will automatically be set to 255 highest This can be any integer between 1 and 254 The default value is 100 When priority tracking is used this base priority value can be modified according to a number of performance and operational criteria Command mode Router VRRP group track Enables the priority system used when electing the master router from a pool of virtual router groups To view comman...

Page 559: ...ce active on this switch An IP interface is considered active when there is at least one active port on the same VLAN This helps elect the virtual routers with the most available routes as the master This command is disabled by default Command mode Router VRRP no group track ports When enabled the priority for this virtual router will be increased for each active port on the same VLAN A port is co...

Page 560: ...hentication Command mode Router VRRP interface 1 126 password password Defines a plain text password up to eight characters long This password will be added to each VRRP packet transmitted by this interface when password authentication is chosen see interface authentication above Command mode Router VRRP no interface 1 126 password Resets the configured password to its default value Command mode R...

Page 561: ...Tracking Commands see page 556 are enabled Table 323 VRRP Tracking Configuration Options Command Syntax and Usage tracking priority increment interfaces 0 254 Defines the priority increment value for active IP interfaces detected on this switch The default value is 2 Command mode Router VRRP tracking priority increment ports 0 254 Defines the priority increment value for active ports on the virtua...

Page 562: ...enable Enables or disables PIM border router The default setting is disabled Command mode Global configuration ip pim regstop ratelimit period 0 2147483647 Configures the register stop rate limit in seconds The default value is 5 seconds Command mode Global configuration default ip pim regstop ratelimit period Reset the register stop rate limit to its default value of 5 seconds Command mode Global...

Page 563: ...cast router entries Command mode Privileged EXEC Table 324 PIM Configuration Options Command Syntax and Usage Table 325 PIM Component Configuration Options Command Syntax and Usage ip pim component 1 2 Enter PIM component mode Command mode Global configuration mode dense sparse Configures the operational mode of the PIM router dense or sparse Command mode PIM Component show ip pim component 1 2 Di...

Page 564: ...mand mode PIM Component no rp candidate holdtime Resets the hold time of the RP candidate to its default value of 0 seconds Command mode PIM Component no rp candidate rp address group multicast address group subnet mask IP address Adds or removes an RP candidate Command mode PIM Component Table 327 RP Static Configuration Options Command Syntax and Usage rp static rp address group multicast addres...

Page 565: ...p router preference Command mode Interface IP default no ip pim cbsr preference Resets the canditate bootstrap router preference to its default value Command mode Interface IP ip pim component id 1 2 Defines the component ID for the interface Command mode Interface IP no ip pim component id Removes the interface from the PIM component Command mode Interface IP ip pim dr priority 0 4294967294 Confi...

Page 566: ...fault value of 30 seconds Command mode Interface IP ip pim join prune interval 0 65535 Configures the interval between Join Prune messages in seconds The default value is 60 seconds Command mode Interface IP default no ip pim join prune interval Resets the interval between Join Prune messages to its default value of 60 seconds Command mode Interface IP ip pim lan delay 0 32767 Configures the LAN d...

Page 567: ...following command ip pim neighbor addr IP address Command mode Interface IP ip pim override interval 0 65535 Configures the override interval for the router interface in seconds Command mode Interface IP default no ip pim override interval Resets the override interval for the router interface to its default value Command mode Interface IP default ip pim Resets the PIM configuration on the interfac...

Page 568: ...x and Usage ip gateway6 1 4 address IPv6 address enable Configures the IPv6 address of the default gateway in hexadecimal format with colons such as 3001 0 0 0 0 0 abcd 12 The enable option also enables the gateway Command mode Global configuration no ip gateway6 1 4 enable Enables or disables the default gateway Command mode Global configuration no ip gateway6 1 4 Deletes the default gateway Comm...

Page 569: ...nation address IPv6 address gateway default IPv6 gateway address interface IP interface number all Clears the selected IPv6 static routes Command mode Global configuration show ipv6 route static Displays the current static route configuration Command mode All Table 331 IPv6 Neighbor Discovery Cache Configuration Options Command Syntax and Usage ip neighbors IPv6 address MAC address vlan VLAN ID 1 ...

Page 570: ...e timeout value for Path MTU cache entries in minutes Enter 0 zero to set the timeout to infinity no timeout The default value is 10 minutes Command mode Global configuration clear ipv6 pmtu Clears all entries in the Path MTU cache Command mode Privileged EXEC show ipv6 pmtu Displays the current Path MTU configuration Command mode All Table 333 IPv6 Neighbor Discovery Prefix Options Command Syntax...

Page 571: ...ar the off link flag omit the off link parameter when you issue this command Command mode Interface IP ipv6 nd prefix IPv6 prefix IPv6 prefix length valid lifetime 0 4294967295 infinite variable 0 4294967295 prefered lifetime 0 4294967295 infinite variable no autoconfig off link Configures the Valid Lifetime and optionally the Preferred Lifetime of the prefix in seconds The Valid Lifetime is the l...

Page 572: ...ix length precedence 0 100 label 0 100 Adds or removes a Prefix Policy Table entry Enter the following parameters IPv6 address prefix Prefix length Precedence The precedence is used to sort destination addresses Prefixes with a higher precedence are sorted before those with a lower precedence Label The label allows you to select prefixes based on matching labels Source prefixes are coupled with de...

Page 573: ... interface Command mode Interface loopback ip address IP address subnet mask enable Defines the loopback interface IP address You can also specify its subnet mask The enable option also enables the loopback interface Command mode Interface loopback ip netmask subnet mask Defines the loopback interface subnet mask Command mode Interface loopback ip ospf area 0 5 Configures the OSPF area index used ...

Page 574: ... Removes an entry from the binding table Command mode Global configuration no ip dhcp snooping information option insert Enables or disables option 82 support for DHCP Snooping When enabled DHCP Snooping performs the following functions if a DHCP packet from a client contains option 82 information the information is retained when DHCP Snooping forwards a DHCP packet from a client option 82 informa...

Page 575: ...ommands Table 337 CEE Configuration Options Command Syntax and Usage no cee enable Globally enables or disables CEE Command mode Global configuration no cee iscsi enable Enables or disables ISCSI TLV advertisements Command mode Global configuration show cee iscsi Displays the current ISCSI TLV parameters Command mode All show cee Displays the current CEE parameters Command mode All ...

Page 576: ...andwidth percentage allocated to the Priority Group Note Priority Group 15 is a strict priority group and does not need bandwidth assigned to it Command mode Global configuration cee global ets priority group pgid 0 7 15 description 1 31 characters Enter text that describes this Priority Group Command mode Global configuration no cee global ets priority group 0 7 15 description Deletes the Priorit...

Page 577: ...ntax and Usage no cee global pfc enable Globally enables or disables Priority Flow Control on all ports Command mode Global configuration cee global pfc priority 0 7 description 1 31 characters Enter text that describes this Priority Group Command mode Global configuration no cee global pfc priority 0 7 description Removes the description for the specified Priority Group Command mode Global config...

Page 578: ...ity Note PFC can be enabled on 802 1p priority 3 and one other priority only Command mode Global configuration cee port port alias or number pfc priority 0 7 description 1 31 characters Enter text to describe the priority value Command mode Global configuration no cee port port alias or number pfc priority 0 7 description Deletes the description for the specified priority value Command mode Global...

Page 579: ...e Global configuration no cee port port alias or number dcbx ets advertise Enables or disables DCBX ETS advertisements of configuration data When enabled the Advertisement flag is set to 1 advertise data to the peer device Command mode Global configuration no cee port port alias or number dcbx ets willing Enables or disables ETS willingness to accept configuration data from the peer device When en...

Page 580: ...rt type fc Enables or disables Fibre Channel mode on the specified port range Fibre Channel can be enabled only for port pairs specifically for 53 54 55 56 and 57 58 The default setting is disabled ports are in Ethernet mode Note VLAN tagging is automatically enabled on any ports placed in Fibre Channel mode Command mode Global configuration no fcalias 1 64 characters wwn port World Wide Name Conf...

Page 581: ...Port configuration fc speed 4 8 auto Configures the Fibre Channel port speed in Gbps or allows the port to negotiate its speed automatically The default setting is auto Command mode FC Port configuration no type e Enable the FC port to type E or disable the E port Command mode FC Port configuration Table 344 FCF VLAN Configuration Commands Command Syntax and Usage vlan VLAN ID 1 4094 Enter VLAN co...

Page 582: ... as NP external uplink ports Command mode VLAN configuration fcoe fcmap fabric map ID Configures the global FC map that identifies the FC fabric used by the switch The switch will discard MAC addresses that are not part of the current fabric which avoids cross fabric talk The FC map is a 24 bit hexadecimal value The default value is 0x0efc00 Command mode VLAN configuration no fcoe fcmap Resets the...

Page 583: ... Zone Command mode Global configuration zone clone selected zone name new zone name Creates a new zone with the attributes of the selected zone Command mode Global configuration zone rename current name new name Renames the FC zone Command mode Global configuration no zone default zone permit Permits or denies traffic flow to default zone members Command mode Global configuration no member pwwn pw...

Page 584: ...64 characters Activates or deactivates the zoneset Only one zoneset can be active at any point in time Activating a zoneset automatically deactivates any other zoneset currently active Command mode Global configuration zoneset clone selected zoneset name new zoneset name Creates a new zoneset with the attributes of the selected zoneset Command mode Global configuration zone copy active zoneset run...

Page 585: ... Command mode Global configuration no fcoe optimized forwarding enable Enables or disables QLFC optimized forwarding The default value is enabled Command mode Global configuration no fcoe fips timeout acl Enables or disables ACL time out removal When enabled ACLs associated with expired FCFs and FCoE connections are removed from the system Command mode Global configuration show fcoe information Di...

Page 586: ...oping configuration options Table 348 Port FIP Snooping Options Command Syntax and Usage no fcoe fips port port alias or number enable Enables or disables FIP Snooping on the port The default setting is enabled Command mode Global configuration fcoe fips port port alias or number fcf mode auto on off Configures FCoE Forwarding FCF on the port as follows on Configures the port as a Fibre Channel Fo...

Page 587: ... to the standard interface OID as follows 1 3 6 1 2 1 2 2 1 1 X where X is the ifIndex Command mode Global configuration rmon history 1 65535 owner 1 127 characters Enter a text string that identifies the person or entity that uses this History index Command mode Global configuration no rmon history 1 65535 owner Deletes the identification information for the specified History index Command mode G...

Page 588: ...35 description Deletes the description of the specified event index Command mode Global configuration rmon event 1 65535 owner 1 127 characters Enter a text string that identifies the person or entity that uses this Event index Command mode Global configuration no rmon event 1 65535 owner Deletes the identification information for the specified Event index Command mode Global configuration rmon ev...

Page 589: ...ther Configures the alarm type as rising falling or either rising or falling Command mode Global configuration rmon alarm 1 65535 falling crossing index 0 65535 Configures the falling alarm event index that is triggered when a falling threshold is crossed Command mode Global configuration rmon alarm 1 65535 falling limit 2147483647 2147483647 Configures the falling threshold for the sampled statis...

Page 590: ...is threshold and the value at the last sampling interval was less than this threshold a single event is generated Command mode Global configuration rmon alarm 1 65535 sample abs delta Configures the method of sampling the selected variable and calculating the value to be compared against the thresholds as follows abs absolute value the value of the selected variable is compared directly with the t...

Page 591: ...s Command mode Global configuration show virt Displays the current virtualization parameters Command mode All Table 353 VM Bandwidth Management Options Command Syntax and Usage no virt vmpolicy vmbwidth MAC address UUID name IP address index number bwctrl Enables or disables bandwidth control on the VM policy Command mode Global configuration virt vmpolicy vmbwidth MAC address UUID name IP address...

Page 592: ...e Command mode Global configuration no virt vmpolicy vmbwidth MAC address UUID name IP address index number Deletes the bandwidth management settings from this VM policy Command mode Global configuration show virt vmpolicy vmbwidth MAC address UUID name IP address index number index range include exclude section begin Displays the current VM bandwidth management parameters for all virtual machines...

Page 593: ...l be included in the VM group Command mode Global configuration no virt vmgroup 1 4096 optflood Enables or disables Optimized Flooding on the VM group Command mode Global configuration no virt vmgroup 1 4096 port port alias or number Adds or removes the selected port to from the VM group Note A port can be added to a VM group only if no VMs on that port are members of the VM group Command mode Glo...

Page 594: ...resses on virtual machines The default setting is disabled Command mode Global configuration no virt vmgroup 1 4096 validate Disables MAC address spoof prevention for the specified VM group Command mode Global configuration virt vmgroup 1 4096 vlan VLAN ID 1 4094 Assigns a VLAN to this VM group If you do not assign a VLAN to the VM group the switch automatically assigns the first unused VLAN when ...

Page 595: ... non server ports only If you do not select a port type the VMAP is applied to the entire VM Group For more information about configuring VLAN Maps see VMAP Configuration on page 402 Command mode Global configuration no virt vmgroup 1 4096 Deletes the VM group Command mode Global configuration show virt vmgroup 1 4096 Displays the current VM group parameters Command mode All Table 354 VM Group Con...

Page 596: ...and mode Global configuration virt vmcheck action advanced acl link log Sets up action taken when detecting MAC address spoofing in advanced validation mode acl registers a syslog entry and installs an ACL to drop traffic incoming on the corresponding switch port originating from the spoofed MAC address link registers a syslog entry and disables the corresponding switch port log registers a syslog...

Page 597: ...ame 1 39 characters Defines a name for the VM profile The switch supports up to 2048 VM profiles Command mode Global configuration no virt vmprofile profile name 1 39 characters Deletes the selected VM profile Command mode Global configuration virt vmprofile edit profile name 1 39 characters eshaping average 1 1000000000 burst 1 1000000000 peak 1 1000000000 Configures traffic egress shaping parame...

Page 598: ... per second Delete traffic shaping parameters Command mode Global configuration no virt vmprofile profile name 1 39 characters shaping Deletes the traffic shaping parameters for the specified VM profile Command mode Global configuration virt vmprofile edit profile name 1 39 characters vlan VLAN ID 1 4094 Assigns a VLAN to the VM profile Command mode Global configuration show virt vmprofile profile...

Page 599: ...ration default virt vmware hbport Sets to default esx esxi server to vcenter heartbeat udp port Command mode Global configuration virt vmware hello enable haddr IP address hport port alias or number htimer 1 60 Configures CDP Cisco Discovery Protocol advertisements sent periodically to VMware ESX hypervisors Exchanging CDP message with ESX hypervisors facilitates MAC address spoof prevention Defau...

Page 600: ...assword for the Virtual Center Whether to authenticate the SSL security certificate yes or no Command mode Global configuration no virt vmware vcspec Deletes the Virtual Center credentials on the switch Command mode Global configuration show virt vmware Displays the current VMware parameters Command mode All Table 357 VM Ware Configuration Options Command Syntax and Usage Table 358 VMReady Configu...

Page 601: ...roups can be assigned to an uplink port Command mode Global configuration no vnic egress bw meter Enables or disables vNIC bandwidth metering When enabled any bandwidth which is not used by the vNIC to which it is allocated is shared with other vNICs In all cases the configured values for minimum bandwidth are honored Only the excess bandwidth is shared Command mode Global configuration show vnic ...

Page 602: ... 1 32 Enters vNIC Group Configuration mode Command mode Global Configuration no enable Enables or disables the vNIC Group Command mode vNIC Group configuration no failover Enables or disables uplink failover for the vNIC Group Uplink Failover for the vNIC Group will disable only the affected vNIC links on the port Other port functions continue to operate normally The default setting is disabled Co...

Page 603: ...ode vNIC Group configuration vlan VLAN number Assigns a VLAN to the vNIC Group Command mode vNIC Group configuration no vnic vnicgroup 1 32 Deletes the selected vNIC Group Command mode Global configuration show vnicgroup Displays the current vNIC Group parameters Command mode All Table 361 vNIC Group Configuration Options continued Command Syntax and Usage ...

Page 604: ...mber Enter Virtual Station Interface Database configuration mode For more details see page 605 Command mode Global configuration virt evb profile profile number Enter Virtual Station Interface Profile configuration mode For more details see page 607 Command mode Global configuration show virt evb vsidb VSIDB number Displays the current Virtual Station Interface database information Command mode Al...

Page 605: ...ation Interface Type database document path Command mode VSI Database no filepath Deletes the Virtual Station Interface Type database document path Command mode VSI Database host IP address mgt port data port Sets the Virtual Station Interface Type database manager IP address and the port used for the connection By default the management port is used Command mode VSI Database port 1 65534 Sets the...

Page 606: ...uration show virt evb vsitypes mgrid 0 255 typeid 1 16777215 version 0 255 Displays the current Virtual Station Interface Type database parameters Command mode All show virt evb vsidb VSIDB number Displays the current Virtual Station Interface database information Command mode All Table 363 Edge Virtual Bridge VSI Type Database Configuration Options continued Command Syntax and Usage ...

Page 607: ...apability Command mode EVB Profile no vsi discovery Enables or disables VSI Discovery ECP and VDP Command mode EVB Profile no virt evb profile profile number Deletes the specified EVB profile Command mode Global configuration evb profile 1 16 Applies the specified EVB profile for the port Automatically enables LLDP EVB TLV on the corresponding port Command mode Interface port no evb profile Resets...

Page 608: ...ervice Location Protocol Options Command Syntax and Usage no ip slp active da discovery enable Enables or disables active directory agent discovery The default value is disabled Command mode Global configuration ip slp active da discovery start wait time 1 10 Number of seconds to wait after enabling SLP before attempting active DA discovery if active DA discovery is enabled The default value is 3 ...

Page 609: ...hat have been changed from the default values The screen display can be captured edited and placed in a script file which can be used to configure other switches through a Telnet connection When using Telnet to configure a new switch paste the configuration commands from the script file at the command line prompt of the switch The active configuration can also be saved or loaded via SFTP FTP TFTP ...

Page 610: ... Note The output file is formatted with line breaks but no carriage returns the file cannot be viewed with editors that require carriage returns such as Microsoft Notepad Note If the FTP TFTP SFTP server is running SunOS or the Solaris operating system the specified configuration file must exist prior to executing the copy running config command and must be writable set with proper permission and ...

Page 611: ...placed with the commands found in the specified configuration file The file can contain a full switch configuration or a partial switch configuration To start the switch configuration download at the prompt enter or or The switch prompts you for the server address and filename RS G8264CS copy ftp running config RS G8264CS copy sftp running config RS G8264CS copy tftp running config ...

Page 612: ...mp image1 image2 syslog Command mode Privileged EXEC In this example the active configuration file is copied to a directory on the USB drive Copy from USB Use the following command to copy a file from the USB drive to the switch usbcopy fromusb filename active boot image1 image2 Command mode Privileged EXEC In this example the active configuration file is copied from a directory on the USB drive T...

Page 613: ...cteristics without affecting switch configuration Table 366 General Operations Commands Command Syntax and Usage access tnetsshc Closes all open Telnet and SSH connections Command Mode Global configuration console log Enables or disables session console logging Command Mode Privileged EXEC ntp send Allows the user to send requests to the NTP server Command Mode Privileged EXEC password 1 128 chara...

Page 614: ...onfigured operation mode when the switch is rebooted Command Mode Privileged EXEC interface port port alias or number shutdown Temporarily disables the port The port will be returned to its configured operation mode when the switch is rebooted Command Mode Privileged EXEC no interface port port alias or number shutdown Temporarily enables the port The port will be returned to its configured operat...

Page 615: ...preferred switch has been returned to service after a failure When this command is executed the current master gives up control and initiates a new election by temporarily advertising its own priority level as 0 lowest After the new election the virtual router forced into backup mode by this command will resume master control in the following cases This switch owns the virtual router the IP addres...

Page 616: ...r enter a new name to create a new Virtual Switch Command Mode All virt vmware pg Port Group name host ID VSwitch name VLAN ID 0 4094 shaping enabled average Kbps burst KB peak Kbps Adds a Port Group to a VMware host You are prompted for the following information Port Group name VMware host ID Use host UUID host IP address or host name Virtual Switch name VLAN ID of the Port Group Whether to enabl...

Page 617: ... follows Shaping enabled Average traffic in kilobits per second Maximum burst size in kilobytes Peak traffic in kilobits per second Delete traffic shaping parameters Command Mode All virt vmware vmacpg VM NIC MAC address Port Group name Changes a VM NIC s configured Port Group Command Mode All no virt vmware vsw host ID Virtual Switch name Adds or removes a Virtual Switch to a VMware host Use one ...

Page 618: ...host UUID IP address Host name Command Mode All virt vmware dvswitch adduplink dvSwitch name host UUID host IP address host name uplink name Adds the specified physical NIC to the specified dvSwitch uplink ports Command Mode All virt vmware dvswitch del datacenter name dvSwitch name Removes the specified dvSwitch from the specified DataCenter Command Mode All virt vmware dvswitch remhost dvSwitch ...

Page 619: ...dth in kilobits per second burst size in kilobits peak bandwidth in kilobits per second Command Mode All virt vmware dpg del port group name dvSwitch name Removes the specified port group from the specified dvSwitch Command Mode All virt vmware dpg update port group name dvSwitch name VLAN ID 1 4094 ishaping bandwidth burst size peak bandwidth eshaping bandwidth burst size peak bandwidth Updates t...

Page 620: ...ands Command Syntax and Usage virt evb update vsidb VSIDB number Update VSI types from the VSI database Command mode All clear virt evb vsi mac address port port alias or number type id 1 16777215 vlan 1 4094 Clears VSI database associations Command mode Privileged EXEC clear virt evb vsidb mgrid 0 255 type id 1 16777215 version 0 255 Clears local VSI types cache Command mode Privileged EXEC ...

Page 621: ...en the switch on the next reboot Selecting a configuration block to be used when the switch on the next reboot Downloading or uploading a new software image to the switch via SFTP FTP TFTP In addition to the Boot commands you can use a Web browser or SNMP to work with switch image and configuration files To use SNMP refer to Working with Switch Images and Configuration Files The boot options are d...

Page 622: ...time cancel a previously scheduled reboot and check the time of the current reboot schedule Table 373 Scheduled Reboot Options Command Syntax and Usage boot schedule day time hh mm Configures the switch reboot time The following options are valid for the day value monday tuesday wednesday thursday friday saturday sunday Command mode Global configuration no boot schedule Cancels the switch reboot t...

Page 623: ...ation the switch uses the manually configured TFTP server address and file path Table 374 Netboot Options Command Syntax and Usage boot netboot cfgfile 1 31 characters Defines the file path for the configuration file on the TFTP server For example directory sub config cfg Command mode Global configuration no boot netboot cfgfile Removes the file path for the configuration file on the TFTP server C...

Page 624: ...with such protocols are unavailable The following protocols are disabled and are not available on the switch if Secure Policy mode is enabled HTTP LDAP Client SNMPv1 and SNMPv2 Telnet Client and Telnet Server Telnet IPv6 Client and Telnet IPv6 Server FTP Client and FTP Server Radius Client TACACS Client Syslog Server The following protocols are enabled and available on the switch if Secure Policy ...

Page 625: ...KE IPSec Ping and Ping IPv6 Traceroute and Traceroute IPv6 bootp TFTP IPv6 SNMPv3 IPv6 To configure the switch policy mode use the following command Table 375 Security Policy Configuration Command Syntax and Usage boot security policy legacy mode secure mode Configures the switch security policy Note A switch reload is needed for the changes to take effect Command mode Global configuration show bo...

Page 626: ...e switch needs to be reloaded for the configuration to take effect Command mode Global configuration no boot spanning tree max instances Reset the maximum number of STGs available on the switch to the default value of 128 Note The switch needs to be reloaded for the configuration to take effect Command mode Global configuration show boot spanning tree Displays the maximum number of currently avail...

Page 627: ... feature configures the switch Machine Type Model MTM Table 377 Machine Type Model Configuration Command Syntax and Usage boot mtm MTM code Configures the switch s machine type model MTM value MTMs are applied on reboot and persist over firmware upgrades Command mode Global configuration ...

Page 628: ... 40gports port alias or number Enables or disables 40GbE mode on the selected QSFP ports When enabled each QSFP port is set as a single 40GbE port When disabled each QSFP port is configured to breakout into four 10GbE ports Note You must reboot the switch for this change to take effect Command mode Global configuration show boot qsfp port modes Displays the current QSFP parameters Command mode All...

Page 629: ... and boots with the new image RSG8264CS_OS img The switch boots with the new software image The existing images are not affected RSG8264CS_replace1_OS img The switch replaces the current software image1 with the new image and boots with the new image RSG8264CS_replace2_OS img The switch replaces the current software image2 with the new image and boots with the new image RSG8264CS cfg The switch bo...

Page 630: ...8264CS Command Reference for ENOS 8 4 To safely remove the USB device without corrupting any files use the following command system usb eject Command mode Global configuration Note Not available in stacking ...

Page 631: ...mage are released you can upgrade the software running on your switch Use the following command to determine the current software version show boot Command mode All Upgrading the software image on your switch requires the following Loading the new image onto a SFTP FTP or TFTP server on your network Transferring the new image from the SFTP FTP or TFTP server to your switch Selecting the new softwa...

Page 632: ...new software image or boot file Note The DNS parameters must be configured if specifying hostnames When the above requirements are met use the following procedure to download the new software to your switch 1 In Privileged EXEC mode enter the following command 2 Select a port to use for downloading the image 3 Enter the hostname or IP address of the SFTP FTP or TFTP server 4 Enter the name of the ...

Page 633: ...he IP address of the SFTP FTP or TFTP server 4 Enter the name of the file into which the image will be uploaded on the SFTP FTP or TFTP server 5 Enter your username and password for the server if applicable 6 The system then requests confirmation of what you have entered To have the file uploaded enter Y RS G8264CS config boot image image1 image2 Next boot will use switch software image1 instead o...

Page 634: ... block There is also a factory configuration block This holds the default configuration set by the factory when your RackSwitch G8264CS was manufactured Under certain circumstances it may be desirable to reset the switch configuration to the default This can be useful when a custom configured RackSwitch G8264CS is moved to a network environment where it will be re configured for a different purpos...

Page 635: ...t representative can assign your switch an Entitlement Serial Number ESN at the time you request support The ESN can be conveniently stored on the switch using the following command The ESN helps to locate your switch s identifying information when you call technical support for help in future RS G8264CS config boot esn Entitlement Serial Number ...

Page 636: ...rt in a local file to flash memory The no dump option skips this step thereby decreasing the time needed for the switch to reboot By default the switch saves technical support information before rebooting Technical support information backup tech support can be uploaded to an external server using the following command copy backup tech support ftp sftp tftp Command mode Privileged EXEC Note Techni...

Page 637: ...The Boot Management menu allows you to perform the following actions To change the booting image press I and follow the screen prompts To change the configuration block press C and follow the screen prompts To boot in recovery mode press R For more details see Boot Recovery Mode on page 638 To restart the boot process from the beginning press Q To exit the Boot Management menu press E The booting ...

Page 638: ...Image Upgrade using TFTP on page 639 To recover from a failed software or boot image upgrade using XModem download press X and follow the screen prompts For more details see Recovering from a Failed Image Upgrade using XModem Download on page 641 To enable the loading of an unofficial image press P and follow the screen prompts For more details see Physical Presence on page 643 To restart the boot...

Page 639: ...gress and the dots are being displayed 4 Enter Boot Recovery Mode by selecting R The Recovery Mode menu will appear 5 To start the recovery process using TFTP select T The following message will appear 6 Enter the IP address of the management port 7 Enter the network mask of the management port 8 Enter the gateway of the management port 9 Enter the IP address of the TFTP server 10 Enter the filena...

Page 640: ...5 Image Filename G8264CS 8 4 1 0_OS img Netmask 255 255 255 128 Gateway 10 241 6 66 Configuring management port Installing image G8264CS 8 4 1 0_OS img from TFTP server 10 72 97 135 Extracting images Do NOT power cycle the switch Installing Application Image signature verified Install image as image 1 or 2 hit return to just boot image 2 Installing image as image2 100 Image2 updated succeeded Upda...

Page 641: ...X for Xmodem download You will see the following display 6 When you see the following message change the Serial Port speed to 115200 bps 7 Press Enter to set the system into download accept mode When the readiness meter displays a series of C characters start Xmodem on your terminal emulator You will see a display similar to the following 8 Select the image to download Xmodem initiates the file tr...

Page 642: ...t Filesystem Image signature verified 100 Installing Kernel Image signature verified 100 Installing Device Tree Image signature verified 100 Installing Boot Loader 100 Updating install log File image installed from xmodem at 18 06 02 on 13 3 2015 Please select one of the following options T Configure networking and tftp download an image X Use xmodem 1K to serial download an image P Physical prese...

Page 643: ...ecurity test will be performed The system location blue LED will blink a number of times between 1 and 12 Enter that number 8 After entering the correct number the Recovery Mode menu will re appear To install an unofficial image use one of the following procedures TFTP for details see page 639 XModem Download for details see page 641 Note You have three attempts to successfully complete the securi...

Page 644: ...644 G8264CS Command Reference for ENOS 8 4 ...

Page 645: ... information via TFTP SFTP or FTP For details see page 663 Command mode Privileged EXEC copy switch filename tftp address TFTP server IP address filename TFTP server filepath data port mgt port Uploads a file via TFTP Command mode Privileged EXEC copy log stfp tftp data port mgt port Uploads the system log file SYSLOG via SFTP or TFTP Command mode Privileged EXEC copy tech support ftp sftp data po...

Page 646: ... Command mode Privileged EXEC clear logging Clears the system log file SYSLOG Command mode Privileged EXEC show tech support fcoe l2 l3 link port Dumps all G8264CS information statistics and configuration You can log the output tsdmp into a file To filter the information use the following options fcoe displays only FCoE related information l2 displays only Layer 2 related information l3 displays o...

Page 647: ...4 56 xxxxxxxxxxxx such as 080020123456 Command mode All show mac address table interface port port alias or number Displays all FDB entries for a particular port Command mode All show mac address table multicast Displays all Multicast MAC entries in the FDB Command mode All show mac address table private vlan VLAN ID 2 4094 Displays all FDB entries on a single private VLAN Command mode All show ma...

Page 648: ...g Command mode Privileged EXEC no debug lacp packet receive transmit both port port alias or number Enables or disables debugging for Link Aggregation Control Protocol LACP packets on selected ports running LACP The following parameters are available receive filters only LACP packets received transmit filters only LACP packets sent both filters LACP packets either sent or received port filters LAC...

Page 649: ...ived transmit filters only BPDU frames sent By default STP BPDU debugging is disabled Command mode Privileged EXEC no debug spanning tree tc Enables or disables the display of messages relating to STP topology changes Command mode Privileged EXEC no debug tacacs client Enables or disables TACACS client debug messages Command mode Privileged EXEC clear flash config Deletes all flash configuration b...

Page 650: ... EXEC no debug ssh server all Enables or disables all SSH Server debug messages Command mode Privileged EXEC no debug ssh server disconnect Enables or disables SSH Server disconnect debug messages Command mode Privileged EXEC no debug ssh server msg Enables or disables SSH Server type and protocol debug messages Command mode Privileged EXEC no debug ssh server packet Enables or disables SSH Server...

Page 651: ...ty debug messages Command mode Privileged EXEC no debug sec crypto Enables or disables all IP security cryptographic debug messages Command mode Privileged EXEC no debug sec ike Enables or disables all IP security IKEv2 debug messages Command mode Privileged EXEC no debug sec info Displays the current security debug flag Command mode Privileged EXEC no debug sec ipsec Enables or disables all IPsec...

Page 652: ...AG Health Check debug messages Command mode Privileged EXEC no debug vlag isl Enable or disables vLAG ISL debug messages Command mode Privileged EXEC no debug vlag msg Enable or disables vLAG debug messages Command mode Privileged EXEC no debug vlag portmgr Enable or disables vLAG Port Manager debug messages Command mode Privileged EXEC no debug vlag sm Enable or disables vLAG State Machine debug ...

Page 653: ...BGP debug messages for the specified BGP neighbor Command mode Privileged EXEC no debug bgp IP address in out Enables or disables all inbound or outbound BGP debug messages for the specified BGP neighbor Command mode Privileged EXEC no debug bgp in out Enables or disables all inbound or outbound BGP debug messages Command mode Privileged EXEC no debug bgp persistent Enables or disables saving BGP ...

Page 654: ...rting with the last entry first Command mode All show ip bgp debugging IP address in out last Displays inbound or outbound BGP debugging updates for the specified neighbor If the last option is specified displays the results starting with the last entry first Command mode All show ip bgp debugging ignored last Shows all BGP information for routers that have been ignored If the last option is speci...

Page 655: ...bout the Control state machine for the selected port Command mode All show cee information dcbx port port alias or number ets Displays DCBX ETS state machine information Command mode All show cee information dcbx port port alias or number feature Displays information about the Feature state machine for the selected port Command mode All show cee information dcbx port port alias or number pfc Displ...

Page 656: ...ode All show lldp port port alias or number tlv evb Displays Edge Virtual Bridge EVB type length value TLV information for the specified port Command mode All show lldp receive Displays information about the LLDP receive state machine Command mode All show lldp transmit Displays information about the LLDP transmit state machine Command mode All show lldp remote device 1 256 detail port port alias ...

Page 657: ... Syntax and Usage show ip arp Shows all ARP entries Command mode All show ip arp find IP address Shows a single ARP entry by IP address Command mode All show ip arp interface port port number or alias Shows ARP entries on selected ports Command mode All show ip arp reply Shows the list of IP addresses which the switch will respond to for ARP requests Command mode All show ip arp vlan VLAN ID 1 409...

Page 658: ...All show ip route gateway IP address Shows routes to a default gateway Command mode All show ip route interface 1 128 Shows routes on a single interface Command mode All show ip route tag address bgp broadcast fixed martian multicast ospf rip static Shows routes of a single tag For a description of IP routing tags see Table 40 on page 88 Command mode All show ip route type broadcast direct indirec...

Page 659: ...its IP address Command mode All show ip igmp groups detail IP address Displays detailed information about a single IGMP multicast group Command mode All show ip igmp groups interface port port alias or number Displays all IGMP multicast groups on selected ports Command mode All show ip igmp groups portchannel 1 128 Displays all IGMP multicast groups on a single Link Aggregation Group LAG Command m...

Page 660: ... a specified interface portchannel Command mode All show ip igmp mrouter information Displays IGMP snooping information for all Mrouters Command mode All show ip igmp mrouter vlan VLAN ID 1 4094 Displays IGMP Mrouter information for a single VLAN Command mode All show ip igmp querier vlan VLAN ID 1 4094 Displays IGMP querier information for a single VLAN Command mode All show ip igmp relay Display...

Page 661: ...v6 neighbors find IPv6 address Shows a single IPv6 Neighbor Cache entry by IP address Command mode All show ipv6 neighbors interface port port alias or number Shows IPv6 Neighbor Cache entries on a single port Command mode All show ipv6 neighbors static Shows static IPv6 Neighbor Cache entries Command mode All show ipv6 neighbors vlan VLAN ID 1 4094 Shows IPv6 Neighbor Cache entries on a single VL...

Page 662: ...nation IP address Command mode All show ipv6 route gateway IPv6 gateway address Show routes to a single gateway Command mode All show ipv6 route interface 1 128 Show routes on a single IP interface Command mode All show ipv6 route static Show static IPv6 routes Command mode All show ipv6 route summary Shows a summary of IPv6 route information Command mode All show ipv6 route type connected static ...

Page 663: ...e specified file will be replaced with the current dump data To save dump information via TFTP enter You are prompted for the TFTP server IP address or hostname and the filename of the target dump file To save dump information via SFTP enter You are prompted for the SFTP server IP address or hostname and the filename of the target dump file To save dump information via FTP enter You are prompted f...

Page 664: ...rmation from flash memory enter The switch clears the dump region of flash memory and displays the following message If the flash dump region is already clear the switch displays the following message RS G8264CS clear flash dump FLASH dump region cleared FLASH dump region is already clear ...

Page 665: ...memory the following message is displayed when you log on to the switch Note A system dump exists in FLASH The dump was saved at 13 43 22 Wednesday January 30 2011 Use show flash dump uuencode to extract the dump for analysis and clear flash dump to clear the FLASH region The region must be cleared before another dump can be saved ...

Page 666: ...666 G8264CS Command Reference for ENOS 8 4 ...

Page 667: ... The hostname is displayed when configured For example 1 1 1 1 Log Label The following types of log messages are recorded LOG_CRIT LOG_WARNING LOG_ALERT LOG_ERR LOG_NOTICE and LOG_INFO Thread ID This is the software thread that reports the log message For example stg ip console telnet vrrp system web server ssh bgp Message The log message Following is a list of potential syslog messages To keep th...

Page 668: ... IP address IP Route table full MGMT Maximum number of login failures threshold has been exceeded OSPF Interface IP IP address Interface State Down Loopback Waiting P To P DR BackupDR DR Other Interface down detached OSPF LS Database full likely incorrect missing routes or failed neighbors OSPF Neighbor Router ID router ID Neighbor State Down Attempt Init 2 Way ExStart Exchange Loading Full Loopba...

Page 669: ...nterval interval from IP address VRRP received incorrect VRRP authentication type from IP address VRRP received incorrect VRRP password from IP address VRRP VRRP received incorrect IP addresses list from IP address FCF VLAN VLAN Number Device PWWN has logged out FCF Reached max logins limit MAX_LOGIN_LIMIT FCF Vlan VLAN Number FDISC from pwwn PWWN rejected because of max FDISC limit Decrease area ...

Page 670: ...S Command Reference for ENOS 8 4 LOG_CRIT Thread LOG_CRIT Message SSH canʹt allocate memory in load_MP_INT SSH currently not enough resource for loading RSA private public key SYSTEM System memory is at n percent ...

Page 671: ...e interface MGMT Diff is issued by another user Try later MGMT Dump is issued by another user Try later MGMT Error Apply not done MGMT Error Save not done MGMT Firmware download failed insufficient memory MGMT Revert Apply is issued by another user Try later MGMT Revert is issued by another user Try later MGMT Save is issued by another user Try later NTP unable to listen to NTP port PFC PFC can be...

Page 672: ...Now writing to flash MGMT boot kernel downloaded from host hostname via browser filename too long to be displayed software version version MGMT boot kernel downloaded from host hostname file ʹ filename ʹ software version version MGMT Canʹt downgrade to image with only single flash support MGMT Could not revert unsaved changes MGMT Download already currently in progress Try again later via Browser ...

Page 673: ...me file ʹ filename ʹ software version version MGMT New config set MGMT new configuration applied from BBI EM SCP SNMP MGMT new configuration saved from BBI ISCLI SNMP MGMT scp username user type logout ejected idle timeout connection closed from Console Telnet SSH MGMT scp username user type login on Console from host IP address MGMT SP boot kernel download completed Now writing to flash MGMT SP b...

Page 674: ...hdog timeout interval is now seconds seconds MGMT Wrong config file type SSH username user type logout ejected idle timeout connection closed from Console Telnet SSH SSH username user type login on Console from host IP address SSH Error in setting the new config SSH New config set SSH scp username user type logout ejected idle timeout connection closed from Console Telnet SSH SSH scp username user...

Page 675: ...neʺ is set to ʺStandby Activeʺ HOTLINKS ʺSide Maxʺ is set to ʺStandby Activeʺ HOTLINKS has no ʺ Side Max None Learning Error ʺ interface MGMT username automatically logged out from BBI because changing of authentication type MGMT username user type logout ejected idle timeout connection closed from BBI Console Telnet SSH MGMT username user type login on Console from host IP address from BBI MGMT A...

Page 676: ...p username user type login on Console from host IP address MGMT second syslog host changed to this host IP address MGMT selectable boot mode changed MGMT STP BPDU statistics cleared MGMT switch reset from CLI MGMT syslog host changed to this host IP address MGMT System clock set to time MGMT System date set to date MGMT Terminating BBI connection from host IP address MGMT User username deleted by ...

Page 677: ...1000 SYSTEM Changed ARP entry for IP IP address to MAC MAC address Port port VLAN VLAN SYSTEM Enable auto negotiation for copper GIG port port SYSTEM I2C device ID description set to access state state from CLI SYSTEM Port port disabled SYSTEM Port port disabled due to reason code reason code SYSTEM rebooted reason administrator logged in Reason Boot watchdog reset console PANIC command console RE...

Page 678: ...has been enabled TEAMING error action is undefined TEAMING is down but teardown is blocked TEAMING is down control ports are auto disabled TEAMING is up control ports are auto controlled VLAN Default VLAN can not be deleted VRRP virtual router IP address is now BACKUP MASTER WEB username ejected from BBI WEB RSA host key is being saved to Flash ROM please donʹt reboot the box immediately Thread LO...

Page 679: ...ifferent PFC settings may affect the switch functionality HOTLINKS ʺErrorʺ is set to ʺStandby Activeʺ HOTLINKS ʺLearningʺ is set to ʺStandby Activeʺ HOTLINKS ʺNoneʺ is set to ʺStandby Activeʺ HOTLINKS ʺSide Maxʺ is set to ʺStandby Activeʺ HOTLINKS has no ʺ Side Max None Learning Error ʺ interface NTP cannot contact primary secondary NTP server IP address SYSTEM I2C device ID description set to acc...

Page 680: ...680 G8264CS Command Reference for ENOS 8 4 ...

Page 681: ...d on Check for updated software firmware and operating system device drivers for your Lenovo product The Lenovo Warranty terms and conditions state that you the owner of the Lenovo product are responsible for maintaining and updating all software and firmware for the product unless it is covered by an additional maintenance contract Your service technician will request that you upgrade your softwa...

Page 682: ... You can solve many problems without outside assistance by following the troubleshooting procedures that Lenovo provides in the online help or in the Lenovo product documentation The Lenovo product documentation also describes the diagnostic tests that you can perform The documentation for most systems operating systems and programs contains troubleshooting procedures and explanations of error mes...

Page 683: ...ss or implied warranties in certain transactions therefore this statement may not apply to you This information could include technical inaccuracies or typographical errors Changes are periodically made to the information herein these changes will be incorporated in new editions of the publication Lenovo may make improvements and or changes in the product s and or the program s described in this p...

Page 684: ...nments may vary significantly Some measurements may have been made on development level systems and there is no guarantee that these measurements will be the same on generally available systems Furthermore some measurements may have been estimated through extrapolation Actual results may vary Users of this document should verify the applicable data for their specific environment ...

Page 685: ...he United States other countries or both Intel and Intel Xeon are trademarks of Intel Corporation in the United States other countries or both Internet Explorer Microsoft and Windows are trademarks of the Microsoft group of companies Linux is a registered trademark of Linus Torvalds Other company product or service names may be trademarks or service marks of others ...

Page 686: ...with the largest currently supported drives that are available from Lenovo Maximum memory might require replacement of the standard memory with an optional memory module Each solid state memory cell has an intrinsic finite number of write cycles that the cell can incur Therefore a solid state device has a maximum number of write cycles that it can be subjected to expressed as total bytes written T...

Page 687: ... of information technology IT equipment to responsibly recycle their equipment when it is no longer needed Lenovo offers a variety of programs and services to assist equipment owners in recycling their IT products For information on recycling Lenovo products go to http www lenovo com recycling ...

Page 688: ...Lenovo may condition provision of repair or replacement of devices or parts on implementation of appropriate remedial measures to mitigate such environmental contamination Implementation of such remedial measures is a customer responsibility Contaminant Limits Particulate The room air must be continuously filtered with 40 atmospheric dust spot efficiency MERV 9 according to ASHRAE Standard 52 21 A...

Page 689: ...t This product may not be certified in your country for connection by any means whatsoever to interfaces of public telecommunications networks Further certification may be required by law prior to making any such connection Contact a Lenovo representative or reseller for any questions ...

Page 690: ...own expense Properly shielded and grounded cables and connectors must be used to meet FCC emission limits Lenovo is not responsible for any radio or television interference caused by using other than recommended cables and connectors or by unauthorized changes or modifications to this equipment Unauthorized changes or modifications could void the user s authority to operate the equipment This devi...

Page 691: ...erence in which case the user may be required to take adequate measures Germany Class A Statement Deutschsprachiger EU Hinweis Hinweis für Geräte der Klasse A EU Richtlinie zur Elektromagnetischen Verträglichkeit Dieses Produkt entspricht den Schutzanforderungen der EU Richtlinie 2014 30 EU früher 2004 108 EC zur Angleichung der Rechtsvorschriften über die elektromagnetische Verträglichkeit in den...

Page 692: ...n in diesem Fall kann vom Betreiber verlangt werden angemessene Maßnahmen durchzuführen und dafür aufzukommen Nach dem EMVG Geräte dürfen an Orten für die sie nicht ausreichend entstört sind nur mit besonderer Genehmigung des Bundesministers für Post und Telekommunikation oder des Bundesamtes für Post und Telekommunikation betrieben werden Die Genehmigung wird erteilt wenn keine elektromagnetische...

Page 693: ...d Information Technology Industries Association JEITA Confirmed Harmonics Guidelines with Modifications products greater than 20 A per phase Korea Communications Commission KCC Statement This is electromagnetic wave compatibility equipment for business Type A Sellers and users need to pay attention to it This is for any areas other than home Russia Electromagnetic Interference EMI Class A statemen...

Page 694: ...694 G8264CS Command Reference for ENOS 8 4 ...

Page 695: ...tting 681 Australia Class A statement 690 autonomous system filter action 480 configuration 476 configuration display 480 delete 480 enable 480 path as path list 480 path number 480 B backup configuration block 634 bandwidth allocation Priority Groups 576 BGP 89 aggregation configuration 518 519 523 community 477 configuration 512 configuration mode 23 control plane protection 375 eBGP 512 filters...

Page 696: ...stics history 284 use 283 use history 284 D daylight savings time 303 DCB Capability Exchange Protocol 579 DCBX configuration 579 information 172 debugging 645 default gateway information 84 default gateway interval for health checks 467 default password 30 delete CPU use statistics 193 FDB entry 647 FDB statistics 218 hot links statistics 218 IPv4 statistics 230 IPv6 statistics 231 LACP statistic...

Page 697: ... gateway clearing routes that use 469 default gateway configuration IPv4 467 IPv6 568 Germany Class A statement 691 getting help 681 gtcfg TFTP load command 611 H health checks default gateway interval retries 467 retry number of failed health checks 467 hello STP information 76 77 78 help online 26 sources of 681 help getting 681 Hot Links configuration 451 hot standby failover 557 HTTPS 352 I IC...

Page 698: ...ment 692 Japan Electronics and Information Technology Indus tries Association statement 693 JEITA statement 693 K Korea Class A electronic emission statement 693 L LACP clear statistics 218 configuration 445 control plane protection 375 information 59 interface portchannel mode 359 logged packet statistics 277 statistics 217 221 vLAG information 69 Layer 2 commands 51 Layer 3 commands 83 LDAP conf...

Page 699: ...help 26 Operations commands 613 to operations level port options 614 VRRP options 615 OSPF area index 486 authentication key 489 control plane protection 375 cost of the selected path 489 cost value of the host 493 database information 102 dead declaring a silent router to be down 489 dead health parameter of a hello packet 491 export 494 fixed routes 512 hello authentication parameter of a hello ...

Page 700: ... Control 577 Priority Groups configuration ETS 576 Private VLAN 458 Protocol Independent Multicast see PIM 24 protocol based VLAN configuration 456 ptcfg TFTP save command 610 PVID port VLAN ID 33 152 R RADIUS 802 1x server timeout 411 server configuration 316 statistics 278 vs TACACS 318 read community string SNMP option 334 receive flow control 365 reference ports 58 re mark ACL port re mark men...

Page 701: ... 425 bridge priority 76 78 configuration 415 information 52 417 link type 73 path cost option 426 root bridge 76 78 425 root information 53 RSTP PVRST 422 switch reset effect 636 subnet IP interface 462 performance 201 switch name and location 35 47 resetting 636 system contact SNMP option 333 date and time 35 47 information 47 location SNMP option 334 System Error Disable and Recovery 307 System ...

Page 702: ... port membership 53 82 protocol based configuration 456 setting access VLAN 361 setting default number PVID 363 tagging 33 152 port configuration 361 port restrictions 456 VLAN Number 82 VM bandwidth management 591 Distributed Virtual Switch 618 Edge Virtual Bridge configuration 605 group configuration 593 information 159 policy configuration 591 profile configuration 597 VMready configuration 600...